Privacy Policy

Privacy Policy

Effective Date: 25/05/2025
Company: Precision Remaps UK
Registered Address: Sinfin Commercial Park, Sinfin Lane, Derby, DE24 9HL
Contact Email: support@precisionremapsuk.com
Data Protection Officer (DPO): Sohail Karim

1. Introduction

Precision Remaps UK (“we,” “us,” or “our”) is fully committed to respecting and protecting your privacy. This Privacy Policy explains how we collect, use, store, and disclose your personal information when you use our services, interact with our website, or communicate with us.

We comply with the requirements of the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and all applicable privacy laws and regulations. Our goal is to be transparent about how your data is handled and to safeguard your privacy at all times.

Please take the time to read this Privacy Policy carefully. It outlines your rights, our responsibilities, and how we ensure your personal data is treated securely and fairly.

2. Data Controller

For the purposes of the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, Precision Remaps UK is the Data Controller. This designation means that we are responsible for determining the purposes for which, and the manner in which, your personal data is processed.

As the Data Controller, we are committed to ensuring that your personal data is:

• Processed lawfully, fairly, and transparently in relation to you.
• Collected for specified, legitimate purposes and not further processed in a manner incompatible with those purposes.
• Adequate, relevant, and limited to what is necessary in relation to the purposes for which they are processed.
• Accurate and kept up to date; every reasonable step will be taken to ensure that personal data that is inaccurate is rectified or erased without delay.
• Kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data is processed.
• Processed in a manner that ensures appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction, or damage, using appropriate technical or organisational measures.

In our role as Data Controller, we may also engage third-party service providers to process your personal data on our behalf. In such cases, these third parties are designated as Data Processors and are contractually obligated to process your personal data in accordance with our instructions and in compliance with applicable data protection laws.

Should you have any questions or concerns regarding the processing of your personal data, or wish to exercise any of your rights under the UK GDPR, please contact our Data Protection Officer at:

Company: Precision Remaps UK
Registered Address: Sinfin Commercial Park, Sinfin Lane, Derby, DE24 9HL
Contact Email: support@precisionremapsuk.com

3. Personal Data We Collect

We collect and process various categories of personal data from you to provide our services effectively and comply with legal obligations. The categories of personal data we may collect include, but are not limited to:

3.1 Identity Data

• Full name
• Date of birth (where necessary for age verification or insurance purposes)
• Gender (only if relevant for specific services or legal requirements)

3.2 Contact Data

• Home and/or business address
• Email address
• Telephone numbers (mobile and/or landline)
• Emergency contact details (provided voluntarily by you or where required for safety reasons)

3.3 Vehicle Data

• Vehicle make, model, and year
• Registration number
• Vehicle Identification Number (VIN)
• Service history, including previous repairs and maintenance records
• Diagnostic data collected during service or tuning/remapping
• Details of any previous vehicle modifications (including tuning/remapping history)

3.4 Financial Data

• Payment card details (such as credit or debit card numbers) are processed securely and exclusively by our trusted third-party payment processors; we do not store full card details ourselves
• Billing address associated with payments
• Transaction history and invoices related to services provided

3.5 Technical Data

• Internet Protocol (IP) address used to connect your device to the internet
• Device identifiers such as hardware model, operating system, and browser type/version
• Cookies and similar tracking technologies, including usage data such as pages visited, duration of visits, clicks, and interactions on our website
• Location data (only if enabled and permitted by you)

3.6 Communications Data

• Records of correspondence, including emails, text messages, and letters
• Phone call recordings or logs related to customer service inquiries
• Notes or transcripts from customer service interactions
• Feedback, complaints, or survey responses provided by you

4. How We Collect Your Personal Data

We collect your personal data when you:

• Use our services (e.g., vehicle repair, recovery, tuning/remapping)
• Contact us via phone, email, or other communication channels
• Register on our website or complete forms (e.g., for quotes, inquiries, product ideas)
• Make payments or enter into contracts with us
• Interact with our website or marketing campaigns

We may also receive data from third parties, such as insurance companies or vehicle manufacturers, where necessary and with your consent.

5. Purposes and Legal Bases for Processing Your Personal Data

We process your personal data only where we have a lawful basis to do so, including:

  Performance of Contract: Processing personal data is essential to enter into and perform our contract with you (e.g., providing vehicle repair, tuning, or recovery services).

  Legitimate Interests: When relying on legitimate interests as a basis, we carefully balance our business interests with your privacy rights. This balance is reviewed regularly.

  Consent: Where consent is required (especially for marketing), it will be freely given, specific, informed, and unambiguous. You can withdraw consent at any time by following opt-out instructions or contacting us.

  Legal Obligations: We may process your data to meet legal requirements such as record-keeping, reporting, and regulatory compliance.

6. Use of Special Categories of Data

We do not typically process special category data (e.g., health data) except where necessary for vehicle recovery services or emergency purposes, and only with explicit consent or legal basis.

7. Sharing Your Data

We do not sell your personal data. We may share your information with:

• Service providers: Trusted partners who assist us with vehicle parts, payment processing, IT services, vehicle diagnostics, marketing, and customer support, under strict confidentiality agreements.
• Regulatory bodies and law enforcement: Where required by law or to protect our legal rights.
• Insurance companies or finance providers: With your consent or to fulfill service obligations.
• Professional advisors and auditors: For legal, tax, or compliance purposes.
• Third parties involved in vehicle delivery or recovery: For operational purposes.

We require all third parties to process your personal data in accordance with applicable data protection laws.

8. International Transfers

8.1. Storage and Processing Locations
Your personal data will primarily be stored and processed within the United Kingdom or the European Economic Area (EEA), where data protection laws provide an adequate level of protection in line with UK GDPR standards.

8.2. Transfers Outside the UK/EEA
In certain circumstances, your personal data may be transferred to, stored, or processed in countries outside the UK or EEA (“third countries”). Such transfers may occur, for example, when we engage third-party service providers, cloud-based platforms, or other partners located outside these regions.

8.3. Safeguards for International Transfers
Whenever your data is transferred internationally, we ensure appropriate safeguards are implemented to protect your personal data in accordance with UK GDPR, including but not limited to:

• Execution of Standard Contractual Clauses (SCCs) as approved by the UK Information Commissioner’s Office (ICO)
• Transfers only to countries deemed by the UK government or European Commission to provide an adequate level of data protection
• Binding corporate rules or other legally recognized mechanisms ensuring data protection compliance
• Implementation of additional technical, organizational, and contractual measures to protect your data

8.4. Your Rights Regarding International Transfers
You have the right to obtain information about the safeguards in place relating to any international data transfer concerning your personal data. Please contact us at [contact details] for further information.

9. Data Security

9.1 Security Measures

We are committed to safeguarding the confidentiality, integrity, and availability of your personal data. To protect your personal information against unauthorized access, alteration, disclosure, loss, or destruction, we implement appropriate technical and organizational measures including but not limited to:

• Encryption: Sensitive personal data is encrypted both in transit (using HTTPS/TLS protocols) and, where applicable, at rest to prevent unauthorized access.
• Secure Servers: Personal data is stored on secure servers located within jurisdictions that provide adequate data protection safeguards.
• Firewalls and Intrusion Detection: We employ firewalls, intrusion detection systems, and antivirus software to protect our systems from cyber threats.
• Access Controls: Access to personal data is strictly limited to authorized personnel who require it to perform their job duties. Access rights are regularly reviewed and updated.
• Staff Training: All employees and contractors undergo regular training on data protection, security policies, and procedures to ensure compliance and awareness of best practices.
• Physical Security: Physical access to our data processing facilities is restricted and monitored to prevent unauthorized entry.
• Regular Security Assessments: We conduct routine audits, vulnerability assessments, and penetration testing to identify and mitigate potential security risks.
• Data Minimization and Retention: We only collect data necessary for our services and retain it only for as long as needed to fulfill legal and business requirements.

9.2 Incident Response

In the unlikely event of a personal data breach, we have established incident response procedures to promptly investigate, contain, and mitigate the impact. Where required by law, we will notify affected individuals and the Information Commissioner’s Office (ICO) in accordance with UK GDPR timelines.

9.3 Limitations

While we strive to protect your personal data, no security system can guarantee absolute protection. Data transmission over the internet or other public networks may be subject to security breaches. By using our services, you acknowledge and accept these inherent risks.

10. Data Retention

We retain your personal data only as long as necessary to:

• Fulfill the purposes outlined in this policy
• Comply with legal, regulatory, and tax obligations
• Resolve disputes and enforce our agreements

Typically, we retain vehicle service records, payment information, and related data for a minimum of 7 years, in accordance with HMRC requirements. After this period, your data will be securely deleted or anonymized.

11. Your Rights Under UK GDPR

You have the following rights regarding your personal data:

• Right of access: Request a copy of the personal data we hold about you.
• Right to rectification: Request correction of inaccurate or incomplete data.
• Right to erasure (“right to be forgotten”): Request deletion of your personal data, subject to legal exceptions.
• Right to restriction of processing: Request that we limit processing your data in certain circumstances.
• Right to data portability: Receive your personal data in a structured, commonly used format or have it transmitted to another controller.
• Right to object: Object to processing based on legitimate interests or direct marketing.
• Right to withdraw consent: Withdraw any consent you have given for data processing.
• Right to complain: Lodge a complaint with the UK Information Commissioner’s Office (ICO) if you believe we have breached data protection laws.

To exercise these rights, please contact us at:
Precision Remaps UK
Address: Sinfin Commercial Park, Sinfin Lane, Derby, DE24 9HL
Email: support@precisionremapsuk.com

12. Automated Decision-Making and Profiling

We do not use automated decision-making or profiling processes that significantly affect you.

13. Cookies and Tracking Technologies

13.1 Use of Cookies

Our website uses cookies and similar tracking technologies to improve your browsing experience, analyse website traffic, personalise content, and serve targeted advertisements. Cookies are small text files stored on your device by your browser.

13.2 Types of Cookies Used

• Essential Cookies: These cookies are necessary for the website to function properly and cannot be switched off in our systems. They enable core functionalities such as security, network management, and accessibility.
• Performance and Analytics Cookies: These cookies help us understand how visitors interact with our website by collecting and reporting information anonymously. This allows us to improve the performance and usability of our site.
• Functional Cookies: These cookies enable the website to remember choices you make (such as language preferences) and provide enhanced, more personalised features.
• Advertising and Targeting Cookies: These cookies are used to deliver adverts more relevant to you and your interests. They are also used to limit the number of times you see an advertisement and help measure the effectiveness of advertising campaigns.

13.3 Third-Party Cookies

We may allow trusted third-party service providers, such as Google Analytics and advertising partners, to place cookies on your device. These third parties may collect information about your online activities over time and across different websites.

13.4 Managing Cookies

You have the right to choose whether or not to accept cookies. Most web browsers automatically accept cookies but provide settings to block or delete them. You can manage or disable cookies through your browser settings or by using cookie management tools.

Please note that disabling certain cookies may affect the functionality and performance of our website, and some features may not be available.

13.5 Consent to Cookies

By continuing to use our website without changing your browser settings, you consent to our use of cookies as described in this policy.

13.6 Further Information

For more information on cookies and how to manage them, please visit www.aboutcookies.org or consult your browser’s help menu.

14. Marketing Communications

14.1 Consent for Marketing

We will only send you marketing communications, including promotional emails, newsletters, special offers, or product updates, if:

• You have explicitly consented to receive such communications at the point of data collection; or
• We have a legitimate interest to contact you, provided you have not objected or opted out.

14.2 Legitimate Interest

Where we rely on legitimate interest as a legal basis to send marketing communications, we carefully balance our interests with your rights and freedoms. You have the right to object to marketing communications based on legitimate interest at any time.

14.3 Opting Out and Unsubscribing

You can withdraw your consent or object to receiving marketing communications at any time by:

• Clicking the unsubscribe link included in every marketing email; or
• Contacting us directly at [your contact email or postal address].

Once you unsubscribe or opt out, we will promptly remove you from our marketing lists and cease sending further marketing messages, except where you have consented to other communications or as otherwise permitted by law.

14.4 Communication Preferences

You can manage your communication preferences with us at any time by contacting us or using any available preference centre on our website.

14.5 Third-Party Marketing

We do not share your personal data with third parties for their own direct marketing purposes without your explicit consent.

14.6 Legal Rights

You have the right to lodge a complaint with the Information Commissioner’s Office (ICO) if you believe your rights under UK GDPR have been infringed regarding marketing communications.

15. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. We will notify you of significant changes via our website or other communication channels. Continued use of our Services after updates constitutes your acceptance of the revised policy.

16. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact:

Precision Remaps UK
Address: Sinfin Commercial Park, Sinfin Lane, Derby, DE24 9HL
Email: support@precisionremapsuk.com

You may also contact the UK Information Commissioner’s Office (ICO) for further guidance: https://ico.org.uk/