At TFix Ltd (“TFix”, “we”, “us” or “our”), we respect your privacy and are committed to protecting the personal data of everyone who interacts with us. This policy explains what personal data we collect, how we use it, and the rights you have under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
By using our website and services, you agree to the practices described in this Privacy Policy, our Cookies Policy, and our Website Terms and Conditions. If you have questions, contact us at [email protected].
1. Contact Details
Data Controller: TFix Ltd
Postal Address: Generator Business Centre, 95 Miles Road, Mitcham, Surrey, CR4 3FH
Telephone: 020 8819 3869
Email: [email protected]
If you are unhappy with how we handle your data, you can also lodge a complaint with the Information Commissioner’s Office (ICO): www.ico.org.uk.
2. Data We Collect
We may collect and process the following categories of data:
Information you provide directly:
- Name, address, email, telephone number
- Account login details (username, password)
- Payment details (processed via PayPal – we do not store card details)
- Information you provide through forms, surveys, or when contacting us
- Feedback, reviews, or support queries
Information collected automatically:
- Device and browser information
- IP address and network data
- Website usage statistics, browsing patterns, and interactions (via cookies and analytics)
Information from third parties:
- Fraud prevention services, payment processors, logistics providers
3. Legal Basis for Processing
We process personal data under the following lawful bases:
- Contract: to provide services you request (e.g. bookings, collections, RMAs).
- Legal obligation: to comply with tax, accounting, and WEEE regulations.
- Legitimate interests: to improve services, ensure security, and send relevant updates.
- Consent: where you have opted in to marketing communications or cookies.
4. How We Use Your Data
We use your information to:
- Manage accounts, orders, and service bookings
- Provide customer support and respond to enquiries
- Issue certificates (e.g. data destruction, WEEE compliance)
- Communicate changes to services, terms, or policies
- Improve website performance and security
- Conduct marketing (if you consented)
- Comply with legal obligations
5. Sharing Your Data
We may share your data with:
- Service providers (e.g. PayPal for payments, couriers for collections, IT hosting providers, analytics tools such as Google)
- Professional advisers (accountants, auditors, insurers, legal advisers)
- Authorities where required by law (HMRC, regulators, fraud prevention agencies)
We require all third parties to respect your data and use it only for the purposes we instruct.
6. International Data Transfers
Some of our service providers (e.g. Google) may process data outside the UK. In such cases, we ensure appropriate safeguards are in place, such as adequacy decisions or Standard Contractual Clauses (SCCs).
7. Data Retention
We retain personal data only as long as necessary for the purposes collected:
- Service records, contracts, and invoices: 6 years (legal obligation)
- Certificates of destruction/WEEE recycling: as required by law
- Marketing consents: until withdrawn
- Account information: until you request deletion
8. Your Rights
You have the following rights under UK GDPR:
- Access: request a copy of your data.
- Rectification: correct inaccurate or incomplete data.
- Erasure: request deletion of your data (“right to be forgotten”).
- Restriction: request limits on processing.
- Portability: receive your data in a structured, machine-readable format.
- Objection: object to processing for marketing or legitimate interest.
- Withdraw consent: where processing is based on consent, you may withdraw at any time.
To exercise these rights, email [email protected].
9. Cookies
We use cookies and similar technologies to improve website functionality and measure performance. See our Cookies Policy for full details.
10. Security
We use physical, technical, and organisational measures to safeguard personal data. However, no internet transmission is 100% secure. By sharing information with us, you accept this risk.
11. Children’s Data
Our services are not directed at individuals under 16. We do not knowingly collect children’s data.
12. Updates to This Policy
We may update this policy from time to time. Changes will be posted on our website, and continued use of our services will mean you accept those updates.