Welcome to Mercury Infotech Ltd ("Mercury Infotech", "Company", "we", "our", or "us").
Mercury Infotech is committed to protecting your privacy and handling your personal information responsibly, fairly, and transparently. This Privacy Policy explains how we collect, use, disclose, store, process, and safeguard personal information when you:
This Privacy Policy applies to all personal information processed by Mercury Infotech whether collected online, electronically, verbally, or through written correspondence.
By accessing our website or using our services, you acknowledge that you have read and understood this Privacy Policy.
Mercury Infotech Ltd is a technology company providing digital business solutions including software development, website development, branding, customer relationship management systems, appointment booking solutions, digital business cards, feedback management systems, and related technology services.
For the purposes of applicable data protection legislation, Mercury Infotech acts as either:
Our role depends on the nature of the service being provided.
We recognise that personal information is valuable and deserves protection.
We are committed to:
This Privacy Policy has been prepared in accordance with applicable United Kingdom data protection legislation, including but not limited to:
Where Mercury Infotech provides services to organisations or individuals outside the United Kingdom, we also endeavour to comply with other applicable privacy laws, including the EU General Data Protection Regulation (EU GDPR), where relevant.
This Privacy Policy applies to:
Where Mercury Infotech acts solely as a Data Processor on behalf of a client, the client's own Privacy Policy governs the processing of personal data, and Mercury Infotech processes such data only under documented instructions.
For the purposes of this Privacy Policy:
Any information relating to an identified or identifiable natural person.
Examples include:
Any operation performed on personal data including:
The individual or organisation that determines why and how personal information is processed.
An individual or organisation processing personal data on behalf of a Data Controller.
Personal information requiring additional protection under UK GDPR, including information revealing:
Mercury Infotech does not intentionally collect Special Category Data unless required by law or explicitly necessary for a service requested by a client.
Small text files placed on a user's device to improve website functionality, analyse traffic, and remember user preferences.
Mercury Infotech processes personal data according to the principles established under Article 5 of the UK GDPR.
Accordingly, personal data shall be:
These principles guide every product, service, and internal process operated by Mercury Infotech.
If you have any questions regarding this Privacy Policy or how your personal information is handled, you may contact us:
Mercury Infotech Ltd
Website: https://www.mercuryinfotech.co.uk
Email: info@mercuryinfotech.co.uk
Telephone: +44 7442 974622
Registered Address: 11, Hillrise Court, 135 Kenton Rd, Harrow HA3 0AZ, United Kingdom
If required by applicable law, Mercury Infotech will also identify its appointed Data Protection Officer (DPO) or designated privacy contact on request or within this Privacy Policy.
The type of personal information we collect depends on how you interact with Mercury Infotech, the services you request, and the products you use.
We only collect personal information that is necessary, relevant, and proportionate for the purposes described in this Privacy Policy.
We may collect information that identifies you directly, including:
To communicate with you, we may collect:
Where you register for one of our products or services, we may collect:
Mercury Infotech does not store passwords in plain text.
Depending on the services you request, we may collect information relating to your organisation, including:
Where payments are made, we may process:
Mercury Infotech does not store complete payment card information on its own servers. Payments are processed securely through authorised third-party payment providers.
Whenever you visit our website or use our digital platforms, certain technical information may automatically be collected, including:
This information helps us maintain security, monitor website performance, and improve user experience.
We may automatically collect information about how visitors interact with our website, including:
This information is used solely for analytical and performance improvement purposes.
Because Mercury Infotech offers multiple digital products, different services may process different categories of personal information.
When developing or maintaining websites, we may process:
To provide design services, we may process:
Our CRM platform may process:
Mercury Infotech processes this information solely to provide CRM functionality and business management services.
Depending on the services you request, we may collect information relating to your organisation, including:
Where payments are made, we may process:
Mercury Infotech does not store complete payment card information on its own servers. Payments are processed securely through authorised third-party payment providers.
Whenever you visit our website or use our digital platforms, certain technical information may automatically be collected, including:
This information helps us maintain security, monitor website performance, and improve user experience.
We may automatically collect information about how visitors interact with our website, including:
This information is used solely for analytical and performance improvement purposes.
Because Mercury Infotech offers multiple digital products, different services may process different categories of personal information.
When developing or maintaining websites, we may process:
To provide design services, we may process:
Our CRM platform may process:
Mercury Infotech processes this information solely to provide CRM functionality and business management services.
Our scheduling solutions may process:
Digital Business Cards may contain:
Information displayed on Digital Business Cards is controlled by the customer.
Digital Catalog Builder may process:
Our Customer Feedback platform may process:
Where clients use our One Page Website Builder, information may include:
We may receive information from trusted third-party providers, including:
We only receive information necessary for delivering our services.
You may voluntarily provide information when you:
Providing personal information is generally voluntary. However, certain services cannot be delivered unless the required information is provided.
Mercury Infotech uses cookies and similar technologies in accordance with the Privacy and Electronic Communications Regulations (PECR).
Cookies help us:
Where legally required, we will obtain your consent before placing non-essential cookies on your device.
You may withdraw your cookie consent at any time through our Cookie Preferences Centre or by adjusting your browser settings.
Disabling cookies may affect certain website functionality.
Under Article 6 of the UK GDPR, Mercury Infotech processes personal data only where a lawful basis exists.
Depending on the circumstances, we rely on one or more of the following lawful bases:
Where you have provided clear consent, such as:
You may withdraw consent at any time.
Processing necessary to:
Processing required to comply with legal or regulatory obligations, including:
Where processing is necessary for our legitimate business interests, provided your rights do not override those interests.
Examples include:
Mercury Infotech may use personal information to:
We do not process personal information for purposes that are incompatible with those described in this Privacy Policy.
Mercury Infotech respects your privacy and does not sell, rent, lease, or trade your personal information to third parties for their own marketing purposes.
We only share personal information where it is necessary to deliver our services, comply with legal obligations, or operate our business effectively.
Personal information may be shared with the following categories of recipients.
We work with carefully selected third-party providers who assist us in delivering our products and services. These may include:
Each provider is contractually required to process personal information only on our instructions and to maintain appropriate security measures.
Where necessary, we may share limited information with trusted business partners involved in delivering requested services.
Examples include:
Only information necessary for completing the requested service will be shared.
We may disclose personal information where required by law, including:
Such disclosures will only occur where legally required or where necessary to establish, exercise, or defend legal claims.
If Mercury Infotech undergoes:
Personal information may be transferred as part of that transaction, subject to applicable privacy laws.
Affected individuals will be informed where legally required.
Mercury Infotech provides services to clients across multiple countries.
As a result, personal information may be transferred to or processed in countries outside the United Kingdom.
Whenever personal data is transferred internationally, we ensure that appropriate safeguards are in place, including:
Where no adequacy decision exists, Mercury Infotech will implement contractual and organisational safeguards to maintain an equivalent level of data protection.
Our services may integrate with third-party platforms including but not limited to:
These platforms operate under their own privacy policies.
Mercury Infotech is not responsible for the privacy practices of third-party services once users leave our website or interact directly with those services.
We encourage users to review the privacy policies of any third-party platform they choose to use.
Where Mercury Infotech acts as a Data Processor on behalf of our clients, we process personal information only in accordance with documented client instructions.
We will:
Mercury Infotech implements appropriate technical and organisational measures designed to protect personal information against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, or access.
Our security measures may include:
Access to personal information is restricted to authorised personnel who require such access to perform their duties.
Employees and contractors handling personal information are subject to confidentiality obligations.
Mercury Infotech maintains procedures for detecting, investigating, and responding to personal data breaches.
Where a breach is likely to result in a risk to the rights and freedoms of individuals, we will:
We also maintain internal incident response procedures to minimise future risks.
Mercury Infotech retains personal information only for as long as necessary to fulfil the purposes for which it was collected.
Retention periods may vary depending on:
Once personal information is no longer required, it will be securely deleted, anonymised, or destroyed.
| Data Category | Typical Retention Period |
|---|---|
| Website enquiries | Up to 24 months |
| Customer accounts | Duration of contract plus applicable legal retention period |
| Invoices and financial records | Minimum 6 years (or longer where required by law) |
| Technical logs | Up to 12 months |
| Marketing preferences | Until consent is withdrawn |
| Support requests | Up to 36 months |
| CRM records | As instructed by the client or contractual agreement |
Actual retention periods may vary where legal obligations require longer storage.
Where permitted by law, Mercury Infotech may send:
Marketing communications will only be sent:
Every marketing email will include a simple unsubscribe option.
Users may withdraw consent at any time.
Withdrawal of consent does not affect communications necessary for providing contracted services.
Mercury Infotech does not use personal information to make decisions based solely on automated processing where such decisions produce legal or similarly significant effects on individuals.
Where automation is used to improve system functionality, reporting, or analytics, meaningful human oversight is maintained.
Certain Mercury Infotech services may use artificial intelligence or machine learning technologies to improve user experience, generate content suggestions, analyse customer feedback, or automate administrative processes.
Where AI-assisted features are provided:
Mercury Infotech does not use AI to make legally binding decisions about individuals without human involvement.
To ensure the availability and resilience of our services, Mercury Infotech maintains business continuity and disaster recovery procedures.
These may include:
These measures help minimise service disruption while protecting the integrity and confidentiality of personal information.
All Mercury Infotech employees, contractors, consultants, and authorised service providers who process personal information are bound by confidentiality obligations.
Access to personal information is granted strictly on a need-to-know basis and only where necessary to perform authorised duties.
Subject to applicable law, you have a number of rights regarding the personal information Mercury Infotech holds about you.
These rights are not absolute and may be subject to legal limitations or exemptions.
You have the right to know:
This Privacy Policy is intended to satisfy that right.
You have the right to request confirmation that we process your personal data and to obtain a copy of that information.
Where permitted by law, we may request proof of identity before responding.
Requests will normally be answered within one month in accordance with UK GDPR requirements.
You have the right to request correction of inaccurate or incomplete personal information.
Mercury Infotech will make reasonable efforts to ensure information remains accurate and up to date.
You may request deletion of your personal information where:
This right does not apply where Mercury Infotech is legally required to retain information.
You may request that we temporarily restrict processing where:
Where processing is based on consent or contract and carried out by automated means, you may request a copy of your information in a structured, commonly used, and machine-readable format.
Where technically feasible, you may also request direct transfer to another service provider.
You may object to processing based on legitimate interests.
Where personal information is processed for direct marketing purposes, you have an absolute right to object.
Mercury Infotech will cease direct marketing upon receiving such a request.
Where applicable, you have the right:
Mercury Infotech does not currently use fully automated decision-making for these purposes.
Requests relating to your personal information may be submitted by contacting us using the details provided in this Privacy Policy.
To protect personal information, Mercury Infotech may request identity verification before fulfilling any request.
We reserve the right to refuse or charge a reasonable administrative fee for requests that are manifestly unfounded or excessive, where permitted by law.
Mercury Infotech uses cookies and similar technologies to improve website functionality, analyse website performance, enhance user experience, and maintain website security.
Where required by the Privacy and Electronic Communications Regulations (PECR), we obtain your consent before placing non-essential cookies on your device.
These cookies are essential for the operation of our website.
They enable features such as:
These cookies cannot be disabled through our cookie banner.
These cookies remember your preferences, including:
These cookies help us understand how visitors interact with our website.
Information collected may include:
Analytics data is used only to improve our website and services.
Where consent has been provided, marketing cookies may be used to:
You may withdraw consent at any time through our Cookie Preferences settings.
Our website may contain links to websites operated by third parties.
These websites operate independently from Mercury Infotech and maintain their own privacy practices.
We encourage users to review the privacy policies of any external website before providing personal information.
Mercury Infotech accepts no responsibility or liability for the privacy practices or content of third-party websites.
Mercury Infotech's products and services are intended primarily for businesses and individuals aged 18 years or older.
We do not knowingly collect personal information from children under the age of 13.
Where local law establishes a higher minimum age for consent, Mercury Infotech will comply with those requirements.
If we become aware that personal information relating to a child has been collected without appropriate legal authority or parental consent, we will take reasonable steps to delete that information promptly.
Parents or guardians who believe a child has provided personal information should contact us immediately.
Mercury Infotech is committed to ensuring that this Privacy Policy is accessible and understandable.
If you require this Privacy Policy in an alternative format due to a disability or accessibility requirement, please contact us.
We will make reasonable efforts to provide accessible versions where practicable.
If you have concerns regarding how Mercury Infotech processes your personal information, we encourage you to contact us first.
We are committed to resolving privacy concerns promptly, fairly, and transparently.
Complaints may be submitted using the contact details provided in this Privacy Policy.
Where appropriate, we may request additional information to investigate the matter.
If you are dissatisfied with our response, you have the right to lodge a complaint with the United Kingdom's supervisory authority.
Website:
https://ico.org.uk
Telephone:
+44 (0)303 123 1113
Address:
Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF, United Kingdom
You may also have the right to complain to your local supervisory authority if you are located outside the United Kingdom.
Mercury Infotech reserves the right to amend this Privacy Policy at any time to reflect:
Where material changes are made, we will update the "Last Updated" date at the beginning of this Privacy Policy.
Where required by law, we will notify users of significant changes through appropriate communication channels.
Continued use of our website or services after changes become effective constitutes acceptance of the revised Privacy Policy.
If you have any questions regarding this Privacy Policy, our privacy practices, or your personal information, please contact us.
Mercury Infotech Ltd
Website:
https://www.mercuryinfotech.co.uk
Email:
mercuryinfotechuk@gmail.com
Telephone:
+44 7442 974622
Registered Office:
11, Hillrise Court, 135 Kenton Rd, Harrow HA3 0AZ, United Kingdom
Business Hours: 9:00 AM – 6:00 PM
Monday to Friday
This Privacy Policy shall be governed by and interpreted in accordance with the laws of England and Wales.
Any disputes arising from or relating to this Privacy Policy shall be subject to the exclusive jurisdiction of the courts of England and Wales, unless otherwise required by applicable law.
By accessing our website, purchasing our products, using our software, or engaging with Mercury Infotech's services, you acknowledge that you have read and understood this Privacy Policy.
Where consent is required under applicable law, we will request your consent separately before processing personal information for those purposes.
Your continued use of our services signifies your ongoing acceptance of this Privacy Policy, as amended from time to time.
| Document Version | 1.0 |
|---|---|
| Policy Owner | Mercury Infotech Ltd |
| Document Classification | Public |
| Review Frequency | Annually, or sooner where required by changes in legislation, regulatory guidance, or business operations. |