Privacy Policy
Effective Date: 30th September 2025
1. Introduction
Bolt Logic (referred to as "we", "us", or "our") is committed to protecting the privacy and security of your personal data. This Privacy Policy describes how we collect, use, and share the personal data we obtain when you use our website, purchase our server hosting services, or interact with us.
For the purpose of the UK General Data Protection Regulation (UK GDPR), the individual operating Bolt Logic as a Sole Trader is the Data Controller for the personal data related to your account and billing.
2. Contact Details (The Data Controller)
All communications, inquiries, and requests concerning your personal data and this policy should be directed through our designated email address.
| Detail | Information |
|---|---|
| Data Controller (Legal Entity) | Daniel Gardner trading as Bolt Logic (Sole Trader) |
| Contact Person | Data Protection Lead |
| Email Address for Notices/Data Requests | admin@boltlogic.co.uk (Crucial for all formal requests) |
| Postal Address for Formal Notices | Not publicly provided. Address for formal legal service/notice available upon specific, valid request via admin@boltlogic.co.uk. |
| Telephone Number | We operate as an online service provider and manage all support and privacy inquiries via email. |
3. The Data We Collect (Bare Minimum Collection)
We collect, use, store, and transfer the following personal data about you, as it is necessary for providing our hosting services:
| Category of Data | Examples of Data Collected |
|---|---|
| Identity Data | First name, last name, and username. |
| Contact Data | Billing address, email address (admin@boltlogic.co.uk will be used for correspondence). |
| Financial Data | Payment card details (processed by a secure third-party processor), transaction history. |
| Technical Data | Internet Protocol (IP) address (for security/access logs), browser type, and platform. |
| Usage Data | Information about your login history and support ticket history. |
| Marketing and Communications Data | Your communication preferences. |
Note on Hosted Content (Client Data Processor Role): We are generally considered a Data Processor for the data you store on your servers. We do not inspect, collect, or control the content or personal data you host. Your customers' data is covered by your privacy policy and our agreement with you (the Data Processing Agreement, which forms part of the TOS).
4. How We Use Your Data and Our Lawful Basis
We will only use your personal data when the law allows us to. Under UK GDPR, we must identify a "lawful basis" for each processing activity.
| Purpose for Processing | Type of Data Used | Lawful Basis for Processing |
|---|---|---|
| To register you as a new client. | Identity, Contact | Performance of a Contract. |
| To process and deliver your service (billing, provisioning, technical support). | Identity, Contact, Financial, Usage | Performance of a Contract. |
| To manage payments, fees, and charges and collect money owed to us. | Identity, Contact, Financial | Performance of a Contract; Necessary for our Legitimate Interests (to recover debts). |
| To manage our relationship with you (policy changes, renewal notices sent via admin@boltlogic.co.uk). | Identity, Contact, Marketing | Performance of a Contract; Necessary to comply with a Legal Obligation. |
| To administer and protect our business and network (security, troubleshooting, fraud prevention). | Technical, Usage | Necessary for our Legitimate Interests (security, service integrity); Necessary to comply with a Legal Obligation. |
| To use data analytics to improve our website, products, and services. | Technical, Usage | Necessary for our Legitimate Interests (to define customer types, keep our website updated). |
5. Data Sharing and Third Parties (Limited Sharing)
We may have to share your personal data with the specific third parties set out below only where necessary for the provision of our core services:
- Stripe: We share Financial Data (including card details and billing address) with Stripe to securely process your payments.
- Namecheap: We share your Contact Data (email address) with Namecheap for the purpose of managing and delivering transactional and administrative emails.
- Regulators and Law Enforcement: UK government bodies, regulators (including the ICO), and other authorities where we are legally obliged to do so (e.g., in response to a valid legal request or for tax compliance).
- Professional Advisers: Lawyers, auditors, and insurers based in the UK.
We require all third parties to respect the security of your personal data and treat it in accordance with the law.
6. International Data Transfers
Whenever we transfer your personal data out of the UK/EEA (e.g., to third-party providers like Stripe or Namecheap), we ensure a similar degree of protection is afforded to it by implementing at least one of the following safeguards:
- We will only transfer your data to countries deemed to provide an adequate level of protection for personal data by the UK government.
- We use specific contracts approved for use in the UK (e.g., Standard Contractual Clauses) which give personal data the same protection it has in the UK.
7. Data Security, Retention, and Your Rights
Data Security: We have put in place appropriate technical and organisational security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorised way. We have procedures in place to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
Data Retention: We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. We generally keep basic customer information for six (6) years after you cease being a customer for UK tax and compliance purposes.
Your Legal Rights: Under UK GDPR, you have rights over your personal data, including the right to access, correct, erase, object to processing, and request data portability. If you wish to exercise any of your rights, please contact us formally at admin@boltlogic.co.uk.
8. Changes to This Policy
We reserve the right to update this policy at any time. The most current version of the policy will always be posted on our website. We will notify you of any material changes via email to your registered email address.