Privacy Policy

Overview

This Privacy Policy sets out how Logic Mount UK Ltd collects, uses, discloses, transfers, stores, and protects personal data obtained from individuals through its website or in the course of providing CRM and technology consultancy services.

It is intended for clients, website users, and other stakeholders who interact with Logic Mount UK Ltd in a business-to-business (B2B) or exploratory commercial context.

This Policy has been draughted in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and, where applicable, the Privacy and Electronic Communications Regulations 2003 (PECR). It incorporates guidance issued by the Information Commissioner’s Office (ICO) and industry best practises applicable to software, consultancy, and subcontracted service providers.

We encourage you to read this Privacy Policy carefully. By continuing to use our Website or engage with our services, you acknowledge that you have read and understood the practises described herein.

1. Introduction

At Logic Mount UK Ltd (“Logic Mount UK”, “we”, “us”, or “our”), we value and respect your privacy and are committed to protecting the personal data of all individuals who interact with us—whether as website visitors, prospective clients, existing clients, or business contacts.

This Privacy Policy outlines how we collect, use, disclose, retain, and protect your personal data when you visit our website at [https://www.logicmount.co.uk] (the “Website”), contact us, or engage with our services, including customer relationship management (CRM) implementation, software development, and technical consultancy.

This Policy is issued in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and, where applicable, the Privacy and Electronic Communications Regulations 2003 (PECR). It explains your rights as a data subject and sets out how we meet our obligations as a data controller when handling your information.

If you are located outside the United Kingdom and interact with us in a way that involves the processing of personal data—particularly where such processing includes subcontracted technical work delivered by Logic Mount (Private) Ltd (Pakistan)—this Policy also outlines how we manage international data transfers and the safeguards we rely upon under the applicable legal framework.

This Privacy Policy applies solely to the personal data collected and processed by Logic Mount UK through or in connection with the Website and our related business activities. It does not apply to third-party websites or services that may be accessible via links on our Website.

2. Who We are & How to Contact Us

Logic Mount UK Ltd is a private limited company incorporated under the laws of England and Wales, with company number 16250799 and having its registered office at Suite 5659 Unit 3a 34-35 Hatton Garden, Holborn, London, United Kingdom, EC1N 8DX.

For the purposes of applicable data protection law, including the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, Logic Mount UK Ltd acts as the Data Controller in relation to any personal data collected, processed, or stored in connection with the operation of our Website or the delivery of our professional services.

If you have any questions regarding this Privacy Policy, our processing activities, or your rights under applicable law, you may contact us using the details below:

Data Protection Contact

Email: hello@logicmount.co.uk

Postal Address: Suite 5659 Unit 3a 34-35 Hatton Garden, Holborn, London, United Kingdom, EC1N 8DX

Business Hours: Monday to Friday, 9:00am to 5:00pm (UK time)

If you are not satisfied with our response or believe that your data protection rights have been infringed, you have the right to lodge a complaint with the UK’s independent supervisory authority:

Information Commissioner’s Office (ICO)

Website:       https://ico.org.uk

Helpline:      +44 (0)303 123 1113

Postal Address: Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF, United Kingdom

3. What Personal Data We Collect

In the course of operating our Website and delivering our services, we may collect, store, and process the following categories of personal data as defined under Article 4(1) of the UK GDPR:

1. ‍Identity Data: full name, job title, employer or organisation name, and role or designation.‍
2. Contact Data: business email address, telephone number, and registered or business address.‍
3. Technical Data: Internet Protocol (IP) address, browser type and version, device identifiers, operating system, time zone setting, and other technology information used to access our Website.‍
4. Usage Data: information about how you use our Website, including browsing behaviour, page interactions, click paths, referral URLs, and time spent on specific pages.‍
5. Marketing and Communications Data: preferences for receiving marketing communications from us, communication history, and interactions with marketing content or newsletters.‍
6. Client Service Data: data provided to us or generated in the course of providing CRM development, consultancy, or software services to clients, including API access credentials, platform user information, integration specifications, and documentation uploaded through our systems or portals.‍
7. Project and Engagement Data: meeting notes, statements of work, billing contact information, or documentation arising from project implementation or support.

We do not knowingly collect or process any special categories of personal data (as defined under Article 9 UK GDPR), such as health information, political beliefs, or biometric identifiers. If this becomes necessary, we will notify you in advance and obtain your explicit consent, where legally required.

4. How We Collect Peronal Data

We obtain personal data through a variety of methods depending on how you interact with us:

1. ‍Direct Collection: You provide data when you fill out web forms, request a quotation, contact us via email or telephone, subscribe to our newsletters, engage us for consultancy, or otherwise communicate with us.‍
2. Automated Technologies: As you interact with our Website, we may collect technical and usage data automatically using cookies, server logs, pixel tags, and similar tracking technologies. This includes traffic data, location data, weblogs, and other communication data.‍
3. Third-Party Sources: We may receive personal data about you from: CRM systems or productivity platforms used in client delivery; Subcontractors, such as Logic Mount (Private) Ltd in Pakistan, acting under our instructions and data protection contracts; Marketing and analytics platforms (e.g., Google Analytics, Meta Ads) when you interact with our online campaigns; Publicly available sources such as LinkedIn, company registries, or public websites where your business contact information has been made available.

5. Purposes of Processing & Legal Bases

We process your personal data only where we have a valid legal basis under Article 6 of the UK GDPR. The table below outlines the specific purposes for which we process personal data, along with the corresponding lawful bases:

We ensure that every data processing activity is supported by a clear and documented legal basis, and we do not process personal data for purposes that are incompatible with those set out above.

6. Data Sharing & Processors

We do not sell or rent your personal data. However, in order to provide our services, operate our Website, and fulfil our contractual and legal obligations, we may disclose your personal data to trusted third parties, strictly limited to the following categories:

1. ‍Authorised Subcontractors: including Logic Mount (Private) Ltd, based in Pakistan, which may act as a data processor or subprocessor under a written processing agreement in compliance with Article 28 UK GDPR. All processing is conducted under our instruction and control.‍
2. Cloud Infrastructure and Hosting Providers: including providers of secure data storage, cloud-based CRM tools, project management platforms, and productivity services that host or transmit project-related data on our behalf.‍
3. Analytics and Marketing Platforms: such as Google Analytics, Meta (Facebook/Instagram), and other service providers, but only where you have provided prior consent for non-essential cookies or opted into marketing communications, in accordance with the Privacy and Electronic Communications Regulations 2003 (PECR).‍
4. Professional Advisors and Legal Representatives: including our solicitors, accountants, or compliance consultants, where such disclosure is necessary for the establishment, exercise, or defence of legal claims.\
5. Regulators and Public Authorities: including HMRC, the Information Commissioner’s Office (ICO), or other authorities where we are under a legal or statutory duty to disclose personal data in accordance with Article 6(1)(c) or Article 6(1)(e) of the UK GDPR.

All third parties with whom we share your personal data are required to:

1. Enter into written data processing agreements (DPAs) with us,
2. Provide sufficient guarantees of technical and organisational security measures (in accordance with Article 32 UK GDPR),
3. Process your data only under our documented instructions.

We retain full responsibility for ensuring that your data is handled in accordance with this Privacy Policy and the UK GDPR.

7. International Data Transfers

Due to the nature of our operations, your personal data may be transferred, accessed, or processed outside the United Kingdom—including by our authorised subcontractor, Logic Mount (Private) Ltd, located in Pakistan.

Where such transfers occur, we ensure that an adequate level of protection is afforded to your personal data in accordance with Chapter V of the UK GDPR by implementing one or more of the following safeguards:

1. The UK International Data Transfer Agreement (IDTA) published by the Information Commissioner’s Office; or
2. The UK Addendum to the European Commission’s Standard Contractual Clauses (SCCs) for international data transfers, in line with the latest ICO guidance and adequacy assessment requirements.

All international transfers are subject to:

1. A documented transfer risk assessment,
2. Binding contractual commitments on data confidentiality and access control, and
3. Ongoing compliance review to ensure the effectiveness of implemented safeguards.

You may request a copy of the standard contractual clauses or information about the safeguards in place by contacting us at the details provided in Section 2.

We do not permit onward transfers of personal data without our prior written approval and without adequate safeguards in place.

8. Data Retention

We retain personal data only for as long as is reasonably necessary to fulfil the purposes for which it was collected, or to comply with legal, regulatory, contractual, or statutory obligations, in accordance with Article 5(1)(e) of the United Kingdom General Data Protection Regulation (UK GDPR) and relevant principles under the Data Protection Act 2018.

Where applicable, retention periods are determined based on the nature of the data, the purpose for processing, client relationships, statutory limitation periods, and regulatory guidance issued by the Information Commissioner’s Office (ICO).

Examples include:

1. Contact form submissions – retained for up to 12 months for administrative or enquiry resolution purposes;
2. Client and project documentation (including CRM configurations, scope documents, or integration assets) – retained for the duration of the client engagement, and up to six (6) years thereafter for auditing, service recordkeeping, and resolution of legal disputes, consistent with Section 5 of the Limitation Act 1980;
3. Website analytics data (e.g., cookies, IP addresses, page views) – retained for 14 to 26 months, subject to the lifespan settings of the relevant platform (e.g., Google Analytics), in accordance with user consent preferences and the Privacy and Electronic Communications (EC Directive) Regulations 2003 (SI 2003/2426) (“PECR”).

When personal data is no longer required, we take appropriate steps to securely delete, anonymise, or pseudonymise such data, as required by Article 32(1)(a) UK GDPR and supported by ICO guidelines on secure disposal. We periodically review all data retention practises to ensure continued compliance.

9. Your Rights Under UK GDPR

As a data subject, you are entitled to exercise the following rights under Chapter III of the United Kingdom General Data Protection Regulation (UK GDPR) and relevant provisions of the Data Protection Act 2018:

1. ‍Right of Access (Article 15 UK GDPR): You have the right to request a copy of the personal data we hold about you, along with supporting information about how it is processed.‍
2. Right to Rectification (Article 16 UK GDPR): You have the right to request the correction of inaccurate or incomplete personal data concerning you.‍
3. Right to Erasure (Article 17 UK GDPR): Also known as the “right to be forgotten,” you may request deletion of your personal data where there is no overriding legal basis or lawful necessity for its continued processing.‍
4. Right to Restriction of Processing (Article 18 UK GDPR): You have the right to request a pause or limitation on the processing of your personal data in specific circumstances (e.g., where the accuracy of the data is contested or the processing is unlawful).‍
5. Right to Data Portability (Article 20 UK GDPR): You may request to receive personal data concerning you in a structured, commonly used, and machine-readable format, and to have it transmitted to another controller, where applicable.‍
6. Right to Object (Article 21 UK GDPR): You may object at any time to the processing of your data where the legal basis is our legitimate interests or where processing is carried out for direct marketing purposes.‍
7. Right to Withdraw Consent (Article 7(3) UK GDPR): Where processing is based on your consent, you may withdraw such consent at any time without affecting the lawfulness of processing prior to withdrawal.‍
8. Right Not to Be Subject to Automated Decision-Making (Article 22 UK GDPR): You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal or similarly significant effects.

PLEASE NOTE: These rights are not absolute and may be limited by legal exemptions under Schedule 2 of the Data Protection Act 2018 or where other lawful grounds for processing apply.

To exercise any of the above rights, please contact us via email at hello@logicmount.co.uk. We will respond to your request without undue delay and in any event within one calendar month, as required by Article 12(3) UK GDPR.

You also have the right to lodge a complaint with the UK’s supervisory authority if you believe your rights have been infringed:

Information Commissioner’s Office (ICO)

Website: https://ico.org.uk

Helpline: +44 (0)303 123 1113

Address: Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF

10. Security of Personal Data

Logic Mount UK Ltd is committed to safeguarding your personal data and has implemented appropriate technical and organisational measures (TOMs) in accordance with Article 32 of the United Kingdom General Data Protection Regulation (UK GDPR) and guidance from the Information Commissioner’s Office (ICO). These measures are designed to protect against unauthorised access, accidental loss, disclosure, alteration, or destruction of personal data.

Security measures include, but are not limited to:

1. Data encryption, including HTTPS and SSL/TLS protocols for secure data transmission;
2. Role-based access controls (RBAC) and password-protected administrative interfaces;
3. Confidentiality agreements with employees, subcontractors, and processors;
4. Secure authentication systems, user account restrictions, and endpoint protection;
5. Monitoring, vulnerability scanning, and regular system patching and auditing.

If, despite these efforts, a personal data breach occurs which is likely to result in a risk to your rights and freedoms, we will assess the severity in accordance with UK GDPR Articles 33 and 34. Where required, we will promptly notify the Information Commissioner’s Office (ICO) within 72 hours, and inform affected individuals without undue delay.

We also conduct periodic reviews and testing of our security controls to maintain compliance with evolving cybersecurity standards.

11. Use of Cookies

Our Website uses cookies and similar tracking technologies to:

1. Enhance user functionality and experience;
2. Collect anonymised analytics data;
3. Facilitate performance and usage insights;
4. Deliver personalised content and retargeting ads (where permitted by consent).

Cookie use on our Website is governed by the Privacy and Electronic Communications (EC Directive) Regulations 2003 (SI 2003/2426) (“PECR”) and Regulation 6 in particular, which requires that non-essential cookies (e.g. for marketing or analytics) are only placed with your informed consent.

Your preferences are managed through our Cookie Consent Management Platform (CMP), which allows you to accept, reject, or customise your cookie settings at any time.

For full details about the types of cookies we use, their purposes, and how to control them, please refer to our Cookies Policy.

12. Third-Party Websites

Our Website may contain links to third-party websites, applications, or services that are not operated or controlled by Logic Mount UK Ltd. These third-party sites have their own privacy policies and practises, which we strongly recommend you review before providing any personal data.

We accept no responsibility or liability for the content, security, or data handling practises of third parties. This includes platforms that may be linked through integrations, CRM APIs, or support tools used during the course of our service delivery.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect:

1. Changes in applicable laws or regulatory guidance;
2. Updates to our internal data handling or security practises;
3. Modifications to our services, website functionality, or third-party processors.

Where changes are material, we will notify users by updating this page, adjusting the effective date below, and—where feasible—through website banners, email notices, or other appropriate channels. Continued use of the Website after changes take effect will constitute your acceptance of the updated terms. We encourage users to periodically review this Privacy Policy to stay informed about how we are protecting their data.

Version: 1.0

Last Updated: _____________________ [Insert Date of Most Recent Amendment]

Policy Owner: Logic Mount UK Ltd – Data Protection Lead

Jurisdiction: United Kingdom