Skip to content

PRIVACY POLICY MARU ICT LIMITED

.Last Updated; 19/01/2026

 

1. Introduction Welcome to the Privacy Policy of MARU ICT Limited (“we”, “us”, or “our”). We are committed to protecting your personal data and respecting your privacy. This policy explains how we collect, use, and share your personal information when you visit our website, use our consultancy services, or interact with us.

2. Who We Are (Data Controller) For the purposes of the Data Protection Act 2018 and the UK General Data Protection Regulation (UK GDPR), the Data Controller is:

  • Company Name: MARU ICT Limited

  • Company Number: SC845959

  • Registered Office: 18, Moor Park Place, Prestwick, KA9 2NH, Scotland

  • Email: [Insert Contact Email, e.g., hello@maru.consulting]

3. The Data We Collect We may collect, use, store, and transfer different kinds of personal data about you, including:

  • Identity Data: Name, job title, username.

  • Contact Data: Billing address, email address, telephone numbers.

  • Financial Data: Bank account and payment card details (for processing payments).

  • Transaction Data: Details of services you have purchased from us.

  • Technical Data: IP address, browser type, time zone setting, and operating system (via cookies).

  • Usage Data: Information about how you use our website and services.

4. How We Use Your Personal Data We will only use your personal data when the law allows us to. Most commonly, we use your data in the following circumstances:

  • Performance of a Contract: To register you as a new client and deliver the consultancy services defined in our Statement of Work (SOW).

  • Legitimate Interests: To manage our business relationship, including collecting feedback, notifying you about changes to terms, and running our business efficiently.

  • Legal Obligation: To comply with legal or regulatory requirements (e.g., tax reporting to HMRC).

5. Sharing Your Personal Data We do not sell your personal data. However, we may share your data with trusted third parties for specific purposes:

  • Service Providers (Processors): Third parties who provide IT and system administration services to us, such as Google Workspace (email/document storage) and HubSpot (CRM and marketing), acting under our instruction.

  • Referral Partners: As outlined in our General Terms and Conditions, if you request that we introduce you to a third-party provider (e.g., for VoIP, utilities, or software) to obtain a quote or comparison, we will share your necessary Contact Data with that specific partner to facilitate the introduction. We will only do this with your prior knowledge or request.

  • Professional Advisers: Lawyers, bankers, auditors, and insurers who provide consultancy, banking, legal, insurance, and accounting services.

  • Regulators: HM Revenue & Customs and other authorities who require reporting of processing activities in certain circumstances.

6. International Transfers We generally store your data within the UK. Whenever we transfer your personal data out of the UK (for example, using US-based software like Google or HubSpot), we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:

  • The country is deemed to provide an adequate level of protection by the UK Government.

  • We use specific contracts approved for use in the UK (International Data Transfer Agreements) which give personal data the same protection it has in the UK.

7. Data Security We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorized way. Access to your personal data is limited to those employees, agents, and contractors who have a business need to know.

8. Data Retention We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

  • Client Records: Generally retained for 6 years after the end of our contract for tax and legal liability purposes.

  • Complaint Records: Retained for 2 years as per our internal quality assurance process.

9. Your Legal Rights Under data protection laws, you have rights in relation to your personal data, including the right to:

  • Request access to your personal data.

  • Request correction of the personal data that we hold about you.

  • Request erasure of your personal data.

  • Object to processing of your personal data.

  • Request restriction of processing your personal data.

  • Request the transfer of your personal data.

  • Withdraw consent at any time where we are relying on consent to process your data.

To exercise any of these rights, please contact us at the email address provided in Section 2.

10. Third-Party Links Our website may include links to third-party websites, plug-ins, and applications. Clicking on those links may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements.

11. Contact Us If you have any questions about this privacy policy or our privacy practices, please contact us at:

  • MARU ICT Limited

  • Address: 18, Moor Park Place, Prestwick, KA9 2NH

  • Email: kenny@maru.consulting