FINNITREX
INTELLIGENT SOLUTIONS
Return Home

PRIVACY POLICY

LAST UPDATED: 26 JANUARY 2026 | COMPLIANT WITH UK GDPR & DUAA 2025

This Privacy Policy is designed specifically for Finnitrex Ltd to meet the requirements of the UK GDPR and the Data (Use and Access) Act 2025 (DUAA), which is now the standard for UK companies in 2026.

01. Introduction

Welcome to Finnitrex Ltd. We respect your privacy and are committed to protecting your personal data. This privacy policy will inform you as to how we look after your personal data when you visit our website (Finnitrex.com) and tell you about your privacy rights and how the law protects you.

02. Who We Are

Finnitrex Ltd is the "Data Controller" responsible for your personal data.

COMPANY NAME
Finnitrex Ltd
COMPANY NUMBER
16973401
REGISTERED OFFICE
483 Green Lanes, London, N13 4BS, United Kingdom
EMAIL
info@finnnitrex.com

03. The Data We Collect

We may collect, use, store, and transfer different kinds of personal data about you, which we have grouped together as follows:

  • Identity Data: Name, username, or similar identifier.
  • Contact Data: Email address and telephone numbers.
  • Technical Data: IP address, login data, browser type and version, time zone setting, and location (collected automatically).
  • Usage Data: Information about how you use our website, products, and services.

04. How We Use Your Data

We will only use your personal data when the law allows us to. Most commonly, we will use your data in the following circumstances:

  • Performance of a Contract: Where we need to perform the contract we are about to enter into or have entered into with you.
  • Legitimate Interests: Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests.
  • Compliance with Legal Obligations: Where we need to comply with a legal or regulatory obligation.
  • Recognised Legitimate Interests (New for 2026): We may process data without a balancing test for specific purposes defined under the DUAA, such as crime prevention or safeguarding.

05. Your Rights

Under the UK GDPR and DUAA 2025, you have significant rights:

Request Access (SAR)

You can ask for a copy of your data. Note: Under 2026 rules, we may 'stop the clock' on our 30-day response time if we require further clarification.

Request Correction

To have any incomplete or inaccurate data we hold about you corrected.

Request Erasure

To ask us to delete personal data where there is no good reason for us continuing to process it.

Object to Processing

Where we are relying on a legitimate interest.

Automated Decision-Making

You have the right to challenge any significant decision made about you based solely on automated processing.

06. Cookies

Our website uses cookies. Under the DUAA 2025, we may use "low-risk" cookies (such as those for basic website functionality or anonymous statistics) without your explicit prior consent, but we will always provide you with a clear option to opt-out and manage your preferences via our Cookie Banner.

07. Data Security

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorised way. We limit access to your personal data to those employees, agents, contractors, and other third parties who have a business "need to know."

08. How to Complain

If you have any concerns about our use of your personal information, you can make a formal complaint to us via our contact page. We will acknowledge your complaint within 30 days.

If you are still not satisfied, you have the right to complain to the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk).