Legal

Privacy Policy

Last updated: 13 July 2026

This Privacy Policy explains how Shahroz ("we", "us", "our") collects and processes personal data through our website shahroz.co.uk. We comply with the UK GDPR and the Data Protection Act 2018. The data controller is Shahroz, 19 W Nile St, Glasgow G1 2PS, United Kingdom.

1. What data we collect

Through our contact form and email, we collect: your name, email address, optional phone number, the service you're interested in, and the contents of your message. If you email us directly, we receive whatever information is in that email.

2. Why we use it (purpose)

We use this data only to reply to your enquiry, scope your project, prepare quotes and proposals, and — if you become a client — to deliver the agreed services and issue invoices.

3. Lawful basis

Our lawful basis under Article 6 UK GDPR is (a) legitimate interests — responding to a business enquiry you initiated, and (b) performance of a contract — where you engage us for work.

4. Cookies and analytics

We use privacy-respecting analytics to understand aggregate site usage. No cookies are set for advertising or tracking across sites. Any first-party analytics cookies are strictly limited to counting page views and referrers.

5. Sharing

We do not sell your personal data. We share it only with the service processors we use to run the business: our email provider, hosting provider, and accounting software — each bound by their own data-protection obligations.

6. Retention

Enquiry data is kept for up to 24 months from last contact and then deleted. Client project records are retained for 7 years to comply with UK tax and accounting law.

7. Your rights

Under UK GDPR you have the right to access, rectify, erase, restrict, port or object to our processing of your personal data, and to lodge a complaint with the Information Commissioner's Office (ico.org.uk).

8. Contact

For any privacy request or question, email hello@shahroz.co.uk. We will respond within 30 days.