Privacy Policy

Privacy Policy

Effective Date: February 4, 2026

This Privacy Policy explains how Belmoro (“Belmoro”, “we”, “us”, “our”) collects, uses, shares, and protects personal data when you visit our website, contact us, or use our services. This policy is written to reflect the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1) Data Controller

Controller: Belmoro (operated by James Edward Harrington)
Address: E Heath Rd, London, United Kingdom
Privacy Contact: [email protected]

2) Personal Data We Collect

We may collect the following categories of personal data:

  • Contact data: name, email address, phone number (if provided)
  • Message content: information you include in enquiries or correspondence
  • Preference data: communication preferences (e.g., whether you opt in/out of updates)
  • Technical data: IP address, device/browser information, approximate location, pages viewed, referring URLs
  • Cookie and similar technology data: identifiers and usage data (see our Cookie Policy)

We do not intentionally collect “special category” data (such as health, religion, or political opinions). Please avoid sending such data to us.

3) How We Collect Data

  • Directly from you when you contact us, submit a form, or communicate with us
  • Automatically via cookies and similar technologies when you browse our website
  • From service providers that help us operate the website (e.g., analytics, hosting, security)

4) Purposes and Legal Bases for Processing

We process personal data only where we have a lawful basis. Depending on the context, we rely on: contract, legitimate interests, consent, and/or legal obligation.

We use your personal data to:

  • Respond to enquiries and provide support
    Legal basis: legitimate interests (responding to communications) and/or contract (where applicable)
  • Provide and improve website functionality, security, and performance
    Legal basis: legitimate interests (operating and securing the site)
  • Analytics and service improvement
    Legal basis: consent (where required for non-essential cookies) and/or legitimate interests (where permitted)
  • Send updates or marketing communications (if you opt in)
    Legal basis: consent (you can withdraw at any time)
  • Comply with legal obligations and protect legal rights
    Legal basis: legal obligation and/or legitimate interests

5) Cookies and Similar Technologies

We use cookies and similar technologies to operate our website and understand usage. For details on cookie categories, retention, and how to manage your preferences, please see our Cookie Policy.

6) How We Share Personal Data

We do not sell your personal data. We may share personal data with:

  • Service providers (processors): hosting, analytics, email delivery, security, and IT support
  • Professional advisers: legal, accounting, or compliance support (where necessary)
  • Authorities or regulators: where required by law or to protect rights and safety

Service providers may process personal data only under our instructions and with appropriate safeguards.

7) International Transfers

Some service providers may process data outside the UK. Where personal data is transferred internationally, we use appropriate safeguards such as UK International Data Transfer Agreements (IDTAs), the UK Addendum to EU SCCs, or other lawful mechanisms as required.

8) Data Retention

We retain personal data only for as long as necessary for the purposes described in this policy:

  • Enquiries and correspondence: typically retained for up to 24 months after the last interaction
  • Operational/security logs: typically retained for a limited period unless needed for investigation
  • Marketing preferences: retained until you withdraw consent or request deletion

Retention periods may be extended where required to comply with legal obligations or to establish, exercise, or defend legal claims.

9) Data Security

We use appropriate technical and organisational measures designed to protect personal data against unauthorised access, alteration, disclosure, or destruction. No method of transmission or storage is completely secure, but we work to maintain reasonable safeguards.

10) Your Rights

Subject to applicable law, you may have the right to:

  • Request access to your personal data
  • Request correction of inaccurate or incomplete data
  • Request deletion of your personal data
  • Request restriction of processing
  • Object to processing (including where based on legitimate interests)
  • Request data portability (where processing is based on consent or contract)
  • Withdraw consent at any time (where processing is based on consent)

To exercise your rights, contact us at [email protected]. We may need to verify your identity before responding.

11) Marketing Communications

If you opt in to receive updates, you can unsubscribe at any time by using the unsubscribe mechanism provided or by emailing [email protected]. Withdrawing consent will not affect the lawfulness of processing before the withdrawal.

12) Children’s Privacy

Our website and services are not intended for children under 16. We do not knowingly collect personal data from children. If you believe a child has provided us personal data, contact us and we will take appropriate steps to delete it.

13) Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices or content of those websites. Please review their privacy policies before providing personal data.

14) Changes to This Policy

We may update this Privacy Policy from time to time. Updates will be posted on this page with a revised effective date.

15) Complaints

If you have concerns about how we handle personal data, please contact us first at [email protected] so we can try to resolve the issue.

You also have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO).