Privacy Policy

This privacy policy explains how [Pixels Point Ltd](“Pixels Point”, “we”, “us”, or “our”) collects and processes personal data when you visit pixelspoint.co.uk or engage us for digital solutions, consultancy, training, or products.

For the purposes of UK data protection law, we are the data controller for the personal data we hold about website visitors, enquirers, and clients.

• Registered company name: [Pixels Point Ltd]
• Registered office: [182-184 High Street North London E6 2JA, United Kingdom]
• Company number: [11129649]
• Contact: info@pixelspoint.co.uk

We only collect the data we need to respond to enquiries, deliver our services, and run our website securely.

Data you give us directly

• Contact form submissions your name, organisation, email, phone number, the service you’re interested in, your preferred contact method, and the contents of your message.
• Email correspondence when you email us directly, we receive whatever you choose to send.
• Engagement details if you become a client, we collect the information needed to deliver the work (project briefs, billing details, designated contacts).
• Product accounts if you sign up for early access to a Pixels Point product (e.g. PFBI, Pixels LMS, Pixels Tasks), we collect your account credentials and product-specific data as described in that product’s separate terms.

Data collected automatically

• Server logs our hosting infrastructure records standard request data (IP address, user agent, timestamp, page requested) for security and abuse prevention. Retention is short and aggregated where possible.
• Cookies see §6 below.

We process personal data only for the purposes set out below, and only on a lawful basis under UK GDPR.

We do not sell your personal data, share it for advertising, or use it for automated decision-making that has legal or similarly significant effects on you.

We share personal data only with the third-party processors listed below, and only to the extent needed for them to provide their services. Each is contractually bound to protect your data.

• Resend (resend.com) transactional email delivery for enquiry notifications and auto-replies. Data processed in the EU (region: eu-west-1).
• Google Firebase used by some Pixels Point products (e.g. PFBI, Pixels LMS) for authentication, database, and storage. Governed by Google’s own data processing terms.
• Stripe payment processing for products that accept payments (e.g. PFBI). Governed by Stripe’s privacy policy.
• Professional advisors accountants, auditors, and legal counsel where needed for compliance.

We may also disclose data where required by law, court order, or to protect the rights, property, or safety of Pixels Point, our clients, or others.

Where personal data is transferred outside the UK or European Economic Area, we rely on lawful transfer mechanisms typically UK-approved Standard Contractual Clauses, the UK International Data Transfer Agreement, or adequacy decisions made by the UK government.

The Pixels Point website is built to be lightweight and uses minimal cookies. We do not currently use third-party advertising or cross-site tracking cookies.

Categories we may use

• Strictly necessary required for the site to function (e.g. CSRF tokens on forms). No consent required under PECR.
• Google Analytics Set only with your consent via the cookie banner.

You can manage cookies in your browser at any time. Disabling strictly necessary cookies may affect parts of the site.

• Enquiry data kept for up to 24 months from last contact, unless you become a client (in which case standard client-retention applies).
• Client engagement records kept for the duration of the engagement plus 7 years thereafter, to satisfy UK accounting and tax obligations.
• Email correspondence retained per our internal mailbox policy, typically aligned with the above.
• Server logs retained for up to 90 days for security and diagnostics.

We securely delete or anonymise personal data when the retention period ends.

Under UK GDPR you have the following rights. Most are exercised free of charge by emailing info@pixelspoint.co.uk.

• Right to be informed this notice fulfils that right.
• Right of access request a copy of the personal data we hold about you.
• Right to rectification ask us to correct inaccurate or incomplete data.
• Right to erasure ask us to delete your data where there’s no compelling reason for us to keep it.
• Right to restrict processing ask us to pause processing in certain circumstances.
• Right to data portability receive your data in a portable, machine-readable format.
• Right to object object to processing based on legitimate interests, or to direct marketing at any time.
• Rights relating to automated decision-making we don’t carry out automated decision-making with legal effects.
• Right to withdraw consent where we rely on consent, you can withdraw it at any time.

We’ll respond to requests within one calendar month. If you’re unhappy with how we handle your data, you have the right to complain to the UK Information Commissioner’s Office (ICO) at ico.org.uk. We’d appreciate the chance to address your concerns before you do, however.

We take security seriously. Our website and product platforms use:

• HTTPS / TLS encryption in transit for all traffic
• Strict per-tenant data isolation in our products (enforced at the database layer)
• Least-privilege access controls and role-based permissions for staff
• Regular dependency updates and security review of third-party libraries
• Authentication for any administrative or product accounts

No system is 100% secure. If we ever become aware of a personal data breach that’s likely to result in risk to your rights and freedoms, we’ll notify the ICO within 72 hours and affected individuals as required by law.

The Pixels Point website and services are not directed at children under 13. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us so we can remove it.

Where our products (such as Pixels LMS or EduMark AI) are used within educational institutions, the institution acts as the data controller and we operate as a data processor under that institution’s policies.

We may update this policy as our business, the law, or our services change. The “Last updated” date at the top of this page reflects the most recent revision. Material changes will be flagged on the website.

Questions, data requests, or concerns? Email us at info@pixelspoint.co.uk.

For formal data protection enquiries, please reference this policy and your specific request. If you’d like to complain to the ICO, you can do so at ico.org.uk/make-a-complaint.