Privacy Policy

Last updated: 16 January 2026

TrueCloud Solutions (“we”, “us”, “our”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, share, and protect your personal data when you visit our website or contact us, and outlines your rights under applicable data protection laws (including the UK GDPR and the Data Protection Act 2018).

1) Who we are (Contact details)

Controller: TrueCloud Solutions
Address: 254 Church Ln, London, NW9 8SL
Email: info@truecloud.solutions
Phone: 020 3475 5768

If you have questions about this policy or how we use your personal data, please contact us using the details above.

2) What this policy covers

This policy covers personal data we collect when you:

browse our website;
contact us via forms, email, phone, or social channels;
book or request a discovery call; and/or
engage with our marketing communications.

It does not cover how our clients process personal data within systems we build or operate for them (see Section 11).

3) The personal data we collect

A. Information you give us

When you contact us (for example via the “Write to us” form), we may collect:

Identity data: your name.
Contact data: email address, phone number (if provided).
Professional/business data: company name, your website, role/title (if provided).
Message content: the details you include in your enquiry.

B. Information we collect automatically

When you use our website, we may collect:

Technical data: IP address, device type, browser type/version, operating system, time zone and locale, and other similar technical identifiers.
Usage data: pages visited, time spent on pages, click paths, and referring URLs.
Log data: server logs and security logs for troubleshooting and protecting the site.

We collect this data to run the site securely, understand performance, and improve user experience.

4) How we use your personal data

We use personal data for the following purposes:

To respond to enquiries and provide information
For example, replying to contact form submissions, emails, and call requests.
To provide and manage our services (B2B)
Where you (or your organisation) becomes a customer, we may use relevant contact and contract information to deliver services, communicate about projects, and handle billing/admin.
To operate, maintain, and secure the website
Including monitoring, troubleshooting, preventing fraud/abuse, and ensuring service availability.
To improve our website and communications
Understanding which content is useful and improving navigation and performance.
Marketing (where permitted)
Sending updates about our services, insights, or events—only where lawful (see Section 5). You can opt out at any time.

Transparency is a core requirement: organisations must tell people what they collect, why, and who it is shared with.

5) Lawful bases for processing

Under the UK GDPR, we must have a lawful basis to use personal data. Depending on the situation, we rely on one or more of the following:

Legitimate interests: to respond to enquiries, run our business, improve the website, and maintain security—provided those interests are not overridden by your rights.
Contract / steps before contract: when processing is necessary to provide services or take steps you request before entering into a contract.
Consent: for certain marketing activities and (where applicable) non-essential cookies/tracking. You can withdraw consent at any time.
Legal obligation: where we must keep certain records (e.g., accounting/tax or regulatory compliance), if applicable.

6) Cookies and similar technologies

Our website may use cookies and similar technologies (such as pixels or local storage) to:

enable core site functionality;
remember preferences; and
analyse how the site is used.

Where cookies are non-essential (e.g., analytics/marketing), UK rules generally require a clear positive action (opt-in) before they are set, and it should be as easy to reject as to accept.

Managing cookies: You can usually control cookies via your browser settings. If we implement a cookie banner/preferences centre, you will be able to manage cookie choices there as well.

(Optional but recommended) If you run analytics/ads tools, publish a short Cookie Policy listing cookie categories, purposes, and typical retention periods.

7) Who we share personal data with

We may share personal data with trusted third parties only where necessary, including:

IT and hosting providers (to host and maintain the website and business systems).
Email and communication providers (to send and receive messages).
Professional advisers (e.g., legal, accounting) where needed.
Regulators or authorities where required by law, or to protect rights, safety, and security.

We do not sell your personal data.

Note: If you use specific vendors (e.g., Google Analytics, Microsoft 365, HubSpot), list them here by name to strengthen transparency.

8) International transfers

Some of our service providers may process data outside the UK. When personal data is transferred internationally, we take steps to ensure appropriate safeguards are in place (for example, using UK-approved transfer mechanisms and contractual protections).

9) How long we keep your data (Retention)

We keep personal data only as long as necessary for the purposes described above. Typical retention periods may include:

Enquiry data: up to 12–24 months after the last interaction (to manage follow-ups and maintain business records), unless you become a customer.
Customer/contact records: for the duration of the engagement and a reasonable period afterwards (and longer where required for legal, tax, or audit purposes).
Technical logs: typically retained for short periods unless needed for security investigations or debugging.

10) Security

We use appropriate technical and organisational measures designed to protect personal data, including access controls and security monitoring. No method of transmission over the internet is completely secure, but we work to protect your data proportionately to its sensitivity and risks.

11) If you are a client (Controller vs Processor)

TrueCloud Solutions primarily operates as a controller for personal data collected through our website and business development activities (enquiries, marketing, vendor management).

When we provide professional services—such as building, hosting, or operating systems for clients—we may act as a processor (handling personal data on a client’s instructions). In those cases, our processing will be governed by contract terms (including data protection clauses) agreed with the client.

12) Your rights

You have rights over your personal data, including the right to:

be informed;
access your data;
rectify inaccurate data;
request erasure (in certain circumstances);
restrict processing;
data portability (in certain circumstances);
object to processing (including marketing); and
withdraw consent where consent is the lawful basis.

To exercise your rights, contact us at info@truecloud.solutions.

13) Complaints

If you are unhappy with how we handle your data, please contact us first and we will try to resolve the issue. You also have the right to complain to the UK’s data protection regulator, the Information Commissioner’s Office (ICO).

14) Third-party links and social media

Our website may include links to third-party sites and social media platforms (such as LinkedIn, Facebook, Instagram, and X/Twitter). These platforms have their own privacy policies and we do not control how they use your personal data.

15) Changes to this Privacy Policy

We may update this policy from time to time. We will publish the latest version on this page and update the “Last updated” date above.

browse our website;

contact us via forms, email, phone, or social channels;

book or request a discovery call; and/or

engage with our marketing communications.

It does not cover how our clients process personal data within systems we build or operate for them (see Section 11). 3) The personal data we collect A. Information you give us When you contact us (for example via the “Write to us” form), we may collect:

Identity data: your name.

Contact data: email address, phone number (if provided).

Professional/business data: company name, your website, role/title (if provided).

Message content: the details you include in your enquiry.

B. Information we collect automatically When you use our website, we may collect:

Technical data: IP address, device type, browser type/version, operating system, time zone and locale, and other similar technical identifiers.

Usage data: pages visited, time spent on pages, click paths, and referring URLs.

Log data: server logs and security logs for troubleshooting and protecting the site.

We collect this data to run the site securely, understand performance, and improve user experience. 4) How we use your personal data We use personal data for the following purposes:

To respond to enquiries and provide information For example, replying to contact form submissions, emails, and call requests.

To provide and manage our services (B2B) Where you (or your organisation) becomes a customer, we may use relevant contact and contract information to deliver services, communicate about projects, and handle billing/admin.

To operate, maintain, and secure the website Including monitoring, troubleshooting, preventing fraud/abuse, and ensuring service availability.

To improve our website and communications Understanding which content is useful and improving navigation and performance.

Marketing (where permitted) Sending updates about our services, insights, or events—only where lawful (see Section 5). You can opt out at any time.

Transparency is a core requirement: organisations must tell people what they collect, why, and who it is shared with. 5) Lawful bases for processing Under the UK GDPR, we must have a lawful basis to use personal data. Depending on the situation, we rely on one or more of the following:

Legitimate interests: to respond to enquiries, run our business, improve the website, and maintain security—provided those interests are not overridden by your rights.

Contract / steps before contract: when processing is necessary to provide services or take steps you request before entering into a contract.

Consent: for certain marketing activities and (where applicable) non-essential cookies/tracking. You can withdraw consent at any time.

Legal obligation: where we must keep certain records (e.g., accounting/tax or regulatory compliance), if applicable.

6) Cookies and similar technologies Our website may use cookies and similar technologies (such as pixels or local storage) to:

enable core site functionality;

remember preferences; and

analyse how the site is used.

IT and hosting providers (to host and maintain the website and business systems).

Email and communication providers (to send and receive messages).

Professional advisers (e.g., legal, accounting) where needed.

Regulators or authorities where required by law, or to protect rights, safety, and security.

Enquiry data: up to 12–24 months after the last interaction (to manage follow-ups and maintain business records), unless you become a customer.

Customer/contact records: for the duration of the engagement and a reasonable period afterwards (and longer where required for legal, tax, or audit purposes).

Technical logs: typically retained for short periods unless needed for security investigations or debugging.

be informed;

access your data;

rectify inaccurate data;

request erasure (in certain circumstances);

restrict processing;

data portability (in certain circumstances);

object to processing (including marketing); and

withdraw consent where consent is the lawful basis.

It does not cover how our clients process personal data within systems we build or operate for them (see Section 11).

3) The personal data we collect

A. Information you give us

When you contact us (for example via the “Write to us” form), we may collect:

B. Information we collect automatically

When you use our website, we may collect:

We collect this data to run the site securely, understand performance, and improve user experience.

4) How we use your personal data

We use personal data for the following purposes:

To respond to enquiries and provide information
For example, replying to contact form submissions, emails, and call requests.

To provide and manage our services (B2B)
Where you (or your organisation) becomes a customer, we may use relevant contact and contract information to deliver services, communicate about projects, and handle billing/admin.

To operate, maintain, and secure the website
Including monitoring, troubleshooting, preventing fraud/abuse, and ensuring service availability.

To improve our website and communications
Understanding which content is useful and improving navigation and performance.

Marketing (where permitted)
Sending updates about our services, insights, or events—only where lawful (see Section 5). You can opt out at any time.

Transparency is a core requirement: organisations must tell people what they collect, why, and who it is shared with.

5) Lawful bases for processing

Under the UK GDPR, we must have a lawful basis to use personal data. Depending on the situation, we rely on one or more of the following:

6) Cookies and similar technologies

Our website may use cookies and similar technologies (such as pixels or local storage) to: