Legal

Privacy Policy

Inology IT Ltd • Last updated: April 2026

1. Who we are

This website (securestate.uk) is operated by Inology IT Ltd, a company registered in England and Wales.

  • Company name: Inology IT Ltd
  • Company number: 11676549
  • Registered office: Office 11, The Forum, 2 Tameside Business Park, Windmill Lane, Denton, Manchester, M34 3QS
  • Contact form: securestate.uk/#contact
  • Phone: 0161 503 3535

We are the data controller for personal data collected through this website.

2. What data we collect

When you submit the contact form on this website, we collect:

  • Your name
  • Your company name
  • Your email address
  • Your phone number (optional)
  • Number of staff at your organisation

We do not collect any special category data (such as health information) through this website.

3. Why we collect it and our lawful basis

We collect this information to respond to your enquiry about the Secure State framework and our managed IT services. Our lawful basis for processing is legitimate interests under Article 6(1)(f) of the UK GDPR — specifically, our legitimate interest in responding to business enquiries and providing information about our services to organisations that have actively requested it.

We may also follow up by phone or email to arrange a Secure State review. You can ask us to stop contacting you at any time.

4. How we use your data

Your data is used solely to:

  • Respond to your enquiry
  • Arrange a Secure State assessment if you request one
  • Follow up regarding our managed IT services where relevant

We do not use your data for automated decision-making or profiling. We do not sell or rent your data to third parties. We do not use it for advertising purposes.

5. Who we share it with

Your data is not shared with third parties except where necessary to operate our business, for example:

  • Our CRM / email platform — used to manage and respond to enquiries. Data is stored within the UK or EEA.

We do not transfer your personal data outside the UK without appropriate safeguards in place.

6. How long we keep it

If you become a client, we retain your contact details for the duration of our relationship and for six years afterwards, in line with our legal and contractual obligations.

If your enquiry does not lead to a business relationship, we will delete or anonymise your data within 12 months of your last contact with us.

7. Cookies

This website uses one cookie:

Cookie namePurposeDurationThird party?
ss-theme Remembers whether you prefer light or dark mode 1 year No — set by this site only

This is a strictly functional cookie. It stores a display preference and contains no personal data. No consent is required under PECR for this type of cookie.

We do not use any analytics, advertising, or tracking cookies on this website.

8. Your rights

Under UK GDPR, you have the right to:

  • Access — request a copy of the personal data we hold about you
  • Rectification — ask us to correct inaccurate data
  • Erasure — ask us to delete your data in certain circumstances
  • Restriction — ask us to limit how we use your data
  • Objection — object to processing based on legitimate interests
  • Portability — receive your data in a portable format where applicable

To exercise any of these rights, contact us via the contact form on our website or in writing to our registered office address. We will respond within one calendar month.

9. Right to complain

If you believe we have not handled your personal data correctly, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):

We would, however, appreciate the opportunity to address your concerns directly before you contact the ICO.

10. Changes to this policy

We may update this Privacy Policy from time to time. The "Last updated" date at the top of this page will reflect any changes. Material changes will be communicated where required by law.