Privacy Policy

1. Introduction

PayToolkit ("we", "us", "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal data when you use our website at paytoolkit.co.uk. We comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

We operate as a data controller for the personal data we collect through this website.

2. Information We Collect

2.1 Information you provide voluntarily

When you contact us through our contact form or email, we may collect:

• Your name
• Email address
• Any information you include in your message

2.2 Information collected automatically

When you use our calculators and tools, we do not store the salary or financial data you enter. All calculations are performed locally in your browser. However, we do collect certain technical information automatically:

• IP address — anonymised where possible
• Browser type and version
• Device type (desktop, mobile, tablet)
• Operating system
• Pages visited and time spent
• Referring website

2.3 Cookies and similar technologies

We use cookies and similar technologies to improve your experience and analyse website traffic. See Section 6 for detailed information about cookies.

3. How We Use Your Information

We use the information we collect for the following purposes:

• To provide our services — delivering the calculator tools and content you request
• To respond to enquiries — when you contact us through our contact form or email
• To improve our website — analysing usage patterns to enhance user experience
• To ensure security — protecting against fraud, abuse, and unauthorised access
• To comply with legal obligations — where required by law or regulation

We do not use your personal data for automated decision-making or profiling.

4. Legal Basis for Processing

Under UK GDPR, we rely on the following legal bases:

• Legitimate interests — for website analytics, security, and service improvement
• Consent — for non-essential cookies (you can withdraw consent at any time)
• Contractual necessity — when you contact us and we respond to your enquiry
• Legal obligation — where we are required to comply with applicable laws

5. Data Sharing and Third Parties

We do not sell, rent, or trade your personal data. We only share data with third parties in the following limited circumstances:

• Google Analytics — for website usage analysis (data is anonymised)
• Google AdSense — if advertising is displayed, Google may use cookies to personalise ads
• Hosting providers — our website hosting service processes server logs
• Legal requirements — if required by law, court order, or regulatory authority

All third-party service providers are contractually bound to process your data only for specified purposes and in accordance with UK data protection law.

6. Cookies

6.1 What are cookies?

Cookies are small text files stored on your device when you visit a website. They help the site remember your preferences and understand how you use the website.

6.2 Types of cookies we use

6.3 Managing cookies

You can control and manage cookies through your browser settings. Most browsers allow you to refuse all cookies or to indicate when a cookie is being sent. However, if you disable cookies, some features of our website may not function properly.

When you first visit our website, you will see a cookie consent banner allowing you to accept or decline non-essential cookies.

7. Data Retention

We retain your personal data only for as long as necessary:

• Contact form submissions — retained for 12 months, then deleted
• Server logs — retained for 90 days, then anonymised or deleted
• Analytics data — Google Analytics retains data for 26 months (configurable)

8. Your Rights

Under UK GDPR, you have the following rights:

• Right to access — request a copy of the personal data we hold about you
• Right to rectification — ask us to correct inaccurate or incomplete data
• Right to erasure — request deletion of your personal data ("right to be forgotten")
• Right to restrict processing — ask us to limit how we use your data
• Right to data portability — receive your data in a structured, machine-readable format
• Right to object — object to processing based on legitimate interests or direct marketing
• Right to withdraw consent — withdraw cookie consent at any time

To exercise any of these rights, please contact us at privacy@paytoolkit.co.uk. We will respond within one month of receiving your request.

9. Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These include:

• SSL/TLS encryption for all data transmitted between your browser and our servers
• Regular security assessments and software updates
• Limited access to personal data by authorised personnel only

However, no method of transmission over the internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

10. Children's Privacy

Our website is not intended for children under 16 years of age. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a child, please contact us and we will delete it promptly.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated revision date. We encourage you to review this policy periodically.

12. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

• Email: privacy@paytoolkit.co.uk
• Postal address: PayToolkit, UK

You also have the right to complain to the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues. Their website is ico.org.uk.