Privacy Policy

Privacy Policy

Last updated: [February 2nd, 2026]

Stylux Limited (“Stylux”, “we”, “us”, “our”) is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store, and protect personal data when you interact with our website, services, and communications.

This policy is drafted in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Who We Are

Company name: Stylux Limited
Registered in: England & Wales
Nature of business: Digital agency providing web development, design, software solutions, learning platforms (e.g. Moodle), hosting, digital marketing, consultancy, and related IT services.
Website: https://stylux.uk

Stylux Limited acts as either a Data Controller or Data Processor, depending on the nature of the service provided.

2. Personal Data We Collect

We may collect and process the following types of personal data:

2.1 Identity & Contact Data

  • Name

  • Job title

  • Company name

  • Email address

  • Telephone number

  • Billing and business contact details

2.2 Technical Data

  • IP address

  • Browser type and version

  • Operating system

  • Device information

  • Website usage data (via analytics tools)

2.3 Client & Project Data

  • Login credentials (where applicable)

  • Content uploaded to websites or platforms we manage

  • System usage logs

  • Support tickets and communications

2.4 Financial Data

  • Invoice and payment records

  • VAT details (where applicable)

We do not intentionally collect special category (sensitive) personal data unless explicitly required and contractually agreed.

3. How We Collect Data

We collect data through:

  • Website contact forms

  • Email and telephone communications

  • Service agreements and onboarding documents

  • Account creation and platform access

  • Cookies and analytics tools

  • Client-provided systems and platforms

4. Lawful Basis for Processing

We process personal data under the following lawful bases:

  • Contractual necessity – to deliver agreed services

  • Legal obligation – accounting, tax, and regulatory compliance

  • Legitimate interests – business operations, security, and service improvement

  • Consent – marketing communications (where required)

5. How We Use Personal Data

We use personal data to:

  • Provide and manage digital services

  • Deliver websites, software, and platforms

  • Provide hosting, support, and maintenance

  • Communicate with clients and users

  • Process payments and issue invoices

  • Improve website performance and security

  • Meet legal and regulatory obligations

6. Data Sharing & Third Parties

We may share data with trusted third parties only where necessary, including:

  • Hosting providers

  • Cloud services (e.g. Microsoft, Google)

  • Learning platforms (e.g. Moodle, Turnitin, H5P)

  • Payment processors

  • Professional advisers (accountants, legal advisers)

All third parties are required to maintain appropriate data protection and security standards.

7. International Data Transfers

Where personal data is transferred outside the UK:

  • Appropriate safeguards are applied (e.g. adequacy decisions, SCCs)

  • Transfers comply with UK GDPR requirements

8. Data Security

We implement appropriate technical and organisational measures, including:

  • Secure servers and encrypted connections

  • Access control and authentication

  • Regular system updates and monitoring

  • Data minimisation and role-based access

Despite best efforts, no system is 100% secure, and users acknowledge this inherent risk.

9. Data Retention

Personal data is retained only for as long as necessary:

  • Contractual data: duration of the contract + legal retention period

  • Financial records: minimum 6 years (HMRC requirement)

  • Technical logs: as required for security and performance

Data may be anonymised or securely deleted once no longer required.

10. Your Data Protection Rights

Under UK GDPR, you have the right to:

  • Access your personal data

  • Rectify inaccurate data

  • Request erasure (“right to be forgotten”)

  • Restrict processing

  • Object to processing

  • Data portability (where applicable)

  • Withdraw consent at any time

Requests can be made in writing using the contact details below.

11. Cookies

Our website uses cookies for functionality, analytics, and performance.
You can manage cookies through your browser settings.
A separate Cookie Policy may apply.

12. Data Breaches

In the event of a personal data breach:

  • We will assess the risk promptly

  • Notify affected clients where required

  • Report to the ICO within 72 hours if legally necessary

13. Children’s Data

Our services are intended for businesses and institutions.
We do not knowingly collect personal data from children without appropriate safeguards and contractual authority.

14. Changes to This Policy

We may update this Privacy Policy from time to time.
The latest version will always be published on our website.

15. Contact Us

For privacy or data protection enquiries:

Stylux Limited
Email: info@stylux.uk
Website: https://stylux.uk

If you are not satisfied, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO).