Ruzo Tech logo
Ruzo Tech Web & App Studio
View services Book a call

Privacy

Ruzo Tech Privacy Policy

Last updated: 27/12/2025

1) Who we are (Data Controller)

Controller details

Data Controller: Ruzo Tech (trading name of Lucas Rusu, UK sole trader)

Address: 24 Poppyhills Road

Email: ruzotechdev@gmail.com

Phone: +44 7946 425792

If you have questions about this policy or your data, contact us using the details above.

2) What personal data we collect

Data sources

A) Data you provide

  • Contact details (name, email, phone)
  • Business details (company, role, website, project requirements)
  • Message content (enquiries, support requests, project feedback)
  • Billing information (billing name/address, invoices, payment status)
  • Account/access details you share for integrations (e.g., analytics, hosting, CRM), where necessary

B) Data collected automatically (website usage)

  • Device and browser information
  • IP address (or shortened/anonymised depending on tool settings)
  • Pages viewed, clicks, approximate location, referral source
  • Cookies or similar technologies data (see Cookies section)

C) Client website data (hosting/managed)

  • If we host/manage your site or provide database features, we may process data in your site environment (e.g., form submissions, customer/user data) on your instructions as part of delivering the service.

3) How we use your data and lawful bases

Purposes and bases

A) Respond to enquiries / quotes

  • Purpose: reply to messages, assess requirements, provide proposals
  • Lawful basis: Legitimate interests (running our business) or steps prior to entering a contract

B) Deliver services

  • Purpose: build/maintain your website, provide support, manage hosting/domain where included, perform handover/exports
  • Lawful basis: Contract (necessary to perform our agreement)

C) Billing, administration, legal

  • Purpose: invoicing, payments, bookkeeping, tax/accounting records, handling disputes
  • Lawful basis: Legal obligation and/or Contract

D) Improve website/services

  • Purpose: analytics, performance monitoring, debugging, security
  • Lawful basis: Legitimate interests (and consent where required for non-essential cookies/tracking)

E) Marketing (optional)

  • Purpose: send updates or offers (only if you opt in where required)
  • Lawful basis: Consent (withdraw anytime)

4) Cookies and similar technologies

How we use cookies

  • We use cookies and similar technologies to make our site work and (optionally) to analyse usage and improve performance.
  • Strictly necessary cookies may be used without consent as they are required for core functionality.
  • Analytics/marketing cookies are only used if you consent, unless an exemption applies. You can change preferences anytime using our cookie controls.
  • Cookie controls: [LINK TO COOKIE PREFERENCES]
  • Cookie list/details: [LINK TO COOKIE POLICY] (optional but recommended)
  • Ensure any analytics/marketing tools are blocked until consent is given where required.

5–7) Sharing, transfers, retention

How data moves and how long we keep it

5) Who we share data with

  • Payment providers (e.g., Stripe) for billing/fraud prevention
  • Email/productivity tools (email hosting, ticketing)
  • Hosting/domain/CDN providers (for Monthly Development hosting/domain management)
  • Analytics providers (only where enabled and consented where required)
  • Database/infra providers (where you choose database features)
  • Professional advisers (accountants, legal)
  • Authorities where required by law
  • We do not sell personal data.

6) International transfers

  • Some providers may process data outside the UK. We use required safeguards (e.g., standard contractual clauses, vendor security measures).

7) How long we keep data

  • Enquiries/quotes (no contract): typically up to 12 months
  • Clients: duration of relationship + typically 6 years for accounting/tax
  • Monthly Development cancellations: site data retained 1 year for reactivation/handover/export
  • Analytics: depends on tool settings (often 14–26 months)
  • Retention may be extended to establish/exercise/defend legal claims.

8–13) Your rights and other terms

Rights, security, and contact

8) Your rights

  • Access your data; correct inaccurate data
  • Delete data (in some cases)
  • Restrict or object to processing (especially for legitimate interests)
  • Data portability (where applicable)
  • Withdraw consent (where processing is based on consent)
  • Complain to the UK Information Commissioner’s Office (ICO)

9) Security

  • We use reasonable technical/organisational measures (access controls, secure credentials handling, vendor security features).
  • No method is 100% secure; we work to reduce risk.

10) Client websites and processor role

  • If we host your site or provide database features: you are typically the Data Controller for your customer/user data; we act as Data Processor on your instructions.
  • If required, we can provide a Data Processing Addendum covering instructions, confidentiality, sub-processors, security, breach notification, deletion/return.

11–13) Children, changes, contact

  • Not intended for children; we do not knowingly collect data from children.
  • We may update this policy; latest version will show the updated “Last updated” date.
  • Contact: ruzotechdev@gmail.com | Address: 24 Poppyhills Road