Privacy Policy – AV Xpert Limited

Last updated: February 2026

If you have any questions about this Privacy Policy or how we use your personal data, please email info@avxpert.co.uk.

1. Who We Are

AV Xpert Limited is a UK-based audio-visual installation, hire and event production company. For the purposes of data protection law, including the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, AV Xpert Limited is the Data Controller of the personal data described in this policy.

2. Our Commitment to Data Protection

We are committed to protecting your personal data and handling it transparently, lawfully and securely. We only collect and use personal data where we have a lawful basis to do so and where it is necessary for the operation of our business, the provision of our services, or the improvement of our systems. Access to personal data is restricted to authorised employees and contractors on a strict need-to-know basis.

3. The Personal Data We Collect

Contact and Identification Data

We may collect and store:

• First name and last name
• Job title and company name
• Email address
• Telephone number
• Billing and delivery addresses
• Company registration details where relevant

Business Relationship and CRM Data

As part of our sales and account management processes, we operate a secure cloud-based CRM system. Within this system we may store:

• Records of enquiries, quotations, orders and invoices
• Notes of meetings, calls and correspondence
• Project specifications and event details
• Communication logs
• Linked organisation and contact relationships
• Publicly available business profile information, such as LinkedIn profile URLs
• Internal sales status information, opportunity tracking and follow-up reminders

We store this information for legitimate business purposes, including managing enquiries, providing services, maintaining customer relationships, and developing new business opportunities. We do not scrape data from social media platforms. Where LinkedIn profile links or similar business profile information are stored, this is limited to publicly available information or information provided directly by the individual.

Financial Data

We do not store full credit or debit card details. Payments are processed via secure third-party payment providers. We may store transaction references, payment status and billing records for accounting purposes.

Website Data

When you interact with our website, we may collect:

• IP address
• Browser type and device information
• Pages visited and interaction data
• Contact form submissions
• Account login information, where applicable

Comments and Reviews

When visitors leave comments or product reviews on the site we collect the data shown in the comments form, and also the visitor's IP address and browser user agent string to help spam detection. An anonymised string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your name and profile picture are visible to the public in the context of your comment.

4. Lawful Bases for Processing

We process personal data under one or more of the following lawful bases:

• Performance of a contract, where processing is necessary to provide services you have requested.
• Legitimate interests, including managing client relationships, responding to enquiries, marketing relevant services to existing business contacts, and improving our services.
• Consent, where you have opted in to receive marketing communications.
• Legal obligation, where we are required to retain information for tax, accounting or regulatory purposes.

5. Marketing Communications

You will only receive marketing emails from us where you have provided your consent, or where you are an existing customer and the communication relates to similar services. We use Mailchimp to manage our marketing communications. You may unsubscribe at any time by using the unsubscribe link in our emails or by contacting us directly. We do not sell, rent or trade mailing lists.

6. How We Use Your Data

We use personal data to:

• Respond to enquiries and provide quotations
• Deliver audio-visual services, installations and event production
• Manage contracts, invoices and payments
• Maintain accurate client and prospect records within our CRM
• Communicate with you regarding ongoing or future projects
• Improve our website and services
• Comply with legal and regulatory requirements

7. Data Retention

We retain personal data only for as long as necessary for the purposes for which it was collected, including satisfying legal, accounting and reporting requirements. Customer and prospect CRM records may be retained for an extended period where there is an ongoing business relationship or legitimate interest in maintaining contact. Financial records are retained in accordance with UK statutory requirements. Where personal data is no longer required, it is securely deleted or anonymised.

8. Cookies

We use cookies to enhance your browsing experience and to ensure the website functions correctly. Login cookies are used to manage authentication and user sessions. Analytics cookies help us understand how visitors use our website. You may disable cookies through your browser settings, although some functionality may be affected.

9. Analytics and Third-Party Tools

We use Google Analytics to monitor website traffic and behaviour in an anonymised manner. We may also use third-party tools for chat functionality, spam filtering, email marketing and payment processing. These providers process data in accordance with their own privacy policies and applicable data protection laws.

10. Data Sharing

We do not sell personal data. We may share personal data with trusted third parties where necessary, including:

• Accountants and professional advisers
• Payment processors
• Cloud hosting and IT service providers
• Marketing and email service providers

All third-party providers are required to process data securely and in compliance with applicable data protection legislation.

11. International Transfers

Where data is processed outside the UK, we ensure appropriate safeguards are in place, such as UK-approved standard contractual clauses or equivalent legal protections.

12. Your Rights

Under UK data protection law, you have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request erasure of your data in certain circumstances
• Restrict or object to processing where applicable
• Request data portability
• Withdraw consent at any time, where processing is based on consent

To exercise any of these rights, please contact info@avxpert.co.uk. We will respond within one month. You also have the right to lodge a complaint with the Information Commissioner’s Office if you believe your data has been handled unlawfully.

13. How We Protect Your Data

We implement appropriate technical and organisational measures to protect personal data from unauthorised access, alteration, disclosure or destruction. These measures include:

• Secure cloud-hosted databases
• Password-protected systems
• Role-based access controls
• Encrypted connections
• Staff training in data protection and confidentiality

14. Data Breach Procedures

If we become aware of a personal data breach that poses a risk to individuals’ rights and freedoms, we will notify the Information Commissioner’s Office without undue delay and, where required, inform affected individuals.

15. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in legislation, technology or our business operations. The latest version will always be published on our website.