Privacy Policy
Last Updated: March 14, 2025
1. Introduction
Welcome to Spotlights (“we”, “our”, or “us”). We respect your privacy and are committed to protecting your personal data. This privacy policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our services.
This policy complies with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and the Privacy and Electronic Communications Regulations (PECR).
2. Information We Collect
We may collect the following types of information:
2.1 Personal Information
- Contact details (name, email address, phone number, business address)
- Account credentials (username, password)
- Business information (company name, industry, size)
- Financial information (for payment processing)
- Marketing preferences
2.2 Automatically Collected Information
- IP address
- Browser type and version
- Device information
- Cookies and similar tracking technologies
- Usage data (pages visited, time spent, links clicked)
- Referral sources
3. How We Use Your Information
We use your information for the following purposes:
- To provide and maintain our services
- To process payments and transactions
- To communicate with you about our services
- To improve our website and services
- To personalize your experience
- To comply with legal obligations
- To detect and prevent fraud
- For marketing purposes (with your consent)
4. Legal Basis for Processing
We process your personal data based on one or more of the following legal grounds:
- Your consent
- Performance of a contract
- Compliance with legal obligations
- Legitimate interests (which do not override your fundamental rights and freedoms)
5. Data Sharing and Disclosure
We may share your information with:
- Service providers and business partners who assist us in delivering our services
- Payment processors to complete transactions
- Professional advisors (lawyers, accountants, etc.)
- Regulatory authorities, when required by law
- In connection with a business transfer, merger, or acquisition
We require all third parties to respect the security of your personal data and to treat it in accordance with the law.
6. International Transfers
We may transfer your personal data to countries outside the UK. When we do, we ensure a similar degree of protection by ensuring at least one of the following safeguards is implemented:
- Countries that have been deemed to provide an adequate level of protection by the UK
- Specific contracts approved for use in the UK which give personal data similar protection to what it has in the UK
7. Data Security
We have implemented appropriate security measures to prevent your personal data from being accidentally lost, used, accessed, altered, or disclosed in an unauthorized way. We limit access to your personal data to those employees, agents, contractors, and other third parties who have a business need to know.
8. Data Retention
We will only retain your personal data for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
9. Your Data Protection Rights
Under data protection laws, you have rights including:
- Right to access – You have the right to request copies of your personal data.
- Right to rectification – You have the right to request that we correct any inaccurate personal data.
- Right to erasure – You have the right to request that we delete your personal data in certain circumstances.
- Right to restrict processing – You have the right to request that we restrict the processing of your personal data in certain circumstances.
- Right to data portability – You have the right to request that we transfer your personal data to another organization or directly to you.
- Right to object – You have the right to object to our processing of your personal data in certain circumstances.
- Rights related to automated decision-making – You have rights relating to automated decision-making and profiling.
If you wish to exercise any of these rights, please contact us using the details provided below.
10. Cookies
We use cookies and similar tracking technologies to track activity on our website and hold certain information. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our website.
11. Marketing Communications
We may use your personal data to form a view on what we think you may want or need, or what may be of interest to you. You will receive marketing communications from us if you have requested information from us or purchased services from us and, in each case, you have not opted out of receiving that marketing.
You can opt out of marketing communications at any time by clicking the “unsubscribe” link in any marketing email we send you or by contacting us directly.
12. Children’s Privacy
Our website and services are not intended for children under 16 years of age, and we do not knowingly collect personal data from children under 16.
13. Third-Party Links
Our website may include links to third-party websites, plug-ins, and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements.
14. Changes to This Privacy Policy
We may update our privacy policy from time to time. We will notify you of any changes by posting the new privacy policy on this page and updating the “Last Updated” date.
15. Contact Us
If you have any questions about this privacy policy or our privacy practices, please contact us at:
Email: kris@spotlights.com
16. Complaints
You have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO, so please contact us in the first instance.