Privacy Policy

This page explains how THISISITUK LTD t/a this is IT collects, uses and protects personal data when you use https://thisisit.uk and how this website handles cookies, technical processing, security and acceptable use.

1. Who We Are

this is IT is the data controller for the personal data processing described on this page.

2. Information We Collect

Information you provide

You may provide personal data when you:

• contact us via email
• submit a contact form
• request information about services

This may include your name, email address, phone number, company name and anything you include in your message.

Information collected automatically

When you visit this website, certain technical data may be collected automatically, including (but not limited to):

• IP address
• browser type and version
• operating system and device type
• pages visited and referring website
• date and time of access, plus basic diagnostics
• business-intent and visitor insights collected by Lusha's website visitor pixel

3. How We Use Personal Data

We use personal data to:

• respond to enquiries
• communicate regarding potential services
• maintain and improve the website
• analyse usage and performance
• protect the website and users
• comply with legal obligations

Our lawful basis typically includes legitimate interests, consent (where required) and legal obligation.

4. Website Infrastructure (Cloudflare)

This website uses Cloudflare for security, performance optimisation and content delivery. Cloudflare may process IP addresses and request metadata to protect the website and maintain reliability.

5. Business Communications (Microsoft 365)

Email communications are handled using Microsoft 365. Emails sent to, or received from, our mailbox addresses may be processed and stored within Microsoft systems and are therefore subject to processing under their own terms and policies.

6. Cookies and Similar Technologies

Cookies are small text files stored on your device. We use a cookie consent banner (CMP-style control) so visitors can accept or decline non-essential tracking before those technologies are loaded.

With your consent, we use visitor-identification technology (including Lusha Website Visits) to understand which companies visit our website. This technology matches IP addresses against publicly available company information. It does not identify individual visitors or track personal browsing behaviour.

Lusha Website Visits is classified as a non-essential Analytics/Marketing cookie in our consent controls. Cookie name: Lusha Website Visits Tracking Pixel. Duration: session-based tracking.

Data collected for this purpose may include:

• IP address (matched to company/legal entity where possible)
• pages visited and time spent per page
• visit date/time and referrer source
• country-level geographic location

This processing is based on consent and can be withdrawn at any time through cookie preferences.

We configure this tooling to avoid individual-level profiling and do not collect names, email addresses, keystrokes, form inputs or cross-site browsing behaviour through Website Visits.

We can apply compliance controls including geographic, page and IP exclusions, and can pause or delete tracking configuration when needed.

Unsaved company visit records are automatically removed after 90 days.

You can manage cookies through your browser settings. Official browser guides:

Google Chrome

• Desktop, Android and iOS devices

Microsoft Edge

• Desktop PCs
• Android and iOS devices

Mozilla Firefox

• Desktop PCs
• Android devices
• iOS devices

Apple Safari

• macOS devices
• iOS devices

7. Third-Party Tools We Use

• Lusha: B2B website visitor identification, engagement analysis and lead/account insight.
• Cloudflare: website security, performance and delivery services.

We treat Lusha as a third-party provider. This policy does not classify Lusha as solely a processor or solely a controller. See Lusha's own privacy information for details of its processing and controls.

For non-essential tracking tools, consent controls apply before script loading. If legal basis categorisation changes, this will be reviewed with legal advice.

8. Social Media and Third-Party Links

This website may include links to third-party platforms and registers from our footer and trust section, including LinkedIn, Instagram, Companies House, the Information Commissioner's Office (ICO) and Blockmark Registry. Those external sites process data under their own terms and privacy policies.

9. Data Sharing

We do not sell or rent personal data. We may share data only where necessary:

• with service providers required to operate our website and communications
• with analytics and visitor-intelligence providers, including Lusha, for website insight and business development purposes
• to comply with law or regulatory requirements
• to protect rights, safety and security

10. Data Security

We apply proportionate technical and organisational measures, including:

• use of reputable infrastructure providers and managed services
• access controls for business systems
• security monitoring and basic logging for operational visibility
• keeping systems updated and using secure configuration practices
• reasonable protections against phishing and account compromise

No internet-based system can be guaranteed to be completely secure. If you believe you have identified a security vulnerability affecting this website or our services, please report it to [email protected]. This mailbox is monitored during normal UK business hours. We aim to acknowledge responsible disclosures promptly and investigate reported issues as appropriate. Please include sufficient detail to allow us to reproduce and investigate the issue.

11. Data Retention and Minimisation

We aim to collect and retain only the personal data needed to respond to enquiries, provide services, maintain records and meet legal obligations. Data is then securely deleted.

12. Your Rights

You have rights under UK data protection law, including rights to access, correction, deletion, restriction, objection and (where applicable) portability. Contact [email protected] to exercise your rights.

You can also submit a Subject Access Request (SAR) through the ICO's online form using [email protected] as the contact point.

13. Acceptable Website Use

You must use this website only for lawful purposes. You must not:

• attempt unauthorised access to systems or data
• introduce malware, harmful code or security threats
• interfere with website availability or performance
• use the website or its content in a way that breaches applicable laws

14. External Content, Accuracy and Liability

We may link to third-party websites (such as noted above in 7.) and external support pages. We are not responsible for the content, security, privacy practices or availability of external sites.

We aim to keep content accurate and up to date but do not guarantee completeness or uninterrupted availability. Calculator figures on this website are estimates only and all pricing is exVAT.

15. Complaints

One hopes it won't come to this, but you can contact the ICO to make a complaint.

16. Updates

The latest version of this policy will be published here alongside updated date and time stamp.