Last updated: 01-Nov-2025
This Privacy Policy explains how MARKTEQ IT SOLUTIONS LLP (“we”, “us”, “our”) collects, uses, stores and protects personal data in connection with the CRM and sales progression software (the “Service”). We are committed to compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
When you use our Service, the organisation using the Service (“Customer”) determines what personal data is collected and why. The Customer is therefore the Data Controller for that personal data. MARKTEQ IT SOLUTIONS LLP acts as a Data Processor on behalf of the Customer except where we explicitly process data for our own purposes (e.g., billing, account administration) — in which case we act as Controller for that limited processing.
Important: The Customer remains responsible for obtaining necessary consents, for lawful collection, and for compliance with all data protection obligations applicable to Controllers.
On behalf of our Customers we may process categories of personal data including (but not limited to):
| Category | |
|---|---|
| Contact & identity | Name, address, email, telephone/mobile |
| CRM data | Property preferences, budgets, pipeline stage, notes |
| Authentication & account | Login ID, hashed password, role, two-factor status |
| Technical & system | IP address, device details, session logs, audit trails |
| Communications | Support tickets, messages, meeting notes |
We do not collect special category (sensitive) data unless a Customer explicitly instructs us and appropriate safeguards are in place.
We process personal data only on documented instructions from the Customer and for purposes including:
We do not sell personal data or use Customer data for advertising unrelated to the agreed Service.
All Customer personal data is hosted and processed exclusively in the United Kingdom/Europian Union using AWS/Contabo/Hetzner. We will not transfer personal data outside the UK/EU.
We implement appropriate technical and organisational measures to protect personal data, which include:
Customers are responsible for access management within their account (e.g., password strength, user permissions, device security).
We engage subprocessors to provide hosting, email delivery, analytics, support and other operational services. Subprocessors are contractually required to implement appropriate safeguards. A non-exhaustive list of current subprocessors is available on request and may include:
We will notify Customers of any new subprocessors and, where required, obtain Customer authorisation when a change materially affects data protection.
Retention is controlled by the Customer via account settings. If no instruction is provided, we retain data for a reasonable period after account termination (typically up to 12 months) for backup, legal or contractual reasons and then securely delete or anonymise it. Temporary upload files are deleted within 180 days after processing.
We will assist Customers in responding to data subject requests (access, rectification, erasure, restriction, portability, objection and withdrawal of consent) to the extent required by contract and law. Where we act as Processor, we will forward direct requests to the Customer unless otherwise authorised in writing.
To exercise rights, individuals should contact the Customer (Controller) directly. For requests relating to personal data we control as Controller (e.g., account payments), contact: [email protected].
We maintain an incident response plan. In the event of a personal data breach affecting Customer data we will notify the Customer without undue delay and provide available details to help the Customer meet its regulatory obligations. The Customer remains responsible for assessing whether notifications to regulators or data subjects are required.
All intellectual property rights in the Service, software, source code, architecture, user interface, and related materials remain the exclusive property of MARKTEQ IT SOLUTIONS LLP. Customers receive a limited licence to use the Service as set out in the relevant commercial agreement. No transfer of ownership of our IP is granted by use of the Service.
Subject to applicable law, our liability for claims relating to personal data processed on behalf of the Customer is limited to the fees paid by that Customer to us in the 12 months preceding the claim. We shall not be liable for losses resulting from the Customer's failure to comply with its Controller obligations, including improper data collection or insufficient consent mechanisms.
We reserve the right to suspend or restrict access to the Service where required by law, or where continued processing would expose us or the Customer to legal or security risk. On termination, we will return or delete Customer personal data in accordance with the Data Processing Agreement and Customer instructions.
We may update this policy from time to time. Material changes will be communicated to Customers. The “Last updated” date at the top indicates the latest revision.
If you have questions about this policy, data processing, or to request the subprocessors list, contact us:
MARKTEQ IT SOLUTIONS LLP
Email: [email protected]