Privacy Policy – VELARONA Group Ltd (UK GDPR compliant)
Last updated: January 2026
Registered company: VELARONA Group Ltd (trading as VELARONA)
Registered in England & Wales – Company No.: 15148389
ICO Registration Number: ZB733324
This Privacy Policy explains how VELARONA Group Ltd (“we”, “us”, “our”) collects, uses, stores, shares, and protects your personal information when you interact with our website www.velarona.com, use our services, sign up to our communications, or otherwise provide us with personal data. This policy also describes your rights under the UK General Data Protection Regulation (“UK GDPR”) and the Data Protection Act 2018.
We are committed to protecting your privacy and handling your data in a transparent manner. We comply with UK GDPR principles that personal data must be processed lawfully, fairly, and transparently.
1. Controller and Contact Details
Data Controller:
VELARONA Group Ltd (trading as VELARONA)
Address: 128 City road, London, EC1V 2NX
Email: info@velarona.com
Website: www.velarona.com
For privacy questions or concerns, you may contact our privacy lead at info@velarona.com.
You also have the right to complain to the UK Information Commissioner’s Office (ICO) about how we handle your personal data:
ICO Website: https://ico.org.uk
Phone: 0303 123 1113
2. What Personal Data We Collect
We may collect personal data you provide directly, including:
2.1 Contact & Identity Data
- Name
- Email address
- Telephone number
- Postal address
- Job address (for service delivery)
2.2 Transaction & Contract Data
- Booking details
- Payment and billing information (as processed by secure partners like Xero)
2.3 Technical & Usage Data
- IP address
- Browser type
- Device identifiers
- Website usage information (analytics)
2.4 Communications & Correspondence
- Emails or messages you send us
- Notes from phone calls or enquiries
We do not routinely collect special category data (such as health, race, religion), unless you explicitly provide it and give consent.
3. How We Collect Your Data
We collect personal data when you:
- Submit a contact form or booking form
- Make enquiries or request a quotation
- Communicate via email, phone, or chat
- Use our website or interact with cookies/analytics
- Complete jobs or receive service documentation
We may also receive data from third parties (e.g., analytics platforms, secure payment providers).
4. Purposes and Lawful Bases for Processing
Under UK GDPR, we must have a lawful basis for processing personal data. The main lawful bases we rely on are:
| Purpose | Lawful Basis |
|---|---|
| To respond to enquiries/booking requests | Contract necessity |
| To provide cleaning services and fulfil contracts | Contract necessity |
| To send service updates or invoices | Contract necessity |
| To improve our website and services (analytics) | Legitimate Interests |
| To send marketing (if consent is given) | Consent |
| To comply with legal obligations (records, tax, insurance) | Legal obligation |
Where processing is based on consent, you can withdraw consent at any time.
5. Sharing Personal Data
We may share personal data with:
- Payment processors (e.g., Xero)
- Service delivery partners (e.g., appointment scheduling tools)
- IT/hosting providers
- Legal advisers, insurers, auditors (when required)
- Third parties where required by law (e.g., regulators)
We do not sell your personal data to third parties.
6. International Transfers
We may use service providers outside the UK. When data is transferred outside the UK, we ensure adequate safeguards are in place, such as Standard Contractual Clauses or adequacy decisions.
7. Data Retention
We retain your personal data only as long as necessary for the purposes it was collected, to:
- fulfil our contractual obligations
- comply with UK law (e.g., tax, accounting, dispute resolution)
- defend legal claims
Retention periods vary but are typically between 1–7 years depending on context.
8. Cookies and Similar Technologies
We use cookies and similar technologies to operate the website, improve performance, and collect analytics. Our separate Cookie Policy explains how cookies are used, and your options to manage cookie preferences. Non-essential cookies are only used if you have provided consent through our cookie banner.
9. Your Rights Under UK GDPR
You have the following rights:
- Right of access: Ask what personal data we hold about you
- Right to rectification: Correct inaccurate personal data
- Right to erasure: Request deletion in certain circumstances
- Right to restrict processing: Ask us to limit processing
- Right to object: Object to processing based on legitimate interests
- Right to data portability: Receive your data in a structured format
- Right to withdraw consent: Withdraw consent at any time
To exercise your rights or ask about this policy, contact info@velarona.com.
You also have the right to lodge a complaint with the ICO.
10. Automated Decision-Making
We do not use automated decision-making or profiling that produces legal effects or similarly significantly affects individuals.
11. Children’s Data
Our services are not aimed at children under 16. We do not knowingly collect personal data from children.
12. Security
We implement appropriate technical and organisational measures to protect personal data from unauthorised access, loss, misuse, or disclosure. These measures are regularly reviewed and updated.
13. Changes to this Policy
We may update this Privacy Policy from time to time. The “Last updated” date at the top reflects the latest version. We encourage you to review this page periodically.
14. Contact Information
If you have questions about this policy or how we handle personal data, please contact:
VELARONA Group Ltd
Email: info@velarona.com
Website: www.velarona.com
ICO: ZB733324