Privacy Policy

This Privacy Policy explains how Mustard Software Ltd (Company No. 09966771, VAT No. GB350718017), 50 Carlton Road, Newark, NG24 4HE, collects, uses and protects personal data in accordance with UK GDPR.

---

1. Who We Are

Mustard Software Ltd provides bespoke subscription software, monitoring systems, hosting, and related business technology services to small and medium-sized businesses.

For data protection purposes, we are the data controller for information collected via our website and marketing activities. For customer systems we host or develop, we may act as either data controller or data processor depending on the service provided.

2. What Information We Collect

Website Enquiries

• Name
• Email address
• Telephone/mobile number
• Details included in your enquiry

Customers

• Business contact details
• Billing information
• System usage data
• Monitoring alert contact numbers (SMS/email recipients)

Technical Information

• IP address
• Browser type
• Usage analytics
• Device monitoring telemetry (where applicable)

3. How We Use Your Information

We use personal data to:

• Respond to enquiries
• Provide and maintain subscription services
• Send alerts (email or SMS) as configured
• Generate compliance or monitoring reports
• Improve system reliability and performance
• Meet legal and regulatory obligations

We do not sell personal data.

4. Legal Basis for Processing

We rely on the following lawful bases:

• Contract: to provide services you have requested.
• Legitimate interests: to operate and improve our services.
• Legal obligation: for accounting and regulatory compliance.
• Consent: where required (e.g., marketing communications).

5. Monitoring & Telemetry Data

Monitoring systems may collect operational data such as temperature readings, connectivity status, equipment activity, and alert history.

This data is used solely to provide monitoring services and generate alerts. It is not used for marketing or shared with third parties except where necessary to deliver the service (e.g., SMS gateway providers).

6. Data Storage & Security

We use reputable UK/EU cloud hosting providers with strong security standards.

• Encrypted connections (HTTPS)
• Access controls
• Regular system monitoring
• Secure backup procedures

While we take reasonable steps to protect data, no online system can guarantee absolute security.

7. Data Retention

• Enquiry data: retained for up to 24 months.
• Customer data: retained for the duration of the subscription and up to 6 years for accounting purposes.
• Monitoring logs: retained according to service agreement or compliance requirements.

8. Sharing Information

We may share data with:

• Cloud hosting providers
• Email and SMS delivery services
• Payment processors
• Professional advisers (accountants, legal advisers)

All third-party providers are selected carefully and required to maintain appropriate security and confidentiality standards.

9. Your Rights

Under UK GDPR, you have the right to:

• Access your personal data
• Request correction of inaccurate data
• Request erasure (where applicable)
• Restrict or object to processing
• Data portability
• Lodge a complaint with the Information Commissioner’s Office (ICO)

To exercise any of these rights, please contact: info@mustardsoftware.co.uk

10. Cookies

Our website may use basic cookies necessary for functionality and analytics. We do not use invasive tracking or third-party advertising cookies.

11. Changes to This Policy

We may update this policy from time to time. The latest version will always be available on this page.

---

Last updated: 01 March 2026