Chat

07786 719203

Privacy Policy

Privacy Policy

Effective from: 1st February 2026

Who We Are

Virtus Roofing Ltd ("we", "us", "our") is a roofing contractor registered in England and Wales (Company Registration No: [07467426761]). Our registered office is at [1 Derby Road, Nottingham, Nottinghamshire, England, NG16 3PA].

We are committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you interact with us via our website ([Insert Website URL]), by phone, email, or in person.

We are a "data controller" for the purposes of the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. This means we are responsible for deciding how we hold and use your personal information.

If you have any questions about this policy or our privacy practices, please contact us:

  • Email: Daniel@virtus-roofing.co.uk
  • Post: The Data Protection Officer, Virtus Roofing Ltd, [ 1 Derby Road, Nottingham, Nottinghamshire, England, NG16 3PA]
  • Phone: 07786 719203

The Data We Collect About You

Personal data, or personal information, means any information about an individual from which that person can be identified. We may collect, use, store, and transfer different kinds of personal data about you, which we have grouped together as follows:

  • Identity Data: Includes first name, maiden name, last name, username or similar identifier, marital status, title, date of birth, and gender.
  • Contact Data: Includes billing address, delivery address, email address, and telephone numbers.
  • Financial Data: Includes bank account and payment card details. We do not store full payment card details; these are processed securely by our PCI-DSS compliant third-party payment processors.
  • Transaction Data: Includes details about payments to and from you and other details of products and services you have purchased from us.
  • Technical Data: Includes internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access our website.
  • Profile Data: Includes your username and password, purchases or orders made by you, your interests, preferences, feedback, and survey responses.
  • Usage Data: Includes information about how you use our website, products, and services.
  • Marketing and Communications Data: Includes your preferences in receiving marketing from us and our third parties and your communication preferences.
  • Special Category Data: We do not routinely collect any "special categories" of personal data (e.g., details about your race, ethnicity, religious beliefs, health data). In the rare instance this is necessary (e.g., relating to a health and safety incident on site), we will obtain your explicit consent.

How We Collect Your Personal Data

We use different methods to collect data from and about you including through:

Direct Interactions. You may give us your Identity, Contact, and Financial Data by filling in forms on our website, by corresponding with us by post, phone, email, or in person. This includes personal data you provide when you:

  • Request a quote for our services;
  • Engage us to perform contracting services;
  • Subscribe to our newsletter or publications;
  • Request marketing to be sent to you;
  • Enter a competition, promotion, or survey; or
  • Give us feedback or contact us.

Automated Technologies or Interactions. As you interact with our website, we may automatically collect Technical Data about your equipment, browsing actions, and patterns. We collect this personal data by using cookies, server logs, and other similar technologies. Please see our Cookie Policy for further details.

Third Parties or Publicly Available Sources. We may receive personal data about you from various third parties and public sources, such as:

  • Technical Data from analytics providers (such as Google);
  • Contact, Financial, and Transaction Data from providers of technical, payment, and delivery services;
  • Identity and Contact Data from publicly available sources such as Companies House or HM Land Registry where necessary for due diligence.

How We Use Your Personal Data (Our Lawful Bases)

We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:

  • Performance of a Contract: Where we need to perform the contract we are about to enter into or have entered into with you (e.g., to provide you with a quote, to carry out roofing works, to manage your account, and to collect payment).
  • Legitimate Interests: Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests (e.g., for running our business, provision of administration and IT services, network security, fraud prevention, and marketing our services to existing clients).
  • Legal Obligation: Where we need to comply with a legal or regulatory obligation (e.g., retaining records for HMRC).
  • Consent: Where you have given us clear consent to process your personal data for a specific purpose (e.g., sending you marketing communications via email where you are not an existing client).

A detailed breakdown of how we plan to use your personal data, and which of the legal bases we rely on to do so, is available on request.

Data Sharing and Transfers

We may have to share your personal data with the parties set out below for the purposes outlined in section 4.

  • Service Providers: Acting as processors who provide IT, system administration, payment processing, and marketing services.
  • Professional Advisers: Including lawyers, bankers, auditors, and insurers who provide consultancy, banking, legal, insurance, and accounting services.
  • HM Revenue & Customs, Regulators, and Other Authorities: Who require reporting of processing activities in certain circumstances.
  • Third Parties to whom we may choose to sell, transfer, or merge parts of our business or our assets.

We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.

We do not transfer your personal data outside the United Kingdom.

Data Security

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorised way, altered, or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors, and other third parties who have a business need to know.

We have procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

Data Retention

We will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting, or reporting requirements. We may retain your personal data for a longer period in the event of a complaint or if we reasonably believe there is a prospect of litigation.

To determine the appropriate retention period, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure, the purposes for which we process it, and applicable legal requirements.

By law, we must keep basic information about our customers (including Contact, Identity, Financial, and Transaction Data) for six years after they cease being customers for tax purposes.

Your Legal Rights

Under certain circumstances, you have rights under data protection laws in relation to your personal data. These include the right to:

  • Request access to your personal data (a "data subject access request").
  • Request correction of your personal data.
  • Request erasure of your personal data.
  • Object to processing of your personal data.
  • Request restriction of processing of your personal data.
  • Request transfer of your personal data (data portability).
  • Withdraw consent at any time where we are relying on consent to process your personal data.

If you wish to exercise any of the rights set out above, please contact us using the details in Section 1.

You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive, or excessive.

We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it.

Changes to This Policy & How to Contact Us

We keep our privacy policy under regular review. This version was last updated in October 2026. Historic versions can be obtained by contacting us.

It is important that the personal data we hold about you is accurate and current. Please keep us informed if your personal data changes during your relationship with us.

If you have any questions about this privacy policy or our privacy practices, please contact us using the details in Section 1. You also have the right to make a complaint at any time to the Information Commissioner's Office (ICO), the UK regulator for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO, so please contact us in the first instance.

Virtus Roofing Ltd
[ 1 Derby Road, Nottingham, Nottinghamshire, England, NG16 3PA]
Whatsapp: 07786 719203
Email: Daniel@virtus-roofing.co.uk