Privacy Policy

1. Introduction

Interlink Digital Group Limited (Company No. 05431902, VAT GB132978001), trading as Motors365, (“we”, “us”, “our”) is committed to protecting and respecting your privacy. We are a company registered in England and Wales and act as the data controller for personal data collected through the Motors365 website at motors365.co.uk and all related services (the “Service”).

This Privacy Policy explains what personal data we collect, how we use it, who we share it with, how long we keep it, and what rights you have. It applies to all users of the Service, whether you are a visitor, free-tier user, or paying subscriber.

We process personal data in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and the Privacy and Electronic Communications Regulations 2003 (PECR).

2. Data Controller

The data controller responsible for your personal data is:

• Company: Interlink Digital Group Limited (trading as Motors365)
• Company No: 05431902
• VAT: GB132978001
• Email: privacy@motors365.co.uk
• Website: motors365.co.uk/contact

3. Personal Data We Collect

We collect and process the following categories of personal data:

3.1 Information You Provide

• Account information: Name, email address, and password when you register for an Account.
• Payment information: Billing address and payment card details. Card details are processed and stored securely by our payment provider, Stripe. We do not have access to or store your full card number on our servers.
• Contact information: Any information you provide when you contact us via email, our contact form, or other channels.
• Dealer profile information: If you register as a dealer, we may collect your business name, address, telephone number, and Companies House registration number.

3.2 Information Generated Through Your Use of the Service

• Vehicle search data: Vehicle registration numbers and VINs you submit for analysis.
• Report data: The analysis reports, saved vehicles, comparisons, and other outputs generated from your searches.
• Usage data: Pages visited, features used, time spent on the Service, click patterns, and referring URLs.
• Transaction data: Records of purchases, subscription plans, payment dates, and amounts.

3.3 Information Collected Automatically

• Device and technical data: IP address, browser type and version, operating system, device type, screen resolution, and language preferences.
• Cookies and similar technologies: We use cookies and similar tracking technologies as described in our Cookie Policy.
• Log data: Server logs including access times, error logs, and request details.

4. Lawful Basis for Processing

Under the UK GDPR, we must have a lawful basis for processing your personal data. The bases we rely on are:

• Contract (Article 6(1)(b)): Processing necessary to perform our contract with you, including providing the Service, managing your Account, processing payments, and delivering Reports.
• Legitimate interests (Article 6(1)(f)): Processing necessary for our legitimate interests, including improving the Service, analytics, fraud prevention, and security. We balance these interests against your rights and freedoms.
• Consent (Article 6(1)(a)): Where you have given us clear consent to process your data for a specific purpose, such as receiving marketing communications. You may withdraw consent at any time.
• Legal obligation (Article 6(1)(c)): Processing necessary to comply with a legal obligation to which we are subject, such as tax and accounting requirements.

5. How We Use Your Data

We use your personal data for the following purposes:

• Providing the Service: To create and manage your Account, process vehicle analyses, generate Reports, and deliver the features of your subscription plan.
• Payments: To process subscription payments, issue refunds, and manage billing through Stripe.
• Communications: To send you service-related communications (e.g., account verification, subscription confirmations, payment receipts, security alerts). These are transactional and are not marketing.
• Marketing: With your consent, to send you promotional emails about new features, offers, or related services. You can unsubscribe at any time by clicking the link in any marketing email or updating your Account settings.
• Improvement and analytics: To understand how users interact with the Service, identify areas for improvement, and develop new features.
• Security and fraud prevention: To detect, prevent, and respond to fraud, abuse, security threats, and technical issues.
• Legal compliance: To comply with applicable laws, regulations, and legal processes.

6. Who We Share Your Data With

We do not sell your personal data. We may share your data with the following categories of recipients:

• Payment processor: Stripe Payments Europe Ltd processes your payment information. Stripe’s privacy policy is available at stripe.com/gb/privacy.
• Hosting and infrastructure providers: We use third-party hosting providers to store data and run the Service. These providers act as data processors under contract with us.
• Analytics providers: We may use analytics services (such as Google Analytics) to help us understand usage patterns. These services may collect data subject to their own privacy policies.
• Government and regulatory bodies: Where we are required to do so by law, regulation, or legal process (e.g., HMRC, the Information Commissioner’s Office, or a court order).
• Professional advisers: Our lawyers, accountants, and auditors where necessary for them to provide advice to us.
• Business transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred to the acquiring entity. We will notify you of any such transfer.

7. International Data Transfers

Your personal data is primarily stored and processed within the United Kingdom. Where we transfer data outside the UK (for example, to service providers based in the United States or the European Economic Area), we ensure appropriate safeguards are in place, including:

• Transfers to countries that the UK Government has recognised as providing an adequate level of data protection.
• Standard contractual clauses approved by the Information Commissioner’s Office (ICO).
• Other lawful transfer mechanisms under the UK GDPR.

8. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including satisfying legal, accounting, or reporting requirements.

• Account data: Retained for the duration of your Account and for up to 2 years after Account closure, unless a longer retention period is required by law.
• Transaction and billing data: Retained for 7 years from the date of the transaction to comply with HMRC requirements.
• Vehicle search and Report data: Retained for the duration of your Account. You may delete individual saved vehicles and search history through your Account settings.
• Marketing consent records: Retained for as long as the consent is active and for 2 years after withdrawal for record-keeping purposes.
• Server logs: Retained for up to 90 days for security and troubleshooting purposes.

When data is no longer required, it is securely deleted or anonymised.

9. Data Security

We take the security of your personal data seriously and implement appropriate technical and organisational measures, including:

• Encryption of data in transit using TLS/SSL.
• Encryption of sensitive data at rest.
• Access controls restricting data access to authorised personnel only.
• Regular security reviews and vulnerability assessments.
• PCI-DSS compliant payment processing through Stripe.
• Secure password hashing using industry-standard algorithms.

While we implement robust security measures, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security but will notify you and the ICO of any personal data breach as required by law.

10. Your Rights Under UK GDPR

Under the UK GDPR, you have the following rights in relation to your personal data:

• Right of access (Article 15): You have the right to request a copy of the personal data we hold about you (a “subject access request”).
• Right to rectification (Article 16): You have the right to request that we correct any inaccurate or incomplete personal data.
• Right to erasure (Article 17): You have the right to request that we delete your personal data in certain circumstances (the “right to be forgotten”).
• Right to restrict processing (Article 18): You have the right to request that we restrict the processing of your personal data in certain circumstances.
• Right to data portability (Article 20): You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit it to another controller.
• Right to object (Article 21): You have the right to object to the processing of your personal data where we rely on legitimate interests as the lawful basis. You also have an absolute right to object to processing for direct marketing purposes.
• Rights related to automated decision-making (Article 22): You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects or similarly significantly affects you.
• Right to withdraw consent: Where we process data based on your consent, you may withdraw that consent at any time. Withdrawal does not affect the lawfulness of processing carried out before withdrawal.

To exercise any of these rights, please contact us at privacy@motors365.co.uk. We will respond to your request within one month. In complex cases, we may extend this by a further two months, but we will inform you within the first month if this is necessary.

There is no fee for exercising your rights, unless a request is manifestly unfounded or excessive, in which case we may charge a reasonable fee or refuse the request.

11. Cookies

We use cookies and similar technologies to enhance your experience, analyse usage, and assist with our marketing efforts. For detailed information about the cookies we use, their purposes, and how to manage your preferences, please see our Cookie Policy.

12. Children’s Privacy

The Service is not intended for individuals under the age of 18. We do not knowingly collect personal data from children. If we become aware that we have collected personal data from a child under 18, we will take steps to delete that data promptly. If you believe we may have collected data from a child, please contact us at privacy@motors365.co.uk.

13. Links to Third-Party Websites

The Service may contain links to third-party websites and services. We are not responsible for the privacy practices or content of those third parties. We encourage you to read the privacy policy of every website you visit.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes by email or by a prominent notice on the Service. The “Last updated” date at the top of this page indicates when the policy was last revised.

We encourage you to review this Privacy Policy periodically.

15. Complaints

If you are unhappy with how we have handled your personal data, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO), the UK’s supervisory authority for data protection:

• Website: ico.org.uk
• Telephone: 0303 123 1113
• Address: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF

We would, however, appreciate the opportunity to address your concerns before you approach the ICO, so please contact us first at privacy@motors365.co.uk.

16. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

• Email: privacy@motors365.co.uk
• Website: motors365.co.uk/contact