Apex Audio Group - Data Protection & Privacy Policy

1. Introduction

Apex Audio Group is committed to protecting your personal data and ensuring transparency in how we collect, process, and use information. This policy outlines:

  • What personal data we collect and why.

  • How we process and protect your information.

  • Your rights under the UK General Data Protection Regulation (UK GDPR) and Data Protection Act 2018.

  • How we share data and with whom.

  • How you can manage your preferences and request changes.

Apex Audio Group acts as the data controller, determining how and why personal data is processed. This policy applies to our website, services, and business activities.

If you have any questions, you can contact us at Andy@apexaudiogroup.com. This policy may be updated periodically.

2. What Personal Data Do We Collect?

We collect and process the following data when you interact with our website, services, or make purchases:

2.1 Information You Provide Directly

  • Identity & Contact Information: Name, email, phone number.

  • Account Details (if applicable): Username, password.

  • Billing & Shipping Details: Address, payment details (processed securely via third-party providers).

  • Marketing Preferences: If you opt-in to receive promotional communications.

  • Other Communications: Feedback, inquiries, and customer service interactions.

2.2 Information Collected Automatically

When you visit our website, we collect:

  • Technical Data: IP address, browser type, operating system.

  • Usage Data: Pages visited, time spent on the site, navigation activity.

  • Device Information: Mobile or desktop, screen resolution, and session data.

2.3 Data from Third-Party Sources

We may receive data from:

  • Analytics providers (e.g., Google Analytics, to improve user experience).

  • Advertising & social media platforms (if you engage with our content or ads).

  • Payment processors (for transaction verification, not financial details).

3. How & Why We Process Your Data

We process data in line with the UK GDPR's six lawful bases:

Purpose.

Processing orders and providing services - Contractual necessity.

Responding to inquiries & support requests - Legitimate interest.

Marketing communications (if opted in) - Consent.

Website analytics & performance tracking - Legitimate interest.

Legal, tax, and compliance obligations - Legal obligation.

Fraud prevention & security - Legitimate interest

4. Cookies & Tracking Technologies

We use cookies to enhance user experience. These may include:

  • Strictly Necessary Cookies – Essential for site functionality.

  • Performance & Analytics Cookies – Measure traffic and improve performance.

  • Functionality Cookies – Remember user preferences.

  • Targeting Cookies – Help deliver relevant advertising.

Managing Cookies

You can manage cookie settings through your browser or opt out of analytics tracking. For more information, visit ICO Cookie Guidance.

5. How We Share Your Data

We do not sell your personal data. We may share it with:

  • Service Providers – Payment processors (e.g., Stripe, PayPal), couriers, cloud storage.

  • Analytics & Performance Tools – Google Analytics, tracking services (aggregated & anonymised).

  • Legal & Regulatory Authorities – Where required by law (e.g., tax reporting, fraud prevention).

International Data Transfers

Some service providers operate outside the UK/EU. When data is transferred internationally, we ensure:

  • UK GDPR Standard Contractual Clauses (SCCs) are in place.

  • Adequate protection is guaranteed (e.g., suppliers based in countries with equivalent data protection laws).

6. How Long We Retain Your Data

We keep data only as long as necessary:

  • Customer Account Data – Until the account is deleted.

  • Order & Transaction Data – 6 years (for tax & accounting).

  • Marketing Preferences – Until you opt out.

  • Website Analytics Data – Aggregated and anonymised after 12 months.

After this period, we securely delete or anonymise your data.

7. Your Rights Under UK GDPR

You have the right to:

  • Access: Request a copy of your personal data.

  • Correction: Update inaccurate or incomplete data.

  • Deletion: Request data erasure (where legally allowed).

  • Restriction: Limit how we process your data.

  • Objection: Stop direct marketing communications.

  • Data Portability: Request a machine-readable copy of your data.

To exercise these rights, email [email address]. We will respond within one month.

7.1 Complaints to ICO

If you believe we have mishandled your data, you can lodge a complaint with the UK Information Commissioner’s Office (ICO):
🔗 ICO Complaints Page

8. Security Measures

We take reasonable precautions to protect personal data:

  • Encryption & Secure Access – Data is encrypted where possible.

  • Access Controls – Restricted access to authorised personnel.

  • Regular Security Audits – Periodic reviews of data security.

While we follow best practices, no system is 100% secure, so data is shared at your own risk.

9. Children’s Data

Our services are not intended for children under 13. If we become aware of accidental collection, we will delete the data immediately.

10. Contact Us

For any data inquiries, corrections, or complaints, please contact:


Andy@apexaudiogroup.com

Perrott House, 17 Bridge Street, Pershore, Worcestershire, WR10 1AJ

Policy Last Updated: 12th March 2025