Privacy Policy
Privacy Policy (GDPR Compliant)
Last updated: 15th November 2025.
This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website.
We are committed to protecting your personal data and respecting your privacy in accordance with the UK GDPR, EU GDPR, and the Data Protection Act 2018.
1. Who We Are
Company Name: AION Project Engineering Ltd
Registered Address: 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ.
Email: info@aionprojectengineering.co.uk
Phone: +44(0)7384718874
We act as the Data Controller, meaning we determine how and why your personal data is processed.
2. What Personal Data We Collect
We may collect and process the following data when you interact with our website:
a. Data You Provide
Name
Email address
Phone number
Contact form messages
Account details (if applicable)
Payment information (processed by secure third-party providers)
b. Data Collected Automatically
IP address
Browser type
Device information
Cookies and tracking data
Website usage and analytics
c. Cookies
We use cookies to improve website performance and user experience. You can manage cookie preferences through your browser settings.
For full details, see our Cookie Policy.
3. How We Use Your Data
We process your personal data for the following purposes:
To provide and maintain our services
To respond to enquiries or customer support requests
To process payments and transactions
To send updates, marketing, or newsletters (only with consent)
To improve website functionality and user experience
To comply with legal or regulatory obligations
4. Legal Basis for Processing
Under GDPR, we rely on the following legal grounds:
Consent – When you voluntarily provide information or sign up for communications
Contractual necessity – To provide services you requested
Legitimate interests – For website analytics, security, and improvements
Legal obligation – To comply with applicable laws
5. How We Share Your Data
Your data may be shared with:
Trusted third-party service providers (hosting, analytics, payment processors)
Legal authorities if required by law
Professional advisers (e.g., accountants, legal counsel)
We never sell your data.
All third parties comply with GDPR and are obligated to safeguard your information.
6. International Data Transfers
If data is transferred outside the UK/EU, we ensure appropriate safeguards such as:
Standard Contractual Clauses (SCCs)
Adequacy decisions
GDPR-compliant protections by service providers
7. Data Retention
We keep your personal data only for as long as necessary to fulfil the purposes outlined in this policy, unless a longer retention period is required by law.
Example retention periods:
Contact form submissions: 12–24 months
Account information: retained while account is active
Payment details: handled by secure third-party processors
8. Your Rights Under GDPR
You have the right to:
Access your personal data
Correct inaccurate data
Request deletion (“right to be forgotten”)
Restrict processing
Object to processing
Request data portability
Withdraw consent at any time
Lodge a complaint with the ICO (UK) or relevant EU authority
To exercise these rights, contact us at:
Email: See Section 1
9. Security
We implement appropriate technical and organisational measures to protect your personal data, including:
Data encryption
Secure servers
Access controls
Regular security audits
Despite this, no method of transmission over the internet is 100% secure, but we take all reasonable steps to safeguard your data.
10. Links to Other Websites
Our website may contain links to third-party websites. We are not responsible for their privacy practices or content.
11. Updates to This Policy
We may update this policy occasionally to reflect changes in law or our practices. The latest version will always be posted on this page.
12. Contact Us
If you have any questions about this Privacy Policy or how your data is handled, you can contact us.
Thank you.