Last reviewed: 28 October 2025
Next Review Due: October 2026

iStorage Ltd is a company registered in England (Company No. 06951286) with its registered office at Storage House, 13 Alperton Lane, Perivale, Greenford, UB6 8DH.

We regard the protection of your personal information with the utmost importance. This Privacy Policy explains how we collect, use, and store your personal information and how we ensure it is secure.

At iStorage we know that protecting your privacy is important. This Privacy Policy to explain:

• When we collect information
• What type of information we collect
• How we collect information
• How we use information
• With whom we share information
• The steps we take to protect your information.

WHEN DO WE COLLECT INFORMATION?

iStorage may collect information about you when you interact with us in the following ways:

• Access or browse our websites (www.istorage-uk.com)
• Order iStorage products
• Communicate with us via e-mail, telephone, fax or other means
• Fill out a survey
• Request or register to receive information about our products (newsletter subscription)
• Meet face to face or exchange business card at a trade shows, exhibitions, corporate events, meetings, conferences, PR events, training, technology seminar or any other event

WHAT INFORMATION DO WE COLLECT?

Information we collect is generally of two types – personally identifiable information and non-personally identifiable information.

Personally identifiable information includes any information that can identify an individual, such as: name, address, telephone number, online identifiers (e.g. social media account or IP address), health information, data of birth, bank or financial information, or documents used for identification purposes (e.g. credit card number).

This does not include publicly available information lawfully accessible from government record.

Non-personally identifiable information includes data that does not identify you individually, such as website usage information (e.g. date and time of visit, pages visited, IP address, browser types and operating systems).

HOW DO WE COLLECT YOUR NON-PERSONAL INFORMATION AND WHY?

We automatically collect certain non-personally identifiable information each time you visit the website.

We may use cookies, tags, server logs and other technologies to acquire or store this information to help is improve your online experience.

Cookies

Cookies are text files containing small amounts of information downloaded to your device when you visit our website. For
information on the cookies we use and their purposes, please read our Cookie Policy.

Log Files

Log files record variables related to your time on the website (e.g. IP address, browser version, pages visited, referring sites. This helps us understand how visitors use our website and improve its performance.

Navigational Data

As you browse we may collect anonymous navigational data showing which pages are visited and how long features are used. This helps us improve the website and, where applicable, provide relevant advertising or content.

IP Addresses and System Specifications

When you access the website, our servers may record your IP address. This information may be used for system administration, troubleshooting and compiling anonymous usage statistics.

HOW DO WE SHARE THE INFORMATION THAT WE COLLECT?

General

Personal information collected for a specific purpose will only be used for that purpose, unless you consent to other uses. We may share non-personal information with third parties, but it will not include any personal identifiable information. Except as described in this policy, we do not sell, rent or give away your information.

Change of Control

If iStorage is acquired, merged, or undergoes another change of control, user information may be transferred to the acquiring company. While we cannot guarantee compliance of that company, we will seek to ensure your data is handled appropriately.

 WHERE WE STORE YOUR PERSONAL INFORMATION

Your information will not be transferred to or accessed by third parties, except when required by law. We take all reasonable steps to ensure your information is treated securely and in accordance with the Privacy Policy.

SECURITY

We take appropriate measures to protect against unauthorised access, alteration, disclosure or destruction of information. Access to your personal information is restricted to employees who need it to operate, develop or improve our services. Our servers are protected by firewalls and located in secure facilities.

We use Secure Socket Layer (SSL) technology for authentication, data encryption and data integrity. While no system is 100% secure, we take all reasonable steps to protect your data.

INTEGRITY

During online account registration, you can review, change or remove information you have submitted. We encourage you to keep your information accurate and up to date.

You may also request the removal of your information from our databases; however, some records may be retained for legal or accounting purposes.

YOUR RIGHTS

Under data protection law, your principal rights are;

1. the right to access;
2. the right to rectification;
3. the right to erasure;
4. the right to restrict processing;
5. the right to object to processing;
6. the right to data portability
7. the right to complain to a
   supervisory authority; and
8. the right to withdraw consent.

You may access your personal data and additional information about how it is process, including the purposes, categories, and recipients involved. You may correct inaccurate data or complete incomplete data at any time.

If our process is based on consent or contract and is automated, you may request your data in a machine-readable format.

If you believe we have infringed data protection laws, you have the right to lodge a complaint with a supervisory authority (e.g. the Information Commissioner’s Office in the UK).

You may withdraw consent for processing at any time without affecting prior lawful processing.

You also have the right to object to your data being used for marketing purposes. You can exercise this right by contacting us at dpo@istorage-uk.com.

SUPERVISORY AUTHORITY

If you believe your data protection rights have been infringed, you may lodge a complaint with the Information Commissioner’s Office (ICO) in the UK or with the relevant authority in your place of residence or work.

RETAINING DATA

We will retain personal data only as long as necessary for the purposes set out in this Privacy Policy, generally no longer than six (6) years, unless otherwise required by law. We may retain data longer if necessary to comply with legal obligations or to protect our legal rights.

DATA PROTECTION OFFICER

For GDPR compliance, please contact our Data Protection Officer (DPO) with any questions or requests regarding your personal information at: dpo@istorage-uk.com

CHANGES TO PRIVACY POLICY

We may update this policy by posting a new version on our website. Please check regularly for updates. If you object to any changes, you must contact us in writing to raise your concerns.

For all data protection matters in the UK, please contact dpo@istorage-uk.com