The Solar Quote Engine

This Privacy Policy explains how CalledUp Automations LTD ("we", "us", "our") collects, uses, stores and protects personal data when you use our website and services. We comply with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, the EU GDPR (where applicable), and the Privacy and Electronic Communications Regulations (PECR).

1. Who we are (Data Controller)

CalledUp Automations LTD is the data controller for personal data collected through this website.

Company number: 16815168
Registered office: 24-26 Regent Place, Birmingham, United Kingdom, B1 3NJ
Contact: calledup2@gmail.com

2. What data we collect

Contact details: first name, last name, email, phone number, company name.
Booking information: qualification answers (e.g. monthly revenue range), preferred call time, marketing opt-in status.
Communications: messages you send to us by SMS, email or web form.
Technical data: IP address, browser type, device information, pages visited.
Cookie data: see our Cookie section below.

3. How we collect data

Directly from you when you fill in a form, book a call, or contact us.
Automatically through cookies and similar technologies (with your consent where required).
From third-party providers we use to deliver our services (e.g. Google Calendar, Twilio).

4. Lawful bases for processing

We rely on the following lawful bases under UK GDPR Article 6:

Consent — for marketing SMS/email and non-essential cookies.
Contract — to provide the services you have booked or requested.
Legitimate interests — to operate our business, secure our website, prevent fraud, and contact leads who have submitted an enquiry (in line with PECR's "soft opt-in" rules where applicable).
Legal obligation — where we must process data to comply with the law.

5. How we use your data

To respond to enquiries and book strategy calls.
To send appointment reminders by SMS.
To send marketing/nurture messages — only where you have opted in.
To improve and secure our website.
To meet our legal and accounting obligations.

6. Marketing & PECR

We will only send you marketing SMS or email where you have given clear, opt-in consent. Every marketing message is clearly identified as automated and includes a way to opt out (reply STOP). Service messages such as booking confirmations and appointment reminders may be sent without marketing consent because they are necessary to deliver the service you requested.

7. Sharing your data

We share data only with trusted processors who help us deliver the service:

Supabase — database and backend hosting.
Twilio — SMS delivery.
Google — calendar booking and meeting links.
Hosting and analytics providers as needed.

Some of these providers are based outside the UK/EEA. Where data is transferred internationally, we rely on UK/EU adequacy decisions or Standard Contractual Clauses (SCCs) to ensure appropriate safeguards.

8. How long we keep data

We keep personal data only as long as needed for the purposes described above, or as required by law. Booking and lead data is typically kept for up to 24 months after your last interaction unless you ask us to delete it sooner.

9. Your rights (UK GDPR)

You have the right to:

Access the personal data we hold about you.
Request correction of inaccurate data.
Request erasure ("right to be forgotten").
Restrict or object to processing.
Data portability.
Withdraw consent at any time.
Lodge a complaint with the UK Information Commissioner's Office (ICO) at ico.org.uk.

To exercise any of these rights, email calledup2@gmail.com.

10. Security

We use appropriate technical and organisational measures to protect your data, including encryption in transit (HTTPS), access controls, and secure third-party processors.

11. Children

Our services are not directed at children under 16 and we do not knowingly collect their data.

12. Changes to this policy

We may update this policy from time to time. The "Last updated" date at the top will reflect any changes.