Privacy Policy

CHIPS AWAY BRISTOL LTD ("we", "us", or "our") is committed to protecting your privacy and handling your personal information in a transparent and lawful manner. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you:

• visit our website at https://chips-away-bristol.site (the "Site"); or
• contact us to request a quote, make a booking, or ask a question; or
• use our motor vehicle repair services, including paintwork chip and scratch repair, bumper scuff restoration, minor dent removal, alloy wheel refurbishment, colour matching, and cosmetic bodywork repairs.

We process personal data in accordance with applicable UK data protection law, including the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

By using our Site or our services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with any part of this Policy, you should discontinue use of our Site and services.

2. Information We Collect

We may collect and process different types of information about you depending on how you interact with us. This may include:

2.1 Information you provide to us directly

You may provide personal information when you complete forms on our Site, contact us by phone or email, or when we deliver our repair services. This may include:

• Contact details: your name, email address, phone number, and postal address.
• Booking and enquiry details: information about your vehicle (such as make, model, registration, colour), the nature of the damage, preferred appointment dates, and service preferences.
• Correspondence: records of communications with you, including emails, messages submitted via our online forms, and notes from phone calls.
• Payment information: limited payment-related details that we need to process transactions, such as payment status and method. Card payment details are typically handled by our payment processor and are not stored in full by us.

2.2 Information collected automatically

When you visit our Site, we may automatically collect certain technical and usage data to help us understand how our Site is used and to improve performance. This may include:

• Device and browser data: IP address, browser type and version, device type, operating system, language settings, and approximate geographic location.
• Usage data: pages visited, time and date of visits, referring and exit pages, time spent on each page, interactions with on-page elements, and other diagnostic data.
• Cookie-related data: information collected through cookies and similar tracking technologies, as described in the "Cookies and Tracking Technologies" section and our Cookie Policy.

2.3 Information from third parties

We may receive information about you from third parties such as:

• online platforms or directories through which you enquire about our services;
• payment service providers that confirm transaction status;
• fleet managers or insurers where we deliver services as part of a managed agreement.

3. How We Use Your Information

We use your information only where we have a lawful basis to do so and for specific, legitimate purposes. These purposes may include:

• Providing and managing our services: processing enquiries, preparing quotes, confirming bookings, performing repairs, issuing invoices, and managing customer accounts.
• Responding to enquiries: answering questions submitted via our Site, by phone, or by email, and providing aftercare support following repairs.
• Improving our services and Site: analysing how visitors use our Site, troubleshooting performance issues, and enhancing our content, navigation, and user experience.
• Customer communications: sending service-related information such as booking confirmations, reminders, updates about your repair, and important notices about our terms or policies.
• Administration and record-keeping: maintaining internal records, managing financial accounts, and complying with tax and accounting obligations.
• Legal and regulatory compliance: meeting our legal obligations, handling complaints, and responding to lawful requests from regulators, authorities, or law enforcement.
• Marketing (where permitted): subject to your preferences and applicable law, sending you information about relevant services or offers that may be of interest. You can opt out of marketing at any time.

We will not use your personal information for purposes that are incompatible with those set out in this Policy without informing you and, where required, obtaining your consent.

4. Information Sharing and Disclosure

We do not sell your personal information. We may, however, share your data with trusted third parties where necessary for the operation of our business and the delivery of our services, or where required by law. These third parties may include:

• Service providers and business partners: such as IT hosting providers, website analytics services, email and communication platforms, payment processors, and other technical support providers that help us operate our Site and deliver our services.
• Professional advisers: including accountants, legal advisers, and insurers where disclosure is necessary for professional advice, risk management, or the establishment, exercise, or defence of legal claims.
• Fleet, insurer, or corporate clients: where we provide services under a fleet or insurance arrangement, limited information about the service performed and vehicle details may be shared with the relevant organisation.
• Authorities and regulators: where we are legally required to share information, for example in response to a court order, law enforcement request, or regulatory obligation.

Where we engage third-party processors, we require them to handle your personal data securely, only in accordance with our instructions, and in compliance with applicable data protection law.

In the event of a business reorganisation, merger, or transfer, your personal information may form part of the transferred assets. In such circumstances, we will take steps to ensure that your privacy rights continue to be protected.

5. Data Security

We take the security of your personal information seriously and implement appropriate technical and organisational measures to protect it against unauthorised or unlawful processing, accidental loss, destruction, or damage. These measures may include:

• using secure systems and tools to store and manage customer records;
• limiting access to personal data to personnel and service providers who need it to perform their duties;
• using passwords, access controls, and, where appropriate, encryption or pseudonymisation;
• maintaining internal procedures for data handling, retention, and deletion;
• regularly reviewing our security practices and safeguards.

While we strive to protect your personal data, no method of transmission over the internet or method of electronic storage is completely secure. We cannot guarantee absolute security, but we work to minimise risks and respond appropriately to any suspected data incident.

If we become aware of a personal data breach that is likely to result in a high risk to your rights and freedoms, we will notify you and any applicable regulator where we are legally required to do so.

6. Cookies and Tracking Technologies

Our Site uses cookies and similar tracking technologies to help us deliver a fast, reliable, and user-friendly experience and to understand how visitors interact with our content.

Cookies are small text files stored on your device when you visit a website. They may be "session" cookies, which expire when you close your browser, or "persistent" cookies, which remain on your device for a set period or until you delete them.

We may use cookies for purposes such as:

• Essential functionality: enabling core features of the Site, such as navigation, security, and access to forms.
• Performance and analytics: collecting aggregated data on how visitors use our Site, which pages are most popular, and how we can improve usability and content.
• Preference management: remembering your cookie choices and other settings so that you have a consistent experience.

Where required by law, we will ask for your consent before placing non-essential cookies on your device. You can manage your cookie preferences through any cookie banner provided on the Site and by adjusting your browser settings. Please note that disabling certain cookies may affect the functionality or performance of the Site.

For more detailed information about the cookies we use and how to manage them, please refer to our dedicated Cookie Policy.

7. Your Data Protection Rights

Under UK data protection law, you have a number of rights regarding your personal data. These rights may be subject to certain conditions or exemptions. They include:

• Right of access: you can request confirmation that we process your personal data and ask for a copy of the information we hold about you.
• Right to rectification: you can ask us to correct or complete your personal data if it is inaccurate or incomplete.
• Right to erasure: in certain circumstances, you can request that we delete your personal data, for example where it is no longer needed for the purposes for which it was collected.
• Right to restriction of processing: you can ask us to limit the way we use your data in certain situations, such as while we investigate a concern you have raised about its accuracy.
• Right to data portability: in some cases, you can request that we provide your personal data in a structured, commonly used, and machine-readable format, or transmit it to another controller where technically feasible.
• Right to object: you can object to certain types of processing, including direct marketing, at any time. We will respect your objection unless we have compelling legitimate grounds to continue processing that override your interests, rights, and freedoms, or the processing is required for legal claims.
• Rights relating to automated decision-making: if we ever use automated decision-making that has legal or similarly significant effects on you, you have the right to request human review and to express your point of view.

To exercise any of these rights, please contact us using the details in the Contact Us section below. We may need to confirm your identity before responding to your request. We aim to respond within one month, or within any other period required by law.

If you are not satisfied with how we handle your personal data or any request, you also have the right to lodge a complaint with the UK Information Commissioner's Office (ICO). Further information is available at https://www.ico.org.uk.

8. Third-Party Links

Our Site may contain links to third-party websites, services, or platforms, for example social media pages, mapping tools, or external resources. These websites are not operated or controlled by CHIPS AWAY BRISTOL LTD and are not covered by this Privacy Policy.

If you follow a link to any third-party site, the operators of those sites may collect and process information about you in accordance with their own privacy policies. We encourage you to review the privacy and cookie policies of any third-party site you visit before providing your personal data.

We are not responsible for the privacy practices, content, or security of third-party websites or services.

9. Children's Privacy

Our Site and services are intended for adults and are not directed at children. We do not knowingly collect personal information from children under 18 years of age.

If you are a parent or guardian and believe that a child has provided personal information to us, please contact us using the details in the Contact Us section so that we can take appropriate steps to remove such information and, if necessary, close any related accounts or records.

10. International Data Transfers

In general, we store and process personal data within the United Kingdom or the European Economic Area (EEA). However, some of our service providers or systems may be located, or may store data, outside the UK or EEA.

Where your personal data is transferred to or accessed from countries that do not have the same level of data protection as the UK, we will ensure that appropriate safeguards are in place to protect your information, such as:

• using standard contractual clauses or equivalent safeguards approved by the UK authorities; or
• ensuring that the recipient is subject to an adequacy decision that recognises their legal framework as providing an adequate level of protection.

If you would like more information about the safeguards applied to international transfers of your personal data, you can contact us using the details below.

11. Updates to This Policy

We may update or amend this Privacy Policy from time to time to reflect changes in our practices, services, legal requirements, or other factors. When we make changes, we will revise the "Last updated" date at the top of this page and, where appropriate, notify you through our Site or by other means.

We encourage you to review this Privacy Policy periodically to stay informed about how we handle your personal data. Your continued use of our Site or services after any changes have been made will constitute your acknowledgement of the updated Policy.

12. Contact Us

If you have any questions about this Privacy Policy, how we handle your personal data, or if you wish to exercise your data protection rights, you can contact us using the details below:

Last updated: 18 March 2026