Privacy Policy

Privacy Policy

Last updated: November 2025

This Privacy Policy sets out how GAPI Hub (“we”, “us”, “our”) collects, processes, and protects personal data when you access or use the website https://gapihub.co.uk (“Website”).

We are committed to safeguarding your privacy and complying with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

By using our Website, you acknowledge and agree to the practices described in this Policy.

1. Data Controller

The Data Controller for the purpose of UK GDPR is:

GAPI Hub
Market Harborough, United Kingdom
Email: hello@gapihub.co.uk

2. Personal Data We Collect

We only collect information that is necessary for communication, service provision, or Website functionality.

a) Data Provided Directly by You

When you contact us by email, you may provide:

  • Name (if included in your message or signature)
  • Email address
  • Any additional information included in your correspondence

b) Appointment Booking Data (Calendly)

When you schedule a consultation via Calendly, the following data may be collected:

  • Name
  • Email address
  • Time zone
  • Booking preferences
  • Additional information submitted during the scheduling process

Calendly acts as a data processor on our behalf.
Calendly’s privacy practices are governed by their own Privacy Policy.

c) Technical and Usage Data

When you access the Website, we may collect limited technical data such as:

  • IP address (anonymised where possible)
  • Browser type and version
  • Device details
  • Pages viewed and navigation paths
  • Date and time of visits

This information is collected through cookies or similar technologies.

3. How We Use Your Personal Data

We process personal data strictly for legitimate and lawful purposes, including:

  • Responding to enquiries sent via email
  • Managing bookings and consultations
  • Preparing quotes and discussing potential services
  • Improving the performance and security of the Website
  • Maintaining business and accounting records
  • Fulfilling contractual obligations where applicable

We do not use your data for unsolicited marketing.

4. Lawful Bases for Processing

We rely on the following lawful bases under the UK GDPR:

  • Legitimate Interests – responding to enquiries, managing appointments, ensuring Website functionality
  • Contract – processing data required to provide or prepare services
  • Consent – when you agree to non-essential cookies
  • Legal Obligation – retaining records required by tax or regulatory authorities

5. Data Retention

We retain personal data only for as long as necessary for the purposes for which it was collected.

  • Email enquiries: up to 12 months
  • Client-related records: up to 6 years for legal and accounting compliance
  • Calendly data: subject to Calendly’s retention schedule

After expiry of the retention period, data will be securely deleted.

6. Data Sharing and Third Parties

We do not sell or distribute your personal data to third parties for marketing or commercial purposes.

We may share your data with trusted third parties solely to support the operation of our business:

  • Email hosting providers
  • Calendly (appointment scheduling)
  • Website hosting and analytics providers
  • Accounting and invoicing systems (for clients only)

All third parties process data in accordance with UK GDPR.

7. International Data Transfers

Some service providers (such as Calendly or cloud email providers) may process data outside the UK or EEA.

Where this occurs, we ensure appropriate safeguards are in place, including:

  • Standard Contractual Clauses (SCCs)
  • UK Addendum where applicable
  • Adequacy decisions recognised by the UK

8. Cookies and Tracking Technologies

The Website may use essential cookies required for security and functionality, and optional analytics cookies to assess performance.

We provide users with the ability to manage non-essential cookie preferences via a cookie banner or browser settings.

A separate Cookie Policy may apply.

9. Your Rights

Under the UK GDPR, you have the following rights:

  • Right of access – to obtain a copy of your personal data
  • Right to rectification – to correct inaccurate or incomplete data
  • Right to erasure – to request deletion where legally permissible
  • Right to restrict processing
  • Right to object
  • Right to data portability
  • Right to withdraw consent (for cookies or other optional processing)

To exercise any of these rights, contact:
📧 hello@gapihub.co.uk

We will respond within one month, as required by law.

10. External Links

Our Website contains links to:

  • Client websites
  • YouTube videos
  • Portfolio platforms
  • External services

We are not responsible for the privacy practices of external websites. Users should review the privacy policies of those providers.

11. Children’s Data

Our Website and services are intended for individuals aged 18 and over.
We do not knowingly collect data relating to children.

12. Changes to This Policy

We may update this Privacy Policy periodically to reflect legal, regulatory, or operational changes.

The most current version will always be available on this page.

13. Contact Details

For any questions or concerns regarding this Privacy Policy or your personal data:

📧 hello@gapihub.co.uk
We aim to respond within 72 hours.

Scroll to Top