top of page

Privacy Policy

​

1. Introduction

Instock Carpets & Flooring Ltd ("we", "us", "our") is committed to protecting your privacy under UK GDPR. This policy explains how we collect, use, store and share your personal data when you visit our website or contact us. 

2. Data Controller

Instock Carpets & Flooring Ltd
Unit 2B, Union Works, Bridge Street, Morley, Leeds, West Yorkshire, LS27 0ER
Phone: 0113 414 4253 · Email: info@instockcarpets.co.uk 

3. Personal Data We Collect

  • Contact form submissions: name, email, phone number, enquiry details

  • Communications: content shared during discussions about carpets, LVT, laminate, vinyl, SPC, solid wood, artificial grass, measuring or fitting 

  • Website analytics: IP address, device/browser data, pages visited and session timings tracked via cookies 

  • Cookies: essential for site operations and anonymised analytical cookies; no profiling or advertising cookies used

4. How We Use Your Data

We use your information to:

  • Respond to enquiries, arrange free measuring and expert fitting

  • Provide details and support on flooring options—including carpets, LVT, laminate, vinyl, SPC, wood, artificial grass 

  • Improve our website experience through anonymised analytics

  • Fulfil legal obligations (e.g. record-keeping, audits)

5. Legal Bases for Processing

  • Contractual necessity: to fulfil enquiries, quotes and installation

  • Legitimate interests: to run and improve our business and website

  • Consent: for optional marketing updates

  • Legal obligation: to retain records for compliance

6. Data Sharing

We never sell or rent personal data. We may share it with:

  • Service providers (e.g. hosting, CRM, email platforms) acting as processors

  • Lawful authorities, if required by UK law

7. Cookies & Tracking

  • Essential cookies: enable form submissions and navigation

  • Performance cookies (e.g. Google Analytics): capture anonymised usage stats
    No advertising or profiling cookies are used 

8. Data Retention

  • Enquiry and service data: retained for up to 7 years in line with business records

  • Usage logs: individual session data removed after 24 months; aggregated analytics retained as needed

9. Your Rights

Under UK GDPR, you may:

  • Access, correct, or erase your personal data

  • Request restriction or object to our processing

  • Withdraw any consent you’ve given

  • Request portability of your data
    Please contact us via email or phone to exercise your rights. You may also lodge complaints with the ICO.

10. Security

We implement SSL encryption, secure servers, and access controls to protect your data. While no system is fully secure, we follow industry-standard safeguards.

11. International Transfers

All data is stored and processed in the UK—there are no transfers outside the UK/EEA.

12. Updates to Policy

We may update this policy from time to time. The revised Effective Date reflects any changes. Continued use of our website indicates acceptance.

bottom of page