Last updated: 3 April 2026
At Key Crafters Limited (“Key Crafters”, “we”, “us”, or “our”), we respect your privacy and are committed to protecting your personal data. This Privacy Policy explains what information we collect, how we use it, how long we keep it, and your rights under UK data protection law. UK businesses that process personal data must comply with the UK GDPR and the Data Protection Act 2018, and privacy notices are the standard way to provide this information.
Who we are
Key Crafters Limited is the controller of the personal data collected through this website, which means we decide how and why your personal data is used. Companies House lists KEY CRAFTERS LIMITED as an active private limited company incorporated on 9 August 2024 with registered office address 128 City Road, London, EC1V 2NX.
If you need to contact us about this Privacy Policy or your personal data, please use the contact details shown on our website. Because this policy is published to meet transparency requirements, it should clearly identify the organisation responsible for handling personal data.
What we collect
We may collect and process the following categories of personal data:
- Your name
- Phone number
- Email address
- Vehicle details you provide, such as registration, make, model, and lock/key issue
- Location or address details for mobile callouts
- Messages submitted through our website forms, email, or phone
- Technical data such as IP address, browser type, device information, and website usage data collected through cookies or analytics tools, where used
We only collect information that is relevant to responding to enquiries, arranging bookings, providing locksmith services, improving our website, and meeting legal or business obligations. ICO guidance says privacy notices should explain what personal data is collected and why it is needed.
How we use your data
We may use your personal data to:
- Respond to your enquiries
- Provide quotations
- Arrange appointments and mobile callouts
- Verify vehicle and job details
- Supply automotive locksmith services
- Keep service records
- Send service-related communications
- Process payments or accounting records where applicable
- Improve website performance and user experience
- Comply with legal, regulatory, tax, insurance, or fraud-prevention obligations
Lawful bases
Under UK GDPR, we must have a lawful basis for using your personal data. Depending on the situation, we rely on one or more of the following:
- Contract — where we need your information to provide a quote, book a job, or carry out requested services
- Legitimate interests — where we use information to run and improve our business, respond to enquiries, prevent misuse, or maintain service records
- Legal obligation — where we must keep certain records for legal, tax, accounting, or regulatory reasons
- Consent — where required, for example for optional marketing communications or certain non-essential cookies
How we receive your data
We usually receive personal data directly from you when you:
- Fill in a contact or quote form
- Call, text, or email us
- Send a message through social media or another platform
- Request roadside or mobile locksmith assistance
- Provide vehicle information to allow us to assess or complete the job
We may also receive limited information from third-party platforms you choose to use to contact us, such as website form providers, email services, maps, analytics, spam protection, or payment services. Where third-party embedded content or services are used on a website, those providers may also process data according to their own privacy policies.
Sharing your data
We do not sell your personal data. We may share it only where necessary with:
- Website, hosting, email, form, security, or analytics providers
- Payment processors or accounting providers
- Insurers, legal advisers, or professional advisers
- Law enforcement, regulators, or fraud-prevention bodies where required
- Suppliers or service partners where needed to support your booking or enquiry
If service providers process data on our behalf, they must only do so in line with our instructions and applicable data protection law. ICO guidance for small organisations stresses that organisations remain responsible for explaining what happens to people’s information.
Cookies and website data
Our website may use cookies or similar technologies to help it function, improve performance, and understand how visitors use the site. ICO guidance for privacy notices and cookies says organisations should explain what cookies are used and what they do.
Some cookies may be essential for website operation. Others, such as analytics or embedded media cookies, may be optional and depend on how the website is configured. If you use a cookie banner or consent tool, visitors should be able to manage non-essential cookie choices there.
How long we keep data
We keep personal data only for as long as necessary for the purpose it was collected, including to respond to enquiries, carry out services, maintain records, resolve disputes, and comply with legal, tax, or insurance obligations. ICO guidance says privacy notices should explain retention periods, or if exact periods are not possible, the criteria used to decide them.
Retention periods may vary depending on the type of enquiry, whether work was completed, and any legal or financial record-keeping requirements. When data is no longer needed, it will be securely deleted or anonymised where appropriate.
Your rights
Under UK data protection law, you may have the right to:
- Request access to your personal data
- Request correction of inaccurate data
- Request erasure of your data in some circumstances
- Request restriction of processing
- Object to certain processing
- Request transfer of your data where applicable
- Withdraw consent where consent is the lawful basis
- Complain to the Information Commissioner’s Office (ICO) if you believe your data has been handled unlawfully
The ICO is the UK data protection regulator and provides guidance and complaint routes for individuals and businesses.
Security
We take reasonable technical and organisational steps to protect personal data against unauthorised access, loss, misuse, or disclosure. Data protection guidance for small organisations emphasises the need for appropriate safeguards when handling personal information.
However, no website or transmission method is completely secure, so we cannot guarantee absolute security. You should also take care when sending information online.
Third-party links
This website may contain links to third-party websites or embedded content. If you follow links to other sites or interact with embedded content, those third parties may collect and process your data under their own privacy policies. The default WordPress privacy text also notes that embedded content can behave as though the visitor has visited the other website directly.
We are not responsible for the privacy practices of third-party websites, and you should read their policies before submitting personal data.
Changes to this policy
We may update this Privacy Policy from time to time to reflect changes to our website, services, legal obligations, or data practices. ICO guidance encourages organisations to keep privacy notices accurate and up to date.
The latest version will always be published on this page with the updated date shown at the top.
Contact and complaints
If you have any questions about this Privacy Policy or want to exercise your data rights, please contact Key Crafters using the contact details shown on this website.
You also have the right to make a complaint to the Information Commissioner’s Office (ICO) if you are unhappy with how your personal data has been used.