Privacy Policy

1. Introduction

PYROCOMPLY ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our fire safety compliance platform.

We operate in compliance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and other applicable data protection laws.

2. Data Controller

PYROCOMPLY Ltd is the data controller responsible for your personal data.

3. Information We Collect

3.1 Personal Data

• Identity Data: Name, job title, professional certifications
• Contact Data: Email address, phone number, business address
• Account Data: Username, password (encrypted), account preferences
• Professional Data: Inspector certifications, qualifications
• Technical Data: IP address, browser type, device information
• Usage Data: How you use our platform, features accessed

3.2 Building and Compliance Data

• Building information: Addresses, floor plans, construction details
• Inspection reports and findings
• Fire safety equipment records
• Incident reports
• Compliance documentation
• Photographs and voice recordings (during inspections)

4. Legal Basis for Processing

We process your personal data on the following legal bases:

• Contract: Processing necessary for our service agreement with you
• Legal Obligation: Compliance with UK fire safety regulations
• Legitimate Interests: Improving our services, fraud prevention
• Consent: Where you have given explicit consent for specific processing

5. How We Use Your Information

• Provide and maintain our fire safety compliance platform
• Process and manage building inspections
• Generate compliance reports and certifications
• Send regulatory updates and notifications
• Manage your subscription and billing
• Provide customer support
• Improve our services and develop new features
• Comply with legal obligations

6. AI Processing

PYROCOMPLY uses artificial intelligence to enhance our services:

• AI-powered compliance analysis and recommendations
• Automated report generation
• Risk assessment predictions
• Regulatory interpretation assistance

AI processing is used to assist, not replace, professional fire safety judgements. All AI-generated outputs are reviewed and validated by qualified professionals.

7. Data Sharing

We may share your data with:

• Service Providers: Cloud infrastructure, payment processing, notification services
• Regulatory Bodies: When required by law or for enforcement actions
• Professional Bodies: For certification verification
• Your Organisation: With other authorised users in your organisation

We do not sell your personal data to third parties.

8. International Transfers

Your data may be processed in countries outside the UK. Where this occurs, we ensure appropriate safeguards are in place:

• Standard Contractual Clauses (SCCs)
• Adequacy decisions
• Binding Corporate Rules

9. Data Retention

We retain your data in accordance with legal requirements and our Data Retention Policy:

• Account data: Duration of account plus 7 years
• Inspection reports: 10 years (legal requirement)
• Compliance records: 10 years (Building Safety Act 2022)
• Audit logs: 7 years
• Marketing data: Until consent is withdrawn

10. Your Rights

Under UK GDPR, you have the right to:

• Access: Request a copy of your personal data
• Rectification: Correct inaccurate data
• Erasure: Request deletion (subject to legal retention requirements)
• Restriction: Limit how we use your data
• Portability: Receive your data in a structured format
• Object: Object to certain processing activities
• Withdraw Consent: Where processing is based on consent

To exercise these rights, contact us at dpo@pyrocomply.com

11. Security

We implement appropriate security measures including:

• Encryption in transit (TLS 1.3) and at rest (AES-256)
• Row Level Security (RLS) in our database
• Regular security audits and penetration testing
• Multi-factor authentication options
• Access controls and audit logging

12. Cookies

We use essential cookies for authentication and session management. For detailed information, see our Cookie Policy.

13. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of significant changes via email or platform notification.

14. Complaints

If you are not satisfied with how we handle your data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):

15. Contact Us

For questions about this Privacy Policy or our data practices: