Last updated: Tuesday June 30, 2026

This Privacy Policy explains how Coldlytics Ltd ("Coldlytics", "we", "us", or "our") collects, uses, shares, and protects personal data. It also explains your rights under UK data protection law.

1. Who we are

Coldlytics Ltd is a company registered in England and Wales. We provide a B2B lead generation and contact data platform that helps businesses find and reach prospective customers.

For the purposes of UK data protection law, Coldlytics Ltd is the data controller of the personal data described in this policy.

  • Company: Coldlytics Ltd
  • Registered address: Albert House, 256-260 Old St, London, EC1V 9DD, United Kingdom
  • Contact for privacy matters: privacy@coldlytics.com]

2. The personal data we collect

We collect personal data in three broad ways.

a. Information you give us. When you create an account, subscribe to a plan, or contact us, we collect data such as your name, business email address, company name, job role, account credentials, billing and payment details, and the content of your communications with us.

b. Information we collect automatically. When you use our website and platform, we collect technical and usage data such as your IP address, device and browser type, pages viewed, features used, and similar information, including through cookies and similar technologies (see our Cookie Notice).

c. Business contact information in our database. Coldlytics maintains a database of business (B2B) contact information that we make available to our customers. This may include a person's name, job title, business email address, business phone number, and the company they work for. We collect this information from publicly available sources, our own research, and third-party data providers. See section 10 for information specifically for people whose details appear in this database.

3. How and why we use personal data

We use personal data for the following purposes, relying on the lawful bases shown.

  • To provide and manage the service (creating your account, delivering data and features you request). Lawful basis: performance of a contract.
  • To take payment and manage billing. Lawful basis: performance of a contract and compliance with a legal obligation.
  • To provide customer support and respond to enquiries. Lawful basis: performance of a contract and our legitimate interests.
  • To operate, secure, analyse, and improve our platform. Lawful basis: our legitimate interests in running and improving a reliable service, and where required, your consent.
  • To send service and, where permitted, marketing communications. Lawful basis: your consent, or our legitimate interests, and in line with applicable marketing laws. You can opt out of marketing at any time.
  • To build and maintain our B2B contact database and provide it to customers. Lawful basis: our legitimate interests, and the legitimate interests of our business customers, in connecting businesses with relevant prospects, balanced against the rights of the individuals concerned.
  • To prevent fraud and abuse and to keep our service secure. Lawful basis: our legitimate interests and compliance with a legal obligation.
  • To comply with our legal obligations. Lawful basis: compliance with a legal obligation.

4. Cookies and similar technologies

We use cookies and similar technologies to operate our website, remember your preferences, keep you signed in, and understand how the service is used. Non-essential cookies (such as analytics) are used only where you have given consent. For full details, please see our Cookie Notice.

5. How we share personal data

We do not sell your account information. We share personal data in the following circumstances.

  • Service providers (processors) who help us run our business, under contracts that require them to protect your data. These include providers of cloud hosting and infrastructure, payment processing, email delivery, customer support and messaging, product analytics, identity and authentication, email verification, and referral tracking. Our key providers include Amazon Web Services, Stripe, SendGrid, Intercom, Mixpanel, and ZeroBounce. [Maintain a current list and update as needed.]
  • CRM and tool integrations you choose to connect. When you connect a third-party tool such as HubSpot and push data to it, we transfer that data to that service on your instruction. Your use of that third party is governed by their own privacy policy.
  • Professional advisers, and in connection with a business sale, merger, or reorganisation.
  • Legal and regulatory disclosures where required by law, court order, or to protect our rights, users, or the public.

6. International data transfers

We are based in the United Kingdom, and many of our customers and service providers are located in the United States and elsewhere. Where we transfer personal data outside the UK, we put appropriate safeguards in place, such as transfers to countries the UK has deemed adequate, the UK International Data Transfer Agreement or Addendum to the EU Standard Contractual Clauses, or other lawful transfer mechanisms, together with additional protections where appropriate.

7. How long we keep personal data

We keep personal data only for as long as necessary for the purposes set out in this policy, including to provide the service, meet our legal, accounting, and reporting obligations, and resolve disputes. Account data is generally kept for the life of your account and for a reasonable period afterwards. Business contact data is retained while it remains accurate and useful for our service, and is updated or removed as appropriate.

8. How we keep personal data secure

We use appropriate technical and organisational measures to protect personal data, including encryption of sensitive data, access controls, and secure infrastructure. No method of transmission or storage is completely secure, but we work to protect your information and to address any incidents promptly.

9. Your rights

Under UK data protection law you have the right to:

  • access the personal data we hold about you;
  • ask us to correct inaccurate or incomplete data;
  • ask us to delete your data;
  • object to, or ask us to restrict, our processing;
  • request portability of certain data;
  • withdraw consent where we rely on it; and
  • complain to a supervisory authority.

To exercise any of these rights, contact us at privacy@coldlytics.com]. You also have the right to complain to the UK Information Commissioner's Office (ICO) at ico.org.uk.

10. Individuals in our business contact database

If you are a business professional and your contact details appear in our database, this section is for you.

We collect business contact information from publicly available sources, our own research, and third-party providers, and we make it available to our business customers for B2B outreach. We rely on legitimate interests as our lawful basis for this processing. We process business contact details, not special category data.

You have the right to object to this processing and to ask us to correct or delete your information. To do so, contact us at privacy@coldlytics.com] and we will action your request. We will also tell you, on request, the source of your data where we are able to.

11. Children's privacy

Our service is intended for businesses and is not directed at children. We do not knowingly collect personal data from anyone under 16.

12. Third-party websites

Our website and platform may link to third-party sites we do not control. This policy does not apply to those sites, and we encourage you to read their privacy policies.

13. Changes to this policy

We may update this policy from time to time. We will post the updated version here and change the "Last updated" date above. Where changes are significant, we will take reasonable steps to notify you.

14. How to contact us

If you have any questions about this policy or how we handle your personal data, contact us at:

Coldlytics Ltd
Albert House, 256-260 Old St, London, EC1V 9DD, United Kingdom
privacy@coldlytics.com