Last updated: 8 April 2026
Progle is the data controller for personal data processed in connection with our website and our provision of services. This page explains how we handle personal data under the UK GDPR and the Data Protection Act 2018.
Depending on how you interact with us, we may collect: identity and contact details (name, job title, employer, business email, phone, address); client and prospect information shared during sales discussions or engagements; billing information (we do not store full card details — card payments are handled by Wise); technical data such as IP address, browser, and device information when you visit our website; and the content of communications you exchange with us.
We collect personal data directly from you when you contact us or engage our services, automatically when you visit our website, and occasionally from third parties such as your employer, public registries, or referrers.
We process personal data to respond to enquiries (legitimate interests; pre-contract steps), to deliver services under client engagements (performance of a contract), to invoice and keep financial records (legal obligation; contract), to manage client and supplier relationships and run our business (legitimate interests), to send relevant business communications to existing clients (legitimate interests), to operate and secure our website (legitimate interests), to comply with legal, tax, and regulatory obligations (legal obligation), and to establish or defend legal claims (legitimate interests; legal obligation).
We share personal data only where necessary, with parties bound by appropriate confidentiality and data protection obligations. Categories of recipients include our payment processor (Wise Payments Ltd), cloud and IT service providers (hosting, email, file storage, source control, productivity tools), professional advisers (accountants, lawyers, insurers), subcontractors engaged on client projects, and authorities or regulators where required by law. We do not sell personal data and do not share it for third-party advertising.
Where personal data is transferred outside the UK, we rely on appropriate safeguards such as the UK International Data Transfer Agreement, the UK Addendum to the EU Standard Contractual Clauses, or transfers to jurisdictions covered by UK adequacy regulations.
We keep personal data only for as long as necessary. Typical retention periods are: prospect and enquiry data — up to 24 months from last contact; client engagement records and correspondence — for the duration of the engagement and 6 years after; invoicing and accounting records — 6 years, in line with UK statutory requirements; website technical data — typically 12 months.
We use appropriate technical and organisational measures to protect personal data, including access controls, encryption in transit, secure authentication, and supplier due diligence. No system is completely secure, but we maintain a level of security appropriate to the risk.
Our website uses a small number of cookies, which may include strictly necessary cookies (required for the site to function) and, where consented to, analytics cookies. You can manage cookie preferences in your browser at any time.
Under UK GDPR you have the right to access your personal data, to have it corrected or erased, to restrict or object to its processing, to data portability, and (where we rely on consent) to withdraw consent. To exercise any of these rights, contact gordon@gordonite.tech. We will respond within one month. You also have the right to lodge a complaint with the UK Information Commissioner’s Office (ico.org.uk; helpline 0303 123 1113), although we would appreciate the chance to address concerns directly first.
Progle Ltd, 1037 Sauchiehall Street, Glasgow, G3 7TZ, United Kingdom.
Email: gordon@gordonite.tech · Phone: +44 7943 848 239
Company number: SC634848 (registered in Scotland)