Privacy Policy

This Privacy Policy explains how Tilio collects, uses and protects personal data when you use our website, contact us, enquire about our services, use our free tools, or work with us.

For the purposes of UK data protection law, the data controller is:

If you have any questions about this Privacy Policy or how we handle your personal data, please contact us using the details above.

We may collect and process the following categories of personal data:

Contact data

This may include your name, work email address, telephone number, company name and job title.

Enquiry data

This may include the information you submit through our contact form or when you speak to us about our services, such as your service interest, website, competitors, goals and any other details you choose to share.

Client and contract data

If you become a customer, this may include billing details, project information, communications, deliverables, reporting data and records relating to the services we provide.

Technical and usage data

This may include your IP address, browser type, device information, referring pages, pages viewed and general website usage data.

Marketing data

This may include your preferences in receiving marketing from us and your communication preferences.

Where you use one of our free tools, such as our AI Checker, we may also collect the domain name you submit and the results generated by the tool.

We do not intend to collect special category personal data through our website. Please do not send us sensitive personal data unless we ask for it and there is a clear reason to do so.

We collect personal data:

• directly from you when you complete a form, contact us, book a call, use one of our free tools, or become a customer
• automatically when you use our website, through server logs and cookies or similar technologies where applicable
• from publicly available sources, such as company websites or LinkedIn, where relevant to a business enquiry, a domain submitted through one of our free tools, or a service relationship
• from third parties you ask to share information with us, for example your colleagues or service providers

We use personal data for the following purposes:

To respond to enquiries and communicate with you

We use your data to reply to messages, arrange calls and discuss whether our services are a fit.

To provide our services

We use your data to onboard customers, deliver audits, provide reporting, manage projects, send invoices and support the client relationship.

To improve our website and services

We use technical and usage data to understand how our website is used and to improve performance, usability and security.

To operate free tools

We use data submitted to our free tools, including our AI Checker, to provide the requested output, operate and secure those tools, and review and improve their performance and usefulness.

To follow up on free tool submissions

Where a domain is submitted through one of our free tools, we may, where permitted by law, use publicly available business contact information associated with that domain to follow up about the results and services that may be relevant.

To send relevant marketing communications

We may send updates about our services, insights or resources where you have asked for them, or where we are otherwise allowed to do so by law.

To comply with legal and regulatory obligations

We may process personal data where this is necessary to comply with legal requirements or to protect our legal rights.

We rely on the following lawful bases under the UK GDPR:

Contract

Where processing is necessary to perform a contract with you or to take steps at your request before entering into a contract.

Legitimate interests

Where processing is necessary for our legitimate interests, including running and improving our business, responding to B2B enquiries, managing client relationships, operating free tools, securing our website, and understanding how our services are used, provided those interests are not overridden by your rights and freedoms.

Legal obligation

Where processing is necessary for us to comply with the law.

Consent

Where required, we rely on your consent, for example for certain cookies or some direct marketing activity. You can withdraw consent at any time.

We may contact you about our services, resources or updates where you have requested this, where you are a business contact and this is permitted by law, or where we otherwise have your consent.

This may include contacting a relevant business contact using publicly available business contact details where a domain has been submitted through one of our free tools and such contact is permitted by law.

You can opt out of marketing communications at any time by using the unsubscribe link in an email or by contacting us directly.

Our website may use cookies and similar technologies to make the site work, understand website usage and improve performance.

We may use:

• strictly necessary cookies, which are needed for the website to operate
• analytics cookies, which help us understand how visitors use the website
• other non-essential cookies, if we enable them in future

Where required by law, we will ask for your consent before setting non-essential cookies. You can manage your preferences through our cookie banner or browser settings.

We may share personal data with trusted third parties where necessary, including:

• website hosting and infrastructure providers
• analytics providers
• CRM, email and communications providers
• payment processors
• professional advisers such as accountants, lawyers or insurers
• regulators, courts, law enforcement or public authorities where required

We require service providers that process personal data on our behalf to do so only on our instructions and to keep it secure.

Some of our service providers may process personal data outside the UK.

Where personal data is transferred outside the UK, we will take appropriate steps to protect it, such as using providers in countries that benefit from adequacy regulations or using appropriate contractual safeguards.

We keep personal data only for as long as necessary for the purposes we collected it for, including legal, accounting and reporting requirements.

As a general guide:

• enquiry data is usually kept for up to 24 months
• client and contract records are usually kept for up to 6 years after the end of the relationship
• marketing data is kept until you unsubscribe or until we decide it is no longer relevant
• technical and analytics data is kept in line with the settings of the tools we use
• data relating to free tool submissions, including submitted domains and generated results, is usually kept for up to 24 months unless we need it for security, legal or evidential reasons

We may keep data for longer where we have a legal reason to do so.

Under UK data protection law, you may have the right to:

• request access to your personal data
• request correction of inaccurate data
• request deletion of your personal data
• object to or request restriction of processing
• request transfer of your personal data in certain circumstances
• withdraw consent where we rely on consent

These rights are not absolute, and some exceptions apply.

If you want to exercise any of your rights, please contact us using the details in section 1.

If you have concerns about how we handle your personal data, please contact us first and we will try to resolve the issue.

You also have the right to complain to the Information Commissioner’s Office (ICO), the UK regulator for data protection matters.

We take reasonable technical and organisational measures to protect personal data against unauthorised access, loss, misuse or alteration.

However, no method of transmission over the internet or electronic storage is completely secure, so we cannot guarantee absolute security.

Our website may contain links to third-party websites. We are not responsible for the privacy practices or content of those websites. You should read their privacy policies separately.

We may update this Privacy Policy from time to time. Please check this page periodically for any changes. The latest version will always be posted on this page.