a) Technical Data (Analytics & Security) When you visit our website, we automatically collect limited technical information to help us monitor performance, ensure security, and protect against malicious activity. This information includes:

The page(s) you visited

Your session identifier (a random ID generated for your visit)

Your IP address

Your browser type and version (User-Agent)

The website that referred you (if any)

A technical “suspicion score” we use to help detect automated bots

We do not attempt to identify you personally using this data, nor do we combine it with any other data for profiling or marketing purposes.

b) Contact Form Submissions If you use our contact form, we collect the information you choose to provide, including:

Your name

Your email address

Your company name (if supplied)

The content of your message

This information is processed for the purpose of responding to your enquiry.

We process data under the following legal bases: Legitimate interest – for technical data collection that helps us maintain the security and functionality of the site. Legitimate interest / contract – for contact form submissions, as it is necessary for us to respond to your enquiry and provide information you requested. We do not use your personal data for marketing unless you have explicitly opted in.

We do not use cookies or similar tracking technologies for analytics, marketing, or profiling. Because no non-essential cookies are set, you will not see a cookie banner when visiting this website. Any data collection we perform is entirely server-side, as described above.

Technical data (IP, session, user-agent, etc.) is retained only as long as necessary for security and performance purposes — typically no longer than 60 days. Contact form submissions are kept only for as long as needed to respond to your enquiry and for up to 12 months for reference, unless required for legal or contractual purposes. After these periods, the data is securely deleted or anonymised.

We take appropriate technical and organisational measures to protect your data, including:

Restricting access to stored data

Using secure server connections (HTTPS)

Protecting data stored in databases and email systems

Regularly reviewing and deleting old records

Technical data is stored securely on our hosting servers. Contact form submissions are sent to us via email and may be stored in our email system. We do not sell, rent, or share your data with third parties except where necessary to operate our website or respond to your enquiry (for example, our hosting or email provider).

Under GDPR, you have the right to:

Request access to the personal data we hold about you

Request correction or deletion of your data

Object to our processing of your data

Lodge a complaint with a data protection authority

Since we do not attempt to identify individual visitors in our technical logs, fulfilling requests may be limited to data such as IP addresses or contact form submissions. To exercise your rights, please contact us at hello@ontrackinternational.com.

We may update this policy from time to time. Any changes will be posted on this page with an updated “last updated” date.

If you have any questions about this policy or how we handle your data, you can contact us at: OnTrack International Limited, New Mead Barn, Wickham Hall, Hadham Road, Bishop's Stortford, Herts, CM23 1JG, U.K., or on email at hello@ontrackinternational.com