IgnisPro IgnisPro

Privacy Policy

Last updated:

1. Introduction

This Privacy Policy explains how IgnisPro ("we", "us", "our") collects, uses, stores and protects personal data in connection with the IgnisPro fire safety and compliance management platform.

We are committed to processing personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Data Controller and Data Processor Roles

IgnisPro acts as:

  • Data Controller in relation to account, authentication, subscription and billing information.
  • Data Processor in relation to compliance records and other content entered into the platform by customer organisations.

Customer organisations remain responsible for ensuring that any personal data they enter into IgnisPro is lawfully obtained and processed.

3. Categories of Data Collected

  • Account holder name and email address
  • Organisation name and related account details
  • Encrypted authentication credentials
  • Subscription and payment metadata (processed securely via Stripe)
  • Platform usage logs and technical security data (IP address, device/browser information)
  • Compliance records created within the system (e.g. fire drills, fire risk assessments)

4. Lawful Basis for Processing

  • Performance of a contract (provision of the service)
  • Legitimate interests (security, fraud prevention, platform integrity)
  • Legal obligation (financial and regulatory compliance)

5. Purpose of Processing

Personal data is processed to:

  • Provide, maintain and improve the IgnisPro platform
  • Authenticate users and control access
  • Process subscription payments
  • Provide technical support
  • Maintain platform security and detect misuse

6. Data Minimisation

IgnisPro is designed to minimise the storage of personal data wherever possible. Users are encouraged to avoid recording unnecessary personal data within compliance logs.

7. Data Retention

Account data is retained while a subscription remains active. Upon termination, customer data may be retained for a limited period for legal, accounting, dispute resolution, backup, or security purposes.

8. Security Measures

We implement appropriate technical and organisational measures to protect data, including secure hosting infrastructure, encrypted communications (HTTPS), role-based access controls, and restricted administrative access.

While we take reasonable steps to protect data, no system can guarantee absolute security.

9. Third-Party Service Providers

IgnisPro uses reputable third-party providers for infrastructure and payment processing, including Stripe. These providers process data in accordance with their own privacy policies and applicable data protection laws.

10. International Data Transfers

Where third-party providers process data outside the United Kingdom, appropriate safeguards such as Standard Contractual Clauses (SCCs) or equivalent mechanisms are relied upon to ensure lawful transfer.

11. Data Breach Procedures

In the event of a personal data breach, IgnisPro will take appropriate steps in accordance with UK GDPR, including notification to affected organisations where required.

12. Your Rights

Under UK GDPR, individuals have the right to:

  • Access their personal data
  • Request correction of inaccurate data
  • Request erasure where applicable
  • Restrict or object to processing
  • Lodge a complaint with the Information Commissioner’s Office (ICO)

13. Changes to This Policy

We may update this Privacy Policy from time to time. The latest version will always be available on this page.

14. Contact

For privacy-related enquiries, please contact: support@ignispro.co.uk