Privacy Policy
Last updated: 30 March 2026
1. Who We Are
Voltrade is operated by GAM Administration LLP ("we", "us", "our"), a limited liability partnership registered in England. We are the data controller for the personal data collected through voltrade.co.uk.
Contact: [email protected]
2. What Data We Collect
| Data type | When collected | Purpose |
|---|
| Name, email, phone | When you book a repair or create an account | To process your booking and contact you |
| Postcode and address | When you book a repair | To match you with local engineers |
| Payment details | When you pay for a repair | Processed by Stripe - we never see or store your full card details |
| Problem description | When you describe the repair needed | To prepare the engineer and provide AI analysis |
| IP address | Automatically when you visit the site | Security, rate limiting, fraud prevention |
| Device/browser info | Automatically via Cloudflare | Security and performance optimisation |
For engineers: We also collect trade qualifications, Gas Safe registration numbers, insurance details, and bank/payment details for payouts. These are necessary to verify your credentials and pay you for completed work.
3. Lawful Basis for Processing
- Contract: Processing your booking, managing your account, processing payments, and communicating about your repairs.
- Legitimate interest: Fraud prevention, platform security, AI diagnostic improvement, and service quality monitoring.
- Consent: Marketing emails (opt-in only). You can withdraw consent at any time.
- Legal obligation: Financial record-keeping, tax compliance, and responding to lawful requests from authorities.
4. How We Use Your Data
- Process and manage your repair bookings
- Match you with available, qualified engineers in your area
- Provide AI-powered fault estimates (your problem descriptions are processed by AI - see section 9)
- Send booking confirmations, engineer updates, and review requests via email and SMS
- Process payments through Stripe
- Verify engineer qualifications and insurance
- Improve our service through anonymised, aggregated analytics
- Prevent fraud and abuse of the platform
5. Payment Processing
Payments are processed by Stripe, Inc. When you enter payment details, they are transmitted directly to Stripe's PCI-DSS compliant infrastructure. We never see, store, or have access to your full card number. We only receive confirmation that payment was successful and the last four digits for your records.
For engineer payouts, we use Stripe Connect. Engineers provide their bank details directly to Stripe.
6. Data Sharing
We share your data only with:
- Engineers: Your name, phone number, address, and problem description are shared with the engineer assigned to your repair. This is necessary to complete the service.
- Stripe: Payment processing. See Stripe's privacy policy at stripe.com/privacy.
- Brevo: Email and SMS delivery. See Brevo's privacy policy at brevo.com/legal/privacypolicy.
- Cloudflare: Website delivery, security, and Turnstile bot protection. See Cloudflare's privacy policy at cloudflare.com/privacypolicy.
- Anthropic: Your problem descriptions are processed by Claude AI to generate fault estimates. No personally identifiable information (name, email, phone, address) is sent to Anthropic - only the technical problem description.
We do not sell your personal data. We do not share your data with any marketing third parties.
7. Data Retention
- Account data: Retained while your account is active. Deleted within 30 days of account closure, except where we need to keep records for legal or tax purposes.
- Booking records: Retained for 7 years for tax and accounting compliance.
- Payment records: Retained by Stripe according to their retention policy.
- AI diagnostic data: Anonymised problem descriptions may be retained indefinitely to improve our diagnostic accuracy. No personal data is retained in the AI training data.
- Log data (IP, device): Retained for 90 days for security purposes, then deleted.
8. Your Rights
Under UK GDPR, you have the right to:
- Access: Request a copy of the personal data we hold about you.
- Rectification: Ask us to correct inaccurate data.
- Erasure: Ask us to delete your data (subject to legal retention requirements).
- Restriction: Ask us to restrict processing of your data in certain circumstances.
- Portability: Request your data in a structured, machine-readable format.
- Object: Object to processing based on legitimate interest.
- Withdraw consent: For marketing communications, at any time.
To exercise any of these rights, email [email protected]. We will respond within 30 days.
You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk if you believe we have not handled your data correctly.
9. AI Processing
When you describe a repair problem on our platform, we use AI (powered by Anthropic's Claude) to estimate the likely fault, predicted parts, and repair difficulty. This helps engineers arrive prepared.
The AI receives only the technical problem description (e.g., "washing machine not spinning, drum turns by hand"). It does not receive your name, email, phone number, address, or any other personal identifying information. The AI does not make decisions about your booking - it provides estimates only. The engineer's on-site assessment always takes precedence.
10. Cookies and Tracking
We use minimal cookies:
- Authentication cookies: To keep you logged in to your account. Essential - cannot be disabled.
- Cloudflare Turnstile: Bot protection cookies set by Cloudflare. Essential for security.
- Analytics: We do not currently use Google Analytics or any third-party tracking cookies.
We do not use advertising cookies. We do not track you across other websites.
11. Security
We protect your data through:
- HTTPS encryption on all pages (TLS via Cloudflare)
- Cloudflare Turnstile bot protection on all forms
- Rate limiting on API endpoints
- Encrypted database backups with off-site storage
- Server-level firewall and intrusion detection (fail2ban)
- Password hashing (bcrypt) for engineer accounts
- No storage of payment card data (handled entirely by Stripe)
12. International Transfers
Your data is primarily processed and stored on servers in Germany (Hetzner) and routed through Cloudflare's global network. Some data is processed by Stripe (US) and Anthropic (US) under Standard Contractual Clauses and adequate data protection measures.
13. Children
Our services are not directed at children under 18. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will delete it.
14. Changes to This Policy
We may update this policy from time to time. Material changes will be communicated by email to registered users. The "last updated" date at the top reflects the most recent revision.
15. Contact
GAM Administration LLP
Email: [email protected]
Website: voltrade.co.uk
If you are unsatisfied with our response, you can contact the ICO:
Information Commissioner's Office
ico.org.uk | 0303 123 1113