ELRU
Services About Book a call
Home / Privacy Policy

Privacy Policy

Last updated: 5 July 2026

This policy explains how ELRU — a trading name of Daniel Dumitru, a sole trader based in Basildon, Essex, United Kingdom (“ELRU”, “we”, “I”) — collects, uses and protects your personal data. We are the data controller for the information described here.

We handle personal data in accordance with the UK GDPR, the Data Protection Act 2018, and, where we serve clients or visitors in the EU/EEA, the EU GDPR (Regulation (EU) 2016/679).

1. What we collect

  • Enquiry data you send us via the contact form, email, phone or WhatsApp — e.g. your name, email address, phone number, company and the content of your message.
  • Client data exchanged during an engagement, as set out in the relevant contract or statement of work.
  • Technical data — limited server and security logs (e.g. IP address, request time) processed by our infrastructure provider to deliver and protect the site.

This website uses no advertising or tracking cookies and no third-party analytics. See our Cookie Policy.

2. Why we use it & our lawful basis

  • To respond to your enquiry and discuss potential work — lawful basis: legitimate interests (responding to a request you initiated) and/or steps prior to entering a contract.
  • To deliver services to clients — lawful basis: performance of a contract.
  • To keep the site secure and available — lawful basis: legitimate interests.
  • To meet legal and accounting obligations — lawful basis: legal obligation.

3. Who we share it with

We do not sell your data. We share it only with service providers acting as our processors, so far as necessary:

  • Cloudflare, Inc. — website delivery, DNS and email routing.
  • Google (Gmail) — receiving forwarded enquiry email.
  • Professional advisers (e.g. accountant) and authorities where required by law.

Where personal data is processed for AI services, we prioritise systems that run on infrastructure we own within the EU, and we do not feed client data into publicly-trained AI models without explicit agreement.

4. International transfers

Some providers may process data outside the UK/EEA. Where they do, we rely on appropriate safeguards such as adequacy decisions or Standard Contractual Clauses / the UK Addendum.

5. How long we keep it

Enquiry data is kept only as long as needed to deal with your request and for a reasonable follow-up period. Client and financial records are kept for as long as required by law (typically up to 6 years for UK tax records). We delete or anonymise data when it is no longer needed.

6. Your rights

Under UK/EU GDPR you have the right to: access your data; have it corrected or erased; restrict or object to processing; data portability; and to withdraw consent at any time. To exercise any right, email [email protected].

You also have the right to complain to a supervisory authority. In the UK this is the Information Commissioner’s Office (ICO), ico.org.uk. In the EU/EEA, your local data protection authority.

7. Security

We apply appropriate technical and organisational measures — including encryption in transit (HTTPS), access controls and EU-hosted infrastructure for sensitive workloads — to protect personal data against unauthorised access, loss or misuse.

8. Changes

We may update this policy from time to time. The “last updated” date above shows the latest version.

9. Contact

Data controller: Daniel Dumitru, trading as ELRU, Basildon, Essex, UK. Email: [email protected] · [email protected] · +44 7476 199 786.

ELRU
AI systems & security for growing businesses.
Daniel Dumitru — Sole Trader (UK, HMRC registered) · Basildon, Essex
ServicesAboutContact
PrivacyTermsCookies
Not VAT registered (UK) · +44 7476 199 786 · [email protected]
© 2026 ELRU · elru.uk · elru.co.uk