Privacy Policy

1. Who We Are

Legacy Bodyworks ("we", "our", or "us") is a professional car bodyshop based in the United Kingdom. We specialise in vehicle body repairs and restoration, including motorsport vehicles and high-end vehicles.

We are committed to protecting your privacy and complying with our obligations under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. What Information We Collect

We may collect and process the following data:

a. Personal Information

  • Full name

  • Contact details (email address, phone number, address)

  • Vehicle registration and make/model

  • Insurance information (if applicable)

b. Business or Motorsport Client Data

  • Company name and contact

  • Trailer or vehicle details

  • Job specifications or technical information

c. Website and Online Data

  • IP address

  • Browser type

  • Device and usage data

  • Cookies and analytics (Google Analytics, Meta Pixel)

3. How We Use Your Information

We process your data to:

  • Provide bodyshop services and quotations

  • Communicate about repairs, estimates, or project updates

  • Issue invoices and process payments

  • Manage customer service enquiries

  • Send occasional updates (if you opt in)

  • Comply with legal or insurance obligations

We do not sell your data or use it for automated decision-making.

4. Lawful Basis for Processing

We rely on the following lawful bases:

  • Contract: To fulfil our agreement with you (e.g., repair work)

  • Legal obligation: To comply with HMRC and insurance regulations

  • Legitimate interest: To manage and improve our services

  • Consent: For optional marketing communications

5. Who We Share Your Data With

We may share your data with:

  • Insurance companies or assessors (with your consent)

  • Vehicle parts suppliers or service partners

  • Payment processors (e.g., Stripe, PayPal, bank)

  • Our accountants or legal advisors

  • Regulatory authorities if required by law

All third parties we work with are GDPR-compliant.

6. Cookies and Analytics

Our website uses cookies to improve user experience and gather anonymised traffic data. This includes:

  • Google Analytics

  • Facebook Pixel (for remarketing)

You can adjust your cookie preferences via your browser settings or by using our cookie consent banner.

7. How We Store and Protect Your Data

We store your data securely using password-protected systems and encrypted backups. We retain data only for as long as necessary:

  • Financial records: 6 years (HMRC)

  • Customer job records: up to 7 years

  • Website enquiries: 12 months (unless ongoing)

8. Your Rights

You have rights under the UK GDPR, including:

  • The right to access your personal data

  • The right to correct inaccurate data

  • The right to request deletion (where appropriate)

  • The right to restrict or object to processing

  • The right to data portability

To exercise any of these rights, please contact us directly (see Section 10).

9. Children’s Privacy

We do not knowingly collect data from individuals under the age of 16.

10. Contact Us

If you have any questions or requests related to this policy, contact:

Legacy Bodyworks Ltd
Unit 4, Lower Ledge Farm, Chippenham, Wiltshire, SN14 8EY
Contact@legacybodyworks.co.uk

11. Complaints

If you are unhappy with how we use your data, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO):
Website: https://ico.org.uk
Phone: 0303 123 1113

12. Changes to This Privacy Policy

We may update this policy occasionally to stay compliant or reflect changes to our practices. The most recent version will always be available on our website.