Last updated: 5 June 2026
1. Introduction and who we are
This privacy notice explains how we collect, use and protect your personal data when you use our website, smarttasker.co (the "Site"), contact us, or otherwise deal with us.
Smarttasker Limited ("we", "us", "our") is the controller responsible for personal data collected through the Site and in our direct dealings with you.
Registered name: Smarttasker Limited
Company number: 09889413 (registered in England and Wales)
Registered office: Suite A, James Carter Road, Mildenhall, Bury St Edmunds, Suffolk, IP28 7DE
Contact for privacy matters: [email protected]
We handle your personal data in accordance with the UK GDPR and the Data Protection Act 2018. By providing us with your data, you confirm that you are over 18.
2. The personal data we collect and why
Personal data means any information that can identify a living individual. It does not include anonymised data. We may collect and process the following categories:
Communication data — anything you send us, whether through a form on the Site, the chat widget, email, phone or social media, and our records of that correspondence. Purpose: to respond to you, keep records, and establish, exercise or defend legal claims. Lawful basis: our legitimate interests (replying to you, record-keeping and protecting our position).
Enquiry and prospect data — details you give when you ask about our services or request a quote, such as your name, business name, email, phone number and what you're interested in. Purpose: to deal with your enquiry and, where appropriate, take steps towards providing services. Lawful basis: legitimate interests, or taking steps to enter into a contract at your request.
Technical and usage data — your IP address, browser and device information, and information about how you use the Site, collected through cookies and similar technologies. Purpose: to operate, secure and improve the Site. Lawful basis: legitimate interests in running the Site properly and keeping it secure (and, for non-essential cookies, your consent — see section 7).
Marketing data — your preferences for receiving marketing from us and your communication preferences. Purpose: to send you relevant information about our services and measure its effectiveness. Lawful basis: your consent, or our legitimate interests where you are already a client or have enquired (see section 6).
If you become a client, we will also process the account and billing information needed to provide and invoice for our services, on the basis of our contract with you.
When you pay for our services, your payment is handled by our payment provider, Stripe. Stripe collects and processes your card details directly through its own secure systems; we do not see or store your full card number. We receive only limited transaction data, such as the payment amount, the date, and confirmation that payment succeeded. Purpose: to take and record payment for our services. Lawful basis: performance of our contract with you, and our legitimate interests in keeping accurate financial records.
3. Sensitive data and automated processing
3.1 Sensitive data. We do not seek to collect special category data (such as data about health, race, religion, sexual orientation, political opinions or trade union membership) or data about criminal convictions through the Site. Please do not submit such information through our forms or chat.
3.2 Artificial intelligence and automated processing. Smarttasker is an AI agency. The services we provide for clients include building AI systems, database reactivation campaigns, AI voice agents, AI chat, reputation and review management, and websites. Many of these services involve processing personal data using AI and automation.
When we deliver these services for a client, we do so on that client's instructions and on their behalf. The client decides whose data is processed and for what purpose, so the client is the controller and we are the processor for that activity (see section 4).
In your own direct dealings with us through the Site — for example, if you use our AI chat or submit an enquiry — we may use AI and automation to help us respond to and manage your enquiry. We do not make decisions that produce legal effects concerning you, or that similarly significantly affect you, based solely on automated processing. If this were ever to change, we would tell you and put in place the safeguards the law requires, including your right to request human involvement.
4. Data we process on behalf of our clients
A core part of our business is providing services such as database reactivation, reputation management, lead generation and AI voice, SMS and messaging campaigns for our clients. When we carry out this work, we process the contact data on behalf of the client, who is the controller of that data. In those cases we act as a processor, and that processing is governed by our agreement and data processing terms with the client — not by this privacy notice.
If you have been contacted as part of a campaign and want to know who holds your data, or wish to opt out, please contact us at [email protected] and we will direct your request to the relevant client (the controller) and action any opt-out on our side without delay.
5. How we collect your data
We collect personal data:
Directly from you — when you complete a form, use the chat, contact us, or deal with us as a client.
Automatically — as you use the Site, through cookies and similar technologies (see section 7).
From third parties and public sources — for example, our website, hosting and analytics providers, and publicly available sources such as Companies House, where relevant to our business.
6. Marketing and your choices
We will only send you marketing in line with the Privacy and Electronic Communications Regulations (PECR). You may receive marketing from us if you have asked us for information or are a client, unless you have opted out. Before sharing your data with any third party for their own marketing, we will ask for your consent.
You can opt out at any time by using the unsubscribe link in any marketing email, replying to ask us to stop, or emailing [email protected]. Opting out of marketing does not affect any service you have requested from us.
7. Cookies
The Site uses cookies and similar technologies. Cookies are small files placed on your device.
Essential cookies keep the Site working and do not require consent.
Non-essential cookies (for example, those set by our chat widget, or any future analytics or advertising tools) require your consent before they are set. Where these are used, we will ask for your consent through a cookie banner, and you can change your choices at any time.
You can also block or delete cookies through your browser settings, though some parts of the Site may not work properly if you do. [If you publish a separate cookie policy, link it here: smarttasker.co/cookie-policy]
8. Who we share your data with
We do not sell your personal data. We may share it with:
Service providers and platforms that help us run our business and deliver our services, including our CRM and marketing platform (GoHighLevel / HighLevel), telephony and messaging providers, AI service providers, our payment provider (Stripe), and our website and hosting providers. These act as our processors and may only use your data on our instructions.
Professional advisers such as accountants, lawyers, auditors and insurers.
Authorities or regulators where we are required to share data by law.
A buyer or successor if we sell, transfer or merge parts of our business.
We require all such third parties to protect your data and use it only for specified purposes in line with our instructions.
9. International transfers
Some of our providers (for example, GoHighLevel, Stripe, and certain AI and messaging services) are based outside the UK, including in the United States. Where your data is transferred outside the UK, we ensure an appropriate safeguard is in place, such as transfer to a country covered by UK adequacy regulations, or the UK International Data Transfer Agreement or the UK Addendum to the EU Standard Contractual Clauses. (We do not rely on the EU-US Privacy Shield, which is no longer a valid transfer mechanism.)
10. How long we keep your data
We keep personal data only for as long as necessary for the purposes set out in this notice, taking into account the nature of the data, the risk of harm, the purposes, and any legal requirements. As a general guide: enquiry and chat data is kept for [12–24 months] from your last contact unless you become a client; client and financial records are kept for [6 years] to meet legal and tax requirements. We may anonymise data for statistical purposes and keep it indefinitely. [Confirm these periods with your accountant/solicitor.]
11. How we protect your data
We use appropriate technical and organisational measures to protect personal data against accidental loss, unauthorised access, alteration or disclosure, and limit access to those who need it. We have procedures to deal with any suspected data breach and will notify you and the ICO where we are legally required to. No method of transmission over the internet is completely secure, but we take reasonable steps to safeguard your information.
12. Your legal rights
Under the UK GDPR you have the right to:
access the personal data we hold about you;
ask us to correct inaccurate or incomplete data;
ask us to delete your data (the "right to erasure");
restrict or object to our processing;
request the transfer (portability) of data you provided to us;
withdraw consent at any time, where we rely on consent.
To exercise any of these rights, contact us at [email protected]. There is normally no charge, but we may charge a reasonable fee or refuse to act if a request is clearly unfounded, repetitive or excessive. We may need to confirm your identity before acting, as a security measure. We aim to respond within one month, and will let you know if a complex request needs longer.
13. Complaints
If you have a concern about how we handle your data, please contact us first at [email protected] so we can try to resolve it. You also have the right to complain to the Information Commissioner's Office (ICO), the UK regulator, at ico.org.uk or by calling 0303 123 1113.
14. Third-party links
The Site may contain links to third-party websites, plug-ins and applications. We do not control them and are not responsible for their privacy practices. We encourage you to read the privacy notice of any website you visit.
15. Children
The Site and our services are not directed at children, and we do not knowingly collect data from anyone under 18 through the Site.
16. Changes to this notice
We may update this notice from time to time. The current version is always available on the Site, and the "Last updated" date above shows when it was last changed.
17. Contact us
For any privacy question or request, contact us at [email protected] or write to us at the registered office address above.