Two Keys Security

Legal

Privacy policy.

What we do with your data when you call us, message us or fill in the form. Plain English, no scary legalese.

Last updated: 17 April 2026

01

Who we are.

Two Keys Security is a small, family-run locksmith based in Egham, Surrey (TW20). We're the people responsible for any data you give us — what's known under UK GDPR as the data controller.

If you'd rather phone or post us about anything in this policy, you can reach us on 07743 671334 or by email at hello@twokeyssecurity.com.

02

What we collect.

When you fill in the contact form on this site, we collect:

  • Your name
  • Your phone number
  • Your postcode (so we know whether we can reach you)
  • The type of job and any message you write

When you call or WhatsApp us, we'll see your number and whatever you tell us. We may write down your address and a quick note about the job in our work diary.

When you visit this website, our hosting provider (Netlify) keeps short-lived server logs containing your IP address and the page you visited. These are used for security and to keep the site running — we don't read or use them for marketing.

We don't ask for or store your bank details, card numbers, date of birth, or anything else not listed above.

03

Why we collect it.

One reason: so we can do the job you asked us to do.

If you ask us for a quote, we use your details to ring you back, give you a number and turn up at the right address. If you book us in, we keep enough detail to invoice you and answer questions later if there's a problem with the work.

The lawful basis under UK GDPR is contract (Article 6(1)(b)) — we need your data to provide the service — or, where you've reached out without booking yet, legitimate interest in responding to your enquiry.

04

How long we keep it.

  • Enquiries that don't lead to a booking — kept for up to 12 months in case you come back to us, then deleted.
  • Customer records (jobs we've done) — kept for 7 years to comply with HMRC requirements for tax records.
  • Server logs — kept by Netlify for up to 30 days, then automatically deleted.

05

Who we share it with.

In short — almost nobody.

We use a few service providers to run the business. They process your data on our behalf, under contract, and aren't allowed to do anything else with it:

  • Netlify, Inc. — hosts the website and processes contact-form submissions. Their privacy policy.
  • Our accountant — sees customer invoices for tax purposes only.
  • HMRC and other UK authorities — only if legally required to share information.

We never sell your data, and we don't pass it to marketers or advertisers — ever.

06

Cookies & tracking.

This site doesn't set any cookies. There's no Google Analytics, no Facebook Pixel, no tracking scripts of any kind.

If we add privacy-respecting analytics in future (Plausible or Cloudflare Web Analytics — both cookie-less and don't collect personal data) we'll update this policy and tell you here.

07

Your rights.

Under UK GDPR you have the right to:

  • See what we hold about you (a Subject Access Request).
  • Correct anything that's wrong.
  • Delete what we hold (subject to our HMRC obligation to keep tax records).
  • Restrict or object to how we use your data.
  • Get a copy of your data in a portable format.

Email hello@twokeyssecurity.com for any of the above. We'll respond within 30 days, usually quicker.

If you're not happy with how we've handled your data, you can complain to the Information Commissioner's Office (ICO). We'd much prefer you talked to us first so we can sort it.

08

How to contact us.

For anything privacy-related:

Phone

07743 671334

Email

hello@twokeyssecurity.com

Post

Two Keys Security
Egham, Surrey TW20

09

Changes to this policy.

If we change anything material, we'll update the "last updated" date at the top of this page. If the change affects how we use data we already hold, we'll email you about it directly.

Question about your data?

Just ask.

Email us
Call now WhatsApp