JT AGRO LIMITED – PRIVACY POLICY
Last updated: 08-02-2026
1. Introduction
JT Agro Limited (“JT Agro”, “we”, “our”, or “us”) respects your privacy and is committed to protecting your personal data.
This Privacy Policy explains:
- What personal data we collect and how we use it.
- The lawful bases for our processing.
- How we store and transfer your data securely.
- Your rights under the UK GDPR, EU GDPR, and Data Protection Act 2018.
We process personal data both within and outside the United Kingdom and European Union.
2. Who We Are
Company Name: JT Agro Limited
Company registration number: 07433514
Registered office: Lees Mill Lane, Linthwaite, Huddersfield, West Yorkshire, HD7 5QE, United Kingdom
Email: info@jtcrop.com
Phone: +44 1484 848885
Website: https://jtcrop.uk
JT Agro Limited is the Data Controller for personal data collected through our websites, services, and customer interactions, unless stated otherwise.
3. Scope of This Policy
This Privacy Policy applies to:
- Visitors to our websites and web applications.
- Customers using our products, solutions, or services.
- Business contacts, suppliers, and partners.
- Individuals whose data we process for business operations or marketing.
It does not apply to:
- Employees or job applicants (covered under separate policies).
- Third-party websites linked from our services (see Section 16).
4. Personal Data We Collect
We collect different types of personal data depending on your interaction with us:
4.1 Data You Provide Directly
| Data Category | Examples | Purpose |
| Identity Data | Name, title, date of birth, company name | Identification, account creation |
| Contact Data | Email, phone number, billing/shipping address | Communication, invoicing |
| Financial Data | Bank or payment details, billing history | Transactional purposes |
| Account Data | Username, passwords, login credentials | Access to our digital platforms |
| Communications Data | Emails, chat messages, feedback | Customer service, record-keeping |
| Marketing Data | Preferences, opt-in/opt-out status | Direct marketing, newsletters |
4.2 Data Collected Automatically
| Data Type | Examples | Purpose |
| Technical Data | IP address, browser type/version, device ID | Website operation and analytics |
| Usage Data | Access times, pages visited, actions taken | Service performance, improvement |
| Cookies and Tracking Data | Analytics identifiers, session cookies | Personalisation, analytics |
4.3 Data from Third Parties
We may receive information from:
- Analytics or advertising providers (e.g., Google Analytics)
- Business partners and resellers
- Publicly available databases (e.g., Companies House)
5. Lawful Basis for Processing
We only process your personal data when permitted by law. Below is a matrix of processing activities and corresponding lawful bases:
| Purpose of Processing | Data Type | Lawful Basis under UK/EU GDPR |
| To register you as a customer | Identity, Contact | Contract necessity |
| To provide products or services | Identity, Financial, Account | Contract necessity |
| To process payments and invoices | Financial, Contact | Legal obligation / Contract |
| To manage customer relationships | Identity, Contact, Communication | Legitimate interest |
| To send marketing communications | Contact, Marketing | Consent / Legitimate interest |
| To improve our website and services | Usage, Technical | Legitimate interest |
| To comply with legal obligations | All | Legal obligation |
| To ensure security and fraud prevention | Technical, Account | Legitimate interest |
| To transfer data internationally | All | Adequate safeguards (SCCs, etc.) |
6. How We Use Your Personal Data
We use your data for the following purposes:
- To deliver services – process orders, provide support, manage user accounts.
- To improve performance – analyse technical and usage data.
- To personalize experiences – tailor content, features, and recommendations.
- To comply with legal and tax obligations.
- To send updates or marketing, if you’ve opted in.
- For security purposes, to detect and prevent fraud or misuse.
We do not sell, rent, or lease personal data to any third parties.
7. Data Retention
We retain personal data for only as long as necessary for the purposes described above or to comply with legal requirements.
Typical retention periods:
- Customer records: 6 years after the last interaction.
- Financial transactions: 7 years for accounting compliance.
- Marketing data: until you withdraw consent or after 24 months of inactivity.
8. Data Sharing and Disclosure
We may share your data with:
- Service Providers / Processors – cloud hosting (AWS), analytics, email systems, and IT support.
- Professional Advisors – auditors, accountants, and legal counsel.
- Regulatory Authorities – HMRC, ICO, or other agencies if required by law.
- Business Transfers – if our company merges or is acquired, data may transfer as part of the transaction.
All processors are bound by written Data Processing Agreements (DPAs) ensuring GDPR compliance, confidentiality, and limited purpose processing.
9. International Data Transfers (AWS in India)
Our systems are hosted on Amazon Web Services (AWS) servers located in Mumbai, India.
When transferring personal data outside the UK or EEA, we ensure:
- Transfers comply with UK GDPR Chapter V requirements.
- Standard Contractual Clauses (SCCs) approved by the European Commission or ICO International Data Transfer Addendum are implemented.
- Additional security measures are applied (encryption, pseudonymisation, limited access).
AWS is a certified and compliant processor under ISO 27001, SOC 2, and meets data protection obligations.
10. Data Security
We implement appropriate technical and organizational measures to protect your data, including:
- End-to-end encryption (AES-256 and TLS 1.3)
- Access control and multi-factor authentication
- Role-based data permissions
- Regular data integrity and penetration testing
- Backups stored in secure, geographically separate locations
11. Automated Decision-Making and Profiling
JT Agro does not perform fully automated decision-making that has legal or significant effects.
Where profiling (e.g., marketing segmentation) occurs, it is based on legitimate interest and does not override your rights. You have the right to object to profiling at any time.
12. Your Data Protection Rights
Under the UK and EU GDPR, you have the following rights:
| Right | Description |
| Access (Art. 15) | Obtain a copy of your data and processing details. |
| Rectification (Art. 16) | Correct inaccurate or incomplete data. |
| Erasure (Art. 17) | Request deletion (“right to be forgotten”). |
| Restriction (Art. 18) | Limit processing in certain circumstances. |
| Portability (Art. 20) | Receive your data in a structured format. |
| Objection (Art. 21) | Object to processing based on legitimate interests. |
| Withdraw Consent | Withdraw marketing or consent-based processing. |
To exercise your rights, contact us at: info@jtcrop.com
We will respond within 30 days as required under GDPR.
13. Cookies and Tracking Technologies
Our website uses cookies for:
- Functional operation
- Analytics and performance (Google Analytics)
- Marketing and remarketing
You can manage cookies in your browser.
14. Data Processing on Behalf of Clients
When JT Agro acts as a Data Processor:
- We process personal data only per the documented instructions of the controller.
- We ensure confidentiality and staff training.
- We implement security controls per Article 32 of GDPR.
- We assist controllers with Data Subject Requests (DSRs).
- Upon contract termination, we delete or return all personal data securely.
15. Data Breach Management
In the event of a personal data breach:
- We will notify the ICO within 72 hours where required.
- If the breach poses a high risk to individuals, we will also notify affected persons directly.
- All incidents are also documented internally.
16. Third-Party Links
Our website may contain links to third-party sites. We do not control and are not responsible for their privacy practices. We encourage you to review their privacy policies before providing any data.
17. Children’s Privacy
Our services are not directed at children under 18 years. We do not knowingly collect data from minors. If you believe we have done so inadvertently, contact us to delete such data.
18. Changes to This Policy
We may update this Privacy Policy from time to time. Any changes will be posted on our website, and the “Last Updated” date will be revised. Significant changes will be communicated directly to you when possible.
19. Contact Us
If you have questions or wish to exercise your rights, please contact:
Data Protection Officer
JT Agro Limited
Lees Mill Lane, Linthwaite, Huddersfield, West Yorkshire, HD7 5QE, UK
Email: info@jtcrop.com
Phone: +44 1484 848885
If you are dissatisfied, you may file a complaint with:
Information Commissioner’s Office (ICO)
Website: www.ico.org.uk
Telephone: +44 (0)303 123 1113
By using our website or services, you acknowledge that you have read and understood this Privacy Policy and consent to the processing of your personal data as described herein.
