Privacy Policy

How we collect, use, and protect your personal information.

Last updated: 11 February 2026

1. Introduction

QuoteHeaven Ltd (“we”, “us”, “our”) is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store, and share your personal data when you use our website at quoteheaven.co.uk (the “Site”) and our funeral director comparison services (the “Services”).

We are the data controller for the purposes of the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. Our registered address is Suite 12, Victoria House, London, EC2A 4NE, United Kingdom.

If you have any questions about this policy or our data practices, please contact our Data Protection Officer at privacy@quoteheaven.co.uk.

2. Data We Collect

We may collect and process the following categories of personal data:

2.1 Information You Provide to Us

Quote request data: Name, email address, telephone number, postcode, and details about the type of funeral service you are seeking.
Contact form data: Name, email address, telephone number, and the content of your message when you contact us.
Account data: If you create an account, your name, email address, and password (stored in encrypted form).
Review data: If you leave a review, your name, location, and the content of your review.

2.2 Information We Collect Automatically

Technical data: IP address, browser type and version, operating system, device type, screen resolution, and time zone setting.
Usage data: Pages visited, time spent on pages, click patterns, referring website, and navigation paths through our Site.
Cookie data: Information collected through cookies and similar tracking technologies (see Section 6 below).

2.3 Information from Third Parties

Partner feedback: Funeral directors in our network may provide us with confirmation that they have been in contact with you, and the outcome of any arrangements made.
Analytics providers: We may receive aggregated or pseudonymised analytics data from third-party services such as Google Analytics.

3. How We Use Your Data

We process your personal data for the following purposes and on the following legal bases:

Purpose	Legal Basis
To provide you with funeral director quotes and comparison results	Performance of a contract / Legitimate interest
To share your details with matched funeral directors so they can provide quotes	Performance of a contract / Your consent
To respond to your enquiries and provide customer support	Legitimate interest
To send you service-related communications (e.g. quote confirmations)	Performance of a contract
To send you marketing communications (only with your explicit consent)	Consent
To improve our Site, Services, and user experience	Legitimate interest
To detect and prevent fraud or misuse of our Services	Legitimate interest / Legal obligation
To comply with legal and regulatory obligations	Legal obligation

We take the sharing of your personal data very seriously. We will only share your information in the following circumstances:

Funeral directors: When you request quotes, we share your contact details and service requirements with matched funeral directors in our network so they can provide you with quotes. We only share the minimum information necessary, and only with funeral directors you have been matched with.
Service providers: We use carefully selected third-party service providers to help us operate our business, including hosting providers, email service providers, payment processors, and analytics services. These providers are contractually bound to process your data only on our instructions and in accordance with UK GDPR.
Legal requirements: We may disclose your data if required to do so by law, regulation, or court order, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.
Business transfers: In the event of a merger, acquisition, or sale of all or part of our business, your personal data may be transferred to the acquiring entity. We will notify you of any such transfer and any changes to this Privacy Policy.

We will never sell your personal data to third parties for marketing purposes.

5. International Data Transfers

Your data is primarily stored and processed within the United Kingdom and the European Economic Area (EEA). Where we transfer data outside the UK or EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the UK Information Commissioner, or transfers to countries with an adequacy decision.

6. Cookies and Tracking Technologies

Our Site uses cookies and similar technologies to distinguish you from other users, to improve your experience, and to help us understand how our Site is used.

6.1 Types of Cookies We Use

Strictly necessary cookies: Essential for the Site to function properly. These include session cookies, CSRF protection tokens, and authentication cookies. You cannot opt out of these cookies.
Functional cookies: Used to remember your preferences and settings, such as your postcode or cookie consent choices.
Analytics cookies: Help us understand how visitors interact with our Site by collecting anonymous usage data. We use Google Analytics with IP anonymisation enabled.
Marketing cookies: Used to track visitors across websites to display relevant advertisements. These are only set with your explicit consent.

6.2 Managing Cookies

When you first visit our Site, you will be presented with a cookie consent banner that allows you to accept or reject non-essential cookies. You can change your cookie preferences at any time by clicking the “Cookie Settings” link in the footer of our Site.

You can also manage cookies through your browser settings. Please note that disabling certain cookies may affect the functionality of our Site.

7. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by law. Our standard retention periods are:

Quote request data: Retained for up to 24 months from the date of your last interaction with us, after which it is securely deleted or anonymised.
Contact form messages: Retained for up to 12 months after the enquiry has been resolved.
Account data: Retained for the duration of your account and for 12 months after account closure.
Analytics data: Aggregated and anonymised analytics data may be retained indefinitely for statistical purposes.
Legal and compliance records: Retained for up to 7 years in accordance with UK legal and regulatory requirements.

8. Data Security

We take the security of your personal data seriously and implement appropriate technical and organisational measures to protect it, including:

Encryption of data in transit using TLS/SSL (HTTPS)
Encryption of sensitive data at rest
Regular security assessments and vulnerability testing
Access controls and staff training on data protection
Secure password hashing using industry-standard algorithms
Regular backups with encrypted storage

While we take all reasonable precautions, no method of transmission over the Internet or electronic storage is completely secure. We cannot guarantee absolute security of your data.

9. Your Rights

Under the UK GDPR, you have the following rights in relation to your personal data:

Right of access: You have the right to request a copy of the personal data we hold about you (a “Subject Access Request”).
Right to rectification: You have the right to request that we correct any inaccurate or incomplete personal data we hold about you.
Right to erasure: You have the right to request that we delete your personal data in certain circumstances (the “right to be forgotten”).
Right to restrict processing: You have the right to request that we restrict the processing of your personal data in certain circumstances.
Right to data portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format.
Right to object: You have the right to object to the processing of your personal data where we rely on legitimate interest as our legal basis.
Right to withdraw consent: Where we process your data based on consent, you have the right to withdraw that consent at any time.
Rights related to automated decision-making: You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal or similarly significant effects.

To exercise any of these rights, please contact us at privacy@quoteheaven.co.uk. We will respond to your request within one month. In some cases, we may need to verify your identity before processing your request.

If you are not satisfied with our response, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO) at ico.org.uk or by calling 0303 123 1113.

10. Children’s Privacy

Our Services are not directed at individuals under the age of 18. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a child, please contact us immediately and we will take steps to delete it.

11. Links to Third-Party Websites

Our Site may contain links to third-party websites, including the websites of funeral directors in our network. This Privacy Policy applies only to our Site. We are not responsible for the privacy practices of third-party websites, and we encourage you to read their privacy policies before providing any personal data.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will notify you by posting a prominent notice on our Site or by sending you an email (if we have your email address).

We encourage you to review this page periodically to stay informed about how we protect your personal data.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: privacy@quoteheaven.co.uk
Post: Data Protection Officer, QuoteHeaven Ltd, Suite 12, Victoria House, London, EC2A 4NE
Phone: 0800 123 4567