For Business Customers of LTC Software Ltd

Last Updated: December 14, 2025 | Effective Date: December 14, 2025
LTC Software Ltd ("we", "our", or "us") operates the LTC Software Ltd CRM web application and mobile application (collectively, the "Services"). This privacy policy explains how we collect, use, disclose, and safeguard your business information when you, as a business customer, use our Services.
Important: This policy is designed for our business customers (B2B). For information about data retention, account deletion procedures, and GDPR compliance for your end customers, please see our Data Retention & GDPR Policy.
Jump to section:
1. Information We Collect | 2. Mobile App Permissions | 3. How We Use Your Information | 4. Data Storage and Security | 6. Your Rights and Choices | 12. Contact Information | Data Retention & GDPR Policy
As a business customer of LTC Software Ltd, we collect various types of information to provide you with a comprehensive and effective customer relationship management solution. This information enables us to deliver, maintain, and improve our Services while ensuring a secure business environment. We are committed to transparency regarding the data we collect and how it is utilized.
When your business registers for and uses our Services, we collect information necessary to create and maintain your business account, authenticate authorized users, and provide your organization with access to our platform's features. This information forms the foundation of our business relationship.
As a CRM platform, you entrust us with your valuable business data. We collect and process the information you input into our system to help you manage your customer relationships effectively. This data remains your property, and we act as a processor of this information on your behalf.
To ensure optimal performance, security, and compatibility across different devices and platforms, we automatically collect certain technical information when you access our Services. This data helps us identify and resolve technical issues, prevent unauthorized access, and improve our application's functionality.
We collect information about how you interact with our Services to understand usage patterns, identify popular features, and make data-driven improvements to enhance your experience. This analytics data is typically aggregated and anonymized.
Our mobile application is designed to provide you with powerful CRM capabilities on the go. To deliver this functionality effectively, the app requests certain permissions from your device. We believe in transparency and user control, which is why we clearly explain each permission, its purpose, and whether it is required or optional for app operation.
You maintain full control over optional permissions and can grant or revoke them at any time through your device settings. The app will continue to function with reduced capabilities if you choose not to grant optional permissions. Required permissions are essential for basic app functionality and must be granted for the app to operate.
| Permission | Purpose | Status |
|---|---|---|
| Internet | Connect to CRM servers and sync data | Required |
| Network State | Monitor network connectivity for reliable operation | Required |
| Camera | Scan business cards, capture documents, take profile photos | Optional |
| Storage | Access documents for upload and export, attach files to records | Optional |
| Contacts | Integrate with device contacts for quick customer data import | Optional |
| Calendar | Schedule meetings and sync CRM activities with device calendar | Optional |
| Location | Track customer visits and enable location-based features | Optional |
| Phone | Enable click-to-call functionality for quick customer contact | Optional |
| Notifications | Send important CRM alerts, task reminders, and appointment notifications | Optional |
Note: Optional permissions can be granted or denied. You can revoke permissions at any time through device settings.
The information we collect serves specific, legitimate purposes that are essential to delivering and improving our Services. We are committed to using your data responsibly, transparently, and only in ways that benefit your experience with our platform. We do not use your personal information for purposes unrelated to our Services without your explicit consent.
The primary purpose of collecting your information is to provide you with a fully functional, reliable, and effective CRM platform. Every piece of data we collect directly supports your ability to manage customer relationships, streamline business processes, and achieve your organizational goals.
Protecting your account and data is paramount. We use the information we collect to detect, prevent, and respond to security threats, fraudulent activity, and unauthorized access attempts. This ensures the integrity and confidentiality of your business information.
We use your contact information to communicate with you about your account, respond to your inquiries, and provide technical support. These communications are essential for maintaining your service and keeping you informed about important updates.
We analyze usage data to understand how our Services are being used, identify areas for improvement, and develop new features that meet your evolving needs. This analysis typically uses aggregated, anonymized data that cannot be traced back to individual users.
We process certain information to comply with legal obligations, enforce our terms of service, protect our rights and property, and conduct legitimate business operations.
The security and integrity of your data is our highest priority. We employ industry-leading security measures, robust infrastructure, and comprehensive policies to protect your information from unauthorized access, disclosure, alteration, or destruction. Our security framework is designed to meet and exceed international standards for data protection.
Your data is hosted on enterprise-grade cloud infrastructure provided by Microsoft Azure, one of the world's most trusted and secure cloud platforms. All data is stored in data centers located within the United Kingdom, ensuring compliance with UK and European data protection regulations.
We implement multiple layers of security controls to protect your data throughout its lifecycle. These measures are continuously monitored, tested, and updated to address emerging threats and maintain the highest security standards.
We maintain compliance with relevant data protection regulations and industry standards to ensure your data is handled according to legal requirements and best practices.
We retain your data only for as long as necessary to fulfill the purposes outlined in this privacy policy, comply with legal obligations, and resolve disputes. You have control over your data and can request deletion at any time.
Despite our comprehensive security measures, no system is completely immune to security incidents. We maintain a detailed incident response plan to quickly detect, contain, and remediate any security breaches.
Your privacy is of utmost importance to us. We want to be absolutely clear: we do not sell, trade, rent, or otherwise monetize your personal information to third parties for marketing purposes. Your data is yours, and we respect that. However, there are limited circumstances where we may need to share certain information to provide our Services, comply with legal obligations, or protect our users and business.
When we do share data, we ensure that appropriate safeguards are in place, including contractual obligations requiring third parties to protect your information and use it only for specified purposes. Below, we detail the specific circumstances under which data sharing may occur.
To deliver our Services effectively, we work with carefully selected third-party service providers who perform functions on our behalf. These providers have access only to the information necessary to perform their specific tasks and are contractually obligated to maintain confidentiality and security.
We may be required to disclose your information to comply with applicable laws, regulations, legal processes, or governmental requests. We will only disclose the minimum information necessary to satisfy the legal requirement.
We may disclose information when we believe, in good faith, that disclosure is necessary to protect the rights, property, or safety of our company, our users, or the public.
In the event of a corporate transaction such as a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of that transaction. We will ensure that any acquiring entity continues to honor the commitments made in this privacy policy.
We may share your information with third parties when you have given us explicit consent to do so. This consent can be withdrawn at any time.
We may share aggregated, anonymized, or de-identified information that cannot reasonably be used to identify you. This data is used for industry analysis, demographic profiling, marketing, and other business purposes.
You have significant control over your personal information and how it is used. Under applicable data protection laws, including the GDPR and UK Data Protection Act, you possess specific rights regarding your data. We are committed to facilitating the exercise of these rights and will respond to your requests promptly and in accordance with legal requirements.
Under the General Data Protection Regulation (GDPR) and UK Data Protection Act 2018, you have comprehensive rights regarding your personal data. These rights empower you to control how your information is collected, used, and shared.
You can manage many aspects of your privacy and data usage directly through your account settings. These controls give you immediate access to modify your preferences without needing to contact support.
Our mobile application requests various device permissions to provide enhanced functionality. You have complete control over these permissions and can modify them at any time through your device settings.
You have control over the marketing communications you receive from us. We respect your preferences and make it easy to opt out of non-essential communications.
To exercise any of your data protection rights, please contact us using the details provided in the "Contact Information" section below. We will respond to your request within one month, though this may be extended by two additional months for complex requests.
To provide you with a comprehensive and reliable service, we utilize carefully selected third-party service providers. These providers assist us with various aspects of our operations, from hosting infrastructure to payment processing. We ensure that all third-party providers maintain appropriate security standards and data protection practices.
Our Services are built on trusted, enterprise-grade platforms that meet international security and compliance standards. Each third-party provider is bound by contractual obligations to protect your data and use it only for the specific purposes we authorize.
Third-Party Links: Our Services may contain links to third-party websites, applications, or services that are not operated by us. We are not responsible for the privacy practices or content of these third parties. We encourage you to review the privacy policies of any third-party services you access through our platform. When you click on third-party links, you leave our Services and are subject to the privacy policies and terms of those external sites.
Our Services are designed for business use and are not intended for, nor directed to, children under the age of 16 years. We do not knowingly collect, use, or disclose personal information from children under 16 without verifiable parental consent.
As a business-focused CRM platform, our Services are designed for use by adults in professional contexts. We recognize the importance of protecting children's privacy online and take our responsibilities seriously under applicable child protection laws, including the Children's Online Privacy Protection Act (COPPA) and GDPR provisions regarding children's data.
While our primary data storage is located in the United Kingdom, the global nature of internet services means that your data may occasionally be transferred to, stored in, or processed in countries outside of your country of residence. We ensure that appropriate safeguards are in place for all international data transfers to protect your personal information.
When we transfer personal data outside the UK or European Economic Area (EEA), we comply with applicable data protection laws and implement appropriate safeguards to ensure your data receives an adequate level of protection equivalent to that provided within the UK/EEA.
We may update this privacy policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. We are committed to keeping you informed about how we protect your privacy, and we will notify you of any material changes to this policy.
When we make changes to this privacy policy, we will update the "Last Updated" date at the top of this page. For significant changes that materially affect your rights or how we process your data, we will provide more prominent notice and, where required by law, obtain your consent.
We encourage you to review this privacy policy periodically to stay informed about how we are protecting your information. If you have questions about changes to this policy, please contact our privacy team.
For your convenience, we provide this summary table showing the types of data we collect, whether they are shared with third parties, and their primary purposes. This summary is intended as a quick reference and should be read in conjunction with the detailed information provided throughout this privacy policy.
| Data Type | Collected | Shared with Third Parties | Primary Purpose |
|---|---|---|---|
| Email Address | Yes | No | Account authentication, service communications |
| Name | Yes | No | User profile, personalization |
| Password | Yes | No | Account authentication (encrypted with bcrypt) |
| Business & Customer Data | Yes | No | CRM functionality, customer relationship management |
| Device Identifiers | Yes | No | Security monitoring, fraud prevention, analytics |
| Usage Data | Yes | No | Service improvement, feature development |
| Payment Information | Yes | Yes* | Subscription billing |
| Location Data | Optional | No | Location-based features (with permission) |
We are committed to addressing your privacy concerns and answering your questions about how we collect, use, and protect your personal information. If you have any questions, concerns, or requests regarding this privacy policy or our data practices, please do not hesitate to contact us.
We aim to respond to all privacy-related inquiries within 5 business days. For formal data subject requests (such as access requests, deletion requests, or other rights under GDPR), we will respond within one month as required by law, though we may extend this period by up to two additional months for complex requests.
We take your privacy rights seriously and strive to handle your personal information in accordance with all applicable data protection laws. However, if you believe we have not complied with this privacy policy or applicable data protection regulations, you have the right to lodge a complaint.
If you have concerns about our data processing practices, we encourage you to contact us first using the contact information provided above. We will investigate your concerns and work with you to resolve any issues promptly.
However, you also have the right to lodge a complaint directly with your local data protection supervisory authority. In the United Kingdom, the relevant authority is:
If you are located outside the United Kingdom, you may contact your local data protection supervisory authority. You can find a list of EU data protection authorities at https://edpb.europa.eu.
By using nuclyo CRM, you acknowledge that you have read and understood this privacy policy.
© Copyright 2026 www.ltcsoftware.co.uk