Skip to main content

Privacy Policy & Terms of Service

Privacy Policy

Last Updated: 24 February 2026

1. Who We Are

Storage Facility ("we", "us", or "our") operates this website.Storage Facility is operated by Storage Facility Ltd. We are committed to protecting your personal data and privacy in accordance with UK GDPR and the Data Protection Act 2018.

Data Controller: Storage Facility
Contact:
Address: Torquay, Devon, United Kingdom
Phone:

2. Information We Collect

Personal Information You Provide:

  • Name, email address, and phone number (for bookings and account creation)
  • Microsoft account information (when using OAuth authentication)
  • Billing and payment information (for storage services)
  • Communication preferences and marketing consent

Information Collected Automatically:

  • IP address, browser type, and device information
  • Website usage data via Google Analytics (with consent)
  • Cookies and similar tracking technologies
  • Access logs for security monitoring

3. Microsoft OAuth Integration

Microsoft Services: We use Microsoft Entra ID (Azure AD) for secure authentication. When you sign in with Microsoft, we receive limited profile information as permitted by Microsoft's privacy policy.

  • We only access basic profile information (name, email) necessary for account creation
  • Your Microsoft credentials are never stored on our servers
  • Authentication is handled securely by Microsoft's servers
  • You can revoke access at any time through your Microsoft account settings

4. How We Use Your Information

  • Service Provision: To provide storage services and manage your account
  • Communication: To send booking confirmations and service updates
  • Security: To protect our services and prevent fraud
  • Legal Compliance: To comply with UK regulations and legal obligations
  • Marketing: To send promotional materials (with explicit consent only)

5. Legal Basis for Processing

  • Contract: Processing necessary for our storage services
  • Consent: Marketing communications and non-essential cookies
  • Legitimate Interest: Security monitoring and service improvement
  • Legal Obligation: Compliance with UK tax and business laws

6. Your Rights Under UK GDPR

You have the following rights regarding your personal data:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate or incomplete data
  • Erasure: Request deletion of your data (right to be forgotten)
  • Portability: Receive your data in a machine-readable format
  • Restriction: Limit how we process your data
  • Objection: Object to processing based on legitimate interests
  • Withdraw Consent: Withdraw consent for marketing or cookies

To exercise these rights, contact us at . We will respond within 30 days.

7. Data Retention

  • Account Data: Retained while your account is active
  • Booking Records: 6 years for tax and accounting purposes
  • Marketing Data: Until consent is withdrawn
  • Security Logs: 12 months for security purposes

8. Data Security

We implement appropriate technical and organisational measures to protect your data, including:

  • SSL/TLS encryption for data transmission
  • Secure hosting with regular security updates
  • Access controls and authentication requirements
  • Regular security monitoring and vulnerability assessments

9. Third-Party Services

  • Microsoft: Authentication services (subject to Microsoft Privacy Policy)
  • Google Analytics: Website analytics (with consent)
  • Payment Processors: Secure payment handling (PCI DSS compliant)
  • Email Services: Transactional and marketing emails

10. Complaints

If you have concerns about how we handle your data, you can:

  • Contact us directly at
  • File a complaint with the Information Commissioner's Office (ICO): ico.org.uk

Questions about this policy? Contact us at

Return to Home

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.