How we collect, use, and protect your data
Last Updated: February 2026
This website, cargarages.co.uk, is operated by Craig Davies, trading as CarGarages.co.uk ("we", "us", "our"). We are the data controller for the personal data processed through this website. Our address is 1 New Houses, Penybryn, Hengoed, CF82 7FR. You can contact us at support@cargarages.co.uk or through our contact page.
We collect different types of personal data depending on how you use the website:
When you register an account, we collect your email address and store a secure hash of your password. We also record your user type (e.g. driver or business owner).
If you claim or add a business listing, we collect information you provide including your name, role, business details, contact information, and any gallery images you upload.
If you use our MOT reminder service, we collect your vehicle registration number, make, model, and MOT/tax/insurance expiry dates. This data is used solely to send you timely reminders.
For premium listing purchases, we store transaction IDs, payment amounts, and plan types. We do not store your credit or debit card details. All card processing is handled securely by our payment providers (Stripe and PayPal).
We collect anonymised usage data including garage page views, click-through actions, pages visited, and garages saved to favourites. This helps us improve the service and provide analytics to business owners.
Under UK GDPR, we must have a lawful basis for processing your personal data. The table below sets out each purpose and the legal basis we rely on:
| Purpose | Lawful Basis |
|---|---|
| Managing your account and authentication | Contract performance |
| Processing business listing claims and premium upgrades | Contract performance |
| Processing payments for premium listings | Contract performance |
| Sending MOT, tax, and insurance reminders | Contract performance (you request this service) |
| Sending marketing emails about features or updates | Consent (opt-in) |
| Email open and click tracking | Legitimate interest (measuring email effectiveness) |
| Showing garages near your location (IP geolocation) | Legitimate interest (core site functionality) |
| Providing business owners with anonymised listing analytics | Legitimate interest (service improvement) |
| Improving the website based on aggregated usage data | Legitimate interest (service improvement) |
| Retaining payment records for tax compliance | Legal obligation (UK tax regulations) |
Where we rely on legitimate interest, we have assessed that the processing is necessary for our purposes and that your rights and interests do not override those purposes. You have the right to object to processing based on legitimate interest at any time.
Some of our emails include a small invisible image (a tracking pixel) that tells us whether the email was opened, and links that let us know if they were clicked. We use this data to measure the effectiveness of our communications and to improve future emails. You can prevent open tracking by disabling image loading in your email client.
We use a limited number of cookies and browser local storage entries:
For full details, see our Cookie Policy.
We share data with the following third-party services as necessary to operate the website:
We retain your data for as long as your account is active or as needed to provide services to you. Specifically:
Some of our third-party service providers are based outside the United Kingdom. Where your data is transferred outside the UK, we ensure that appropriate safeguards are in place:
We take the security of your personal data seriously. We use industry-standard measures to protect your information, including encrypted connections (HTTPS) across the entire website, securely hashed passwords (your password is never stored in plain text), access controls restricting who can view personal data, and regular review of our security practices. While no method of transmission over the internet is completely secure, we take reasonable steps to protect your personal data from unauthorised access, alteration, or destruction.
We do not use your personal data for automated decision-making or profiling that produces legal or similarly significant effects on you.
Under the UK General Data Protection Regulation (UK GDPR), you have the following rights:
To exercise any of these rights, please contact us via our contact page. We will respond to your request within one month.
Right to complain: If you are unhappy with how we have handled your data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK's supervisory authority for data protection. You can contact the ICO at ico.org.uk/make-a-complaint or by telephone on 0303 123 1113.
We will only send you marketing emails if you have given us explicit consent or if you are an existing customer and the emails relate to similar services. Every marketing email we send includes an unsubscribe link at the bottom.
You can also unsubscribe at any time by contacting us. Please note that unsubscribing from marketing emails will not affect transactional emails (such as MOT reminders or account notifications).
Our website is not directed at individuals under the age of 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.
We may update this privacy policy from time to time. Any changes will be posted on this page with an updated "Last Updated" date. We encourage you to review this page periodically for the latest information on our privacy practices.
For any data protection enquiries, subject access requests, or to exercise your rights under UK GDPR, please use our contact form and select "General Enquiry" as the subject. We aim to respond to all data requests within one calendar month.
