Privacy Policy

ProEmails ("ProEmails", "we", "us", "our") is the data controller responsible for the processing of your personal data as described in this Privacy Policy.

We are registered with the Information Commissioner's Office (ICO) in the United Kingdom and comply with the UK Data Protection Act 2018, the UK General Data Protection Regulation (UK GDPR), and the EU General Data Protection Regulation (EU) 2016/679 ("GDPR") as it applies to EU-based users.

This Privacy Policy applies to:

• Visitors to our website at proemails.uk
• Individuals who create a ProEmails account or subscribe to any of our plans
• Individuals whose personal data is processed in connection with email services provided by ProEmails (including senders and recipients of emails handled by our infrastructure)
• Individuals who contact us for support, enquiries, or complaints

By using our services, accessing our website, or providing your personal data to us, you acknowledge that you have read and understood this Privacy Policy.

• check_circle Directly from you — when you register, configure your account, contact support, or use our services.
• check_circle Automatically — through server logs, security systems, and connection data when you access our services or website.
• check_circle From email transmissions — email data is received and stored as part of the normal operation of providing email hosting services. This includes emails sent to your ProEmails addresses by third parties.

We process your personal data for the following specific purposes:

Under Article 6(1) of the UK GDPR and EU GDPR, we rely on the following legal bases:

Purpose	Legal Basis
Email hosting, sending, receiving, and storage	Contract performance (Art. 6(1)(b))
Account management and billing	Contract performance (Art. 6(1)(b))
AI spam filtering	Contract performance (Art. 6(1)(b)); Legitimate interests (Art. 6(1)(f))
Security and fraud prevention	Legitimate interests (Art. 6(1)(f))
Legal and regulatory compliance	Legal obligation (Art. 6(1)(c))
Marketing communications	Consent (Art. 6(1)(a))
Service improvement (aggregated data only)	Legitimate interests (Art. 6(1)(f))

Where we rely on consent, you may withdraw it at any time. Withdrawal does not affect the lawfulness of processing carried out before withdrawal. Where we rely on legitimate interests, you may object at any time (see Section 14).

Access to infrastructure systems (servers, storage) is restricted by technical controls to automated processes required for service delivery. During maintenance operations, technical safeguards prevent personnel from accessing plaintext email content. Any unauthorised access to customer email content by personnel would constitute a violation of our internal policies and applicable law.

ProEmails employs AI-based technology for automated spam and malware filtering. This section explains how this processing works and the safeguards in place.

Under Article 22 GDPR, this automated processing does not produce legal effects or similarly significant effects on you. If you believe a legitimate email has been incorrectly filtered, you can review your spam folder at any time or contact our support team.

All personal data and email data is stored on servers physically located within the European Union. We implement technical and organisational security measures in accordance with Article 32 GDPR.

Security Measures

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by law.

We do not sell, rent, or trade your personal data. We share data only in the following limited circumstances:

All data processors are bound by Data Processing Agreements and are required to implement appropriate technical and organisational measures. A full list of our sub-processors is available upon request from our Data Protection Officer.

Should our infrastructure requirements change in the future, any transfer of personal data outside the EU/EEA will only take place in compliance with Chapter V of the GDPR, using appropriate safeguards such as Standard Contractual Clauses (SCCs), adequacy decisions, or Binding Corporate Rules. You will be notified of any such change, and this Privacy Policy will be updated accordingly.

Our website and webmail interface use cookies and similar technologies as described below:

We comply with the EU ePrivacy Directive (Directive 2002/58/EC as amended) and applicable national implementations. Our strictly necessary cookies are exempt from consent requirements under Article 5(3) of the ePrivacy Directive.

Under the UK GDPR and EU GDPR, you have the following rights. To exercise any right, contact us at dpo@proemails.uk. We will respond within one month, extendable by two months for complex requests.

We will not charge a fee for exercising your rights unless requests are manifestly unfounded or excessive (in which case a reasonable fee may be charged, or we may refuse to act). We may request proof of identity before fulfilling requests.

ProEmails services are not directed at children under the age of 16 (or the applicable minimum age in your jurisdiction). We do not knowingly collect personal data from children.

If you become aware that a child has provided us with personal data without parental consent, please contact us immediately at dpo@proemails.uk. We will take steps to promptly delete such data.

In the event of a personal data breach affecting your data:

• check_circle We will notify the relevant supervisory authority within 72 hours of becoming aware of the breach, unless the breach is unlikely to result in a risk to your rights and freedoms (Article 33 GDPR).
• check_circle If the breach is likely to result in a high risk to your rights and freedoms, we will notify you directly without undue delay (Article 34 GDPR).
• check_circle We maintain a breach register documenting all incidents, including the nature of the breach, data affected, consequences, and remedial actions taken.

Our website may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to read the privacy policies of any third-party websites you visit.

We may update this Privacy Policy periodically to reflect changes in our practices, technologies, legal requirements, or business operations.

• Material changes will be communicated via email to registered users and/or a prominent notice on our website.
• The "Effective date" at the top of this page will always reflect the date of the latest revision.
• We encourage you to review this page regularly.
• Continued use of our services after changes take effect constitutes acceptance of the updated policy.

For any questions, concerns, or requests relating to this Privacy Policy or the handling of your personal data:

We will respond to all legitimate requests within one calendar month. If you are not satisfied with our response, you have the right to lodge a complaint with a supervisory authority (see our GDPR page for details).