Privacy Policy
How Cader Networks collects, uses, and protects your personal information.
Last updated: 02 March 2026 | Applies to: cadernetworks.co.uk and all Cader Networks services1. Who We Are
Cader Networks Ltd is a telecommunications provider registered in England and Wales (Company No. 16116110). We provide broadband, VoIP, 4G/5G, and connectivity services to homes and businesses across Wales.
- Registered Address: Ty Capel Soar, Machynlleth, SY20 9PA
- Email: [email protected]
- Phone: 01650 519 260
- Data Controller Registration: Cader Networks Ltd (ICO registered)
For any data protection enquiries, contact us at [email protected] with the subject line "Data Protection Enquiry".
2. What Data We Collect
Information you give us directly
- Full name, address, email, and phone number
- Service address (if different from billing address)
- Payment details (processed via secure third-party providers — we do not store full card details)
- Direct Debit bank account details (held securely)
- Business name, company number, and VAT number (business customers)
- Communications with us (emails, support tickets, call records)
- Identity verification documents where required
Information collected automatically
- IP addresses and device information when visiting our website
- Pages visited, time on site, and referral source (via analytics)
- Cookie data (see our Cookie Policy)
- Network usage data for the purposes of providing and managing your service
- Call records and VoIP usage logs (for billing and service management)
Information from third parties
- Credit reference information (for service applications)
- Wholesale and upstream provider provisioning data required to deliver your service
- Information from Ofcom or other regulatory bodies where required by law
3. Why We Use Your Data (Lawful Basis)
| Purpose | Data Used | Legal Basis |
|---|---|---|
| Providing and managing your broadband, VoIP, or connectivity service | Name, address, service details, usage data | Contract performance |
| Billing and payment processing | Name, address, payment details | Contract performance |
| Credit checking before service activation | Name, address, financial info | Legitimate interests |
| Customer support and complaint handling | Name, contact details, account info | Contract performance / Legal obligation |
| Number porting (VoIP) | Name, address, existing number | Contract performance |
| Sending service updates and important notices | Name, email, phone | Contract performance / Legal obligation |
| Sending marketing emails (opted-in customers only) | Name, email | Consent |
| Complying with Ofcom General Conditions and legal obligations | Various | Legal obligation |
| Fraud prevention and network security | IP, usage data, account details | Legitimate interests |
| Website analytics and performance improvement | IP, cookies, browsing data | Legitimate interests (with consent for non-essential cookies) |
| CISAS / regulatory dispute resolution | Account and complaint data | Legal obligation |
| Tax, accounting, and financial record keeping | Billing and payment data | Legal obligation |
4. Who We Share Your Data With
We do not sell your personal data. We share it only where necessary:
Wholesale and upstream providers
- Wholesale and upstream network providers we use to deliver and maintain your service — the specific providers used may vary depending on your service type and location
- Number porting authorities and telecommunications carriers (VoIP customers)
Payment and financial
- Payment processors (card and Direct Debit providers)
- Credit reference agencies
- Our accountants (for statutory financial reporting)
Regulatory and legal
- Ofcom — where required by our General Conditions licence obligations
- CISAS / CEDR — in the event of a dispute escalation
- Law enforcement or government bodies — where required by law or court order
- ICO — in the event of a data protection investigation
IT and business operations
- CRM and billing software providers (data processors acting on our instruction)
- Email and communication platforms
- Website hosting providers
All third-party providers who process personal data on our behalf are bound by appropriate data processing agreements and are required to comply with UK GDPR. A list of our current data processors is available on request.
5. How Long We Keep Your Data
| Data Type | Retention Period |
|---|---|
| Customer account data (active) | For the duration of the contract |
| Customer account data (after contract ends) | 7 years (legal/tax obligation) |
| Billing and payment records | 7 years (HMRC requirement) |
| Call records / VoIP logs | 12 months (then deleted) |
| Support and complaint correspondence | 3 years after resolution |
| Credit check results | 12 months |
| Marketing consent records | Until consent is withdrawn + 1 year |
| Website analytics data | 26 months (anonymised after 14 months) |
| CCTV / physical security (if applicable) | 30 days |
6. Your Rights Under UK GDPR
You have the following rights in relation to your personal data:
- Right to be informed — you have the right to know how we use your data (this policy)
- Right of access — you can request a copy of all data we hold about you (Subject Access Request)
- Right to rectification — you can ask us to correct inaccurate or incomplete data
- Right to erasure ("right to be forgotten") — you can ask us to delete your data (subject to legal retention obligations)
- Right to restrict processing — you can ask us to limit how we use your data
- Right to data portability — you can request your data in a portable format
- Right to object — you can object to processing based on legitimate interests or for direct marketing
- Rights relating to automated decision making — we do not make solely automated decisions that significantly affect you
To exercise any of these rights, email [email protected] with the subject line "Data Rights Request". We will respond within 30 days.
7. Cookies
Our website uses cookies. We use:
- Essential cookies — required for the website to function (no consent needed)
- Analytics cookies — to understand how visitors use our site (requires consent)
- Marketing cookies — to measure the effectiveness of any advertising (requires consent)
You can manage your cookie preferences via the cookie banner on our website, or through your browser settings. For full details, see our Cookie Policy.
8. Security
We take data security seriously. Our measures include:
- Encrypted data transmission (SSL/TLS) across our website and systems
- Restricted staff access to personal data on a need-to-know basis
- Password policies and multi-factor authentication on key systems
- Regular review of third-party data processors
- Network segmentation to separate different types of traffic and data
In the event of a data breach that poses a risk to your rights, we will notify the ICO within 72 hours and affected individuals without undue delay.
9. International Transfers
We process and store your data primarily within the UK. Where any third-party service providers transfer data outside the UK, we ensure this is covered by appropriate safeguards such as UK adequacy decisions or Standard Contractual Clauses (SCCs).
10. Children's Data
Our services are not directed at children under 13. We do not knowingly collect personal data from children. If you believe a child has provided us with data without parental consent, please contact us and we will delete it promptly.
11. Complaints About Data Use
If you have concerns about how we handle your data, please contact us first at [email protected].
If you are not satisfied with our response, you have the right to complain to the Information Commissioner's Office (ICO):
Information Commissioner's Office
📞 0303 123 1113
✉️ Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF
12. Changes to This Policy
We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of this page. For significant changes, we will notify active customers by email. Continued use of our services after changes constitutes acceptance of the updated policy.