Privacy Policy

This placeholder policy describes categories of information we might collect, such as contact details you submit via forms or basic analytics about how pages are used.

Specific fields, retention periods, and lawful bases should be confirmed against your actual processing activities and documented accordingly.

Personal data would typically be used to respond to enquiries, deliver agreed services, and improve how we communicate with clients and prospects.

We would process information only where we have a valid lawful basis under UK GDPR, such as consent, contract performance, or legitimate interests.

Retention schedules should reflect business need, legal obligations, and any limitation periods that apply to contracts or regulatory records.

When data is no longer required we would securely delete or anonymise it in line with internal policies and regulatory guidance.

Under UK GDPR and the Data Protection Act 2018 you may have rights including access, rectification, erasure, restriction, portability, and objection in certain circumstances.

You may also lodge a complaint with the Information Commissioner’s Office (ICO) if you believe your rights have not been respected.

For any privacy-related requests or questions about this policy, please contact Endrick Consulting using the details published on our website.

We will aim to acknowledge requests promptly and respond within statutory timeframes where those obligations apply.