1705 Consultancy Ltd.

Signed in as:

filler@godaddy.com

Account

Privacy notice - professional services

1705 Consultancy Ltd customer privacy notice

Registered name: 1705 Consultancy Ltd

We are the controller of your personal data. For more information on controllers and their responsibilities please see our guidance on data protection principles, definitions, and key terms.

This privacy notice tells you what to expect us to do with your personal information.

· Contact details

· What information we collect, use, and why

· Lawful bases and data protection rights

· Where we get personal information from

· How long we keep information

· Who we share information with

· How to complain

Contact details

Post

1705 Consultancy Ltd, 71-75 Shelton Street, , LONDON, , WC2H 9JQ, GB

Telephone

0333 360 1705

Email

info@1705Consultancy.co.uk

What information we collect, use, and why

We collect or use the following information to provide and improve products and services for clients:

· Names and contact details

· Addresses

· Date of birth

· Payment details (including card or bank information for transfers and direct debits)

· Transaction data (including details about payments to and from you and details of products and services you have purchased)

· Usage data (including information about how you interact with and use our website, products and services)

· Website user information

We collect or use the following personal information for the operation of client or customer accounts:

· Names and contact details

· Addresses

· Purchase or service history

· Information used for security purposes

· Marketing preferences

We collect or use the following personal information for information updates or marketing purposes:

· Names and contact details

· Addresses

· Marketing preferences

· Website and app user journey information

· IP addresses

We collect or use the following personal information for dealing with queries, complaints or claims:

· Names and contact details

· Addresses

· Payment details

Lawful bases and data protection rights

Under UK data protection law, we must have a “lawful basis” for collecting and using your personal information. There is a list of possible lawful bases in the UK GDPR. You can find out more about lawful bases on the ICO’s website.

Which lawful basis we rely on may affect your data protection rights which are set out in brief below. You can find out more about your data protection rights and the exemptions which may apply on the ICO’s website:

· Your right of access - You have the right to ask us for copies of your personal information. You can request other information such as details about where we get personal information from and who we share personal information with. There are some exemptions which means you may not receive all the information you ask for. Read more about the right of access.

· Your right to rectification - You have the right to ask us to correct or delete personal information you think is inaccurate or incomplete. Read more about the right to rectification.

· Your right to erasure - You have the right to ask us to delete your personal information. Read more about the right to erasure.

· Your right to restriction of processing - You have the right to ask us to limit how we can use your personal information. Read more about the right to restriction of processing.

· Your right to object to processing - You have the right to object to the processing of your personal data. Read more about the right to object to processing.

· Your right to data portability - You have the right to ask that we transfer the personal information you gave us to another organisation, or to you. Read more about the right to data portability.

· Your right to withdraw consent – When we use consent as our lawful basis you have the right to withdraw your consent at any time. Read more about the right to withdraw consent.

If you make a request, we must respond to you without undue delay and in any event within one month.

To make a data protection rights request, please contact us using the contact details at the top of this privacy notice.

Our lawful bases for the collection and use of your data

Our lawful bases for collecting or using personal information to provide and improve products and services for clientsare:

· Consent - we have permission from you after we gave you all the relevant information. All of your data protection rights may apply, except the right to object. To be clear, you do have the right to withdraw your consent at any time.

· Contract – we have to collect or use the information so we can enter into or carry out a contract with you. All of your data protection rights may apply except the right to object.

· Legitimate interests – we’re collecting or using your information because it benefits you, our organisation or someone else, without causing an undue risk of harm to anyone. All of your data protection rights may apply, except the right to portability. Our legitimate interests are:

· 1705 Consultancy Ltd processes limited personal information where it is necessary to deliver professional safety risk management training and consultancy services and to maintain effective communication with clients stakeholders and partners. This processing is carried out under the lawful basis of legitimate interest in accordance with the UK GDPR. The personal information we collect may include names job titles professional contact details organisational affiliations billing information and limited operational information relevant to safety planning training delivery or consultancy outputs. This information is required to enable us to provide tailored advice produce accurate risk assessments deliver training manage contracts and invoices respond to enquiries and maintain appropriate records of our professional activities. Our legitimate interest in processing this information is to ensure that our services are delivered safely lawfully and to an appropriate professional standard. In the context of safety and security consultancy accurate identification of clients and key contacts is essential to ensure clear communication effective incident planning compliance with legal duties and the protection of people property and reputation. Without processing this information we would be unable to provide services that meet statutory requirements industry guidance or client expectations. The benefits of processing personal information include improved service quality accurate and relevant advice timely communication effective coordination with clients and where appropriate emergency services and the ability to demonstrate due diligence and compliance with legal and contractual obligations.

These benefits support public safety organisational resilience and the prevention or mitigation of harm. We have carefully balanced our legitimate interests against the rights and freedoms of individuals.

The personal information processed is limited to what is necessary relevant and proportionate for the stated purposes. We do not process information in a way that would be unexpected intrusive or unfair. Information is not sold or used for unrelated purposes and is shared only where necessary such as with trusted professional partners or where required by law. Appropriate technical and organisational measures are in place to protect personal information including access controls secure storage and data minimisation practices. Individuals’ rights are respected at all times and data subjects can object to processing request access or exercise their rights under data protection legislation. We are satisfied that our legitimate interests do not override the interests rights or freedoms of individuals and that the processing is necessary proportionate and carried out with respect for privacy and confidentiality.

For more information on our use of legitimate interests as a lawful basis you can contact us using the contact details set out above.

Our lawful bases for collecting or using personal information for the operation of client or customer accounts are:

· Contract – we have to collect or use the information so we can enter into or carry out a contract with you. All of your data protection rights may apply except the right to object.

· 1705 Consultancy Ltd processes personal information where it is necessary for the establishment operation and ongoing management of client and customer accounts. This processing is carried out under the lawful basis of legitimate interest in accordance with the UK GDPR. The personal information processed for this purpose may include names job titles professional contact details account credentials billing and payment information contract references training records attendance confirmations and service history. This information is required to set up and maintain client accounts manage contractual relationships administer training and consultancy services issue invoices process payments provide access to client materials and maintain accurate records of services delivered. Our legitimate interest in processing this information is to ensure that client relationships are managed efficiently securely and transparently. The operation of client accounts enables us to deliver services as agreed provide continuity of support respond effectively to client requests and demonstrate accountability and compliance with legal regulatory and contractual obligations. Without this processing we would be unable to administer accounts accurately or provide an effective and reliable service.

The benefits of processing personal information for account operation include improved service delivery clear communication accurate billing secure access to resources and the ability to maintain auditable records. These benefits support both our clients and our organisation by ensuring services are delivered correctly safely and in line with agreed expectations. We have balanced these interests against the rights and freedoms of individuals. The personal information processed is limited to what is necessary for account management and is not used for unrelated purposes. We do not collect excessive data and we do not use client account information in a way that would be unexpected intrusive or unfair. Appropriate technical and organisational safeguards are in place to protect client account information including access controls secure systems and data minimisation practices. Personal information is retained only for as long as necessary and individuals are able to exercise their rights under data protection legislation including the right to access rectify or object to processing. We are satisfied that the benefits of processing personal information for the operation of client and customer accounts are proportionate and do not override the rights interests or freedoms of individuals. The processing is necessary to deliver professional services and is carried out with respect for privacy confidentiality and data protection principles.

For more information on our use of legitimate interests as a lawful basis you can contact us using the contact details set out above.

Our lawful bases for collecting or using personal information for information updates or marketing purposes are:

· Contract – we have to collect or use the information so we can enter into or carry out a contract with you. All of your data protection rights may apply except the right to object.

· 1705 Consultancy Ltd processes limited personal information for the purpose of providing relevant information updates and professional marketing communications to individuals who have an existing relationship with us or who have expressed an interest in our services. This processing is carried out under the lawful basis of legitimate interest in accordance with the UK GDPR and the Privacy and Electronic

Communications Regulations. The personal information used for this purpose may include names professional contact details job roles organisational details and communication preferences. This information is necessary to ensure that communications are relevant proportionate and directed only to individuals for whom the content is likely to be of professional interest. Our legitimate interest in processing this information is to keep clients partners and interested professionals informed about changes to legislation industry guidance training opportunities service updates events and developments that may affect their safety legal compliance or operational responsibilities.

As a safety and security consultancy timely information sharing supports informed decision making compliance with legal duties and improved risk management. The benefits of processing personal information for information updates and marketing include improved awareness of regulatory changes access to professional development opportunities and early notification of services or guidance that may help organisations manage risk more effectively. These benefits support both public safety and organisational resilience and are directly aligned with the professional context in which the information is provided. We have balanced our legitimate interests against the rights and freedoms of individuals. Communications are limited to relevant professional content and are not excessive intrusive or misleading. Personal information is not sold or shared with third parties for marketing purposes and is used only for communications that align with the recipient’s professional interests. Individuals are given clear and simple options to opt out of receiving communications at any time and their preferences are respected without detriment. Appropriate safeguards are in place to protect personal information and to ensure that marketing activities are conducted lawfully fairly and transparently. We are satisfied that our legitimate interests in providing information updates and professional marketing do not override the interests rights or freedoms of individuals and that the processing is necessary proportionate and respectful of privacy.

For more information on our use of legitimate interests as a lawful basis you can contact us using the contact details set out above.

Our lawful bases for collecting or using personal information for dealing with queries, complaints or claims are:

· Contract – we have to collect or use the information so we can enter into or carry out a contract with you. All of your data protection rights may apply except the right to object.

Where we get personal information from

· Directly from you

· CCTV footage or other recordings

· Legal bodies or professionals (such as courts or solicitors)

· Publicly available sources

· Providers of marketing lists and other personal information

· Suppliers and service providers

How long we keep information

1705 Consultancy Ltd retains personal information only for as long as necessary to fulfil the purposes for which it was collected including legal regulatory contractual and professional obligations. Retention periods are reviewed regularly and information is securely deleted or anonymised once it is no longer required.

Client and customer account information

Names contact details service history training records and account administration information are retained for up to six years after the end of the client relationship. This aligns with limitation periods for contractual and civil claims and supports audit legal and professional accountability.

Financial and billing information

Invoices payment records transaction data and related financial information are retained for six years to meet HMRC accounting and tax obligations.

Risk assessments consultancy outputs and training records

Information contained within risk assessments emergency plans training attendance records and consultancy reports is retained for six years following completion of services unless a longer period is required due to regulatory expectations ongoing contractual arrangements or legal proceedings.

Marketing and information update records

Contact details and marketing preferences used for information updates or professional marketing are retained until an individual withdraws consent objects to processing or has had no engagement for two years, after which the information is deleted or anonymised.

Website and app usage data

Website user information IP addresses and usage analytics are retained for up to 26 months unless required for security investigations or compliance purposes.

Enquiries complaints and claims

Information relating to enquiries complaints or claims is retained for six years from the date of resolution to allow for investigation legal defence and regulatory review where necessary.

CCTV footage and recordings

Where applicable CCTV footage or recordings are retained for up to 30 days unless required for investigation incident review insurance or legal purposes in which case they may be retained for longer until the matter is concluded.

Legal and regulatory correspondence

Information shared with or received from legal advisors courts insurers or regulators is retained for six years or longer where required by law or professional standards.

Where retention periods expire personal information is securely deleted destroyed or anonymised in accordance with our data protection and information security procedures. In some circumstances information may be retained for longer periods where required by law ongoing investigations or the establishment exercise or defence of legal claims.

For further information about our retention practices or specific retention periods you may contact us using the details provided in this privacy notice.

For more information on how long we store your personal information or the criteria we use to determine this please contact us using the details provided above.

Who we share information with

Others we share personal information with

· Professional or legal advisors

· Emergency services

· Organisations we’re legally obliged to share personal information with

How to complain

If you have any concerns about our use of your personal data, you can make a complaint to us using the contact details at the top of this privacy notice.

If you remain unhappy with how we’ve used your data after raising a complaint with us, you can also complain to the ICO.

The ICO’s address:

Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF

Helpline number: 0303 123 1113

Website: https://www.ico.org.uk/make-a-complaint

Last updated – Dec 25

Privacy Policy

This website uses cookies.