Privacy Policy

Who We Are

This Privacy Policy explains how Secureware. Ltd (“Secureware.”, “we”, “us”, “our”) collects, uses, stores, and protects personal data when you use our website at secureware.co.uk (the “Site”) or contact us regarding our services.

We are committed to protecting your privacy and handling your data in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and the Privacy and Electronic Communications Regulations (PECR).

Information We Collect

We collect personal data in the following circumstances:

2.1 Information you provide directly

• →Contact form submissions: name, email address, phone number, organisation name, job title, and the content of your message
• →Audit request forms: additional details including organisation size, infrastructure environment, services required, and budget range
• →Email correspondence: any personal data contained in emails sent to us

2.2 Information collected automatically

• →Server access logs: IP address, browser type, operating system, referring URL, pages visited, and timestamps
• →Session data: technical information required to serve the website correctly

We do not use advertising trackers, third-party analytics platforms (e.g. Google Analytics), social media pixels, or behavioural profiling tools.

How We Use Your Information

We use the personal data we collect for the following purposes:

Cookies

Our website uses a minimal set of cookies. We do not use advertising, tracking, or third-party marketing cookies.

4.1 Essential cookies

These cookies are strictly necessary for the website to function and cannot be switched off. They are set in response to actions you take, such as filling in forms or navigating between pages. No personal data is stored in these cookies.

4.2 Managing cookies

You can control cookies through our consent banner displayed on your first visit, or through your browser settings. Please note that disabling essential cookies may affect website functionality. For more information on managing cookies, visit aboutcookies.org.

Data Retention

• →Contact and enquiry data: retained for 2 years from last contact, then securely deleted
• →Client engagement data (under contract): retained for 7 years to comply with financial and legal obligations
• →Server logs: retained for 90 days for security monitoring, then automatically purged
• →Cookie consent records: retained for 1 year from consent

Data Sharing and Transfers

We do not sell, rent, or trade your personal data to third parties.

We may share data with carefully selected service providers who process data on our behalf under strict data processing agreements, including:

• →Hosting infrastructure providers (servers located in the UK or EEA)
• →Email delivery services for transactional communications
• →Accounting and legal advisors under professional confidentiality obligations

We may disclose personal data if required to do so by law, court order, or to protect the rights, property, or safety of Secureware., our clients, or the public.

We do not transfer personal data outside the UK or EEA unless adequate safeguards (such as UK IDTA or EU Standard Contractual Clauses) are in place.

Your Rights Under UK GDPR

You have the following rights regarding your personal data:

• →Right of access — request a copy of the personal data we hold about you
• →Right to rectification — request correction of inaccurate or incomplete data
• →Right to erasure — request deletion of your personal data where we have no legitimate reason to retain it
• →Right to restrict processing — request that we limit how we use your data
• →Right to data portability — receive your data in a structured, machine-readable format
• →Right to object — object to processing based on legitimate interests or for direct marketing
• →Rights related to automated decision-making — we do not make solely automated decisions that produce legal or similarly significant effects

To exercise any of these rights, contact us at privacy@secureware.co.uk. We will respond within 30 days. Identity verification may be required.

If you are unsatisfied with our response, you have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk or by calling 0303 123 1113.

Security

We take data security seriously. As a cybersecurity organisation, we apply the following controls to protect personal data:

• →All data in transit is encrypted using TLS 1.2 or higher
• →Access to personal data is restricted to authorised personnel on a need-to-know basis
• →Internal systems are subject to the same security assessment methodology we apply to clients
• →We maintain an incident response procedure that includes notifying affected individuals and the ICO within 72 hours of becoming aware of a personal data breach

Third-Party Links

Our website may contain links to external sites and research publications. We are not responsible for the privacy practices or content of those sites. We encourage you to review the privacy policies of any third-party sites you visit.

Children

Our website and services are directed at business professionals and are not intended for individuals under the age of 18. We do not knowingly collect personal data from children. If you believe we have inadvertently collected such data, please contact us immediately at privacy@secureware.co.uk.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. The “Last updated” date at the top of this page indicates when the policy was last revised. Continued use of the website after changes are posted constitutes acceptance of the updated policy.

For significant changes, we will provide a prominent notice on the website.

Contact Us

For any questions, requests, or complaints regarding this Privacy Policy or our handling of your personal data, please contact: