Mavenbridge Limited

Privacy Policy

Introduction

Mavenbridge Limited ("Mavenbridge", "we", "our", or "us") is committed to protecting and respecting your privacy.

This Privacy Policy explains how we collect, use, store, share and protect personal data when you:

  • visit our website;

  • contact us;

  • subscribe to our newsletter or marketing communications;

  • download resources, guides or other content;

  • book consultations;

  • engage us to provide consultancy, advisory, procurement, funding, grant, research and development, business improvement, training, coaching or related professional services.

This policy also applies to personal data relating to representatives of clients, suppliers, professional advisers, partners and other business contacts.

This policy is designed to comply with:

  • UK General Data Protection Regulation (UK GDPR);

  • Data Protection Act 2018; and

  • Privacy and Electronic Communications Regulations (PECR).

Who We Are

Data Controller

Mavenbridge Limited is the data controller responsible for your personal data.

Registered Office:

Westwood Lodge
Appleby Lane
Broughton
Brigg
DN20 0BG

Email:

contact@mavenbridge.co.uk

For data protection enquiries, please contact:

contact@mavenbridge.co.uk

If you are not satisfied with how we handle your personal data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO) at www.ico.org.uk.

The Personal Data We Collect

We may collect and process the following categories of personal data.

Identity Data

  • first name;

  • surname;

  • job title;

  • business role.

Contact Data

  • email address;

  • telephone number;

  • business address;

  • correspondence records.

Client and Consultancy Data

Information provided in connection with our services, including:

  • business information;

  • supplier information;

  • procurement data;

  • operational information;

  • funding and grant application information;

  • research and development information;

  • project documentation;

  • business performance information.

Financial Data

Where relevant to our services:

  • accounting information;

  • financial records;

  • payment information;

  • banking information;

  • HMRC correspondence.

Employment Data

Where relevant to a client engagement:

  • employee names;

  • payroll information;

  • organisational structures;

  • workforce information.

Technical Data

  • IP addresses;

  • browser type;

  • device information;

  • website usage data;

  • cookie data.

Marketing and Communications Data

  • newsletter subscriptions;

  • marketing preferences;

  • event registrations;

  • communication history.

We do not intentionally collect special category personal data unless it is necessary for the delivery of our services and permitted by law.

How We Collect Personal Data

We collect personal data through:

Direct Interactions

Including where you:

  • contact us;

  • complete website forms;

  • subscribe to newsletters;

  • download resources;

  • book consultations;

  • engage our services.

Automated Technologies

Including through:

  • cookies;

  • Google Analytics;

  • website analytics technologies.

Third Parties

Including:

  • clients;

  • professional advisers;

  • accountants;

  • insurers;

  • referral partners;

  • publicly available sources.

How We Use Personal Data

We only process personal data where permitted by law.

Contractual Necessity

To:

  • provide consultancy and advisory services;

  • manage projects and client engagements;

  • process enquiries;

  • deliver contracted services.

Legitimate Interests

To:

  • operate and improve our business;

  • maintain client relationships;

  • develop our services;

  • manage supplier relationships;

  • prevent fraud;

  • protect our legal interests;

  • send relevant communications to existing clients and business contacts.

Legal Obligations

To:

  • comply with legal and regulatory requirements;

  • maintain financial records;

  • respond to lawful requests from public authorities.

Consent

Where required, including for:

  • newsletter subscriptions;

  • marketing communications;

  • certain website tracking technologies.

You may withdraw consent at any time.

Marketing Communications

You may receive marketing communications from us where:

  • you have requested information from us;

  • you have subscribed to receive updates;

  • you are an existing client and applicable laws permit us to contact you.

You may unsubscribe at any time by following the unsubscribe link in our communications or by contacting us.

We do not sell personal data to third parties.

Sharing Personal Data

We may share personal data where necessary with:

Service Providers

Including providers of:

  • Microsoft 365;

  • SharePoint;

  • Dropbox;

  • email marketing services;

  • website hosting and IT support services.

Professional Advisers

Including:

  • accountants;

  • solicitors;

  • insurers;

  • specialist consultants.

Referral Partners

Where you request or consent to an introduction to another professional adviser or service provider.

Regulatory Authorities

Where required by law.

All third parties are required to protect personal data and process it only for legitimate purposes.

International Transfers

Some of our service providers may process personal data outside the United Kingdom.

Where this occurs, we ensure appropriate safeguards are in place, including adequacy regulations, Standard Contractual Clauses, or other legally approved transfer mechanisms.

Data Security

We implement appropriate technical and organisational measures to protect personal data from unauthorised access, disclosure, loss or misuse.

These measures include:

  • secure cloud storage;

  • restricted access controls;

  • password protection;

  • secure systems and software;

  • staff and contractor confidentiality obligations.

Data Retention

We retain personal data only for as long as necessary for the purposes for which it was collected.

Typical retention periods include:

  • client records: 6 years after the end of the engagement;

  • accounting and tax records: 6 years;

  • marketing records: until consent is withdrawn or you unsubscribe;

  • website analytics data: up to 26 months.

Where information is no longer required, it will be securely deleted or anonymised.

Your Rights

Under UK GDPR you have the right to:

  • access your personal data;

  • request correction of inaccurate data;

  • request deletion of your data;

  • restrict processing;

  • object to processing;

  • object to direct marketing;

  • request data portability;

  • withdraw consent where consent is relied upon.

To exercise your rights, please contact:

contact@mavenbridge.co.uk

Identity Verification and Requests

To protect personal data, we may request information to verify your identity before responding to requests relating to your personal data.

Where a request is manifestly unfounded or excessive, particularly if repetitive, we may charge a reasonable administrative fee or refuse to comply with the request, as permitted by law.

Cookies

Our website uses cookies and similar technologies to improve website functionality, analyse usage and support marketing activities.

Non-essential cookies are only used where you have provided consent.

For detailed information about the cookies we use and how you can manage your preferences, please see our Cookie Policy available on our website.

Changes to This Policy

We may update this Privacy Policy from time to time.

The latest version will always be available on our website.

Contact Us

Mavenbridge Limited

Westwood Lodge
Appleby Lane
Broughton
Brigg
DN20 0BG

Email: contact@mavenbridge.co.uk