top of page

Privacy Notice

Last updated : 4 March 2025

At The Privacy Hub, we take the security of your personal data seriously. This Privacy Notice explains how we collect, use, and protect your personal data when you visit our website or use our services.

Who We Are 

The Privacy Hub is a consultancy firm that provides a wide range of GDPR-related services, including:
​

  • GDPR Compliance : Helping businesses become GDPR-compliant through gap analysis, compliance reporting, and auditing.

​

  • GDPR Operations Support : Assisting with data breaches, data subject rights, Data Protection Impact Assessments (DPIA), Record of Processing Activities (RoPA) management, third-party due diligence, and retention schedule management.

 

  • GDPR Training : Delivering personalised data protection training to individuals and teams.

 
When we provide these services, we may need to process personal data about you. This notice explains how we handle that data.

What Personal Data We Collect

The personal data we collect depends on the services you use and how you interact with us. It may include: -
 
Contact Information: Your name, email address, phone number, and job title. 
​
Business Information: Details about your organisation, such as its name, size, and industry. 
​
Technical Data: Information about your device and how you use our website (e.g., IP address, browser type, and pages visited).
​
Service-Specific Data: Information needed to deliver our services, such as data about your GDPR compliance status, data breaches, or training needs. We only collect the data we need to provide our services or improve your experience.

How We Use Your Personal Data

We use your personal data for the following purposes:
 

  • To Provide Our Services: which include GDPR Compliance, GDPR Operations Support and GDPR Training 

 

  • To Communicate With You: to respond to your requests and tell you about our services if you’ve agreed to this.

 

  • To Improve Our Website and Services: Analyse how our website is used to make it better and ensure our services meet your needs.

 

  • To Meet Legal Obligations: Comply with UK GDPR and other applicable laws

Our Legal Basis for Processing Your Data

Under UK GDPR, we must have a valid reason (or “legal basis”) for processing your personal data. For most of our services, this will be:​​
​
Contract: We need to process your data to fulfil our contract with you (e.g., providing consultancy services).
​​
Legitimate Interests: We may process your data to improve our services or website, provided this doesn’t override your rights.
​
Consent: In some cases (e.g., marketing), we’ll only process your data if you’ve given us permission.​​​​

Who We Share Your Data With

​We only share your data with trusted third parties when necessary. This may include:
 
Service Providers: Companies that help us deliver our services (e.g., IT support or training platforms).
 
Legal or Regulatory Authorities: If required by law.
 
We never sell your data or share it with third parties for their own marketing purposes.

How We Protect Your Data

We take data security seriously. We use technical and organisational measures to protect your data from unauthorised access, loss, or misuse. These include encryption, secure servers, and regular staff training. 

How Long We Keep Your Data

We only keep your data for as long as necessary to provide our services or meet legal requirements. After this, we’ll securely delete or anonymise it.

Your Rights Under UK GDPR

You have several rights over your personal data, including:

Access: You can ask for a copy of the data we hold about you.

Correction: You can ask us to correct inaccurate data. 

Deletion: You can ask us to delete your data in certain circumstances. 

Restriction: You can ask us to limit how we use your data. 

Objection: You can object to how we use your data, including for marketing. 

Data Portability: You can ask us to transfer your data to another organisation. To exercise these rights, please contact us using the details below. 

How to Contact Us

If you have any questions about this Privacy Notice or how we handle your data, please contact us:

Email: compliance@theprivacyhub.org

Changes to This Notice

We may update this notice from time to time. If we make significant changes, we’ll let you know via email or a notice on our website. 

The Privacy Hub Black and Red Logo.png

The Privacy Hub

© 2023 The Privacy Hub. All rights reserved.

 

The Privacy Hub Ltd is a trading name of Finenalysis Ltd

 

A company registered in England and Wales

 

(Company No. 07914892).

 

Registered Office: Crispins Manor Farm Lane, Michelmersh, Romsey, Hampshire, SO51 0NT

Privacy Policy

© 2025 by The Privacy Hub 

bottom of page