Privacy Notice for ISO27k.co.uk

Last updated: 04/04/2025

At ISO27k.co.uk (“we”, “our”, or “us”), we are committed to protecting and respecting your privacy. This Privacy Notice explains how we collect, use, and protect your personal data when you visit our website or engage with our services.

We act as the data controller for any personal data collected via this website, in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

🔍 1. What Information We Collect

We may collect and process the following types of personal information:

a) Information You Provide Directly

• Name, email address, telephone number

• Job title and company name (if relevant)

• Enquiry details submitted via contact forms or email

• Subscription preferences (e.g. newsletters, updates)

b) Automatically Collected Information

When you visit our site, we may automatically collect:

• IP address, browser type, operating system

• Pages visited, time spent on site, referral URLs

• Cookie data (see our [Cookie Notice] for details)

This technical data helps us improve our website and detect security risks. It does not identify you as an individual unless combined with other information.

🎯 2. How We Use Your Data

We use your personal data for the following purposes:

• Responding to enquiries or contact requests

• Sending updates or resources (only if you opt in)

• Delivering services or information you request

• Improving website performance and content

• Ensuring site security and preventing misuse

• Fulfilling legal or regulatory obligations

We do not sell your data or use it for automated decision-making.

📜 3. Legal Basis for Processing

We rely on the following lawful bases for processing your data:

• Consent – where you opt in to receive communications

• Contractual necessity – to fulfil service requests

• Legitimate interests – to maintain, secure, and improve our website

• Legal obligations – where we are required to retain data for compliance

🛡 4. How We Protect Your Data

We use a combination of technical and organisational measures to safeguard your information:

• Secure servers and firewalls

• Access controls and authentication

• Encryption where appropriate

• Staff awareness and data protection training

No online system is completely secure, but we work diligently to prevent unauthorised access, loss, or disclosure.

🌍 5. Data Sharing and Transfers

We may share your data with:

• Trusted service providers who help us operate our website or send communications (e.g. web hosts, email platforms)

• Regulatory bodies or legal authorities, if required by law

Some data may be transferred outside the UK/EEA. Where this happens, we ensure appropriate safeguards are in place, such as:

• Standard Contractual Clauses (SCCs)

• Transfers to countries with adequacy decisions

👤 6. Your Rights Under UK GDPR

You have the right to:

• Be informed about how your data is used

• Access your personal data

• Correct inaccurate or incomplete data

• Request deletion of your data (“right to be forgotten”)

• Restrict or object to processing

• Data portability (in specific cases)

• Withdraw your consent at any time

📧 To exercise these rights, please contact us at info@iso27k.co.uk

You also have the right to complain to the Information Commissioner’s Office (ICO) if you believe your rights have been infringed:
👉 https://ico.org.uk/make-a-complaint

🍪 7. Cookies

Our website uses cookies to:

• Remember user preferences

• Improve performance and usability

• Collect analytics data (e.g. via Google Analytics)

You can manage your cookie preferences via our banner or through your browser settings. See our [Cookie Policy] for full details.

🔗 8. External Links

Our website may contain links to third-party sites. Please note that we are not responsible for their privacy practices. We recommend reviewing their policies before providing any personal data.

📬 9. Contact Us

If you have questions about this Privacy Notice or how we handle your data, please contact:

ISO27k
📧 Email: info@iso27k.co.uk
🌐 Website: https://www.iso27k.co.uk

✅ Key Takeaway

We only collect what we need, use it responsibly, and give you full control over your personal data. Your trust is important to us—and we’re here to protect it.