Netforte Consulting Ltd Privacy Policy

1. Introduction

Netforte Consulting Ltd (“Netforte”, “we”, “us”, “our”) is a UK‑based cybersecurity and IT consultancy. This Privacy Policy outlines how we collect, use, share, and protect personal data when you visit www.netforte.co.uk (“Website”), request our services, or otherwise interact with us.

2. Who we are

• Legal entity: NetForte Consulting Ltd, registered in England & Wales (Company No 15551110), registered office at 14 Lesney Park Road, Erith, Kent DA8 3DG find-and-update.company-information.service.gov.uk+1uk.linkedin.com+1.
• Contact: info@netforte.co.uk

3. Data we collect

• Contact & identity data: name, job title, company, email, phone – provided via contact forms or email.
• Technical data: IP address, browser type & version, time zone, cookie usage, referring URLs, pages visited, date/time stamps, device and platform type. Collected via cookies and server logs.
• Usage data: frequency of visits, interaction with our site, forms accessed, time spent.

4. Legal bases for processing

• Consent (cookies, communications).
• Performance of contract (delivering services such as penetration testing, SOC 2 support, vCISO).
• Legitimate interests (service improvement, security monitoring, marketing).
• Legal compliance (obligations like record-keeping, AML checks).

5. Use of data

• To respond to inquiries, deliver proposals, services (e.g. cybersecurity audits, cloud security).
• To operate, maintain, and improve the Website.
• To evaluate marketing campaigns and service improvements.
• To comply with legal obligations or enforce our agreements.

6. Cookies & similar technologies
   Our Website uses essential cookies for functionality and analytic cookies for performance insights.
   You may accept or reject non‑essential cookies via the consent banner netforte.co.ukuk.linkedin.com. Please refer to our Cookie Policy for detailed information.
7. Third-party disclosures
   We may share personal data with:

• Service providers (hosting, analytics, email).
• Regulators or law enforcement if required.
• Potential business partners or due diligence parties, under confidentiality terms.
  We do not sell your personal data.

8. International transfers
   Most processing is UK/EU. If data is transferred outside these regions, we ensure adequate protections (e.g. Standard Contractual Clauses, adequacy decisions).
9. Data retention
   We store personal data as long as necessary: to fulfill contractual obligations, for applicable limitation periods, or to meet legal/regulatory storage requirements.
10. Your rights
    Under the UK GDPR, you may:

• Request access, correction, or erasure of your data.
• Object to or restrict processing.
• Request portability.
• Withdraw consent (where applicable).
• Lodge a complaint with the ICO.

11. Security
    We implement appropriate technical and organisational measures—such as encryption, access controls, IT audits—to protect data against unauthorised access, loss, or destruction.
12. Children
    Our services are aimed at businesses; we do not intentionally collect data from children under 16. If you believe we have, contact us to have it deleted.
13. Changes to this policy
    Updates are posted on this page with a revised “last updated” date. Significant changes will be communicated via email or website notice.
14. Contact us
    For questions, data requests, or concerns, contact us at:
    NetForte Consulting Ltd
    14 Lesney Park Road, Erith, Kent DA8 3DG
    Email: info@netforte.co.uk