Privacy Policy

Last updated: 25 May 2026

1. Who We Are

This privacy policy applies to Brindleford Technologies Ltd (Company Number: 16871436), registered at 71–75 Shelton Street, Covent Garden, London, WC2H 9JQ, United Kingdom (“we”, “us”, “our”).

We operate the website https://www.brindleford.co.uk and associated platforms and applications (collectively, “Services”).

For any privacy-related queries, contact us at info@brindleford.co.uk.

2. Information We Collect

We may collect and process the following types of personal data:

  • Information you provide directly: name, email address, phone number, organisation name, and any other details you submit via contact forms, sign-up forms, or correspondence.
  • Account and profile data: username, password (stored securely in hashed form), role, and preferences when you create an account on any of our platforms.
  • Usage data: pages visited, features used, timestamps, referring URLs, browser type, device information, and IP address.
  • Data from third-party platforms: if you interact with our Services via third-party platforms (such as Facebook/Meta), we may receive information such as your name, email address, profile picture, and user ID, in accordance with the permissions you grant on that platform.
  • Payment information: billing details processed by our payment providers (Stripe, GoCardless). We do not store full card numbers on our servers.
  • Cookies and similar technologies: we use cookies and similar tracking technologies to improve your experience. See Section 8 for details.

3. How We Use Your Information

We use personal data for the following purposes:

  • To provide, maintain, and improve our Services.
  • To create and manage your account.
  • To process transactions and send related information, including confirmations and invoices.
  • To communicate with you, including responding to enquiries and sending service-related notices.
  • To personalise and improve your experience.
  • To monitor usage patterns and analyse trends for internal purposes.
  • To comply with legal obligations and enforce our terms.
  • To detect, prevent, and address technical issues or security threats.

4. Legal Basis for Processing (UK GDPR)

We process your personal data on the following legal bases:

  • Contract: processing necessary to perform a contract with you or to take steps at your request before entering into a contract.
  • Legitimate interests: processing necessary for our legitimate interests (e.g. improving our Services, fraud prevention), provided these are not overridden by your rights.
  • Consent: where you have given clear consent for us to process your personal data for a specific purpose.
  • Legal obligation: processing necessary for compliance with a legal obligation to which we are subject.

5. Data Sharing and Disclosure

We do not sell your personal data. We may share your data with:

  • Service providers: trusted third parties who assist in operating our Services (e.g. hosting providers, payment processors, email delivery services).
  • Legal requirements: if required by law, regulation, legal process, or governmental request.
  • Business transfers: in connection with a merger, acquisition, or sale of assets, your data may be transferred as part of that transaction.
  • With your consent: where you have given explicit permission to share your data.

6. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including to satisfy legal, accounting, or reporting requirements. When data is no longer required, it is securely deleted or anonymised.

7. Your Rights

Under UK data protection law, you have the right to:

  • Access your personal data.
  • Rectify inaccurate or incomplete data.
  • Request erasure of your data (“right to be forgotten”).
  • Restrict or object to processing.
  • Data portability — receive your data in a structured, commonly used format.
  • Withdraw consent at any time where processing is based on consent.

To exercise any of these rights, contact us at info@brindleford.co.uk. We will respond within one month.

8. Cookies

Our website uses cookies to enhance your browsing experience. Cookies are small text files stored on your device. We use:

  • Essential cookies: necessary for the website to function properly.
  • Analytics cookies: to understand how visitors interact with our website.
  • Functional cookies: to remember your preferences and settings.

You can control cookies through your browser settings. Disabling certain cookies may affect site functionality.

9. Third-Party Services

Our Services may integrate with or link to third-party platforms, including but not limited to Facebook/Meta, Stripe, and GoCardless. These third parties have their own privacy policies, and we encourage you to review them. We are not responsible for the privacy practices of third-party services.

10. Data from Facebook/Meta

If you use or interact with our Services through Facebook or Meta platforms, we may receive certain information from Meta in accordance with their platform policies and the permissions you grant. This may include your public profile information, email address, and any other data you authorise us to access.

We use this data solely for the purposes described in Section 3 of this policy. You can revoke access at any time through your Facebook/Meta account settings. Upon revocation or account deletion request, we will delete your data obtained from Meta within a reasonable timeframe, unless retention is required by law.

11. Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These include encryption, access controls, regular security assessments, and secure data storage practices.

12. International Transfers

Your data is primarily processed and stored within the United Kingdom. Where data is transferred outside the UK, we ensure appropriate safeguards are in place in accordance with UK data protection law.

13. Children’s Privacy

Our Services are not directed at individuals under the age of 16. We do not knowingly collect personal data from children. If we become aware that we have collected data from a child without appropriate consent, we will take steps to delete that information promptly.

14. Changes to This Policy

We may update this privacy policy from time to time. Any changes will be posted on this page with an updated “Last updated” date. We encourage you to review this policy periodically.

15. Contact Us

If you have any questions about this privacy policy or our data practices, please contact us:

You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO) at ico.org.uk if you believe your data protection rights have been violated.