Privacy Notice

We respect the privacy of every individual who visits our website. We're committed to safeguarding your privacy and have written this privacy notice to explain what information we collect, and what we do with it.

This policy may change so please check it periodically. It was last updated on 18th February 2018.

Who is the data controller?

For the purposes of the personal data described in this notice, the data controller is the owner of this website.

We operate in accordance with the Data Protection Act 1998 and EU 2016/679 (The GDPR).

How do we obtain your personal data?

We may obtain your personal data in a variety of ways, including from website analytics built into this site.

Any information you give us should be accurate, and if supplying anyone else’s data you must ensure that you have the authority and legal basis to do so.

What personal data is processed?

We may process different types of information about you, including:

  • IP addresses
  • Browser information

How is your personal information used?

The personal data you give us may be used in a variety of ways:

  • Identifying web traffic sources

Who is your information shared with?

Your personal data will not be sold or disclosed to anyone outside of this website or our appointed suppliers, without obtaining your prior consent - unless we are required to do so by law.

Retention of your personal information

We will only keep your personal data for as long as it is relevant to the purpose for which it was collected or for as long as we are required to keep it by law.

What is the legal basis for processing your data?

In most cases the processing is necessary for legitimate interests of

Your rights

You have the right to request access to the personal data that we hold about you - this is known as a Subject Access Request (SAR). If you wish to make an SAR about the personal data we hold about you, please email We will respond within 30 days to provide you with the data we hold about you in a commonly-used electronic format. There is no charge for this service, however if requests become manifestly unfounded, excessive or repetitive, we may charge a fee appropriate to the administrative work required.

You have the right to request a rectification of your personal data. To do so, please email we will respond within 30 days, although can be extended by two months if the request for rectification is complex. If we decide not take action in response to a request for rectification, we will explain to you our reasons.

You have the right to the deletion or removal of your personal data where there is no compelling reason for its continued processing. To request deletion of your personal data, please email We may refuse to comply with a request for erasure in some circumstances, for example in the case of requiring the information as part of a legal obligation, such as statutory accounts and records.

You have the right to suppress or restrict the processing of your personal data. To request this, please email

You have the right to data portability, which allows you to obtain and reuse your personal data for your own purposes across different services. To request this, please email We will respond within 30 days to provide you with the data we hold about you in a commonly-used electronic format. This time can be extended by two months if the request is complex.

You have the right to object to:

  • direct marketing
  • processing based on legitimate interests
  • processing for purposes of scientific/historical research and statistics.

To make an objection to processing, please email

How we protect your information

We take a range of organisational and technical measures to protect your information. We maintain strict physical, electronic and administrative safeguards to protect your personal data from unauthorised or inappropriate access.

Where appropriate we use industry-standard encryption techniques, including encrypting web traffic using HTTPS.

We hold regular security reviews to ensure that our systems and processes remain safe and secure for the protection of your personal data.

We keep software up to date with latest security patches as advised by the vendors of the software.

Is any of your data sent outside of the EU?

Yes, possibly - we use suppliers such as Google and Amazon Web Services who are based in the US, but have data centres in the UK and EU. Wherever possible we select data centres in the EU, however it’s likely some data is stored in the US.

People under the age of 16

If you are under 16, please ensure that you obtain your parent/guardian's consent, and evidence of that consent, before you provide personal information to us.

How this website uses cookies

Please visit our cookies page for more information.

Links to Other Websites

This website and other communications may contain links to other third-party websites. You should be aware that we do not have any control over other these third-party websites, and therefore we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites. Such sites are not governed by this privacy notice.

You should exercise caution and look at the privacy notice applicable to the website in question.


For any questions about this Privacy Notice, or our approach to data protection, please contact us: