GDPR Policy

GDPR Policy for Vestafy Services Limited

Effective Date: 12/02/24

Introduction

Vestafy Services Limited (“we,” “us,” or “our”) is committed to protecting and respecting your privacy. This GDPR Policy outlines our commitment to compliance with the General Data Protection Regulation (GDPR) and explains your rights regarding the personal data we collect, use, and process.

Company Information

Vestafy Services Limited
International House, 195-197 Wood Street, London, United Kingdom, E17 3NU
Company Number: 15638998

Data Controller

Vestafy Services Limited is the data controller responsible for your personal data.

Personal Data We Collect

We may collect and process the following personal data about you:

  1. Identity Data: Name, job title, company name.
  2. Contact Data: Email address, phone number, postal address.
  3. Technical Data: IP address, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform.
  4. Usage Data: Information about how you use our website, products, and services.
  5. Marketing and Communications Data: Your preferences in receiving marketing from us and your communication preferences.

How We Use Your Personal Data

We use your personal data for the following purposes:

  1. To Provide Services: To deliver our construction consultancy services.
  2. To Manage Your Account: To manage your requests, questions, and provide customer support.
  3. To Improve Our Services: To better understand your needs and improve our services and website.
  4. Marketing Communications: To send you information about our services, events, and updates that may interest you (you can opt-out at any time).
  5. Compliance and Legal Obligations: To comply with our legal obligations and for the establishment, exercise, or defense of legal claims.

Legal Basis for Processing Personal Data

We process your personal data based on the following legal grounds:

  1. Contractual Necessity: Processing necessary for the performance of a contract with you or to take steps at your request before entering into a contract.
  2. Legitimate Interests: Processing necessary for our legitimate interests, such as improving our services and marketing, provided your interests and fundamental rights do not override those interests.
  3. Legal Obligation: Processing necessary to comply with a legal obligation.
  4. Consent: Where you have provided consent for processing your personal data for specific purposes.

Sharing Your Personal Data

We do not share your personal data with third parties except in the following circumstances:

  • With your consent.
  • To comply with legal obligations.
  • With service providers who process data on our behalf.
  • To protect and defend our rights and property.

Data Security

We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk of processing your personal data. This includes measures to prevent unauthorized access, disclosure, modification, or destruction of your personal data.

Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements.

Your Rights

Under GDPR, you have the following rights regarding your personal data:

  1. Right to Access: You have the right to request access to the personal data we hold about you.
  2. Right to Rectification: You have the right to request the correction of inaccurate or incomplete personal data.
  3. Right to Erasure: You have the right to request the deletion of your personal data under certain circumstances.
  4. Right to Restrict Processing: You have the right to request the restriction of processing your personal data under certain conditions.
  5. Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format.
  6. Right to Object: You have the right to object to the processing of your personal data based on legitimate interests or for direct marketing purposes.
  7. Right to Withdraw Consent: If we rely on your consent to process your personal data, you have the right to withdraw consent at any time.

Contact Us

If you have any questions about this GDPR Policy or wish to exercise your rights, please contact us:

Vestafy Services Limited
International House, 195-197 Wood Street, London, United Kingdom, E17 3NU
Email: [email protected]

Changes to This GDPR Policy

We may update this GDPR Policy from time to time. We will notify you of any changes by posting the new GDPR Policy on this page. You are advised to review this GDPR Policy periodically for any changes.


This GDPR Policy complies with the General Data Protection Regulation (GDPR) and relevant UK data protection laws. For more detailed information, please refer to the official GDPR guidelines and resources.

Sources: