top of page

Privacy Policy


Last updated: 24th February 2026

CSR Consultants Ltd ("we", "us", or "our") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and protect your personal data when you visit www.csrconsultants.co.uk or engage with our services, in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and other applicable laws.

1. Who We Are
Data Controller: CSR Consultants Ltd
Website: www.csrconsultants.co.uk
Email: [insert contact email]
Registered address: [insert registered business address]
We are responsible for deciding how your personal data is collected and used.


2. The Personal Data We Collect
We may collect, use, store, and transfer different kinds of personal data, including:

  • Identity Data: Name, job title, company name

  • Contact Data: Email address, telephone number, postal address

  • Technical Data: IP address, browser type and version, time zone, operating system, and device information

  • Usage Data: Information about how you use our website

  • Marketing and Communications Data: Your preferences in receiving marketing communications

We do not intentionally collect special category data (such as health, ethnicity, or political opinions).


3. How We Collect Your Data
We collect personal data in the following ways:

  • When you complete a contact or enquiry form

  • When you communicate with us by email, phone, or other means

  • Through automated technologies such as cookies and analytics tools

  • When you engage our consultancy services

 

4. How We Use Your Personal Data
We will only use your personal data when the law allows us to. Most commonly, we use your data to:

  • Respond to enquiries and provide requested information

  • Deliver our consultancy services

  • Manage our relationship with clients and prospective clients

  • Improve our website and services

  • Send relevant marketing communications (where permitted)

  • Comply with legal or regulatory obligations

 

5. Legal Bases for Processing
Under UK GDPR, we rely on the following lawful bases:

  • Consent – where you have given clear permission

  • Contract – where processing is necessary for a contract with you

  • Legitimate Interests – to operate and grow our business, provided your rights are not overridden

  • Legal Obligation – where we must comply with the law

 

6. Cookies
Our website uses cookies to distinguish you from other users and to improve your experience. Cookies may collect technical and usage data.
You can control cookies through your browser settings. For more information, please see our Cookie Policy [insert link if applicable].

 

7. Data Sharing
We do not sell your personal data. We may share your data with:

  • Professional advisers (legal, accounting, or IT)

  • Service providers who support our website or business operations

  • Regulatory authorities where legally required

 

All third parties are required to respect the security of your data and process it lawfully.

 

8. International Transfers
We do not routinely transfer personal data outside the UK. If data is transferred internationally, appropriate safeguards will be in place, such as standard contractual clauses.

 

9. Data Security
We have implemented appropriate technical and organisational measures to protect personal data against accidental loss, unauthorised access, alteration, or disclosure.
Access to personal data is limited to those with a business need to know.

 

10. Data Retention
We retain personal data only for as long as necessary to fulfil the purposes we collected it for, including legal, accounting, or reporting requirements.

 

11. Your Legal Rights
Under UK GDPR, you have the right to:

  • Request access to your personal data

  • Request correction of inaccurate data

  • Request erasure of your data

  • Object to processing

  • Request restriction of processing

  • Request data portability

  • Withdraw consent at any time

 

To exercise your rights, please contact us using the details above.

 

12. Complaints
If you are unhappy with how we handle your data, you have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO)
 
13. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated revision date.
If you have any questions about this Privacy Policy or how we handle your personal data, please contact us - info@csrconultants.co.uk 

bottom of page