Privacy Policy

Effective date: 10th January 2026

This Privacy Policy explains how personal data is collected, used, stored and shared when you visit www.venturistsolutions.com or contact us using the contact details published on the site.

This website is intended for general informational purposes about our consultancy services and for initial direct contact. It is not intended as a customer portal, account area, or transactional checkout environment.

1. Who we are

This website is operated in connection with the following entities:

Venturist Solutions Ltd

Company number: 14489412

Registered office: First Floor Swan Buildings, 20 Swan Street, Manchester, England, M4 5JW

Venturist Group Ltd

Registration number: HE466477

Registered office: Nissi Ave 68, 5330 Agia Napa, Cyprus

In relation to the operation, administration, maintenance and measurement of this website, these entities may act as joint controllers where they jointly determine the purposes and means of processing personal data.

If your enquiry, project, contract or ongoing relationship is handled by one of the above entities specifically, that entity will usually act as the primary controller for the personal data connected with that relationship, although the other entity may still have access where necessary for administration, oversight, internal operations, compliance, group management or business continuity.

For privacy queries or to exercise your data protection rights, please contact:

Email: clients@venturistsolutions.com

2. Scope of this policy

This policy applies to personal data processed:

1. when you visit or interact with this website;
2. when we use analytics, behavioural measurement tools, cookies or similar technologies;
3. when you contact us by email or telephone using the contact details published on the website;
4. when we receive and store business correspondence arising from your enquiry; and
5. when we take steps before potentially entering into a business relationship with you.

This policy does not cover third-party websites linked from our site. If you follow a link to another website, please review that website’s own privacy information.

3. The personal data we may collect

Depending on how you use the website or contact us, we may collect and use the following categories of personal data.

A. Website usage and behavioural data

We may collect limited information about how visitors use the website, such as:

1. IP address;
2. device type, browser type, operating system and language settings;
3. pages viewed and navigation paths;
4. date, time and duration of visits;
5. referring website or source;
6. approximate location derived from IP address;
7. interaction and engagement information, such as clicks, scroll depth, page sequencing or similar website behaviour;
8. cookie identifiers, analytics identifiers or similar online identifiers where such technologies are used.

B. Contact and correspondence data

If you contact us by email or telephone, we may collect:

1. your name;
2. business name;
3. email address;
4. telephone number;
5. job title, if provided;
6. the content of your message or call;
7. any information you choose to provide to us in connection with your enquiry.

C. Email and communications metadata

Where you email us, we may also process technical and administrative information associated with the communication, including:

1. sender and recipient details;
2. timestamps;
3. subject line;
4. message routing information;
5. mail server and delivery metadata;
6. spam, phishing or malware screening results;
7. security and access logs associated with our email environment.

D. Records created by us

We may create internal records connected with your enquiry, such as:

1. notes of conversations;
2. service suitability notes;
3. records of whether and when we responded;
4. internal administration records;
5. compliance, legal and audit records.

4. How we collect personal data

We collect personal data:

1. directly from you, when you contact us by phone or email;
2. automatically, through your use of the website, device and browser;
3. through cookies, analytics tools and similar technologies where enabled;
4. from our IT, hosting, security and email systems; and
5. in some cases, from publicly available business information where relevant to your enquiry or a proposed business relationship.

5. Our purposes and lawful bases

Under the UK GDPR and EU GDPR, we must have a lawful basis for processing personal data.

We may process personal data for the following purposes:

‍

Our legitimate interests

Where we rely on legitimate interests, these generally include:

1. operating a professional consultancy website;
2. ensuring website security, resilience and continuity;
3. understanding whether the website is effective;
4. receiving and managing business enquiries;
5. maintaining internal records;
6. protecting our legal position and business interests.

We will only rely on legitimate interests where we are satisfied that the processing is necessary and does not override your interests, rights and freedoms.

6. Cookies and similar technologies

We may use cookies and similar technologies to make the website work, maintain security, and understand how visitors use the site.

Where a cookie or similar technology is strictly necessary for the website to operate securely or deliver a service you request, we may use it without consent where permitted by law.

Where a cookie or similar technology is used for analytics, behavioural tracking, measurement, optimisation or similar non-essential purposes, we will seek your consent before placing or reading it where consent is required by applicable law.

If behavioural tracking is enabled on this website, it should be deployed so that:

1. users are given a clear choice;
2. non-essential tracking is off by default until consent is given;
3. consent can be withdrawn as easily as it was given; and
4. records of consent preferences are retained where appropriate for compliance purposes.

You can also manage certain cookie settings through your browser, although doing so may affect website functionality.

7. Who we share personal data with

We do not sell personal data.

We may share personal data where necessary with:

1. website hosting, infrastructure and IT service providers;
2. website analytics and measurement providers, where enabled;
3. email hosting and email security providers;
4. telecommunications providers;
5. professional advisers, such as lawyers, accountants, auditors and consultants;
6. regulators, law enforcement bodies, courts or public authorities where required;
7. insurers;
8. service providers who support our administration, security or operations;
9. another entity within our group, where reasonably necessary for website operations, enquiry handling, compliance, oversight or business continuity;
10. a purchaser, investor or successor organisation in connection with a merger, acquisition, restructure or sale of business or assets.

All such sharing is limited to what is reasonably necessary for the relevant purpose.

8. International transfers

Because this website may be operated across both the United Kingdom and European Economic Area, personal data may be accessed or transferred between those jurisdictions in the course of website operation, administration, enquiry handling, group management or IT support.

We may also use service providers located outside the UK or EEA.

Where personal data is transferred internationally, we will seek to ensure that an appropriate safeguard is in place, such as:

1. a relevant adequacy decision or adequacy regulation;
2. Standard Contractual Clauses;
3. the UK International Data Transfer Agreement or UK Addendum;
4. another lawful transfer mechanism recognised under applicable data protection law.

9. How long we keep personal data

We keep personal data only for as long as reasonably necessary for the purposes described in this policy, including legal, regulatory, tax, accounting, security and record-keeping requirements.

Typical retention periods may include:

1. website security and server logs: normally up to 12 months, unless longer retention is needed for investigation, security or legal reasons;
2. analytics and behavioural data: retained in line with the settings of the relevant analytics platform and our internal retention policy, typically for a limited period only;
3. cookie consent records: for as long as reasonably necessary to demonstrate compliance;
4. general enquiries that do not progress: normally up to 24 months after the last meaningful contact;
5. business correspondence and records that lead to a service relationship: typically for the duration of the relationship and for up to 6 years afterwards, or longer where required by law or needed in connection with legal claims.

We may retain information for longer where necessary to establish, exercise or defend legal claims, investigate incidents, or comply with legal obligations.

10. Security

We use appropriate technical and organisational measures intended to protect personal data against unauthorised or unlawful processing and against accidental loss, destruction or damage.

These measures may include:

1. access controls;
2. password and account security;
3. secure hosting environments;
4. network and endpoint protections;
5. logging and monitoring;
6. email security controls;
7. restricted access to business correspondence;
8. periodic review of suppliers and systems.

However, no internet or email transmission is ever completely secure, and you provide information to us at your own risk.

11. Your data protection rights

Depending on the circumstances and the law that applies, you may have the right to:

1. be informed about how your personal data is used;
2. request access to your personal data;
3. request correction of inaccurate or incomplete personal data;
4. request erasure of your personal data;
5. request restriction of processing;
6. object to processing based on legitimate interests;
7. withdraw consent at any time where processing is based on consent;
8. request data portability, where applicable;
9. object to certain direct marketing, if ever used;
10. not be subject to a decision based solely on automated processing that produces legal or similarly significant effects, where applicable.

We do not currently expect this website to use personal data for solely automated decision-making producing legal or similarly significant effects.

To exercise your rights, please contact us at clients@venturistsolutions.com.

We may need to verify your identity before responding to a rights request.

12. Complaints

If you are unhappy with how your personal data has been handled, we would appreciate the opportunity to address your concerns first.

You also have the right to complain to a supervisory authority.

For UK matters, you can complain to the Information Commissioner’s Office (ICO).

For EU matters connected with our Cyprus entity or processing in Cyprus, you can complain to the Office of the Commissioner for Personal Data Protection in Cyprus.

You may also complain to the supervisory authority in the EU/EEA country where you live or work, or where you believe an infringement has occurred, where applicable.

13. Children

This website is not directed to children, and we do not knowingly seek to collect personal data from children through it.

14. Special category and sensitive information

Please do not send us special category data or other highly sensitive personal data through general website contact channels unless it is strictly necessary and you have a clear reason for doing so.

If you choose to send sensitive information to us, you do so at your discretion, and we will handle it in accordance with applicable law.

15. Changes to this policy

We may update this Privacy Policy from time to time to reflect legal, technical, operational or business changes.

Any updates will be posted on this page and will take effect from the date shown at the top of the policy.

16. Contact us

If you have any questions about this Privacy Policy or how your personal data is used, please contact:

Email: clients@venturistsolutions.com

Website: www.venturistsolutions.com

‍