Legal · Policy

Privacy Policy

Last reviewed: 25 April 2026 · Next review: 25 April 2027

1. About this Privacy Policy

Stacksolver UK Limited ("Stacksolver", "we", "us", "our") is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, share, and protect personal data when you visit our website (stacksolveruk.com), engage with us as a prospective client, contract with us as a client, or interact with us in any other capacity.

This policy is issued in accordance with the United Kingdom General Data Protection Regulation ("UK GDPR"), the Data Protection Act 2018, and the Privacy and Electronic Communications Regulations 2003 ("PECR").

2. Data Controller

The data controller responsible for your personal data is:

Stacksolver UK Limited 215 Ditchling Road, Brighton, BN1 6JD, United Kingdom Company Number: 16227080 ICO Registration: pending — to be added once registered Email: office@stacksolveruk.com

If you have any question about this policy or about how we process your personal data, you may contact us at the address above.

3. Personal Data We Collect

We may collect and process the following categories of personal data:

  • Identity — name, job title, employer (you provide directly).
  • Contact — email, phone, postal address (you provide directly).
  • Professional — industry, role, organisation size (you provide directly).
  • Technical — IP address, browser type, device, operating system (automatically when you visit).
  • Usage — pages visited, time spent, referrer (automatically through analytics).
  • Communications — messages exchanged, meeting notes (when you communicate with us).
  • Marketing preferences — opt-in / opt-out status (you provide directly).

We do not knowingly collect special category data (UK GDPR Art. 9) such as health, biometric, religious or political data.

4. Lawful Bases for Processing

We process personal data on one or more of the following lawful bases (UK GDPR Art. 6):

  • Consent (Art. 6(1)(a)) — for marketing communications and non-essential cookies.
  • Contract (Art. 6(1)(b)) — to perform a contract with you or take pre-contract steps you have requested.
  • Legal obligation (Art. 6(1)(c)) — to comply with HMRC, Companies House, ICO or other regulatory requirements.
  • Legitimate interests (Art. 6(1)(f)) — to operate our business, prevent fraud, secure our systems and respond to enquiries. We have assessed these interests against your rights and freedoms.

5. Purposes of Processing

We use personal data for the following purposes:

  1. To respond to enquiries you submit through our website or other channels.
  2. To deliver consultancy services agreed in a written contract with you or your organisation.
  3. To manage our supplier and subcontractor relationships.
  4. To send relevant business communications where you have consented or where there is a legitimate interest.
  5. To maintain accurate financial and corporate records as required by law.
  6. To improve our website and services through aggregated analytics.
  7. To comply with any legal, regulatory or audit requirement.

6. Sharing Your Personal Data

We do not sell personal data. We may share your data with:

  • Cloud and software providers acting as data processors on our behalf (Google Workspace, AWS, our analytics provider). All such processors are bound by Article 28 data processing agreements.
  • Professional advisors (legal, accounting, insurance) where necessary.
  • Regulators and law enforcement where required by law.
  • Subcontractors engaged on a specific client project, only to the extent strictly necessary.

7. International Transfers

Some of our service providers may process personal data outside the United Kingdom. Where we transfer personal data outside the UK or the European Economic Area, we ensure appropriate safeguards are in place, such as the UK International Data Transfer Agreement, the UK Addendum to the EU Standard Contractual Clauses, or transfers to jurisdictions with an adequacy decision recognised by the UK government.

8. How Long We Keep Personal Data

We retain personal data only as long as necessary for the purposes for which it was collected.

  • Enquiry data (no engagement): 24 months from last contact.
  • Client engagement data: duration of contract + 7 years (HMRC requirement).
  • Marketing preferences: until you withdraw consent or opt out.
  • Website analytics (aggregated): 26 months.
  • Financial records: 7 years (Companies Act / HMRC).

9. Your Rights

Under the UK GDPR, you have the right of access (Art. 15), rectification (Art. 16), erasure (Art. 17), restriction (Art. 18), data portability (Art. 20), objection (Art. 21), withdrawal of consent at any time, and to lodge a complaint with the Information Commissioner's Office (ICO).

To exercise any of these rights, please contact us at office@stacksolveruk.com. We will respond within one calendar month, in line with UK GDPR.

You may also lodge a complaint with the ICO at https://ico.org.uk.

10. Security

We take appropriate technical and organisational measures to protect personal data against unauthorised access, disclosure, alteration or destruction. Our security posture is informed by the principles of ISO/IEC 27001:2022 and the UK National Cyber Security Centre Cyber Essentials scheme.

In the unlikely event of a personal data breach that poses a risk to your rights and freedoms, we will notify the ICO within 72 hours and, where required, notify affected individuals.

11. Cookies

Our use of cookies is described separately in our Cookie Policy.

12. Changes to this Policy

We review this policy at least annually and update it when our practices or applicable law change. Material changes will be highlighted on our website.

Stacksolver UK Limited · Company Number 16227080 · 215 Ditchling Road, Brighton, BN1 6JD · office@stacksolveruk.com

Other legal documents