Legal

Privacy Notice.

This notice explains how Secure Chain Technology Group Ltd collects, uses, shares and protects your personal data in accordance with the UK GDPR and the Data Protection Act 2018.

Last updated: 3 June 2026

1. Who we are

Secure Chain Technology Group Ltd ("we", "us", "our") is a company registered in England and Wales. We are the data controller for personal data we collect through this website and in the course of providing our managed security services.

Contact: Info@securechaingroup.com · 01246 901392.

2. What personal data we collect

  • Identity and contact data (name, work email, phone, employer, job title)
  • Enquiry content you submit via our contact form
  • Technical data (IP address, browser type, device information)
  • Usage data (pages visited, time on page, referring URL) where cookies are accepted
  • Marketing preferences (opt-ins, opt-outs)

We do not knowingly collect special category data through this website.

3. How we collect it

  • Directly from you (forms, email, phone, meetings, contracts)
  • Automatically via cookies and similar technologies (only with consent)
  • From third parties such as Companies House and publicly available sources

4. Purposes and lawful bases

We process personal data only where we have a lawful basis under Article 6 UK GDPR:

  • Contract — to provide services to clients and prospective clients
  • Legitimate interests — to respond to enquiries, operate and secure our website, and conduct B2B marketing to relevant organisations (balanced against your rights)
  • Consent — for non-essential cookies and electronic marketing to individuals
  • Legal obligation — for tax, accounting, regulatory and law-enforcement requirements

5. Sharing your data

We share personal data only with:

  • Sub-processors that support our operations (hosting, email, CRM, analytics) under written data-processing agreements
  • Professional advisers (accountants, legal counsel, insurers)
  • Regulators, courts and law-enforcement where legally required

We do not sell personal data.

6. International transfers

Where personal data is transferred outside the UK, we rely on UK adequacy regulations, the UK International Data Transfer Agreement (IDTA) or the UK Addendum to the EU Standard Contractual Clauses, with appropriate supplementary measures.

7. Retention

We retain personal data only for as long as necessary for the purposes set out above, to meet our legal and regulatory obligations, and to resolve disputes. Enquiry data is typically held for up to 24 months; client contract data for 7 years after the end of the engagement.

8. Security

We apply technical and organisational measures aligned to ISO 27001 and Cyber Essentials Plus, including access controls, encryption in transit and at rest, vulnerability management and staff training.

9. Your rights

Under the UK GDPR you have the right to:

  • Be informed about our processing
  • Access your personal data
  • Rectify inaccurate data
  • Erase data ("right to be forgotten") where applicable
  • Restrict or object to processing
  • Data portability
  • Withdraw consent at any time
  • Lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk or 0303 123 1113

To exercise any right, email Info@securechaingroup.com. We respond within one month.

10. Cookies

See our Cookie Notice for details of the cookies we use and how to manage your preferences. You can change your choices at any time using the "Cookie settings" link in the footer.

11. Changes

We may update this notice. Material changes will be highlighted on this page. The "Last updated" date above indicates when it was last revised.