Privacy Policy

Ramsgrove Technologies Ltd is committed to protecting and respecting your privacy.

1. Introduction

Ramsgrove Technologies Ltd ("we", "us", "our") is committed to protecting and respecting your privacy. This policy explains how we collect, use, store, and protect personal data in connection with our services.

We are registered with the Information Commissioner's Office (ICO) in the United Kingdom under the Data Protection Act 2018. Our ICO registration number is C1891578.

This policy applies to visitors to our website at ramsgrove.com, clients and prospective clients who engage with our services, and individuals whose personal data we process as part of delivering our services.

2. Who We Are

Ramsgrove Technologies Ltd is a UK-based Microsoft 365 and cyber security consultancy. We act as both a data controller (for our own business data) and a data processor (when handling personal data on behalf of our clients).

Contact details:

Ramsgrove Technologies Ltd London, United Kingdom

Email: info@ramsgrove.com

Website: ramsgrove.com

3. Legal Framework

We process personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

4. Personal Data We Collect

When you contact us or use our website we may collect your name and job title, business email address and telephone number, company name and address, and information contained in any correspondence with you.

In the course of delivering our services we may access Microsoft 365 user account data, email metadata, security logs, access records, and audit trails. This data is processed on behalf of our clients, who remain the data controller for their data.

When you visit ramsgrove.com we may automatically collect your IP address, browser type, pages visited, and referral source.

5. How We Use Your Data

We use personal data to provide our Microsoft 365 and cyber security services, manage client accounts, communicate with clients and prospects, process enquiries, manage invoicing and contracts, and meet our legal and regulatory obligations.

6. Lawful Basis for Processing

We rely on the following lawful bases under UK GDPR: contract performance, legitimate interests, legal obligation, and consent where you have given it explicitly.

7. Who We Share Data With

We do not sell personal data. We may share data with Microsoft (as a subprocessor for our M365 services), professional advisers under confidentiality obligations, and regulatory authorities where required by law.

8. International Data Transfers

Where personal data is transferred outside the UK, we ensure appropriate safeguards are in place including adequacy decisions and Standard Contractual Clauses.

9. Data Retention

We retain client contract data for 7 years from end of contract, prospect and enquiry data for 2 years from last contact, and website analytics data for 12 months.

10. Your Rights

Under UK GDPR you have the right to access, rectify, erase, restrict processing of, and port your personal data. You also have the right to object to processing. To exercise any of these rights, contact us at info@ramsgrove.com. We will respond within 30 days.

11. Security

We implement appropriate technical and organisational measures to protect personal data, including Microsoft 365 security controls, multi-factor authentication, role-based access controls, and encrypted data transmission.

12. Cookies

Our website uses cookies to improve user experience and analyse site traffic. You can control cookie settings through your browser or via the cookie banner on our website.

13. Complaints

If you have concerns about how we handle your personal data, contact us at info@ramsgrove.com. You also have the right to complain to the ICO at ico.org.uk or 0303 123 1113.

14. Updates

We may update this policy from time to time. The current version will always be available at ramsgrove.com/privacy-policy.