Privacy & Data Protection Policy

1. Introduction

Loyal Networks Ltd (“Loyal Networks”, “we”, “our”, or “us”) is committed to protecting the privacy and security of personal data.

This Privacy & Data Protection Policy explains how we collect, use, process, store, and protect personal data in accordance with:

  • The UK General Data Protection Regulation (UK GDPR)
  • The Data Protection Act 2018
  • The Privacy and Electronic Communications Regulations (PECR)
  • Other applicable data protection laws

Where relevant, we align our practices with EU GDPR requirements for cross-border service delivery.

2. Data Controller

Loyal Networks Ltd acts as a Data Controller in respect of personal data collected through this website and in connection with its business operations, except where acting as a Data Processor under specific client agreements.

Company Name: Loyal Networks Ltd
Company Number: 13421765
Registered Office: Chiswick Business Park, 566 Chiswick High Road, London, United Kingdom
Contact Email: info@loyalnetworks.co.uk

3. Personal Data We Collect

We may collect and process the following categories of personal data:

A. Website & Enquiry Data

  • Name
  • Company name
  • Job title
  • Email address
  • Telephone number
  • Message content

B. Client & Business Contact Data

  • Contractual contact details
  • Billing information
  • Professional identification details

C. Technical & Usage Data

  • IP address
  • Browser type and version
  • Device information
  • Website usage data
  • Log data

D. Managed Services Data

In the context of managed IT services, Loyal Networks may process personal data strictly under client instructions as a Data Processor. In such cases, the client remains the Data Controller.

4. Lawful Basis for Processing (UK GDPR Article 6)

We process personal data on the following lawful bases:

  • Contractual necessity – where processing is required to perform a contract
  • Legitimate interests – for business development, service improvement, and security
  • Legal obligation – compliance with regulatory requirements
  • Consent – where required (e.g., marketing communications or non-essential cookies)

5. How We Use Personal Data

We use personal data to:

  • Respond to enquiries
  • Deliver contracted services
  • Manage client relationships
  • Improve website functionality and security
  • Comply with legal and regulatory obligations
  • Prevent fraud and ensure cybersecurity integrity

We do not sell personal data to third parties.

6. Data Retention

Personal data is retained only for as long as necessary to fulfil the purposes for which it was collected, including satisfying legal, accounting, or reporting requirements.

Retention periods vary depending on the nature of the data and contractual obligations.

7. Data Sharing & Third Parties

We may share personal data with:

  • Professional advisers (legal, accounting, compliance)
  • IT and hosting providers
  • Cloud infrastructure providers
  • Payment or financial service providers (where applicable)
  • Regulatory authorities where legally required

All third-party processors are subject to contractual data protection obligations.

8. International Transfers

Where personal data is transferred outside the United Kingdom, we ensure appropriate safeguards are in place, including:

  • UK-approved Standard Contractual Clauses
  • Adequacy decisions
  • Contractual safeguards

9. Data Security

We implement appropriate technical and organisational measures to protect personal data, including:

  • Access controls
  • Encryption (where appropriate)
  • Network security controls
  • Monitoring and incident response procedures

Our security governance framework aligns with recognised industry standards and relevant regulatory requirements, including UK NIS Regulations and applicable EU NIS2 principles where relevant.

10. Data Subject Rights

Under UK GDPR, individuals have the right to:

  • Access their personal data
  • Request correction of inaccurate data
  • Request erasure (subject to legal limitations)
  • Restrict processing
  • Object to processing
  • Data portability
  • Withdraw consent (where applicable)

Requests may be submitted to: info@loyalnetworks.co.uk

11. Complaints to the ICO

If you believe your data protection rights have been violated, you may lodge a complaint with the Information Commissioner’s Office (ICO). Further information is available at www.ico.org.uk.

We encourage individuals to contact us first to resolve any concerns.

12. Cookies & Tracking Technologies

This website uses cookies in accordance with the Privacy and Electronic Communications Regulations (PECR).

Cookies may include:

  • Strictly necessary cookies
  • Performance and analytics cookies
  • Functional cookies

Where required by law, consent is obtained before non-essential cookies are placed on a user’s device.

13. Changes to This Policy

We reserve the right to update this Privacy & Data Protection Policy at any time. Updates will be published on this page.