Privacy Policy

Last Updated:

1. Who We Are

Compass Consult (Employability & Skills) Ltd is the data controller responsible for personal data collected through this website.

  • Company Name: Compass Consult (Employability & Skills) Ltd
  • Company Number: 16973082
  • Registered Office: Stirling House 1 Outrams Wharf, Little Eaton, Derby, England, DE21 5EL
  • Email: info@compassconsult.co.uk
  • Phone: 07936327832

2. Scope of This Policy

This Privacy Policy explains how we collect, use, store, share and protect personal data when you visit our website, contact us, subscribe to updates, or otherwise interact with us online.

This policy is drafted to align with UK data protection law, including the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

3. Personal Data We Collect

Depending on how you interact with us, we may collect the following categories of personal data:

  • Identity Data: name and role/title where provided.
  • Contact Data: email address, phone number, organisation details and any contact information you submit.
  • Communications Data: records of messages, enquiries and correspondence sent to us.
  • Technical Data: IP address, browser type/version, device information, referral source, and operating system.
  • Usage Data: page interactions, navigation paths, and website performance information (usually aggregated).
  • Marketing Preferences: your preferences about receiving communications from us.

We do not intentionally collect special category data through this website. Please avoid including sensitive personal data in open text fields unless specifically requested.

4. How We Collect Personal Data

  • Directly from you when you complete forms, email us, call us, or otherwise contact us.
  • Automatically via cookies and similar technologies when you browse the website.
  • From third-party service providers that support website hosting, analytics and form processing.

5. Lawful Bases for Processing (UK GDPR Article 6)

We only process personal data where we have a valid lawful basis. These include:

  • Consent: for specific activities where consent is required (for example, certain cookies and optional marketing).
  • Contract: where processing is necessary to take steps at your request or perform a contract with you.
  • Legal Obligation: where processing is required to comply with applicable law.
  • Legitimate Interests: where processing is necessary for our legitimate business interests and your rights do not override those interests.

Our legitimate interests may include operating and improving our website and services, responding to enquiries, maintaining security, and managing business communications.

6. Why We Use Your Data

  • To respond to enquiries and provide requested information.
  • To deliver and manage services, proposals and client relationships.
  • To maintain website functionality, security and resilience.
  • To monitor and improve website performance and user experience.
  • To maintain appropriate records and comply with legal/regulatory requirements.
  • To send relevant updates where lawful and in line with your preferences.

7. Cookies and Analytics

We use cookies and similar technologies to operate the website and understand usage trends. Details are provided in our Cookie Policy.

Where required, we request consent before placing non-essential cookies. You can manage cookie preferences via browser settings and cookie controls.

8. Sharing Personal Data

We may share personal data with trusted third parties where necessary, including:

  • Website hosting and infrastructure providers.
  • Form handling, security and technical support providers.
  • Analytics providers (for example, website usage reporting).
  • Professional advisers, regulators, public authorities, or law enforcement where required by law.

We require third parties to process personal data only on our instructions, to apply appropriate safeguards, and to comply with data protection law.

9. International Transfers

Some suppliers may process data outside the UK. Where this occurs, we take steps to ensure an adequate level of protection, such as adequacy regulations or approved transfer safeguards (for example, international data transfer agreements or standard contractual clauses with UK addendum where applicable).

10. Data Security

We use appropriate technical and organisational security measures to protect personal data against accidental loss, unauthorised access, misuse, alteration, or disclosure.

Access to personal data is restricted to individuals and service providers who have a legitimate need to know and who are subject to confidentiality and security obligations.

11. Data Retention

We retain personal data only for as long as necessary for the purposes described in this policy, including to meet legal, accounting, and reporting requirements.

Retention periods depend on the data type and context, including:

  • How long we need the data to respond to enquiries or provide services.
  • Whether there is a legal or regulatory requirement to keep records.
  • Whether retention is necessary to establish, exercise, or defend legal claims.

12. Your Data Protection Rights

Under UK GDPR, you may have rights to:

  • Request access to your personal data.
  • Request correction of inaccurate or incomplete data.
  • Request erasure of your personal data in certain circumstances.
  • Request restriction of processing in certain circumstances.
  • Object to processing based on legitimate interests.
  • Request transfer of your data (data portability) where applicable.
  • Withdraw consent at any time where processing relies on consent.

To exercise any of these rights, please contact us using the details below. We may request information to verify your identity before actioning your request.

13. Automated Decision-Making

We do not carry out solely automated decision-making or profiling that produces legal or similarly significant effects about individuals through this website.

14. Third-Party Links

Our website may contain links to third-party sites. If you follow a link to another website, that site will have its own privacy policy and we do not accept responsibility or liability for those policies or practices.

15. Children's Privacy

Our website is not directed at children, and we do not knowingly collect personal data from children. If you believe a child has provided personal data to us, please contact us and we will take appropriate steps.

16. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page and, where appropriate, notified to you by other means. Please check back periodically for updates.

17. Contact Us and Complaints

For questions, requests, or complaints about this Privacy Policy or how we process personal data, please contact us:

  • Email: info@compassconsult.co.uk
  • Postal Address: Compass Consult (Employability & Skills) Ltd, Stirling House 1 Outrams Wharf, Little Eaton, Derby, England, DE21 5EL
  • Phone: 07936327832

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues. ICO website: ico.org.uk.