Privacy Notice
June 2026
1About this Privacy Notice
1.1
Threat Protect Limited is committed to protecting personal data. This Privacy Notice explains how we collect, use, share and protect personal data relating to website visitors, prospects, customers, suppliers, partners, event attendees and business contacts.
1.2
Threat Protect Limited is a company incorporated in England and Wales with company number 11157802.
1.3
Registered office: Admirals Offices, Main Gate Road, The Historic Dockyard, Chatham, Kent, United Kingdom, ME4 4TZ.
1.4
For privacy questions, contact: legal@threatprotect.co.uk.
2Who this notice applies to
2.1
This notice applies to personal data relating to:
a)
visitors to our website;
b)
people who contact us, submit forms or request information;
c)
customer and prospect personnel;
d)
partner, vendor and supplier personnel;
e)
users of our services, portals and support channels;
f)
event attendees and promotion entrants;
g)
people who receive our business marketing communications; and
h)
job applicants, where recruitment information is submitted through the website or by email.
3Our role
3.1
In most cases, Threat Protect acts as an independent controller of business contact, marketing, account management, billing and website data.
3.2
Where we process personal data on behalf of a customer as part of contracted services, we may act as processor. In those cases, our processing is governed by our Standard Terms and Conditions, Data Processing Agreement and the relevant customer instructions.
3.3
Some third-party software, SaaS and security products are provided by vendors who may act as independent controllers or processors under their own terms and privacy notices.
4Personal data we collect
4.1
We may collect:
a)
name, job title, role and employer;
b)
business email address, telephone number and business address;
c)
account, billing and order information;
d)
communications, enquiries, support tickets and meeting notes;
e)
event registration and attendance information;
f)
marketing preferences and engagement data;
g)
website usage data, device data, IP address, browser data and security log information;
h)
user IDs, administrator details, logs, security event data and technical information where required to provide products or services;
i)
information provided during Cyber Essentials, compliance, advisory, support or security services;
j)
vendor provisioning and licence information; and
k)
recruitment information, if provided.
4.2
We do not intentionally collect special category personal data through our website unless you choose to provide it.
5How we collect personal data
5.1
We collect personal data:
a)
directly from you;
b)
from your employer or colleagues;
c)
through website forms, email, telephone, meetings and events;
d)
from customers, vendors, distributors, suppliers and partners;
e)
from support systems, portals and service platforms;
f)
from public sources such as company websites, Companies House and professional networking platforms;
g)
from third-party business data providers, where lawful; and
h)
through technical website access logs.
6How we use personal data
| Purpose | Lawful basis |
|---|---|
| Responding to enquiries and requests | Legitimate interests; pre-contract steps |
| Preparing quotes, proposals and contracts | Legitimate interests; pre-contract steps |
| Processing orders and delivering products or services | Contract; legitimate interests |
| Vendor provisioning, licence administration and support | Contract; legitimate interests |
| Customer account management | Contract; legitimate interests |
| Billing, finance and debt recovery | Contract; legal obligation; legitimate interests |
| Cybersecurity, fraud prevention and system protection | Legitimate interests; legal obligation |
| Service improvement and internal reporting | Legitimate interests |
| Business-to-business marketing | Legitimate interests; consent where required |
| Event and webinar administration | Contract; legitimate interests; consent where required |
| Promotions and prize draws | Contract; legitimate interests |
| Compliance with law, regulators and legal claims | Legal obligation; legitimate interests |
| Recruitment | Pre-contract steps; legitimate interests; legal obligation |
7Marketing
7.1
We may contact business contacts about Threat Protect products, services, events and content that may be relevant to their organisation.
7.2
You can opt out of marketing at any time by using the unsubscribe link in our emails or by contacting marketing@threatprotect.co.uk.
7.3
We do not sell personal data to third parties.
7.4
Where marketing consent is required by law, we will obtain consent before sending marketing.
8Cookies and similar technologies
8.1
Threat Protect does not currently use cookies on this website.
8.2
We do not currently use analytics cookies, advertising cookies, retargeting pixels, tracking tags, device fingerprinting, local storage or session storage for analytics, advertising or tracking purposes.
8.3
Our hosting, network or security providers may process limited technical information, such as IP address, browser type, device information, pages visited, date and time of access, and security event information. We use this information for website security, troubleshooting, fraud prevention, network management and service reliability.
8.4
Further information is available in our Cookie Policy.
9Sharing personal data
9.1
We may share personal data with:
a)
vendors, distributors and third-party product providers;
b)
hosting, cloud, IT, CRM, marketing, finance and support providers;
c)
professional advisers, insurers, auditors and legal advisers;
d)
delivery partners, subcontractors and consultants;
e)
payment, accounting and debt recovery providers;
f)
event partners, where relevant and notified;
g)
regulators, law enforcement or public authorities where required;
h)
prospective buyers, investors or advisers in connection with a business sale, restructuring or investment; and
i)
other parties where necessary to protect rights, security, users or customers.
10International transfers
10.1
Some vendors, cloud providers and service providers may process personal data outside the United Kingdom.
10.2
Where we transfer personal data internationally, we use appropriate safeguards where required, such as adequacy regulations, the UK International Data Transfer Agreement, the UK Addendum to EU Standard Contractual Clauses, or another lawful transfer mechanism.
11Retention
11.1
We keep personal data only for as long as necessary.
| Data type | Typical retention |
|---|---|
| Website enquiries and prospect records | Up to 24 months after last meaningful contact |
| Customer account, contract and order records | Contract term plus up to 7 years |
| Invoices and finance records | Up to 7 years |
| Support tickets and service records | Contract term plus up to 6 years, unless shorter retention is agreed |
| Marketing records | Until opt-out or after prolonged inactivity |
| Event and promotion records | Up to 24 months, unless needed for legal or audit purposes |
| Recruitment records | Usually 6 to 12 months unless longer retention is agreed |
| Security logs | As required for security, audit and legal purposes |
11.2
We may retain information longer where required for legal, regulatory, tax, accounting, dispute, security or enforcement purposes.
12Security
12.1
We use appropriate technical and organisational measures designed to protect personal data against unauthorised access, loss, misuse, alteration and disclosure.
12.2
No system or transmission is completely secure. Customers and users are responsible for maintaining the security of their own systems, accounts, credentials and devices.
13Your rights
13.1
Depending on the circumstances, you may have rights to:
a)
access your personal data;
b)
correct inaccurate personal data;
c)
request deletion;
d)
restrict processing;
e)
object to processing;
f)
receive data portability;
g)
withdraw consent where processing is based on consent; and
h)
object to direct marketing.
13.2
To exercise your rights, contact legal@threatprotect.co.uk.
13.3
We may need to verify your identity before responding.
14Complaints
14.1
You can contact us at legal@threatprotect.co.uk if you have concerns about how we use personal data.
14.2
You also have the right to complain to the UK Information Commissioner’s Office.
15Changes to this notice
15.1
We may update this Privacy Notice from time to time. The latest version will be published on our website.