Last updated: December 2025
1. Introduction
Denver Willis Consulting ("we", "us", or "our") is committed to protecting your privacy and ensuring that your personal information is handled responsibly. This Privacy Policy explains how we collect, use, store, and protect your personal data when you use our website or engage with our services.
We are the data controller for the purposes of data protection legislation, including the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
2. Information We Collect
We may collect and process the following types of personal information:
Information you provide directly:
- Contact details (name, email address, phone number, company name)
- Enquiry details submitted through our contact form
- Information provided during consultations or project work
- Email correspondence with us
- Newsletter subscription preferences
Information collected automatically:
- Technical data (IP address, browser type, operating system)
- Usage data (pages visited, time spent on site)
- Cookie data (see our Cookie section below)
3. How We Use Your Information
We use your personal information for the following purposes:
- To respond to your enquiries and provide requested information
- To deliver our consultancy services
- To send you relevant insights and updates (with your consent)
- To improve our website and services
- To comply with legal and regulatory obligations
- To manage our business relationship with you
4. Legal Basis for Processing
We process your personal data on the following legal bases:
- Consent: Where you have given clear consent for us to process your personal data for specific purposes, such as receiving our newsletter.
- Contract: Where processing is necessary for the performance of a contract with you or to take steps at your request before entering into a contract.
- Legitimate interests: Where processing is necessary for our legitimate business interests, such as improving our services and marketing to existing clients, provided these interests do not override your rights.
- Legal obligation: Where processing is necessary for compliance with a legal obligation.
5. Data Sharing
We do not sell, rent, or trade your personal information to third parties. We may share your information with:
- Service providers who assist with our business operations (e.g., website hosting, email services) under appropriate data processing agreements
- Professional advisors (accountants, lawyers) where necessary
- Regulatory or legal authorities where required by law
6. Data Retention
We retain your personal information only for as long as necessary to fulfil the purposes for which it was collected, including:
- Contact enquiries: 2 years from last contact unless you become a client
- Client records: 7 years after project completion (for legal and accounting purposes)
- Newsletter subscribers: Until you unsubscribe
- Website analytics: 26 months
7. Your Rights
Under data protection legislation, you have the following rights:
- Right of access: Request a copy of the personal data we hold about you
- Right to rectification: Request correction of inaccurate or incomplete data
- Right to erasure: Request deletion of your personal data in certain circumstances
- Right to restrict processing: Request limitation of how we use your data
- Right to data portability: Request transfer of your data to another organisation
- Right to object: Object to processing based on legitimate interests or for direct marketing
- Right to withdraw consent: Withdraw consent at any time where processing is based on consent
To exercise any of these rights, please contact us using the details provided below.
8. Cookies
Our website uses cookies to improve your browsing experience and analyse site traffic. Cookies are small text files stored on your device.
Types of cookies we use:
- Essential cookies: Required for the website to function properly
- Analytics cookies: Help us understand how visitors use our website (e.g., Google Analytics)
- Preference cookies: Remember your settings and preferences
You can control cookies through your browser settings. Please note that disabling certain cookies may affect website functionality.
9. Data Security
We implement appropriate technical and organisational measures to protect your personal information against unauthorised access, alteration, disclosure, or destruction. These measures include:
- Secure SSL encryption for data transmission
- Access controls and authentication
- Regular security assessments
- Staff training on data protection
10. International Transfers
We primarily process data within the UK and European Economic Area. Where data is transferred outside these regions (e.g., to service providers), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses.
11. Third-Party Links
Our website may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to read their privacy policies before providing any personal information.
12. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any significant changes by posting the updated policy on our website with a new "Last updated" date.
13. Contact Us
If you have any questions about this Privacy Policy or how we handle your personal information, please contact us:
14. Complaints
If you are not satisfied with how we handle your personal data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):
We would appreciate the opportunity to address your concerns before you contact the ICO, so please reach out to us first.