Sencode Ltd Customer Privacy Notice

Registered Name: Sencode Ltd

This privacy notice explains what you should expect us to do with your personal information.

Table of Contents

1. Contact Details

Post
Sencode Ltd
North Shore Road
STOCKTON-ON-TEES
Cleveland
TS18 2NB
United Kingdom

Telephone
01642 716680

2. What Information We Collect, Use, and Why

We collect or use personal information primarily to provide services and goods, including delivery, for service updates or marketing, and for research or archiving. The types of data involved include:

Names and contact details
Addresses
Purchase or account history
Payment details (bank/card)
Account information
Information related to loyalty programmes
Website user information (user journeys, cookies)
Photographs or video recordings
Call recordings
Records of meetings and decisions
Compliments or complaints
Sponsorship-related information
Location data, IP addresses
Records of consent (where appropriate)

3. Lawful Bases and Data Protection Rights

Under UK data protection law, we must have a lawful basis for processing your data. Possible lawful bases include contract, legal obligation, vital interests, and consent. Which basis applies can affect your data protection rights, such as:

Right of Access – Request copies of your personal data.
Right to Rectification – Ask us to correct inaccuracies.
Right to Erasure – Request deletion of your data.
Right to Restriction – Limit how we use your data.
Right to Object – Object to certain processing.
Right to Data Portability – Ask us to transfer your data to another organisation.
Right to Withdraw Consent – If we rely on consent, you can withdraw it at any time.

For more information or to exercise these rights, please contact us using the details above.

4. Where We Get Personal Information From

Directly from you (e.g. via orders, emails, calls)
Publicly available sources
Market research organisations
Providers of marketing lists/personal data
Suppliers and service providers

5. How Long We Keep Information

We will only retain your data for as long as reasonably necessary to fulfil the purposes we collected it for, including to satisfy any legal, regulatory, tax, accounting or reporting requirements. We may retain your personal data for a more extended period in case of a complaint or if we reasonably believe there is a prospect of litigation regarding our relationship with you.

To determine the appropriate retention period for personal data, we consider the amount, nature and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your data and whether we can achieve those purposes through other means, and the applicable legal, regulatory, tax, accounting, or other requirements.

6. Who We Share Information With

Data Processors

Cloud Hosting Providers – Provide infrastructure (IaaS) for tools, platforms, or test environments, hosting data from penetration tests (e.g. vulnerability reports, network scans).
Email and Communication Service Providers – Handle our internal/external communications, including emails, chat logs, and shared collaboration tools.
CRM and Marketing Platforms – Manage client data (e.g. leads, project updates, post-engagement follow-ups).
Penetration Testing Tools – Tools that process sensitive client data (IP addresses, network details, vulnerabilities).
Payment Processing Providers – Handle secure financial transactions.
Analytics and Marketing Providers – Gather and analyse user behaviour, website traffic, or campaign performance.

Others We Share Personal Information With

Professional or legal advisors
Warranty and guarantee providers
Professional consultants
Suppliers and service providers

7. Sharing Information Outside the UK

Some of our data processors may transfer data outside the UK. When they do, they comply with the UK GDPR by ensuring appropriate safeguards (e.g. Adequacy Regulations or recognised transfer mechanisms). Examples include:

Google – Ireland (Adequacy Regulation)
Microsoft – Ireland, USA (Adequacy Regulation)
Monday.com – USA, Germany (Adequacy Regulation)
Contabo, AWS – Germany, EEA (Adequacy Regulation)
This list is not exhaustive.

For more information or a copy of the relevant safeguards, please contact us.

8. How to Complain

If you have any concerns about how we use your personal data, you can:

Contact us

Using the details at the top of this notice.

Complain to the ICO

If you remain dissatisfied after contacting us, you can complain to the Information Commissioner’s Office (ICO):

Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF

Helpline: 0303 123 1113
Website: ICO Complaints

9. Last Updated

25 September 2024

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Privacy Policy