Skip to content

Privacy Policy

Privacy Policy

Privacy Policy

Last updated: 7 January 2026

This Privacy Policy explains how Rockingham Partners (“we”, “us”, “our”) collects, uses, stores and shares personal data when you use rockinghampartners.uk (the “Website”) or contact us.

This is written to meet UK GDPR and the Data Protection Act 2018 standards, but you should still have it reviewed against your actual website set-up (forms, cookies, analytics, CRM, hosting).

  1. Who we are

Data Controller: Rockingham Partners
Trading address: PO Box 433, Southampton, Hampshire SO40 0HW
Email:  andy@rockinghampartners.uk
Telephone: 
Company number: 15067427

Data Protection Officer (DPO) : Andy Dawson andy@rockinghampartners.co.uk

  1. What personal data we collect

We may collect and process the following categories of personal data:

  1. A) Information you provide to us
  • Contact details: name, email address, telephone number.
  • Business details: company name, job title, work address.
  • Enquiry content: information you send via forms, email or phone, including attachments.
  • Marketing preferences: whether you opt in or opt out of marketing.
  • Event/meeting details: dietary/access needs you choose to share.
  • Recruitment details: CV, work history, qualifications, references.
  1. B) Information we collect automatically
  • Usage data: pages viewed, time on site, clicks, referring pages, approximate location (city/region), and interactions.
  • Device and technical data: IP address, browser type/version, device identifiers, operating system, language settings.
  • Cookies and similar technologies
  1. C) Information from third parties (limited)

We may receive personal data from:

  • analytics/cookie providers
  • business partners or introducers

  1. If you do not provide personal data

Where we need personal data to respond to an enquiry or provide information you request, not providing it may mean we cannot respond properly or at all.

  1. How we use your data and our lawful bases

Under UK GDPR we must have a lawful basis to process your personal data. We use the following:

  1. A) To respond to enquiries and provide requested information

Purpose: respond to messages, arrange calls/meetings, provide proposals or information you request.
Lawful basis: legitimate interests and/or taking steps prior to entering a contract.

  1. B) To provide services to clients

Purpose: deliver contracted services, onboarding, account management, billing and administration.
Lawful basis: performance of a contract and/or legitimate interests.

  1. C) To send marketing communications 

Purpose: send updates, insights, or information about our services.
Lawful basis: consent and/or legitimate interests for business-to-business marketing, subject to your right to opt out at any time.

  1. D) To operate, protect and improve the Website

Purpose: security, troubleshooting, site performance, understanding how visitors use the site.
Lawful basis: legitimate interests.
Note: for non-essential cookies/trackers, we rely on consent (see Section 6).

  1. E) To comply with law and protect our legal rights

Purpose: legal compliance, handling disputes, preventing fraud or misuse.
Lawful basis: legal obligation and/or legitimate interests.

We do not use your personal data for automated decision-making that produces legal or similarly significant effects.

  1. Marketing preferences
  • You can opt out of marketing at any time by using the unsubscribe link or by contacting us at andy@rockinghampartners.uk.
  • Opting out of marketing will not affect service communications .

  1. Cookies and similar technologies

We use cookies and similar technologies to operate the Website and to measure performance and improve marketing.

  1. A) Essential cookies

These are required for the Website to function and cannot be switched off in our systems.

  1. B) Non-essential cookies (analytics / marketing)

We will only set non-essential cookies if you give consent via our cookie banner/preferences tool.

Common examples (delete anything you do not use):

  • Google Analytics 4 (GA4) – website analytics
  • Google Tag Manager – tag deployment
  • Meta Pixel – advertising measurement
  • LinkedIn Insight Tag – advertising measurement
  • YouTube/Vimeo embeds – video playback and related tracking

  1. Who we share personal data with

We may share personal data with trusted third parties where necessary, including:

  • Website hosting and infrastructure providers
  • Analytics, tag management and cookie consent providers
  • Email and productivity providers
  • CRM and marketing platforms
  • Professional advisers
  • Regulators, courts, law enforcement where required by law

We only share what is necessary, and where third parties act as processors, we use contracts that require appropriate security and confidentiality.

We do not sell personal data.

  1. International transfers

Some of our suppliers may process data outside the UK. Where personal data is transferred internationally, we ensure appropriate safeguards are in place, such as:

  • UK International Data Transfer Agreement (IDTA)
  • UK Addendum to EU Standard Contractual Clauses
  • adequacy regulations (where applicable)

You can request more detail by contacting us.

  1. How long we keep your data 

We keep personal data only as long as necessary for the purposes set out above, including legal, accounting or reporting requirements.

Typical retention periods:

  • General enquiries: up to 12 months after last meaningful contact
  • Client records: duration of the contract plus up to 6 years
  • Marketing contacts: until you opt out or after a period of inactivity
  • Analytics data: according to the tool settings
  • Security logs: typically 30–180 days unless needed to investigate an incident

We may retain data longer where required by law or to establish, exercise or defend legal claims.

  1. Security

We use appropriate technical and organisational measures designed to protect personal data, including access controls and secure systems. No website or transmission is completely secure, but we work to minimise risk.

  1. Your data protection rights (UK GDPR)

You may have the right to:

  • request access to your personal data
  • request correction of inaccurate data
  • request erasure
  • request restriction of processing
  • request data portability
  • object to processing based on legitimate interests and to direct marketing
  • withdraw consent at any time where processing is based on consent

To exercise any rights, contact andy@rockinghampartners.uk. We will respond within one month.

  1. Complaints

If you are unhappy with how we handle your data, please contact us first so we can try to resolve it.

You also have the right to complain to the Information Commissioner’s Office (ICO) .

  1. Third-party links

Our Website may include links to third-party sites. We are not responsible for their privacy practices. You should read their privacy notices.

  1. Changes to this policy

We may update this Privacy Policy from time to time. The latest version will always be posted on this page with the “Last updated” date.

  1. Contact us

For privacy questions or requests, contact:

Rockingham Partners
Email: andy@rockinghampartners.uk
Address: PO Box 433, Southampton, Hampshire SO40 0HW