Here you can edit the background of the section

Privacy Policy

 

Website Privacy Notice

Last Updated: 22nd May 2026

1. INTRODUCTION

This privacy notice provides you with details of how we collect and process your personal data through your use of our site fayredos.co.uk and any sub-domain websites such as info.fayredos.co.uk.

By providing us with your data, you warrant to us that you are over 13 years of age.

Fayre Do Ltd is the data controller and we are responsible for your personal data (referred to as “we”, “us” or “our” in this privacy notice).

Contact Details

Our full details are:

Full name of legal entity: Fayre Do's Ltd

Email address: admin@fayredos.co.uk

Postal address: Norsted Manor Farm, Norsted Lane, Pratts Bottom, Orpington, Kent BR6 7PB

We do not currently have an establishment in the European Union or European Economic Area. Where the EU GDPR applies to our processing activities, we will comply with our obligations under the EU GDPR, including any requirement to appoint an EU representative where applicable. If we are required to appoint an EU representative, we will update this privacy notice with the representative’s contact details.

It is very important that the information we hold about you is accurate and up to date. Please let us know if at any time your personal information changes by emailing us at admin@fayredos.co.uk

2. WHAT DATA DO WE COLLECT ABOUT YOU, FOR WHAT PURPOSE AND ON WHAT GROUND WE PROCESS IT

Personal data means any information capable of identifying an individual. It does not include anonymised data.

We may process the following categories of personal data about you:

Communication Data

This includes any communication that you send to us, whether through the contact form on our website, through email, telephone, text, social media messaging, social media posting, meeting bookings, online forms or any other communication that you send to us.

We process this data for the purposes of communicating with you, responding to enquiries, managing our relationship with you, record keeping and the establishment, pursuance or defence of legal claims.

Our lawful ground for this processing is our legitimate interests which in this case are to reply to communications sent to us, manage our business relationships, keep records and establish, pursue or defend legal claims.

Customer Data

This includes data relating to any enquiry, purchase or use of our goods and/or services, such as your name, title, job title, employer or organisation, billing address, business address, delivery address, email address, phone number, contact details, purchase details, service details, proposal details, statement of work details, order details, contract details, billing information, payment status, account notes, service usage, consulting day usage and project records.

We process this data to supply the goods and/or services you have purchased or enquired about, to manage our relationship with you or your organisation, to administer contracts, to deliver consulting or other professional services, to keep records of such transactions and to establish, pursue or defend legal claims.

Our lawful ground for this processing is the performance of a contract between you and us and/or taking steps at your request to enter into such a contract. Where you are acting on behalf of an organisation, our lawful ground may also be our legitimate interests which in this case are to manage our relationship with your organisation, provide our services, administer our business and keep appropriate records.

Business and Professional Data

This includes data relating to you in your professional capacity, such as your name, job title, employer or organisation, department, business function, seniority, role, responsibilities, professional profile information, company name, company size, industry, sector, company website, company location, business contact details, information about your organisation’s technology, systems, sales processes, CRM, marketing operations, commercial needs and other information relevant to identifying whether your organisation may be interested in our products or services.

We process this data for business-to-business sales, marketing, lead generation, account research, customer relationship management, business development, market research and identifying relevant business contacts, prospects, customers, suppliers, partners or representatives of organisations.

Our lawful ground for this processing is our legitimate interests which in this case are to develop our business, identify relevant business contacts and organisations, promote our products and services, manage business relationships and grow our business.

Publicly Available and Third-Party Source Data

This includes personal data obtained from publicly available sources, such as Companies House, company websites, professional networking sites, public directories, press releases, industry publications, conference or event pages and other publicly available online sources. It also includes business contact and professional information obtained from third-party B2B data providers, data brokers, aggregators and lead generation providers, including HubSpot.

This may include your name, job title, employer or organisation, business email address, business telephone number, professional profile information, company information, industry, seniority, location and other information relevant to identifying and contacting business prospects, customers, suppliers, partners or representatives of organisations that may be interested in our products or services.

We process this data for business-to-business sales, marketing, lead generation, account research, customer relationship management, business development, verifying or updating business contact information and identifying relevant organisations and contacts.

Our lawful ground for this processing is our legitimate interests which in this case are to identify and contact relevant business prospects, customers, suppliers, partners or representatives of organisations, promote and grow our business and keep our business contact records accurate and up to date.

User Data

This includes data about how you use our website and any online services together with any data that you post for publication on our website, social media pages or through other online services.

We process this data to operate our website and ensure relevant content is provided to you, to enable publication and administration of our website and online services, to maintain back-ups of our website and/or databases, to ensure the security of our website and systems and to administer our website, other online services and business.

Our lawful ground for this processing is our legitimate interests which in this case are to enable us to properly administer our website, online services and business, maintain appropriate records and ensure the security and functionality of our website and systems.

Technical Data

This includes data about your use of our website and online services such as your IP address, login data, browser type and version, device type, operating system, time zone setting and location, browser plug-in types and versions, referral source, length of visit to pages on our website, page views, navigation paths, details about the number of times you use our website and other technology identifiers on the devices you use to access our website.

The source of this data is from our analytics tracking systems, cookies, server logs and similar technologies.

We process this data to analyse your use of our website and other online services, to administer and protect our business and website, to deliver relevant website content and advertisements to you, to understand the effectiveness of our advertising, to improve our website, products and services and to inform our marketing strategy.

Our lawful ground for this processing is our legitimate interests which in this case are to enable us to properly administer our website and business, protect our website and systems, grow our business and decide our marketing strategy. Where required by law, we will obtain your consent before using non-essential cookies or similar technologies.

Marketing Data

This includes data about your preferences in receiving marketing from us and our third parties, your communication preferences, records of sales and marketing outreach, email engagement, event or webinar registrations, content downloads, call booking information, unsubscribe or opt-out records, lead score or qualification status, segmentation information and notes from sales, marketing or customer relationship interactions.

We process this data to enable you to participate in any promotions that we may offer from time to time, to send you relevant marketing communications, to deliver relevant website content and advertisements to you, to measure or understand the effectiveness of this advertising, to identify products or services that may be of interest to you or your organisation, to manage your marketing preferences, to maintain suppression or opt-out records and to develop our products, services and marketing strategy.

Our lawful ground for this processing is either consent, contract or our legitimate interests which in this case are to study how customers and business contacts use our products and services, to develop them, to grow our business, to promote our products and services and to decide our marketing strategy.

We may use Customer Data, Business and Professional Data, Publicly Available and Third-Party Source Data, User Data, Technical Data and Marketing Data to deliver relevant website content and advertisements to you, including LinkedIn, Facebook or other display advertisements, and to measure or understand the effectiveness of the advertising we serve you.

Our lawful ground for this processing is our legitimate interests which in this case are to grow our business and promote our products and services. We may also use such data to send other marketing communications to you. Our lawful ground for this processing is either consent or legitimate interests, namely to grow our business and for direct marketing. We will comply with applicable direct marketing and electronic communications rules, including where consent or an opt-out is required.

Financial Data

This includes billing contact details, invoicing details, purchase order information, payment status, payment method information, bank account details, VAT information, tax information, payroll information, salary or fee information, pension information, benefits information, expenses information and other information required to make or receive payments, process payroll, administer employment or contractor arrangements, or comply with tax, accounting and financial record-keeping obligations.

We process this data to issue and pay invoices, process payments, manage supplier and customer accounts, process payroll, administer salary, contractor fees, expenses, pensions and benefits, keep financial records and comply with tax, accounting and legal obligations.

Our lawful ground for this processing is the performance of a contract between you and us and/or taking steps at your request to enter into such a contract, our legitimate interests which in this case are to administer our business and financial records, and/or compliance with our legal obligations.

Recruitment and Applicant Data

This includes personal data you provide or that we collect when you apply for a role with us, enquire about opportunities, or participate in a recruitment process. This may include your name, contact details, CV, cover letter, employment history, education history, qualifications, skills, professional experience, portfolio or work samples, references, right to work information, salary expectations, notice period, interview notes, assessment results, correspondence relating to your application, onboarding information for successful applicants and any other information you choose to provide as part of the recruitment process.

We process this data to assess your suitability for a role, communicate with you about your application, conduct interviews and assessments, verify information provided to us, take steps prior to entering into an employment, worker or contractor contract, make recruitment decisions, keep recruitment records and comply with legal obligations.

Our lawful ground for this processing is taking steps at your request prior to entering into a contract, our legitimate interests which in this case are to manage our recruitment process and assess candidates, and/or compliance with our legal obligations.

Employment and Contractor Data

This includes personal data we collect and use in connection with our relationship with employees, workers, contractors, consultants and other individuals engaged by us. This may include employment or engagement records, start date, role, reporting line, salary or fee information, payroll details, bank account details, tax information, National Insurance number, pension information, benefits information, emergency contact details, absence records, holiday records, performance records, disciplinary or grievance information, training records, equipment records, expenses information and other information required to administer the working relationship and comply with our legal obligations.

We process this data to administer the employment, worker, contractor or consultancy relationship, process payroll or fees, administer benefits, pensions, expenses and holidays, manage performance, training, absences, disciplinary or grievance matters, provide equipment, maintain records and comply with employment, tax, health and safety, accounting and other legal obligations.

Our lawful ground for this processing is the performance of a contract between you and us and/or taking steps at your request to enter into such a contract, compliance with our legal obligations and/or our legitimate interests which in this case are to manage our workforce, administer our business and protect our legal rights.

Legal Claims and Compliance

We may use Communication Data, Customer Data, Business and Professional Data, Publicly Available and Third-Party Source Data, User Data, Technical Data, Marketing Data, Financial Data, Recruitment and Applicant Data, and Employment and Contractor Data for the establishment, pursuance or defence of legal claims, to comply with legal and regulatory obligations, to enforce our terms and contracts, to prevent fraud or misuse of our services and to protect our business, staff, customers and third parties.

Our lawful ground for this processing is our legitimate interests which in this case are to establish, pursue or defend legal claims, protect our business and enforce our legal rights, and/or compliance with our legal obligations.

Required Processing

Where we are required to collect personal data by law, or under the terms of a contract between us and you, and you do not provide us with that data when requested, we may not be able to perform the contract or comply with our legal obligations.

For example, if you do not provide information we need to supply goods or services to you or your organisation, we may not be able to provide those goods or services. If you do not provide information required for recruitment, employment, contractor engagement, payroll, tax or legal compliance purposes, we may not be able to process your application, employ or engage you, pay you, or comply with our legal obligations.

If we have to cancel a product, service, application, engagement or other arrangement because you have not provided required data, we will notify you at the time.

We may process your personal data without your knowledge or consent where this is required or permitted by law.

Purposes of Processing

We will only use your personal data for the purpose for which it was collected or for a reasonably compatible purpose if necessary. For more information on this, please email us at admin@fayredos.co.uk

If we need to use your personal data for an unrelated new purpose, we will let you know and explain the legal ground for processing.

Sensitive Data, Criminal Conviction Data and Automated Processing

Special Categories of Personal Data, sometimes referred to as Sensitive Data, include details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health, and genetic and biometric data.

We do not intentionally collect Special Categories of Personal Data about you in the ordinary course of providing our services.

However, where required or permitted by law, we may process limited Special Categories of Personal Data in connection with recruitment, employment, contractor engagement, legal compliance, safeguarding our legal rights or employment-related obligations. This may include equal opportunities monitoring information, disability or reasonable adjustment information, sickness or absence information, occupational health information, or information contained in documents you provide to us.

Where we process Special Categories of Personal Data, we will only do so where we have a lawful basis under data protection law and a valid condition for processing such data.

We do not intentionally collect information about criminal convictions and offences in the ordinary course of providing our services.

However, where required or permitted by law, we may process information about criminal convictions and offences in connection with recruitment, employment, contractor engagement, right to work checks, background screening, legal compliance or safeguarding our legal rights. We will only process this information where permitted by law.

Automated Decision-Making

We do not carry out automated decision-making that has a legal or similarly significant effect on you.

Automated Decision-Making and Profiling for Non-Significant Decisions

We may use automated processes to assist us in making certain decisions about you. This means that we may use systems or tools to analyse your personal data in order to help us operate our business more efficiently.

These automated processes may be used for purposes such as:

  • improving our services;
  • analysing trends, preferences or engagement;
  • managing administrative processes;
  • segmenting business contacts;
  • prioritising sales or marketing activity;
  • understanding whether our products or services may be relevant to you or your organisation.

These decisions do not have a legal or similarly significant effect on you. They are used to support our internal processes and do not materially affect your rights, opportunities or access to services. Where appropriate, we ensure that human oversight is applied to these processes.

3. HOW WE COLLECT YOUR PERSONAL DATA

We may collect personal data about you when you provide it directly to us, for example by filling in forms on our website, booking a call, subscribing to our communications, corresponding with us by email, telephone or other channels, or otherwise interacting with us.

We may automatically collect certain data from you as you use our website, including technical data and information about your browsing actions and patterns, by using cookies, server logs and similar technologies. Please see our Cookie Policy for more details about this.

We may receive personal data about you from third parties and external sources. These may include analytics providers such as Google based outside the UK and/or the EU, advertising networks such as Facebook based outside the UK and/or the EU, search information providers such as Google based outside the UK and/or the EU, and providers of technical, payment and delivery services.

As a B2B business, we may also receive business contact and professional information from third-party business contact databases, data brokers, data aggregators and lead generation providers, including HubSpot. This may include your name, job title, employer or organisation, business email address, business telephone number, professional profile information, company information, industry, seniority, location and other information relevant to identifying and contacting business prospects, customers, suppliers, partners or representatives of organisations that may be interested in our products or services.

We may use this information for business-to-business sales, marketing, lead generation, account research, customer relationship management and business development purposes, where we have a lawful basis to do so.

We may also receive personal data from publicly available sources, such as Companies House, company websites, professional networking websites, public directories and other publicly available online sources, based inside or outside the UK and/or the EU.

4. MARKETING COMMUNICATIONS

Our lawful ground of processing your personal data to send you marketing communications is either your consent, our legitimate interests (namely to grow our business).

Under the Privacy and Electronic Communications Regulations (PECR), we may send you marketing communications from us if (i) you made a purchase or asked for information from us about our goods or services or (ii) you agreed to receive marketing communications and in each case you have not opted out of receiving such communications since. Under these regulations, if you are a limited company, we may send you marketing emails without your consent. However, you can still opt out of receiving marketing emails from us at any time.

Before we share your personal data with any third party for their own marketing purposes we will get your express consent.

You can ask us or third parties to stop sending you marketing messages at any time by following the opt-out links on any marketing message sent to you or by emailing us at admin@fayredos.co.uk at any time.

If you opt out of receiving marketing communications this opt-out does not apply to personal data provided as a result of other transactions, such as purchases, warranty registrations etc.

5. DISCLOSURES OF YOUR PERSONAL DATA

We may have to share your personal data with the parties set out below:

  • Service providers who provide CRM platform, IT and system administration services, hosting, email, communications, sales prospecting, data enrichment, analytics, advertising and marketing services.
  • Third-party B2B data providers, data brokers, aggregators, business information platforms and lead generation providers, including HubSpot, where we use them to source, verify, enrich, update or manage business contact and prospect information.
  • Professional advisers including lawyers, bankers, auditors, accountants and insurers.
  • Government bodies, regulators, tax authorities, law enforcement agencies, courts and other authorities that require us to report processing activities, disclose information or comply with legal obligations.
  • Third parties to whom we sell, transfer, or merge parts of our business or our assets.

We require all third parties to whom we transfer your data to respect the security of your personal data and to treat it in accordance with the law.

Where a third party processes personal data on our behalf, we only allow them to process your personal data for specified purposes and in accordance with our instructions.

Where we receive personal data from, or disclose personal data to, third-party B2B data providers, data brokers, aggregators, business information platforms or lead generation providers acting as independent controllers, those parties are responsible for their own use of personal data under their own privacy notices.

6. INTERNATIONAL TRANSFERS

Where you are within the United Kingdom:

We are subject to the provisions of the UK General Data Protection Regulations (UK GDPR) that protect your personal data. Where we transfer your data to third parties outside of the UK, we will ensure that certain safeguards are in place to ensure a similar degree of security for your personal data. As such:

  • We may transfer your personal data to countries that the United Kingdom regulatory authorities have approved as providing an adequate level of protection for personal data; or
  • If we use US-based providers that are part of the UK-US Data Bridge (the UK Extension to the EU-US Data Privacy Framework), we may transfer data to them, as they have equivalent safeguards in place; or
  • Where we use certain service providers who are established outside of the UK, we may use specific contracts approved by the ICO (the International Data Transfer Agreement or the UK Addendum to the EU Standard Contractual Clauses), or codes of conduct or certification mechanisms approved by the UK government, which give personal data the same protection it has in the UK.

If none of the above safeguards are available, we may request your explicit consent to the specific transfer. You will have the right to withdraw this consent at any time.

Where you are within the EEA:

We are subject to the provisions of the EU General Data Protection Regulation (EU GDPR) that protect your personal data. Where we transfer your data to third parties outside of the EEA, we will ensure that certain safeguards are in place to ensure a similar degree of security for your personal data. As such:

  • We may transfer your personal data to countries that the European Commission has approved as providing an adequate level of protection for personal data; or
  • If we use US-based providers that are part of the EU-US Data Privacy Framework, we may transfer data to them, as they have equivalent safeguards in place; or
  • Where we use certain service providers who are established outside of the EEA, we may use specific contracts (the EU Standard Contractual Clauses adopted by the European Commission in June 2021), or codes of conduct or certification mechanisms approved by the European Commission, which give personal data the same protection it has in the EEA.

If none of the above safeguards is available, we may request your explicit consent to the specific transfer. You will have the right to withdraw this consent at any time.

7. DATA SECURITY

We have put in place security measures to prevent your personal data from being accidentally lost, used, altered, disclosed, or accessed without authorisation. We also allow access to your personal data only to those employees and partners who have a business need to know such data. They will only process your personal data on our instructions and they must keep it confidential.

We have procedures in place to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach if we are legally required to.

8. DATA RETENTION

We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

When deciding what the correct time is to keep the data for we look at its amount, nature and sensitivity, potential risk of harm from unauthorised use or disclosure, the processing purposes, if these can be achieved by other means and legal requirements.

For tax purposes the law requires us to keep basic information about our customers (including Contact, Identity, Financial and Transaction Data) for six years after they stop being customers.

In some circumstances we may anonymise your personal data for research or statistical purposes in which case we may use this information indefinitely without further notice to you.

9. YOUR LEGAL RIGHTS

Under data protection laws you have rights in relation to your personal data that include the right to request access, correction, erasure, restriction, transfer, to object to processing, to portability of data and (where the lawful ground of processing is consent) to withdraw consent.

If you are within the UK, you can see more about these rights at:

https://ico.org.uk/for-organisations/uk-gdpr-guidance-and-resources/individual-rights/

If you wish to exercise any of the rights set out above, please email us at admin@fayredos.co.uk

You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive or refuse to comply with your request in these circumstances.

We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.

When responding to a request to access your personal data, we are only required to carry out searches that are reasonable and proportionate in the circumstances (as now expressly recognised in the Data (Use and Access) Act 2025). This means we will take into account factors such as the nature of the information sought, the context in which it is held, any difficulty involved in locating it and the potential benefit to you of receiving it.

We try to respond to all legitimate requests within one month of receiving the request (or, where applicable, of receiving the identity verification information or clarification we have asked for - the response period is paused, or "stopped", while we wait for that information, in line with the Data (Use and Access) Act 2025).

Occasionally it may take us longer than one month if your request is particularly complex or you have made a number of requests, in which case we may extend the response period by up to a further two months. We will notify you within one month of receiving your request if an extension is needed and explain why.

10. HOW TO COMPLAIN

If you have a complaint about how we handle your personal data, we ask that you contact us first so that we can try to resolve it for you.

You can submit a data protection complaint to us by:

  • emailing us at admin@fayredos.co.uk

We will acknowledge your complaint within 30 days of receiving it. We will investigate your complaint without undue delay, keep you informed of our progress, and communicate the outcome to you clearly with sufficient detail for you to understand how we reached our conclusion.

If you are within the UK and are not satisfied with our response, you have the right to complain to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk).

If you are within the EU and are not satisfied with our response, you have the right to complain to the data protection authority of the country in which you are based.

11. THIRD-PARTY LINKS

This website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy notice of every website you visit.

12. COOKIES

You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. If you disable or refuse cookies, please note that some parts of this website may become inaccessible or not function properly. For more information about the cookies we use, please see >> 


–END –

 

logo
 
Contact Us
 

Address

Norsted Manor Farm
Norsted Lane
Pratts Bottom
Orpington
Kent  BR6 7PB

 

© 2023 Fayre Do's Ltd All rights reserved.