Privacy Policy

Veriten Ltd  ·  Data Protection

Who we are

Veriten Ltd is a company registered in England and Wales (Company No. 16972470). We are the data controller for personal data collected through this website and are registered with the Information Commissioner's Office under registration reference ZC138456. You can contact us regarding data protection matters at: dpo@veriten.co.uk.

What data we collect

We collect personal data only when you choose to provide it. This occurs primarily when you submit an enquiry through our contact form, at which point we collect:

• Your name
• Your email address
• Your organisation name (if provided)
• The content of your message

We do not use tracking cookies, analytics services, or third-party advertising tools. Standard web server logs may record IP addresses for security purposes; these are not used for profiling or marketing.

How we use your data

Personal data submitted through our contact form is used solely to respond to your enquiry. We do not use it for marketing purposes, and we do not add you to any mailing list without your explicit consent.

Our lawful basis for processing enquiry data is legitimate interest — specifically, the legitimate interest of responding to a contact request you have initiated.

How long we retain your data

Enquiry data is retained for as long as is reasonably necessary to manage the business relationship or potential engagement. Data relating to enquiries that do not result in an engagement is typically deleted within 12 months. Data relating to active or completed engagements is retained in accordance with our contractual and legal obligations.

Who we share data with

We do not sell, rent, or share your personal data with third parties for marketing or commercial purposes.

Third-party service providers

Veriten uses selected third-party service providers to support the operation of its website and business activities. These may include:

• Netlify (website hosting and contact form processing)
• Microsoft 365 (email and business communications)
• OpenAI ChatGPT Enterprise (business productivity and knowledge assistance)

These providers may process personal data on Veriten's behalf. Appropriate contractual and technical safeguards are applied where required.

Artificial intelligence

Veriten may use approved artificial intelligence tools, including ChatGPT Enterprise, to support administrative, analytical and knowledge-management activities. Personal data is not used for automated decision-making and any outputs generated by AI systems are subject to human review and oversight.

International data transfers

Some of Veriten's service providers may process data within the United Kingdom, European Economic Area (EEA) or other jurisdictions. Where personal data is transferred outside the UK, appropriate safeguards are applied in accordance with UK GDPR requirements.

Your rights

Under UK GDPR, you have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your data
• Object to processing based on legitimate interest
• Request restriction of processing
• Data portability

To exercise any of these rights, contact us at dpo@veriten.co.uk. We will respond within 30 days.

Complaints

If you have concerns about how we handle your personal data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.

Changes to this policy

We may update this policy from time to time. The date shown in the Review and Governance section below reflects when it was last revised. Continued use of the website following any update constitutes acceptance of the revised policy.

Review and governance