DATA CONTROLLER
This privacy notice explains how we collect, use and protect your personal data. We are required to provide this information under applicable data protection legislation, including the UK General Data Protection Regulation (“UK GDPR”). Please read this notice carefully, together with any other privacy notices we may provide to you when collecting or processing your personal data.
Osborne Partners Ltd, registered at 27Throgmorton Street, London, England, EC2N 2AQ, the data controller for the purposes of relevant data protection legislation, including the UK GDPR, in relation to personal data collected for marketing, recruitment, employment and client service purposes.
LEGAL BASIS FOR PROCESSING
We process personal data on the basis that OsbornePartners has a legitimate interest in carrying out the processing activities outlined below. Where any special category data is provided, the individual supplying that data confirms that they have the appropriate consent to allow Osborne Partners to process it, or that they have obtained the data subject’s explicit consent where required.
WHAT INFORMATION WE COLLECT ABOUT YOU
Personal data means any information that can identify an individual. It does not include data that has been anonymised.
We will only use your personal data for the purpose for which it was collected, or for a compatible purpose where permitted. If you require further information about this, please contact us at:
website@osbornes.com
We may collect and process the following categories of personal data:
- Communication Data – any communications you send to us (for example via email, telephone, social media or website forms). This is processed for communication, record-keeping and the establishment, exercise or defence of legal claims.
- Client Data – information relating to fees or services, including your name, title, billing address, delivery address, email address, telephone number, contact details and payment information. This data is processed to deliver services and maintain financial records.
- User Data – information about how you use our website. This is processed to operate and maintain the website, ensure relevant content is provided, maintain security and backups, and manage site administration. See the Cookies section below for further details.
- Technical Data – information such as IP address, browser type, device information, login data, time spent on pages and page views. This data is collected via analytics tools to monitor and improve website performance.
- Marketing Data – your contact details, communication preferences and CRM records relating to interactions with us via email, phone or in person.
Sensitive Data
We do not routinely collect special category (sensitive) personal data, although such data may be provided during the course of legal instructions. Sensitive data includes information relating to race, ethnicity, religious beliefs, sexual orientation, health, genetic or biometric data, political opinions or trade union membership. We do not collect information relating to criminal convictions or offences unless legally required.
Failure to Provide Data
Where we are legally required to collect personal data, or where it is required to perform a contract, failure to provide such data may mean we are unable to provide services. If this applies, we will notify you at the relevant time.
HOW WE USE COOKIES
Cookies are small text files stored on your device that help us analyse website traffic and improve user experience.
You can choose to accept or decline cookies via your browser settings. Please note that disabling cookies may limit website functionality.
We use cookies to analyse website usage, identify frequently visited pages and improve site performance. All data collected is used for statistical and analytical purposes only.
We also use Google Analytics to understand how users interact with our website, including demographic data (such as age and gender) and interests, to help improve our content, services and marketing.
Further information about managing cookie scan be found at: aboutcookies.org (provided by Pinsent Masons).
MARKETING COMMUNICATIONS
In accordance with the Privacy and Electronic Communications Regulations, we may send you marketing communications if you have requested information from us, purchased services from us, or consented to receive such communications, and you have not opted out.
If you are a limited company, we may send marketing emails without prior consent. You may opt out at any time.
We do not share your personal data with third parties for their own marketing purposes.
To update your marketing preferences or unsubscribe, please contact website@osbornes.com.
Opting out of marketing communications doesn't affect personal data processed for other services or transactions.
SHARING YOUR PERSONAL DATA
We may share your personal data with:
- IT, marketing and system administration service providers
- Professional advisers, including solicitors, accountants, insurers and bankers
- Regulatory and government bodies where legally required
- Partners or suppliers who support the delivery of our services
- Third parties involved in the sale, transfer or restructuring of our business or assets
All third parties are required to protect your personal data and process it only in accordance with our instructions and applicable law.
INTERNATIONAL DATA TRANSFERS
Some of our service providers are located outside the UK or EEA. Where personal data is transferred internationally, we ensure appropriate safeguards are in place, including:
- Transfers to countries deemed adequate by the UK or European Commission
- Standard contractual clauses or approved certification mechanisms
- Where applicable, recognised international data transfer frameworks
If none of these safeguards apply, we may request your explicit consent for the transfer. You may withdraw this consent at any time.
DATA SECURITY
We have implemented appropriate technical and organisational measures to protect your personal data from unauthorised access, loss, misuse or disclosure.
Access to personal data is restricted to employees and partners who require it for legitimate business purposes and who are subject to confidentiality obligations.
We maintain procedures to deal with suspected data breaches and will notify affected individuals and regulators where legally required.
DATA RETENTION
We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including legal, regulatory, accounting or reporting obligations.
In determining retention periods, we consider the nature and sensitivity of the data, potential risks, processing purposes and legal requirements. Basic client records are generally retained for six years after the end of the client relationship.
YOUR LEGAL RIGHTS
You have rights under data protection law, including the right to access, correct, erase, restrict or object to processing, request data portability and withdraw consent where applicable.
Further information on these rights is available at:
https://ico.org.uk/for-organisations/guide-to-data-protection/
To exercise your rights, please contact website@osbornes.com.
If you are dissatisfied with how your data has been handled, you may lodge a complaint with the Information Commissioner’s Office (ICO) at www.ico.org.uk. We would appreciate the opportunity to address your concerns before you contact the ICO.