GDPR Compliance

Smye Rumsby7455 LOGO 510x135

This Privacy Statement sets out how Smye Rumsby Limited uses and protects your privacy regarding your interaction with ourselves. Being committed to protecting and respecting your privacy and having responsibility as a “data controller” under applicable data protection legislation.

This Privacy statement sets out the basis on which any personal data is collected or provided and processed by Smye Rumsby Limited. Please read the following carefully to understand our views and practices regarding personal data and how it is treated.

When visiting you are accepting and consenting to the practices described in this policy. If you have any queries about this Policy or how we use your personal information, please contact us using the details at Contact us

If information is provided by which you can be identified, then it will only be used in accordance with this privacy statement.

We may update this statement from time to time to clarify certain sections.

GDPR Privacy Statement Update

We are in the process of making changes to ensure that we are complaint with new data protection regime when the General Data Protection Regulation (“GDPR”) that came into force on 25 May 2018.

What are we doing?

We are working with data privacy specialist PCH (

We have appointed a Compliance Manager and we are providing all the necessary in-house training to employees.

We have mapped our data processes and are making changes to ensure we are GDPR complaint, including:

  • We are ensuring we have the correct lawful basis for the collection of personal data
  • We are reviewing all our retention policies and amending where required to ensure they are appropriate
  • We are enhancing our record-keeping practices to ensure we can demonstrate accountability for compliance
  • We are making sure that any third parties that are storing or otherwise handling personal data on our behalf or to whom we transfer personal data have appropriate safeguards to ensure GDPR compliance. We are achieving this through (where appropriate) questionnaires, audits and enhanced contractual provisions or agreements
  • We are making further improvements to our security policy to ensure all the data we store is as secure as possible

We are updating our current policies/documentation and processes and introducing new policies/documentation and processes, including:

  • Website & Customer Privacy Notice, Privacy Notice for Suppliers & Privacy Notice for Consultants
  • Terms & Conditions
  • Data Protection Policy
  • Data Map
  • Third Party Data Processor Due Diligence Questionnaires
  • Third Party Data Processing Agreements
  • Retention Policy
  • Individual Rights Policy & Data Subject Access Requests Procedures
  • Privacy Impact Assessments
  • Personal Data Breach Notification Policy
  • Security Policy


The above information is provided for guidance only and does not constitute legal advice or otherwise create any legal liabilities or obligation.

If you have any queries, please email:

Information we do collect

Personal information may be obtained when using our website, enquires about products and services, registering with us, send or receive an email, ask a question or otherwise provide us with personal information.

Such as;

  • Name and job title
  • Contact information including email address and phone number
  • Demographic information such as postcode, preferences and interests
  • Social Media
  • Other information relevant to customer surveys and/or offers

Why such information is collected

  • By creating an account for you is part of our registration process enables us to notify you about changes to our services, maintaining our site’s security and ensuring the content from our site is presented in the most effective manner.
  • We use such information to improve our products and services.
  • Personal information used for electronic marketing purposes only if legal or consent has been obtained. When agreeing to receive marketing information, you still have the right to opt out at any time by using the contact details at ‘Contact Us’.
  • We may periodically send promotional emails about products, special offers or other information which we think you may find interesting including third party events, products and services using the email address which you have provided.


We are committed to ensuring that your information is secure. To prevent unauthorized access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information.

Using cookies

A cookie is a small file which asks permission to be placed on your computer’s hard drive, after your agreement. These cookies are perfectly harmless and will have no effect on your system performance, integrity or security. The cookie helps analyses web traffic and allows web applications to respond to you as an individual, improve the quality of our website, or links to emails, or information you have submitted in online web forms.

Smye Rumsby will never share information this information with any third party

Links to other websites

Our website may contain links to other websites that may be of interest. When using these links, having no control over these websites we are unable to provide the protection and privacy of any information which you provide and is not governed by this privacy statement.
(You should look at the privacy statement applicable to that website).

Your personal information

We will not sell, distribute or lease your personal information, other it may be used by trusted marketing campaign implementation partners and our product vendors when we have received your written agreement or are required do so by law. We may use your personal information to send you promotional information about third parties which we think you may find interesting with your agreement.

Information period

Information is held for no longer than necessary, as set out in our Data Retention Policy. We will retain your information for any period required by law, for example for compliance with HMRC requirements. Where we are not under a legal obligation to retain your information, determining what is necessary by reference to the lawful basis for processing set out above and our legitimate interests.

You may request details of personal information which we hold about you under the EU’s  General Data Protection Regulation (GDPR)  effective as of May 25th, 2018

If you believe that any information we are holding on you is incorrect, incomplete, you require deleting, or require knowing how long your information will be kept. Please email us and we will promptly correct or delete any information found to require changing.

Nominated Data Protection Officer

A named Data Protection Officer (DPO) is Colin Dymott (Company Secretary and Financial Director), who is responsibility for our data protection compliance and has the knowledge, support and authority to do so effectively in an event of an investigation into a complaint.

Your Full Name

Your Company Name

Phone number

Mobile number