01204363184
Portal Login

Privacy Policy

  1. Introduction

At Concept Management, we take your privacy seriously. This Privacy Policy explains how we collect, use, and protect your personal data when you visit our website, use our services, contact us, or otherwise interact with our business.

We are committed to complying with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

 

  1. Who We Are

Data Controller:
Concept Management Consulting Limited
Royal House, Tennyson Street, Bolton, BL1 3HW
Email: [Insert Email Address]
Phone: [Insert Phone Number]

 

  1. What Data We Collect

We may collect and process the following types of personal data:

  1. Contact Information
  • Name
  • Company Name
  • Email address
  • Phone number
  • Postal address
  • Job title
  1. Technical Information
  • IP address
  • Browser type and version
  • Time zone setting
  • Device type
  • Pages visited on our website
  • Referral source
  1. Transactional Data
  • Equipment details (for collection)
  • Booking details
  • Service history
  • Certificates issued (e.g., data destruction)
  1. Marketing & Communication Preferences
  • Consent records
  • Communication preferences
  • Responses to surveys or feedback forms

 

  1. How We Collect Your Data

We collect data in the following ways:

  • When you complete a form on our website (e.g., “Book a Collection”)
  • When you email or call us
  • When you use our services
  • From cookies and tracking tools (see our [Cookies Policy])
  • When you interact with us on social media
  • Through referrals or third-party frameworks (e.g., Crown Commercial Service)

 

  1. How We Use Your Data

We process your data to:

  • Deliver and manage our ITAD and data destruction services
  • Respond to your enquiries and bookings
  • Maintain our internal records and legal compliance
  • Improve our services and user experience
  • Send you updates about our services (if you opt in)
  • Demonstrate compliance with environmental and data protection legislation
  • Fulfil contractual obligations (e.g. issuing audit trails and certificates)

 

  1. Legal Basis for Processing

Under UK GDPR, we rely on the following lawful bases:

  • Consent – for sending marketing emails where required
  • Contract – to provide services you’ve requested
  • Legal obligation – for compliance with data protection and environmental law
  • Legitimate interests – to run our business and improve customer experience

 

  1. Sharing Your Data

We do not sell your data.

We may share data with:

  • Trusted service providers (e.g., secure logistics, CRM, data wiping partners)
  • Regulators and legal authorities (if legally required)
  • Framework organisations for reporting (e.g. NHS, public sector bodies)
  • Charitable organisations when you donate equipment (only with your consent)

All third parties are bound by strict confidentiality and data protection agreements.

 

  1. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes outlined above, including for legal, accounting, or regulatory reporting.

Typically:

  • Customer records: 7 years
  • Certificates & audit logs: 6–10 years
  • Marketing data: until you withdraw consent

 

  1. Your Rights

Under UK GDPR, you have the right to:

  • Access your data
  • Correct inaccuracies
  • Request deletion (where applicable)
  • Restrict or object to processing
  • Withdraw consent at any time
  • Lodge a complaint with the Information Commissioner’s Office (ICO)

For any of the above, contact us at [Insert Email Address].

 

  1. Data Security

We take appropriate measures to protect your data from loss, misuse, and unauthorised access, including:

  • ISO 27001-certified information security practices
  • Encrypted data transfers
  • Secure, access-controlled systems
  • Staff training and SC-cleared personnel for data handling

 

  1. International Transfers

We store and process your data within the UK. We do not transfer your data outside of the UK unless adequate protection measures are in place.

 

  1. Updates to This Policy

We may update this Privacy Policy from time to time. The latest version will always be available on our website with the effective date clearly shown at the top.

 

  1. Contact Us

If you have any questions or concerns about how your data is used, please contact:

Data Protection Officer
Concept Management Consulting Limited
Royal House, Tennyson Street, Bolton, BL1 3HW
📧 justask@conceptmanagement.co.uk
📞 01204363184

Or you may contact the ICO via: www.ico.org.uk

Trustpilot