Privacy policy

Reygate & Co Last updated: June 2026

1. About This Policy

1.1 Introduction

This policy outlines how Reygate & Co collects, uses and protects your personal information when you visit reygate.co or engage with us as a client. It is intended to be in line with UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, and will be reviewed periodically.

By visiting and using our website you are agreeing to the use of your personal information as described in this policy.

If you have any questions or concerns regarding this policy please contact us at: greg@reygate.co

1.2 General Principles

Reygate & Co is committed to protecting and respecting your privacy. We will only collect information that is necessary, handle it responsibly and never use it in ways you would not reasonably expect.

We are a Data Controller with respect to the personal information you provide to us and remain compliant with our obligations under UK GDPR.

2. Information We Collect

Information we collect falls into one of two categories: information you voluntarily provide and information automatically collected.

Voluntarily provided information refers to any information you knowingly provide when using our website or engaging with our services — for example, when you complete a contact form or correspond with us by email.

Automatically collected information refers to information automatically sent by your device when you access our website.

2.1 Log Data

When you visit our website, our servers may automatically log standard data provided by your web browser including your device's Internet Protocol (IP) address, browser type and version, pages visited, time and date of visit and time spent on each page. This information does not identify individuals.

2.2 Personal Information

We may collect personal information including:

  • Name and job title

  • Business name and address

  • Email address and telephone number

  • Any information you choose to share when contacting us

3. Cookies

We use cookies to collect information and track use of the site. A cookie is a small data file placed on your device that allows our website to recognise you as a user.

3.1 Types of Cookies

We use cookies for the following purposes:

  • Analytical/Performance Cookies — to understand how visitors use our site, which pages are popular and where improvements can be made

  • Functional Cookies — to recognise returning visitors and improve their experience

  • Tracking Cookies — to record visits and pages viewed to help us make the site more relevant

When you first visit our site you will be presented with a notification giving you the option to accept, manage or reject cookies.

3.2 When You Accept Cookies

By accepting cookies you agree for these to be placed on your device. We will collect information submitted via contact forms, correspondence sent to us, and details of your visits to our site.

3.3 When You Reject Cookies

If you reject cookies we will only use functional cookies essential for the site to operate. We will not collect analytics or tracking data.

4. How We Use Your Information

We collect and use your personal information for the following purposes:

  • To respond to your enquiries and provide the services you have requested

  • To manage our client relationships and fulfil our contractual obligations

  • To improve our website and service offering

  • To send you relevant updates and communications where you have agreed to receive them

  • To comply with our legal and regulatory obligations

We may monitor site usage and record anonymised data through Google Analytics. This information does not identify individuals.

4.1 Marketing

We do not pass your data to third parties for marketing purposes.

Where you have indicated you are happy to hear from us, we may contact you with information about our services, insights or events we think may be of interest. You can opt out at any time by contacting greg@reygate.co or unsubscribing from any email communications.

4.2 Legal Bases for Processing

We only collect and use your personal information where we have a lawful basis to do so:

  • Consent — where you have given us clear consent to process your data for a specific purpose

  • Contract — where processing is necessary to deliver services you have engaged us for

  • Legitimate interests — where we have a legitimate business reason to process your data, such as responding to enquiries or improving our services

  • Legal obligation — where we are required by law to process or retain your data

5. Procedure & Responsibilities

5.1 Where We Hold Your Information

Personal information is held securely within our business systems including Google Workspace. Anonymised site usage data is held in Google Analytics.

5.2 How Long We Keep Your Information

We only keep your personal information for as long as is necessary:

  • Enquiry data — 12 months if no client engagement follows

  • Client data — 6 years following the end of our engagement in line with UK legal and financial record-keeping requirements

  • All data can be removed immediately upon request

5.3 Who We Share Your Information With

We do not sell your data. We may share your information in limited circumstances:

  • With trusted service providers who help us operate our business, including Google Workspace and Squarespace, who are contractually bound to handle data securely and in accordance with UK GDPR

  • If required to comply with a legal or regulatory obligation

  • If we sell or transfer our business, in which case your data may transfer as part of that process

5.4 How We Keep Your Information Secure

We are committed to keeping your information secure. We use appropriate technical and organisational measures including SSL encryption, secure password management and restricted access to personal data.

Please note that transmission of information via the internet is not completely secure. Whilst we apply strict procedures to protect your information, any transmission is at your own risk.

5.5 Links to Other Sites

Our website may contain links to third party websites. We are not responsible for the privacy practices of those sites and recommend you review their policies before submitting any personal information.

6. Your Rights

Under UK GDPR you have the following rights:

Right to be Informed — you have the right to know how your data is collected, processed, shared and stored. This policy fulfils that obligation.

Right of Access — you may request a copy of the personal information we hold about you at any time by submitting a Data Subject Access Request (DSAR). We will respond within 30 calendar days.

Right to Rectification — if you believe any information we hold is inaccurate or incomplete you have the right to request that we correct it.

Right to Erasure — in certain circumstances you can ask for your personal data to be deleted from our records. This right is not absolute and may only apply in specific circumstances.

Right to Restrict Processing — you have the right to request that we restrict the processing of your personal information in certain circumstances.

Right to Object — you have the right to object to processing of your personal information based on our legitimate interests.

Right to Portability — you have the right to request that your personal data be provided to you in a machine-readable format.

Right to Withdraw Consent — where we rely on consent as our lawful basis, you can withdraw that consent at any time.

Right to Complain — you have the right at any time to lodge a complaint with the Information Commissioner's Office (ICO), the UK supervisory authority for data protection:

Information Commissioner's Office Wycliffe House, Water Lane Wilmslow, Cheshire, SK9 5AF Tel: 0303 123 1113 Website: www.ico.org.uk

We would appreciate the opportunity to address any concerns before you contact the ICO, so please reach out to us first at greg@reygate.co.

7. Data Breaches

Upon discovery of a data breach we will investigate the incident promptly. Where required by law we will notify the ICO within 72 hours and inform affected individuals if there is significant risk to their rights and freedoms.

8. Changes to This Policy

We may update this policy from time to time to reflect changes to our business, practices or legal requirements. The date at the top of this page will always reflect the most recent version. We recommend checking back periodically.

9. Contact Us

For any questions, concerns or requests regarding this privacy policy or how we handle your personal data please contact us:

Greg Reygate Reygate & Co Email: greg@reygate.co Website: reygate.co Address: [Registered address — to be updated once 1st Formations address is confirmed]

Reygate & Co is a trading name of Reygate and Co Limited, registered in England and Wales.