This Privacy Policy explains how Brand Bolt Solutions Ltd. (“we”, “us”, “our”) collects, uses, shares and protects personal data when you visit our website, contact us, or otherwise interact with us.
We are committed to protecting your privacy and complying with applicable data protection laws, including the EU General Data Protection Regulation (“GDPR”) and any applicable local implementations.
By using our website or providing personal data to us, you acknowledge that you have read and understood this Privacy Policy.
Brand Bolt Solutions Ltd. is the data controller for the personal data we process in connection with this website and our marketing activities.
If you have any questions about this Privacy Policy or how we process your personal data, you can contact us at:
Depending on how you interact with us, we may collect and process the following categories of personal data:
Data you provide directly:
When you visit our website, we may automatically collect:
We may receive personal data about you from:
We process your personal data only where we have a legal basis to do so under GDPR, including:
We may use your personal data for the following purposes:
a) To operate and improve our website
b) To respond to your enquiries and communicate with you
c) To provide and develop our business services
d) Marketing and business development
e) Legal and compliance
We use cookies and similar technologies on our website to:
Where required by law, we will ask for your consent before placing non essential cookies on your device. You can manage your cookie preferences via our cookie banner or through your browser settings. Detailed information on the types of cookies we use and their purposes is set out in our Cookie Policy (or the cookie section on our website).
We may share your personal data with the following categories of recipients, only to the extent necessary and in accordance with applicable law:
Service providers (processors)
Trusted third-party service providers who support the operation of our business and website, such as:
• Website hosting and maintenance providers.
• IT and security service providers.
• CRM, email, and marketing automation platforms.
• Analytics and cookie management providers.
These providers act as our processors and are contractually bound to process your data only on our instructions and with appropriate security safeguards.
Business partners and professional advisers
• Professional advisers (e.g. legal, tax, or accounting firms) where necessary for legitimate business purposes.
• Potential partners in the context of a merger, acquisition, or sale of all or part of our business, subject to appropriate confidentiality safeguards.
Legal and regulatory authorities
Where required by law, regulation, legal process, or governmental request, we may disclose personal data to competent authorities, courts, or regulators.
We do not sell your personal data.
International Transfers
Your personal data may be processed and stored in countries outside the European Economic Area (EEA), for example where our service providers are located.
Where such transfers occur, we ensure that an appropriate level of protection is in place, for example by:
• Relying on an adequacy decision by the European Commission; or
• Implementing standard contractual clauses approved by the European Commission, together with additional safeguards where necessary.
You can contact us using the details above for more information on specific safeguards used for international transfers.
Your Data Protection Rights
Under GDPR and applicable data protection laws, you have certain rights in relation to your personal data, subject to conditions and legal limitations. These rights may include:
• Right of access: to obtain confirmation whether we process your personal data and receive a copy of that data.
• Right to rectification: to have inaccurate or incomplete personal data corrected.
• Right to erasure (“right to be forgotten”): to request deletion of your personal data in certain circumstances.
• Right to restriction: to request that we limit the processing of your personal data in certain cases.
• Right to data portability: to receive personal data you provided to us in a structured, commonly used, machine readable format and transmit it to another controller where technically feasible.
• Right to object: to processing based on our legitimate interests, on grounds relating to your particular situation; to processing for direct marketing at any time (including profiling related to direct marketing).
• Right to withdraw consent: where processing is based on your consent, you have the right to withdraw that consent at any time. This will not affect the lawfulness of processing carried out before withdrawal.
To exercise any of these rights, please contact us using the details in Section 2. We may need to verify your identity before fulfilling your request.
You also have the right to lodge a complaint with a supervisory authority, in particular in the EU/EEA or UK member state where you live, work, or where you believe your rights have been infringed.
Data Retention
We keep personal data only for as long as necessary for the purposes described in this Privacy Policy or as required by law. Retention periods may vary depending on:
• The nature of the data and the purpose for which it was collected.
• Legal, tax, or regulatory requirements.
• The need to establish, exercise or defend legal claims.
In general:
• Enquiry and contact data: retained for as long as needed to respond and manage the relationship, and for a reasonable period thereafter for record keeping and business development.
• Marketing data: retained until you unsubscribe or object to processing, or for a period in line with our internal retention policies.
• Technical and usage data: retained for a limited period necessary for analytics, security, and performance monitoring.
When personal data is no longer required, we will delete it or anonymise it so that it can no longer be linked to an identifiable person.
We take appropriate technical and organisational measures to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, or access. These measures include:
However, no system can be completely secure. You are responsible for taking reasonable steps to protect your own data, such as keeping login details confidential and using secure networks when accessing our website.
Our website may contain links to third-party websites or services. This Privacy Policy applies only to our website and activities. We are not responsible for the privacy practices, content, or policies of third-party sites. We encourage you to review the privacy policies of any external websites you visit.
We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or for other operational reasons.
When we make significant changes, we will update the “Last updated” date at the top of this page and, where appropriate, notify you through the website or by other means.
We encourage you to review this Privacy Policy periodically to stay informed about how we process your personal data.
If you have any questions, concerns, or requests regarding this Privacy Policy or our handling of your personal data, please contact us at: