Privacy Policy

Anglia Compliance Ltd ("Anglia Compliance", "we", "us", "our") is an ISO certification body accredited by EQSAB (Eurasian Quality Standards Accreditation Body), operating from 543, Venture X White City, Ariel Way, London W12 7SL, United Kingdom. Our email address is [email protected]. We are committed to protecting and respecting your privacy. This Privacy Policy sets out how we collect, use, store, and protect your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

We may collect and process the following personal data: • Identity Data: full name, job title, company name • Contact Data: email address, telephone number, postal address • Application Data: information submitted via certification application forms, including organisational details, employee numbers, and business scope • Technical Data: IP address, browser type, operating system, and page visit data collected via cookies • Communications Data: records of correspondence with us via email, phone, or contact forms We collect this information when you: complete our online application or contact forms, correspond with us by email or phone, visit our website, or enter into a certification agreement with us.

We use your personal data for the following purposes: • To process and manage your ISO certification application • To conduct audit scheduling, planning, and reporting • To issue and maintain certification records • To communicate with you about your certification status • To respond to enquiries and provide customer support • To send administrative notices and updates • To comply with our legal and regulatory obligations • To improve our website and services Our lawful basis for processing is: contract performance (for certification-related processing), legitimate interests (for service improvement and communications), and legal obligation (for compliance requirements).

We retain your personal data for as long as necessary to fulfil the purposes for which it was collected, including to satisfy legal, accounting, or reporting requirements. Certification records are retained for a minimum of 7 years following the expiry of a certificate, in accordance with our quality management procedures. Enquiry data is retained for 2 years if no certification agreement is entered into. Website analytics data is retained for 26 months.

We do not sell, rent, or trade your personal data to third parties. We may share your information with: • Contracted auditors engaged to perform certification audits on our behalf • IT service providers who support our website and client portal • Professional advisers including lawyers, accountants, and insurers • Regulatory authorities where required by law All third parties with whom we share data are required to respect the security of your personal data and treat it in accordance with the law.

Under UK GDPR, you have the following rights: • Right of Access: to receive a copy of the personal data we hold about you • Right to Rectification: to have inaccurate data corrected • Right to Erasure: to request deletion of your data in certain circumstances • Right to Restriction: to request that we limit how we use your data • Right to Data Portability: to receive your data in a structured, machine-readable format • Right to Object: to object to our processing based on legitimate interests To exercise any of these rights, please contact us at [email protected]. We will respond within 30 days.

We have implemented appropriate technical and organisational security measures to protect your personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, or access. These include encrypted data transmission (SSL/TLS), access controls, and regular security reviews. However, please note that no method of electronic transmission or storage is 100% secure and we cannot guarantee absolute security.

Our website uses cookies to improve your browsing experience. For full details of the cookies we use and how to manage them, please refer to our Cookie Policy.

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated effective date. We encourage you to review this policy periodically.

If you have any questions about this Privacy Policy or wish to exercise your data protection rights, please contact us at: Anglia Compliance Ltd 543, Venture X White City, Ariel Way, London W12 7SL Email: [email protected] If you are not satisfied with our response, you have the right to lodge a complaint with the Information Commissioner's Office (ICO) at www.ico.org.uk.