WSM Security Limited is committed to protecting your personal data and respecting your privacy. This policy explains how we collect, use, and safeguard your information in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
1. Who We Are
Data Controller: WSM Security Limited
Email: info@wsmsecurityltd.com
Phone: 07344 343991
We are registered as a data controller and are responsible for the personal data we process. If you have any questions about this policy or how we handle your data, please contact us using the details above.
2. What Data We Collect
We may collect and process the following categories of personal data:
- Contact information: your name, email address, phone number and any details you provide in correspondence or enquiry forms
- Business information: company name, job title, and the nature of your security requirements
- Usage data: information about how you use our website, including IP address, browser type, pages visited, and time spent on pages (collected via cookies and analytics tools)
- Communications: records of emails, calls, or messages you send to us
We do not collect special category data (such as health information or criminal records) through our website. Any such data required for specific operational purposes (e.g. SIA licence verification for personnel) is handled under separate, appropriate agreements.
3. How We Use Your Data
We use the personal data we collect for the following purposes:
- To respond to your enquiries and provide security service quotations
- To manage and deliver contracted security services
- To communicate with you about your requirements or an ongoing engagement
- To improve our website and services based on usage patterns
- To comply with our legal and regulatory obligations, including those imposed by the Security Industry Authority (SIA)
- To send you information about our services where you have given consent, or where we have a legitimate business interest in doing so
4. Legal Basis for Processing
We process your personal data on one or more of the following legal bases:
- Contract: where processing is necessary to perform a contract with you or to take steps prior to entering into a contract
- Legitimate interests: where we have a genuine business reason to process your data that does not override your rights (e.g. responding to an enquiry, improving our services)
- Legal obligation: where we are required to process data to comply with the law (e.g. SIA regulatory compliance)
- Consent: where you have given clear, explicit consent for a specific purpose (e.g. marketing communications)
5. Data Sharing
We do not sell or rent your personal data to third parties. We may share your data only in the following limited circumstances:
- Service delivery: with vetted sub-contractors or security personnel where required to fulfil your contract, under strict confidentiality obligations
- Legal compliance: with regulatory bodies such as the Security Industry Authority (SIA), HMRC, or law enforcement where required by law
- Professional advisers: with solicitors, accountants, or insurers where necessary for business purposes
- Website services: with third-party platform providers (e.g. Netlify for website hosting) who process data on our behalf under data processing agreements
6. Data Retention
We retain personal data only for as long as necessary to fulfil the purpose for which it was collected, or as required by law:
- Enquiry and contact data: up to 2 years from last contact, unless a contract is formed
- Contract and service records: up to 7 years from the end of the contract (in line with legal and tax obligations)
- Website analytics data: typically 26 months, subject to the tools used
After the applicable retention period, data is securely deleted or anonymised.
7. Cookies
Our website may use cookies and similar tracking technologies to enhance your browsing experience and analyse site traffic. Cookies are small text files stored on your device. You can control or disable cookies through your browser settings, though this may affect certain functionality of our site.
Types of cookies we may use include:
- Essential cookies: required for the website to function correctly
- Analytics cookies: help us understand how visitors use the site, used anonymously to improve our offering
8. Your Rights
Under UK GDPR, you have the following rights regarding your personal data:
- Right of access: you can request a copy of the personal data we hold about you
- Right to rectification: you can ask us to correct inaccurate or incomplete data
- Right to erasure: you can request that we delete your data in certain circumstances ("right to be forgotten")
- Right to restrict processing: you can ask us to limit how we use your data in certain circumstances
- Right to data portability: you can request your data in a structured, commonly used, machine-readable format
- Right to object: you can object to processing based on legitimate interests or for direct marketing purposes
- Right to withdraw consent: where processing is based on consent, you may withdraw it at any time
To exercise any of these rights, please contact us at info@wsmsecurityltd.com. We will respond within one calendar month. We may need to verify your identity before fulfilling a request.
9. Data Security
We take appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, or misuse. These include secure email practices, access controls, and the use of reputable, compliant third-party service providers. However, no method of electronic transmission or storage is 100% secure, and we cannot guarantee absolute security.
10. Third-Party Links
Our website may contain links to third-party websites. We are not responsible for the privacy practices of those sites and encourage you to review their respective privacy policies.
11. Changes to This Policy
We may update this privacy policy from time to time to reflect changes in law, our practices, or our services. We will post any updates on this page with a revised "last updated" date. We encourage you to review this policy periodically.
12. Complaints
If you are unhappy with how we have handled your personal data, you have the right to lodge a complaint with the UK's data protection regulator:
Information Commissioner's Office (ICO)
Website:
ico.org.uk
Helpline: 0303 123 1113
We would, however, appreciate the opportunity to address your concerns before you contact the ICO. Please reach out to us first at info@wsmsecurityltd.com.