Privacy Policy

Last Updated: November 2025 |  Version 1.1

1. Introduction

At RiskFire Ltd, we respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and protect information when you visit our website or contact us in relation to our services.

We handle all personal data in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and other relevant UK privacy laws.

2. Who We Are

RiskFire Ltd
Company Number: 15383979
Registered Address: Unit 17, Jubilee Business Park, Snarestone Road, Appleby Magna, Swadlincote, Leicestershire, DE12 7AJ
Email: enquiries@riskfire.co.uk
Data Protection Officer: Sam Boylan

RiskFire Ltd is registered with the Information Commissioner’s Office (ICO) as a data controller.

3. Information We Collect

We collect personal information that you provide directly to us, as well as limited technical data through website analytics tools.

Information you provide:

  • When you complete our enquiry form (name, business name, email, phone number, service required)
  • When you communicate with us by email, phone, or post
  • When we work with you as a client, supplier, or subcontractor

Information collected automatically:

  • Your IP address, browser type, and device information
  • Website usage data collected through Duda analytics and Metricool

We do not collect sensitive personal information through our website.

4. How We Use Your Information

We use personal data only when necessary and for legitimate business purposes, including to:

  • Respond to enquiries and requests
  • Set up and manage client accounts
  • Fulfil our contractual obligations
  • Communicate with clients and suppliers
  • Maintain accurate business and accounting records
  • Comply with legal, insurance, and certification requirements

We do not currently send marketing or newsletter emails.

5. Legal Basis for Processing

We process personal data under the following legal bases:

  • Contractual necessity – to provide quotes, services, or fulfil contracts
  • Legitimate interests – for general business operations and communication
  • Legal obligation – to meet tax, insurance, or regulatory requirements
  • Consent – where you have actively given permission (e.g. via form submission)

6. Cookies and Analytics

Our website uses cookies to enhance your browsing experience and gather analytics data to improve performance.
When you visit www.riskfire.co.uk, a cookie consent banner appears allowing you to manage your preferences. You can choose to accept all, reject all, or customise which cookies you permit.

We use:

  • Duda Analytics – to understand website usage patterns
  • Metricool – to analyse engagement from our social media channels

For full details on the cookies we use, please see our separate Cookie Policy.

7. Sharing Your Information

We only share your data when necessary and with trusted third parties that help us operate our business, including:

  • Subcontractors (where client contact details are required for works coordination)
  • Accountants and certification bodies (for audit or compliance purposes)
  • Our website host (Duda)
  • Cloud storage and management systems (OneDriveGoogle DriveOneTraceFireHubRAMSApp)

All partners and systems we use are required to handle data securely and in compliance with UK data protection law.

We do not sell or trade personal information under any circumstances.

8. Data Retention

We retain personal data only for as long as necessary to meet business and legal requirements:

Enquiry form submissions

  • 12 months

Job applications

  • 12 months

Client records

  • 7 years (for insurance and legal purposes)

Email and marketing data

  • 2 years

Once no longer needed, data is securely deleted or anonymised.

9. Data Security

Our website uses SSL encryption (https://) to protect data transmitted online.
All internal data systems are password protected, and access is restricted to authorised staff only.
We store all information within the United Kingdom, and all staff are trained on data protection responsibilities.

10. Your Rights

Under the UK GDPR, you have the following rights regarding your personal data:

  • Access – request a copy of the data we hold about you
  • Rectification – correct inaccurate or incomplete data
  • Erasure – request deletion of your data (where legally possible)
  • Restriction – request limited use of your data
  • Objection – object to certain types of processing
  • Data Portability – request transfer of your data to another controller

To exercise any of these rights, please contact Sam Boylan at enquiries@riskfire.co.uk.
We may need to verify your identity before processing your request.

11. Links and Embedded Content

Our website may include links or embedded content (e.g. videos or maps) from third-party websites. These sites may collect data independently of RiskFire Ltd. We recommend reviewing their privacy policies before interacting with any third-party content.

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our business practices or legal requirements.
The latest version will always be available on our website and include the “Last Updated” date above.


Contact Us

If you have any questions about this policy or how we handle personal information, please contact:

Sam Boylan
Data Protection Officer
Email: enquiries@riskfire.co.uk
Address: Unit 17, Jubilee Business Park, Snarestone Road, Appleby Magna, Swadlincote, DE12 7AJ