Privacy Policy

Last updated: January 1, 2025

1. Introduction

Zippy Crest Ltd ("we," "our," or "us") is committed to protecting your privacy and personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website zippy-crest.com and use our services.

We are registered with the Information Commissioner's Office (ICO) and comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Information We Collect

2.1 Personal Information

We may collect personal information that you voluntarily provide, including:

  • Name and contact details (email address, phone number, postal address)
  • Company information and business details
  • Financial and tax information for our services
  • Communication preferences
  • Any other information you choose to provide

2.2 Automatically Collected Information

When you visit our website, we may automatically collect:

  • IP address and location data
  • Browser type and version
  • Pages visited and time spent on our site
  • Referring website information
  • Device information

3. How We Use Your Information

We use your personal information for the following purposes:

  • Providing our business consultancy services
  • Communicating with you about our services
  • Processing payments and managing accounts
  • Sending newsletters and marketing communications (with consent)
  • Improving our website and services
  • Complying with legal obligations
  • Detecting and preventing fraud

4. Legal Basis for Processing

We process your personal information based on:

  • Contract: To perform our services and fulfill contractual obligations
  • Consent: For marketing communications and optional services
  • Legitimate Interests: To improve our services and website functionality
  • Legal Obligation: To comply with UK laws and regulations

5. Information Sharing and Disclosure

We may share your information with:

  • Service Providers: Third-party companies that help us provide our services
  • Professional Partners: Accountants, lawyers, and other professionals as required for our services
  • Regulatory Bodies: HMRC, Companies House, and other authorities as legally required
  • Business Transfers: In connection with mergers, acquisitions, or asset sales

We do not sell, rent, or trade your personal information to third parties for marketing purposes.

6. Data Security

We implement appropriate technical and organizational measures to protect your personal information, including:

  • Encryption of sensitive data
  • Secure server infrastructure
  • Regular security assessments
  • Staff training on data protection
  • Access controls and authentication procedures

7. Data Retention

We retain your personal information for as long as necessary to:

  • Provide our services to you
  • Comply with legal obligations
  • Resolve disputes and enforce agreements

Typically, we retain client data for 7 years after the end of our business relationship, in line with UK tax and accounting requirements.

8. Your Rights

Under UK GDPR, you have the following rights:

  • Access: Request a copy of your personal information
  • Rectification: Correct inaccurate or incomplete information
  • Erasure: Request deletion of your personal information
  • Restriction: Limit how we process your information
  • Portability: Receive your data in a portable format
  • Objection: Object to processing based on legitimate interests
  • Withdrawal of Consent: Withdraw consent for processing

9. Cookies and Tracking

Our website uses cookies and similar technologies to enhance your experience. For detailed information about our cookie usage, please see our Cookie Policy.

10. International Transfers

We primarily process data within the UK and EEA. If we transfer data outside these areas, we ensure appropriate safeguards are in place, including adequacy decisions or standard contractual clauses.

11. Children's Privacy

Our services are not directed to children under 18. We do not knowingly collect personal information from children under 18. If we become aware of such collection, we will delete the information immediately.

12. Updates to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date.

13. Contact Information

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:

Zippy Crest Ltd
Data Protection Officer
125 London Wall
London EC2Y 5AS
United Kingdom

Email: [email protected]
Phone: +44 20 7946 0958

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) if you believe we have not handled your personal information properly. You can contact the ICO at ico.org.uk or call 0303 123 1113.