Privacy Policy

Coreform Group Ltd

Last updated: 14.02.26

1. Important Information and Who We Are

Privacy policy

This privacy policy explains how Coreform Group Ltd (“Coreform”, “we”, “us”, or “our”) collects, uses and protects your personal data when you use our website or engage with our services.

This includes any data you provide when you:

- enquire about our services

- book a call

- become a client

- interact with our systems or communications

This website is not intended for children and we do not knowingly collect data relating to children.

Controller

Coreform Group Ltd is the controller and responsible for your personal data.

Company name: Coreform Group Ltd
Registered in: England and Wales
Company number: 16985857
Registered office: 124 City Road, London, EC1V 2NX

If you have any questions about this policy or wish to exercise your legal rights, please contact us using the details in section 10.

2. The Types of Personal Data We Collect

Personal data means any information that can identify an individual.

We may collect, use, store and transfer the following categories of data:

Identity Data
First name, last name, title or similar identifiers.

Contact Data
Email address, telephone number, billing or service address.

Financial Data
Payment details processed via secure third-party providers.

Transaction Data
Details about services you purchase or enquiries you submit.

Technical Data
IP address, browser type, device information, operating system, and usage logs.

Profile Data
Preferences, feedback, enquiries, or interactions with our systems.

Usage Data
How you interact with our website or services.

Marketing and Communications Data
Your communication preferences and marketing opt-ins.

We may also use aggregated or anonymised data for analytical purposes.

3. How Is Your Personal Data Collected?

We collect data through:

Direct interactions

When you:

- submit forms

- contact us

- request information

- become a client

Automated technologies

We collect Technical Data using cookies, server logs and analytics tools.

Third parties and public sources

We may receive data from:

- Analytics providers (e.g. Google, Meta)

- Scheduling tools (e.g. Calendly)

- Payment processors (e.g. Stripe)

- Public records such as Companies House

4. How We Use Your Personal Data

Legal bases

We rely on the following lawful bases:

Performance of a contract — delivering services you request

Legitimate interests — improving operations, security and services

Legal obligations — regulatory or financial requirements

Consent — marketing communications where applicable

Purposes of processing

We use your data to:

- Register and onboard clients

- Deliver operational systems and services

- Manage payments and billing

- Communicate service updates

- Maintain website security and performance

- Improve our services and systems

- Send relevant marketing (where consent is given)

Direct marketing

You will receive marketing communications only if you:

- request information, or

- have engaged with our services and not opted out.

You can unsubscribe at any time via email links or by contacting us.

5. Disclosures of Your Personal Data

We may share your data with trusted third-party providers where necessary, including:

- Analytics and advertising platforms (Google, Meta, Hyros)

- Communication and workflow tools (Slack, Zapier)

- Payment processors (Stripe, Payfunnels)

- Contract signing platforms (DocuSign)

- Email marketing providers (ActiveCampaign)

- Scheduling tools (Calendly)

- Hosting or service platforms

We require all third parties to respect the security of your data and process it only under our instructions.

6. International Transfers

Some providers operate outside the UK.

Where personal data is transferred internationally, we ensure appropriate safeguards are in place, such as:

- adequacy regulations

- standard contractual clauses

- equivalent data protection measures

7. Data Security

We implement appropriate technical and organisational measures to protect personal data from:

- unauthorised access

- loss

- alteration

- disclosure

Access is limited to individuals with a legitimate business need.

8. Data Retention

We retain personal data only as long as necessary.

By law, we must keep certain client records for six years for tax and accounting purposes.

Retention periods depend on:

- legal obligations

- service delivery requirements

- potential disputes or claims

9. Your Legal Rights

Under UK GDPR, you have rights to:

- Access your data

- Correct inaccurate data

- Request deletion where appropriate

- Restrict processing

- Object to processing

- Request data portability

- Withdraw consent at any time

To exercise your rights, contact us using the details below.

10. Contact Details

If you have questions about this policy or your data:

Email: [email protected]
Address: 124 City Road, London, EC1V 2NX

11. Complaints

You have the right to complain to the Information Commissioner’s Office (ICO):
https://www.ico.org.uk

We encourage you to contact us first so we can resolve any concerns quickly.

12. Changes to This Policy

We may update this privacy policy periodically.

The latest version will always be available on our website.

13. Third-Party Links

Our website may contain links to external websites.

We are not responsible for their privacy practices and encourage you to review their policies.