Privacy Policy

Last updated: 16/10/2025

CWG Group (“we”, “our”, “us”) is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store, share, and protect your personal data when you visit our website or interact with our services.

We act as a “data controller” for the purposes of the UK General Data Protection Regulation (UK GDPR), the EU GDPR (where applicable), and the Data Protection Act 2018.

  1. Information we may collect

We may collect and process the following categories of personal data:

  • Identity and contact data (e.g., name, job title, company, address, email, phone number)
  • Demographic data (e.g., postcode, preferences, interests)
  • Transaction data (e.g., records of services purchased or enquired about)
  • Technical data (e.g., IP address, browser type/version, device, operating system, cookies, log data)
  • Marketing and communications data (preferences in receiving marketing from us or third parties)
  • Other information: that you voluntarily provide in surveys, enquiries, or when using our services
  1. How we use personal data

We use your information for the following purposes:

  • To provide and improve our products and services
  • To manage our relationship with you (e.g., respond to enquiries, process orders)
  • To send relevant marketing communications, where you have opted in
  • To conduct market research (with your consent)
  • To maintain website security and functionality
  • To comply with our legal obligation
  1. Legal bases for processing

Under the GDPR, we must have a lawful basis for processing your personal data. We rely on:

Contract: when processing is necessary to perform a contract with you or take steps at your request before entering into one

Consent: when you have given clear consent (e.g., to receive marketing)

Legal obligation: when processing is necessary to comply with the law

Legitimate interests: for business purposes, provided your rights are not overridden (e.g., analytics, improving services)

  1. How we share personal data

We may share your personal data with:

  • Service providers (e.g., IT, hosting, analytics, marketing platforms)
  • Professional advisers (e.g., accountants, insurers, legal advisors)
  • Regulators, law enforcement, or other authorities when required by law
  • We will never sell your personal data.

If we transfer your data outside the UK/EEA, we ensure appropriate safeguards (e.g., Standard Contractual Clauses, adequacy decisions) are in place.

  1. Data retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including legal, accounting, or reporting requirements. Retention periods are determined by the type of data and our statutory obligations.

  1. Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, misuse, or disclosure. These include secure servers, restricted access, encryption, and staff training.

  1. Your rights

Under the GDPR, you have the following rights:

  • Right to access – request a copy of your personal data
  • Right to rectification – request corrections to inaccurate or incomplete data
  • Right to erasure – request deletion of your data (“right to be forgotten”)
  • Right to restrict processing – request that we limit how we use your data
  • Right to object – object to processing based on legitimate interests or direct marketing
  • Right to data portability – request your data in a machine-readable format
  • Right to withdraw consent – where processing is based on consent
  1. Cookies

Our website uses cookies and similar technologies to improve functionality, analyse usage, and personalise content. Please see our [Cookie Policy] for full details and to manage your preferences.

  1. Marketing preferences

You may choose to receive or stop receiving marketing communications at any time by:

  • Clicking the “unsubscribe” link in our emails
  • Updating your preferences in our [Cookie/Consent Settings]
  • Contacting us directly (see details below)
  1. Links to other websites

Our website may contain links to third-party websites. Once you leave our site, we are not responsible for the privacy practices of other websites. We encourage you to read their privacy policies.

  1. Contact us

If you have any questions about this Privacy Policy or how we handle your data, please contact us:

CWG Group
Units 1 & 2 Gateway 1000
Whittle Way, Stevenage
Hertfordshire, SG1 2FP

Email: enquiries@cwggroup.co.uk

Note: This Privacy Policy may be updated from time to time. The latest version will always be available on our website.