Zum Inhalt springen

Legal

Privacy Notice

Last updated: 31 October 2025

This Privacy Notice explains how Privacy Core Services Ltd (“we”, “us”, “our”) collects and processes personal data when you visit our website privacycoreservices.com, contact us, or engage our services. We act as a data controller for website and marketing activities, and as a dataprocessor when we provide client services subject to written instructions.

Who we are

Privacy Core Services Ltd
Company No: C 95774
Registered office: 124, 21st September Avenue, NAXXAR NXR 1015, MALTA

Contact (privacy): info@privacycoreservices.com

Scope & legal bases

We process personal data in compliance with the EU GDPR and, where applicable, the UK GDPR and Data Protection Act 2018. Our lawful bases include contract, legitimate interests, consent (e.g., for analytics cookies), and legal obligation.

What we collect

  • Contact data (name, email, company, phone) when you enquire, book a meeting, or download resources.
  • Service data (details you share so we can scope or deliver services; may include system/vendor/processing information).
  • Technical data (IP, device, pages visited) for security and performance; limited analytics as described in our Cookie Policy.
  • Communications (emails, messages, meeting notes) to respond and maintain records.

How we use your data

  • Respond to enquiries and provide proposals (contract, legitimate interests).
  • Deliver and manage client engagements (contract).
  • Secure and improve our website and services (legitimate interests).
  • Comply with legal and regulatory obligations (e.g., tax, corporate, anti-money-laundering where applicable).

Sharing & transfers

We may share personal data with selected providers who help run our business (e.g., hosting, email, CRM) under contracts and appropriate data protection terms. International transfers outside the EEA/UK use recognised safeguards (e.g., EU Standard Contractual Clauses / UK IDTA or Addendum) where required.

Retention

We retain personal data only for as long as necessary for the purposes above. Typical periods are:

  • Enquiry and correspondence records: up to 24 months from last interaction.
  • Client/service records: contract term + 6 years (or longer if legally required).
  • Technical logs: 90–365 days depending on purpose and system.

Your rights

Subject to conditions/exemptions, you may have the right to:

  • Access, rectify, or erase your personal data
  • Restrict or object to processing
  • Data portability
  • Withdraw consent (where we rely on consent)
  • Lodge a complaint with a supervisory authority. In Malta, this is the IDPC. In the UK, the ICO.

To exercise rights, contact info@privacycoreservices.com. We may need to verify your identity.

Cookies & analytics

We use necessary cookies to make the site work and (if you consent) limited analytics cookies to help us improve the site. See our Cookie Policy for details and controls.

Security

We implement administrative, technical, and organisational measures aligned with industry best practices to protect personal data against unauthorised access, alteration, and loss.

Changes

We may update this notice from time to time. Material changes will be highlighted on this page. The latest version applies.

How to contact us

Email: info@privacycoreservices.com
Postal: Privacy Core Services Ltd, 124, 21st September Avenue, NAXXAR NXR 1015, MALTA