Privacy Policy

Introduction

FutureProof Frameworks Ltd ("we", "us", "our") takes the privacy and protection of personal data seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information, and your rights under data protection law, including the UK General Data Protection Regulation (UK GDPR).

We may update this Privacy Policy periodically. Any significant changes will be clearly communicated on our website.

About Us

We are the data controller for the personal information we collect, unless otherwise stated. In some cases, we may act as a data processor if we are processing data on behalf of other organisations. Our company details are:

Company name: FutureProof Frameworks Ltd
ICO registration number: ZB916074
Contact email: sarah@futureproof-frameworks.com

What Personal Data We Collect

We may collect the following categories of personal information:

• Business Contacts

· Name, job title, professional contact details

· Employer details

· Correspondence and interactions

· Billing and payment information

• Clients and Client Representatives

· Name, role, contact details

· Information about job responsibilities or participation in audits

· Information contained within audit or certification documentation

• Training Participants

· Name, job title, employer

· Contact details

· Training performance and attendance

How We Collect Personal Information

We collect personal data in the following ways:

• Directly from you – via our website forms, email correspondence, or training registration.
• From your employer or organisation – in the context of delivering certification or audit services.
• Automatically – minimal data may be collected via website usage; we do not use cookies or tracking tools at this time.

Why We Use Your Personal Data

We process personal data for the following purposes and legal bases:

Purpose                                                                       Legal Basis

Managing business relationships                                 Legitimate Interest

Delivering certification and audit services                    Legal obligation; legitimate interests

Providing training courses.                                           Performance of a contract

Processing dietary or accessibility information            Consent

Maintaining records for legal, regulatory, or                 Legal obligation

accreditation purposes

How Long We Keep Your Information

We retain personal information only as long as necessary for the purposes for which it was collected, including to comply with legal, contractual, or regulatory requirements.

• Contract-related data: retained for up to 6 years after the end of the contract
• Audit and certification data: as required by accreditation bodies or legal obligations
• Special category data (e.g., dietary requirements): deleted immediately after the event or course

Who We Share Your Data With

We may share your data with the following, where necessary:

• Service providers and suppliers – including IT providers, payment processors, and consultants, under strict contractual terms
• Accreditation or regulatory bodies – where required to fulfil certification or audit obligations
• Future affiliates, agents, or overseas partners– if part of international audit or certification operations
• Government bodies – such as HMRC or other regulatory authorities, where legally required

All third parties are required to handle your data in accordance with data protection law.

International Transfers

We do not routinely transfer your personal data outside the UK or EEA. If this becomes necessary—for example, for international audits—we will ensure appropriate safeguards are in place, such as:

• An adequacy decision from the UK government
• Standard contractual clauses (SCCs)
• Binding corporate rules (if applicable)

Your Data Protection Rights

You have the following rights in relation to your personal data:

• Right of access – to request a copy of your data and how we use it
• Right to rectification – to correct inaccurate or incomplete data
• Right to erasure – to request deletion of your data in certain circumstances
• Right to restrict processing – to pause processing while a complaint is resolved
• Right to object – to processing based on legitimate interests
• Right to data portability – to obtain and reuse your data across services
• Right to withdraw consent – where we rely on your consent to process data

To exercise any of these rights, please contact us at:
📧 Email: sarah@futureproof-frameworks.com

We may need to verify your identity before responding. We will respond within one month of receiving your request, free of charge.

Complaints

If you are concerned about how we have used your personal data, please contact us in the first instance at:
📧 Email: sarah@futureproof-frameworks.com

If you remain dissatisfied, you have the right to lodge a complaint with the UK’s Information Commissioner’s Office (ICO):

ICO contact details:
Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF
📞 Helpline: 0303 123 1113
🌐 Website: www.ico.org.uk/make-a-complaint

Cookies and Online Activities

We do not currently use cookies or similar tracking technologies on our website. Should this change, we will update this policy and provide an appropriate cookie consent mechanism.

Contact Us

If you have any questions about this Privacy Policy or how we handle your personal data, you can contact us at:

📧 Email: sarah@futureproof-frameworks.com
📍 Registered address: Censeo House, 6 St. Peter’s Street, St. Albans, AL1 3LF

Version 1 - 29/06/2025