Privacy Policy

Last updated: February 2026

About Us

iPurvey is a trading name of The iDigital Purveyor Company Limited. iPurvey will be a data controller of any personal data it holds about you.

A data controller is an individual or organisation which decides how your personal data will be used. The data controller is referred to as “we”, “us” and “our” in this privacy policy.

If you have any questions or require further information about this Privacy Policy, please contact us by post at:

The iDigital Purveyor Company Limited 27 Old Gloucester Street London England WC1N 3AX
Email: info@ipurvey.com

About you

This privacy policy applies to the following types of individual:

A person whose personal data we process as part of subscribing to or using our service.

Within this privacy policy, each such person is referred to as “you” and “your”.

Why a privacy policy is required

Applicable Data Protection laws (including the General Data Protection Regulation 2016 and the Data Protection Act 2018), impose obligations on us as the data controller, when we process (collect or create, hold, amend, share, use or erase) your personal data, and give you the data subject, rights over your personal data.

We are obliged to process your personal data fairly, lawfully and in a transparent manner. This privacy policy meets that obligation by explaining what personal data we will hold about you, how we will process your personal data, why we process your personal data and the lawful grounds on which we are processing it. It also seeks to set out some of your legal rights.

We may change this privacy policy in the future. If we make any substantial changes and those changes materially affect you, we will inform you of any changes before they take effect.

Your legal rights

In addition to your right to be informed which this Privacy Policy addresses, you have several rights over your personal data to protect it and control how we use it. These include your rights to:

  • Request access to the personal data we hold for you, this is called the right to access
  • Request our use of the personal data we hold for you is limited, this is called right to restriction
  • Request we transfer personal data we hold for you to another person, this is called the right to portability
  • Request we correct incomplete or inaccurate personal data we hold for you, this is called right to rectification
  • Request we stop using your data, this is called the right to object
  • Request we delete personal data we hold for you, this is called the right to erasure

The extent of these rights is limited by law and we may not act on part or all your request(s) where the right(s) are not applicable. If we do not act on your request, we will explain our reasons for not doing so when responding to your request.

If you require further information about how we handle your personal data in addition to the information included in this policy, or wish to make a request to exercise any of your rights under applicable Data Protection laws, please contact our Data Protection Officer at the address listed in the contact us section above.

Legal grounds on which we will process your data

We will only process your personal data if we have a reason to do so and in line with regulation. We rely on the following legal reasons when processing your personal data

  • You have consented to us processing your personal data for one or more of the specified purposes
  • The purpose is necessary to enable us to enter a contract with you
  • The purpose is necessary to comply with our legal and regulatory obligations
  • The purpose is necessary for our legitimate interest *

Legitimate interest for processing your personal data will include to -

  • Comply with our legal and contractual obligati
  • Ensure best codes of practice
  • Exercise our legal rights
  • Meet your expectations of us
  • Carry out analysis, modelling, and forecasting
  • Manage risks to you and our business
  • Keep our records complete and accurate
  • Contact customers who signed up to our service about other products and services we offer
  • Ensure our business is profitable and has adequate levels of capital and facilitate the growth of our business

Our Privacy Principles

Security First

We implement industry‑leading security measures to protect your data.

Transparency

We’re clear about what data we collect and how we use it.

Your Control

You can view, correct, or delete your personal information at any time.

Data Minimization

We only collect the data that’s necessary for our services.

3. How We Share Your Information

We may share your information in the following circumstances:

Service Providers:
Trusted third‑party vendors who assist in providing our services.

Business Partners:
Partners who help depver our integrated solutions (with your consent).

Legal Compliance:
When required by law or to protect our rights and safety.

Business Transfers:
In connection with a merger, acquisition, or sale of assets.

We do not sell your personal information to third parties.

4. Data Security

We implement appropriate technical and organizational measures to protect your information:

Encryption

Data encrypted in transit and at rest using industry‑standard protocols.

Access Controls

Strict authentication and authorization mechanisms.

Monitoring

24/7 security monitoring and incident response.

Compliance

Certified by Cyber Essentials and secured with Positive SSL

5. Your Privacy Rights

Depending on your location, you may have the following rights:

1.
Access and receive a copy of your personal information
2.
Correct or update inaccurate information
3.
Request deletion of your information (subject to legal obligations)
4.
Object to or restrict certain data‑processing activities
5.
Data portability (receive your data in a structured format)
6.
Withdraw consent where processing is based on consent
7.
Lodge a complaint with a supervisory authority

6. Data Retention

We retain your information for as long as necessary to provide our services, comply with legal obligations, resolve disputes, and enforce our agreements. When information is no longer needed, we securely delete or anonymize it in accordance with our data retention policies.

7. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place, such as standard contractual clauses, to protect your information in accordance with this Privacy Policy.

8. Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

9. Updates to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. We encourage you to review this Privacy Policy periodically for any changes.

Contact Us About Privacy

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

Email: info@ipurvey.com

Address: iPurvey Data Protection Officer,
The iDigital Purveyor Company Limited 27 Old Gloucester Street London England WC1N 3AX