Secure Culture
  • Home
  • About Secure Culture
  • Our Services
  • Blog
  • Privacy Policy
  • More
    • Home
    • About Secure Culture
    • Our Services
    • Blog
    • Privacy Policy
Secure Culture
  • Home
  • About Secure Culture
  • Our Services
  • Blog
  • Privacy Policy

Privacy Policy

Privacy Policy - Secure Culture 

Last updated: 25 April 2026


Secure Culture ("we", "our", "us") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, and protect your personal data when you visit our website (www.secure-culture.co.uk), engage our Cybersecurity Health Checks, or utilize our Virtual CISO (vCISO) services.


For the purpose of the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, Secure Culture is the Data Controller.


We may collect and process the following types of personal information:


● Information you provide directly: Name, email address, phone number, company name, and any other details you submit via our contact forms, newsletter sign-ups, or service requests.

● Website usage data: IP address, browser type, device type, pages visited, and actions taken on our site (collected via cookies or analytics tools).

● Communication data: Records of emails, messages, or phone calls exchanged with us.

We use different methods to collect data from and about you, including:

● Direct Interactions: You may give us information by filling in forms on our website or by corresponding with us by post, phone, email, or otherwise. This includes data provided when you enquire about our vCISO services, request a Cybersecurity Health Check, sign up to our newsletter, or otherwise request information from us.

● Automated Technologies: As you interact with our website, we may automatically collect website usage data via cookies, analytics, and similar technologies.

Under UK GDPR, we rely on the following legal bases:

● Consent: e.g., when you sign up for our newsletter.● Contract: To deliver the services you have hired us for.● Legal obligation: To meet applicable legal or tax requirements.

● Legitimate interests: For business improvement, service delivery, and professional communications relevant to your role.

We use your data for the following purposes:

● To provide and improve our cybersecurity health checks and vCISO services.● To respond to enquiries and manage our relationship with you.● To send relevant updates, such as newsletter insights or compliance alerts (where you have opted in).

● To maintain our website security and performance.● To comply with legal and regulatory obligations.

We do not sell or rent your data. We share information only with:

● Third-party service providers: Such as IT hosting, CRM systems (e.g., Marblism), and email marketing tools. These partners are bound by strict confidentiality agreements.

● Regulators & Legal bodies: When required to comply with the law.

All third parties are required to respect the security of your personal data and to treat it in accordance with the law.


If we transfer data outside the UK, we ensures safeguards (like Standard Contractual Clauses) are in place to protect your data.

As a cybersecurity firm, we take security seriously. We use technical and organisational measures (like encryption and access controls) to keep your data safe.


We only keep your personal information for as long as necessary. 


● Client Records: Generally kept for 6 years after the end of our contract for legal and tax purposes.

● Marketing Data: Kept until you unsubscribe or request deletion.

● Enquiry Data: Kept for 12 months if no business relationship is formed.


You have the following rights under UK GDPR:


● Access: Request a copy of the data we hold.

● Correction: Request updates to inaccurate info.

● Deletion: Request we erase your data (where applicable).

● Objection/Restriction: Object to or restrict how we process your data.

● Portability: Request a copy of your data in a portable format.


To exercise these rights, contact us at: privacy@secure-culture.co.uk

You have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK regulator for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO, so please contact us in the first instance.

If you have any questions about this Privacy Policy or our privacy practices, please contact our team:


Secure Culture Team   

Address: East Midlands, UK  

Email: privacy@secure-culture.co.uk:


Connect With Us

  • About Secure Culture
  • Privacy Policy

Secure Culture

East Midlands, UK

help@secure-culture.co.uk

Copyright © 2026 Secure Culture - All Rights Reserved.

Powered by

This website uses cookies.

We use cookies to analyze website traffic and optimize your website experience. By accepting our use of cookies, your data will be aggregated with all other user data.

DeclineAccept