Privacy Policy
1. Who We Are
1.1 For the purposes of the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, the Data Controller is:
Company: Tendra Technical Services Limited
Company No.: 16711832
Address: Suite 1A, 1st Floor, Grove Chambers, 39-51 Grove Street, Wilmslow, Cheshire, SK9 1DT
Email: enquiries@tendra.com
Website: www.tendra.com
1.2 If you have any questions about this Privacy Policy or how we handle your personal data, please contact us at the address or email above.
1.3 We are registered with the Information Commissioner’s Office (ICO). Our registration number is ZC121684.
2. What Personal Data We Collect
2.1 When you use the contact / enquiry form on our Website, we collect the following personal data:
• First name and last name;
• Email address;
• Subject of your enquiry;
• The content of your message.
2.2 We also collect certain technical data automatically when you visit our Website, including your IP address, browser type and version, operating system, time zone setting, browser plug-in types and versions, and pages you view (see also our Cookie Policy).
2.3 We do not knowingly collect personal data from individuals under the age of 18. Our Website is intended for business and professional use only.
3. How We Collect Personal Data
3.1 We collect personal data directly from you when you:
• Submit an enquiry through the contact form on our Website;
• Contact us by email or telephone.
3.2 We collect technical data automatically through cookies and similar technologies when you visit our Website. Please see our Cookie Policy for full details.
4. Why We Use Your Personal Data — Lawful Basis
4.1 We will only use your personal data when the law allows us to. Under the UK GDPR, we rely on the following lawful bases:
Purpose | Data Used | Lawful Basis |
|---|---|---|
Responding to your enquiry | Name, email, enquiry content | Legitimate interests (Article 6(1)(f)) - responding to business enquiries |
Improving the Website | Technical / usage data | Legitimate interests (Article 6(1)(f)) - running and improving our Website |
Compliance with legal obligations | Any relevant data | Legal obligation (Article 6(1)(c)) |
4.2 We will not send you marketing communications on the basis of the enquiry form submission. If we wish to contact you for marketing purposes in future, we will seek your consent separately.
5. How We Share Your Personal Data
5.1 We do not sell, rent, or trade your personal data to third parties.
5.2 We may share your personal data with:
• Our group companies (The James Mercer Group, Fletchers Engineering, Coat Facilities Group) where your enquiry is relevant to their services;
• Our Website platform provider, Wix.com Ltd, which hosts the Website and processes form submissions on our behalf as a data processor;
• Our IT and communications service providers, strictly for the purposes of operating our systems;
• Professional advisers including lawyers and accountants, where necessary;
• Regulatory bodies, law enforcement authorities, or courts, where we are required to do so by law.
5.3 We require all third parties who process personal data on our behalf to respect the security of your personal data and to treat it in accordance with applicable data protection law.
6. International Transfers
6.1 Our Website is hosted by Wix.com Ltd. Wix may transfer and store data on servers located outside the United Kingdom. Where such transfers occur, Wix relies on appropriate transfer mechanisms including the UK Addendum to the EU Standard Contractual Clauses or adequacy decisions.
6.2 We will only permit transfers of your personal data to countries that have been deemed to provide an adequate level of protection by the UK Government, or where appropriate safeguards have been put in place.
7. Data Retention
7.1 We will retain personal data submitted through our contact form for no longer than 12 months from the date of your enquiry, unless:
• A commercial relationship arises from the enquiry, in which case our commercial data retention policy will apply;
• We are required to retain it for longer by law or regulation.
7.2 Technical data collected by cookies is retained in accordance with our Cookie Policy.
8. Your Rights
8.1 Under the UK GDPR, you have the following rights in relation to your personal data:
Right | What this means |
|---|---|
Right to withdraw consent | You may request a copy of the personal data we hold about you (a Subject Access Request). |
Right to object | You may ask us to correct inaccurate or incomplete personal data. |
Right to data portability | You may ask us to delete your personal data where there is no good reason for us to continue holding it. |
Right to restrict processing | You may ask us to suspend processing of your personal data in certain circumstances. |
Right to erasure | Where we process your personal data on the basis of consent or contract, you may ask us to provide it to you or a third party in a machine-readable format. |
Right to rectification | You may object to processing based on legitimate interests. We must then demonstrate compelling legitimate grounds to continue. |
Right of access | Where we rely on consent, you may withdraw it at any time without affecting prior processing. |
8.2 To exercise any of these rights, please contact us in writing at the address or email given in section 1.
8.3 You will not usually have to pay a fee to exercise your rights. We will respond within one month of receipt of your request, though we may extend this by a further two months where the request is complex or numerous.
8.4 If you are unhappy with how we have handled your personal data, you have the right to complain to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection:
• Website: www.ico.org.uk
• Helpline: 0303 123 1113
• Address: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, SK9 5AF
We would, however, appreciate the opportunity to deal with your concerns before you contact the ICO, so please contact us first.
9. Security
9.1 We have put in place appropriate technical and organisational measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorised way, altered, or disclosed.
9.2 Our Website is hosted on the Wix platform, which implements industry-standard security measures including SSL/TLS encryption.
9.3 We will notify you and the ICO of any personal data breach that is likely to result in a risk to your rights and freedoms, as required by the UK GDPR.
10. Changes to This Policy
10.1 We may update this Privacy Policy from time to time. We will post any changes on this page and, where the changes are material, we will notify you by email if we hold your contact details.
10.2 The date at the top of this policy indicates when it was last reviewed.