Privacy


Privacy Statement

Last Updated: 13 April 2026  

1. Introduction

White Puffin Consulting Limited (“we”, “us”, “our”) is committed to protecting your privacy.
This Privacy Statement explains how we collect, use, store, and protect your personal data when you visit our website or interact with us.
We comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Who We Are

White Puffin Consulting Limited
Registered in England and Wales
Company Number: 16165565
Registered Address: 71-75 Shelton Street London WC2H 9JQ
Email: tracy@whitepuffinconsulting.co.uk

We are the data controller for the personal data we collect.

3. Information We Collect

Personal Information You Provide

We may collect information such as your name, email address, phone number, postal address, and payment details when you contact us, make an enquiry, or purchase services.

Automatically Collected Data

When you visit our website, we may collect:

  • IP address
  • Browser type and device information
  • Pages visited and time spent on the site
  • General usage data

This is collected through essential website functions and, if you consent, through analytics cookies.

4. How We Use Your Information

We use your personal data to:

  • Provide and manage our services
  • Respond to enquiries
  • Process payments and transactions
  • Send updates or marketing communications (only if you have opted in)
  • Improve our website and services
  • Meet legal or regulatory obligations

5. Lawful Bases for Processing

We process your data under the following lawful bases:

  • Contract – to provide services you have requested
  • Consent – for marketing communications and non‑essential cookies
  • Legitimate Interests – to improve our website and understand visitor behaviour
  • Legal Obligation – for tax, accounting, and regulatory requirements

6. Data Sharing

We do not sell your personal data.
We may share your information with:

  • Service providers such as website hosting, email services, analytics tools, and payment processors
  • Professional advisers (e.g., accountants)
  • Legal authorities if required by law

All third‑party providers are required to protect your data and use it only for the services they provide to us.

7. International Transfers

Some of our service providers may store or process data outside the UK.
Where this occurs, we ensure appropriate safeguards are in place, such as UK GDPR‑approved standard contractual clauses.

8. Data Retention

We keep your personal data only for as long as necessary for the purposes described above, including legal, accounting, or reporting requirements.

9. Your Rights

You have the right to:

  • Access your personal data
  • Correct inaccurate information
  • Request deletion of your data
  • Restrict or object to processing
  • Withdraw consent at any time
  • Request data portability

To exercise any of these rights, contact us at tracy@whitepuffinconsulting.co.uk.
We may need to verify your identity before responding.
We aim to respond within one month.

10. Cookies

We use cookies to operate our website and, with your consent, to understand how visitors use it.
You can control cookies through your browser settings.
For more information, please see our Cookie Policy.

11. Changes to This Privacy Statement

We may update this Privacy Statement from time to time.
Any significant changes will be posted on this page with an updated “Last Updated” date.