Book Your Free Discovery Call

Webarrow Ltd – GDPR Compliance

HomeWebarrow Ltd – GDPR Compliance

Last updated: 31/01/2026

This page outlines how Webarrow Ltd – 09629399 – Registered England & Wales complies with the UK Data Protection Act 2018 and General Data Protection Regulation (GDPR).

It explains your rights, our obligations, and the measures we take to protect your data.

1. Data Controller

Webarrow Ltd is the data controller for all personal data collected through our services.

Contact: sales@webarrow.co.uk

2. Legal Basis for Processing

We process personal data on the following grounds:

  • Contractual necessity: To provide services you request.
  • Consent: For marketing or newsletters.
  • Legal obligation: To comply with statutory requirements.
  • Legitimate interests: Protecting our business and preventing fraud.

3. Your GDPR Rights

You have the right to:

  1. Access: Request a copy of personal data we hold.
  2. Correction: Rectify inaccurate or incomplete data.
  3. Erasure (“Right to be Forgotten”): Delete personal data when no longer needed.
  4. Restriction: Limit processing in certain circumstances.
  5. Data Portability: Receive your data in a machine-readable format.
  6. Object: Object to processing for marketing or legitimate interests.
  7. Withdraw Consent: At any time where processing relies on consent.

Requests can be sent to sales@webarrow.co.uk. Proof of identity may be required.

4. Data Security Measures

We protect your data using:

  • Secure servers and encryption (in transit and at rest).
  • Access controls and role-based permissions.
  • Regular monitoring for security breaches.

In the unlikely event of a data breach, we follow UK GDPR notification rules.

5. Data Sharing & Third Parties

We may share your data with:

  • Service providers (hosting, payment, marketing, cloud storage).
  • Regulatory authorities as required by law.

All third parties are required to protect personal data in line with GDPR.

6. Data Retention Policy

We retain personal data only as long as necessary:

  • For contractual purposes (projects, hosting, invoices).
  • To comply with legal or regulatory obligations.

After retention periods, data is securely deleted or anonymised.

7. International Transfers

If data is transferred outside the UK or EU:

  • Appropriate safeguards (e.g., Standard Contractual Clauses) are in place.
  • Your data protection rights remain protected.

8. Complaints

If you have concerns about how your data is processed, you can contact:

Legal

Terms & Conditions
Privacy Notice
GDPR Compliance

Quick Links

About Us
Our Services
Areas We Serve
© 2026 — WEBARROW | All Rights Reserved.
Back to top