Privacy Policy

Hayward & Partners Training Ltd
Last updated: January 2026

1. Introduction

Hayward & Partners Training Ltd (“Hayward & Partners”, “H&P”, “we”, “us”, or “our”) is committed to protecting your personal data and respecting your privacy.

This Privacy Policy explains:

  • What personal data we collect

  • How and why we use it

  • How we store and protect it

  • Your legal rights under UK data protection law

This policy applies to:

  • Visitors to our website

  • Clients and prospective clients

  • Training delegates

  • Business contacts

Our services are not intended for children, and we do not knowingly collect data relating to children.

2. Who We Are

Company name: Hayward & Partners Training Ltd
Registered in: United Kingdom
Role under data protection law:

  • Data Controller in some circumstances

  • Data Processor in others (explained below)

Data Protection Contact

If you have any questions about this policy or how we handle your data, you can contact us at:

Email: dpo@haywardpartners.co.uk

You also have the right to raise a concern with the Information Commissioner’s Office (ICO) at www.ico.org.uk, although we would appreciate the opportunity to resolve any concerns first.

3. Our Role: Data Controller vs Data Processor

When we act as a Data Controller

We are the Data Controller when we decide how and why your personal data is used, for example:

  • Managing our website

  • Marketing our services

  • Managing client relationships

  • Contracting directly with individuals or businesses

When we act as a Data Processor

We act as a Data Processor when:

  • We deliver training or services on behalf of a client

  • That client determines the purpose and use of the data

  • We process personal data only under their instructions

In these cases, the client is responsible for ensuring lawful data collection, and we process data strictly for service delivery.

4. Personal Data We Collect

Depending on how you interact with us, we may collect:

Identity Data

  • Name

  • Job title

  • Company name

Contact Data

  • Email address

  • Telephone number

  • Business address

Transaction & Contract Data

  • Services purchased

  • Payment and invoicing details

Technical Data

  • IP address

  • Browser type and device information

  • Pages visited and interactions on our website

Marketing & Communication Data

  • Preferences for receiving marketing

  • Records of communications with us

We do not intentionally collect special category data (such as health, ethnicity, religion, or criminal records).

5. How We Collect Your Data

We collect personal data through:

  • Forms on our website

  • Email, phone, or direct communication

  • Business cards or networking interactions

  • Contractual arrangements with clients

  • Website analytics and cookies

6. How We Use Your Personal Data

We only use your data where the law allows us to. Common purposes include:

  • Providing training and consultancy services

  • Responding to enquiries

  • Managing contracts and invoicing

  • Improving our website and services

  • Sending relevant business communications

  • Meeting legal and regulatory obligations

Lawful Bases We Rely On

  • Performance of a contract

  • Legitimate business interests

  • Legal obligations

  • Consent (where required for marketing)

You may withdraw marketing consent at any time.

7. Marketing Communications

We may send you marketing communications if:

  • You have requested information from us, or

  • You have an existing business relationship with us

You can opt out at any time by:

  • Using the unsubscribe link in emails, or

  • Contacting us directly

We do not sell your data to third parties.

8. Cookies & Website Analytics

Our website uses cookies and similar technologies to:

  • Ensure proper website functionality

  • Understand how visitors use our site

  • Improve performance and user experience

You can control cookies through your browser settings.
A separate Cookie Policy may apply.

9. Sharing Your Data

We may share personal data with trusted third parties such as:

  • Website hosting providers (e.g. Squarespace)

  • IT and software providers

  • Professional advisers (accountants, insurers, legal advisers)

  • Regulators or authorities where legally required

All third parties are required to:

  • Keep data secure

  • Use it only for agreed purposes

  • Comply with data protection law

10. International Transfers

Some of our service providers may store data outside the UK.
Where this occurs, we ensure appropriate safeguards are in place to protect your data in line with UK GDPR.

11. Data Security

We have appropriate technical and organisational measures in place to protect personal data against:

  • Loss

  • Misuse

  • Unauthorised access

  • Disclosure or alteration

Access to personal data is limited to those who need it for legitimate business purposes.

12. Data Retention

We only retain personal data for as long as necessary, including:

  • Contractual requirements

  • Legal, tax, or regulatory obligations

Typically:

  • Client and financial records are kept for 6 years

  • Marketing data is retained until you opt out

13. Your Legal Rights

Under UK data protection law, you have the right to:

  • Access your personal data

  • Correct inaccurate data

  • Request erasure of your data

  • Object to processing

  • Restrict processing

  • Request data portability

  • Withdraw consent

To exercise any of these rights, please contact us.

14. Changes to This Policy

We may update this Privacy Policy from time to time to reflect:

  • Legal changes

  • Business changes

  • Website updates

The latest version will always be published on our website.