Name: Bluespires Solutions Ltd
Address: Unit 5, Swinford Farm, Eynsham, Oxford, BS1 1AA, GB
Telephone: 01865 959160

PRIVACY POLICY

Last updated: 27/10/2025 (Version 2.3)

Who are Bluespires?

Bluespires Solutions Ltd (referred to as “the Company”, “we”, “us” or “our”) is an independent provider of business-to-business IT support and consultancy services.

We are committed to protecting your privacy and handling your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. This policy explains how we collect, use, store, and protect your personal data, and outlines your rights under data protection law.

This policy may be updated from time to time. Please check our website at www.bluespires.co.uk periodically to ensure you are happy with any changes.

1. Information We Collect

Information you provide to us

When you contact us, make an enquiry, or engage us to provide IT support or consultancy services, you may provide personal information such as:

Your name and contact details (email address, phone number, job title, company name).
Information relevant to the services we provide.

This information is used to manage our relationship with you and deliver the services you request.

Information obtained from suppliers or third parties

We may receive contact information about you from suppliers, partners, or clients — for example, where an existing client refers us to their customers or contacts. In such cases, we will only use your details to contact you about our services.

If you prefer not to be contacted, please use the “unsubscribe” option included in any email you receive from us.

2. How We Use Your Information

We use your personal data to:

Provide and manage our IT and consultancy services.
Respond to your enquiries and maintain business relationships.
Send information about our services where you have opted in to receive marketing.
Manage internal administration, billing, and service delivery.
Comply with legal and regulatory obligations.

We only collect the information we need and retain it for no longer than necessary.

3. Lawful Bases for Processing

We process personal data under the following lawful bases:

Contract: where processing is necessary to deliver our services to you.
Consent: where you have opted in to receive marketing or communications.
Legitimate interests: to manage our business relationships and operations efficiently.
Legal obligation: where processing is required to comply with applicable laws.

You may withdraw your consent at any time by using the unsubscribe option in our communications or by contacting us directly.

4. Where We Store Your Information

All information you provide to us is stored securely on our servers and trusted cloud platforms located within the United Kingdom and the European Economic Area (EEA).

We take reasonable and appropriate steps to protect your data against loss, misuse, or unauthorised access.

5. Data Retention

We retain your personal information only for as long as necessary to fulfil the purpose for which it was collected or as required by law.

Retention periods may vary depending on the type of information and our legal obligations. Once no longer required, data is securely deleted or anonymised.

6. Your Rights

Under the UK GDPR, you have the following rights regarding your personal data:

Access: to request a copy of the data we hold about you.
Rectification: to correct inaccurate or incomplete information.
Erasure (“Right to be Forgotten”): to request deletion of your data where lawful.
Restriction: to limit how your data is used.
Data portability: to receive your data in a structured, machine-readable format.
Objection: to certain types of processing, such as direct marketing.

We may ask you to confirm your identity before processing your request. We will respond within 30 days, unless exceptional circumstances apply.

7. Withdrawing Consent

If we rely on your consent to process personal data, you can withdraw it at any time by contacting us or using the unsubscribe link in our marketing emails.

Once withdrawn, we will stop processing your data for that purpose unless we have another lawful reason to continue.

8. Security Measures

While no online service can guarantee complete security, we use appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, misuse, or disclosure.

These include secure servers, restricted access controls, and data encryption where applicable.

If we process special categories of personal data, additional security measures will be applied as appropriate.

9. Use of Cookies

Our website uses cookies to enhance your browsing experience. Cookies are small text files stored on your device to help the website function properly and remember your preferences.

We use only necessary and functional cookies to enable core site features. You can manage or delete cookies through your browser settings at any time.

10. Links to Other Websites

Our website may contain links to third-party websites. This Privacy Policy does not apply to those websites, and we are not responsible for their privacy practices.

We encourage you to review the privacy statements of any other sites you visit.

11. Marketing

You will only receive direct marketing communications from us if you have opted in or otherwise provided your consent. This may include:

Becoming a client or making an enquiry.
Attending an event hosted or co-hosted by the Company.
Providing us with your contact details at a business event.
Registering for information or downloads via our website.

You can withdraw your consent at any time by clicking unsubscribe in any marketing email.

12. Recruitment and Employment

If you apply for a role with us, we will collect information relevant to your application and recruitment process.

Unsuccessful applications will be retained for six months after the recruitment process ends.
Successful applications will be retained for the duration of employment plus six years after leaving the company.

We may contact previous or current employers for references as part of this process.

13. Complaints

If you have concerns about how we handle your personal data, please contact us using the details below.

You also have the right to raise a complaint with the Information Commissioner’s Office (ICO), the UK data protection regulator.
For more information, visit: www.ico.org.uk

Contact us

Our data protection lead is Richard Fuller. He acts as head of Privacy and Data protection queries. Please direct any queries about this policy or the way we process your personal information to our data protection lead using the contact details below.

If you wish to write to us please write to the Data Protection Lead at BLUESPIRES, Unit 5, Swinford Farm, Swinford, Oxford, OX29 4BL. Tel 01865 959160.