Privacy Policy

Last Updated: July 2025

Redcorn Ltd is committed to protecting your personal data. This notice explains what personal information we collect, how we use it, and your rights.

1. Who We Are

Redcorn Ltd
Units 3/4 Kerry Avenue
Aveley, South Ockendon
Essex. RM15 4YE
Company Registration No: 02768567

We are the data controller for the information we collect and use. You can contact us about this notice at:
Contact us
020 8365 9591

2. What Information We Collect and Why

We only collect the minimum personal data required to deliver our services. This includes:

Data Type Purpose
Contact details (e.g. name, email, phone) To respond to enquiries, requests or orders
Website usage (via cookies) To improve site functionality and user experience (see Section 6)
Business account data To manage commercial relationships and legal obligations
CCTV footage (if visiting site) For site safety, crime prevention, and operational monitoring

We do not process special category data or make decisions using solely automated means.

3. Lawful Bases for Processing

We process personal data under the following lawful bases:

  • Contract – where data is necessary to provide a product or service
  • Legal obligation – for example, to meet HMRC or regulatory requirements
  • Legitimate interests – including:
    • Preventing fraud or unauthorised access
    • Ensuring network and site security
    • Communicating with clients or suppliers
  • Consent – for non-essential cookies and marketing, where required

Under the DUAA 2025, some of our legitimate interests are now pre-approved under recognised purposes (e.g. crime prevention, business continuity).

4. How We Store and Secure Your Data

We keep your data safe by using physical, technical and organisational security measures. Data is stored in secure systems and retained only as long as necessary for the purpose it was collected.

Typical retention periods:

  • Customer correspondence: 6 years (standard business records)
  • CCTV footage: 30 days (unless required for investigation)
  • Cookie consent records: up to 13 months

5. Your Rights

You have the right to:

  • Access your personal data (via a Subject Access Request)
  • Rectify inaccurate or incomplete data
  • Erase data where there is no legal basis to keep it
  • Object to processing based on legitimate interests
  • Restrict processing in limited circumstances
  • Withdraw consent where consent was used as the lawful basis

You also have the right to complain to the Information Commissioner’s Office (ICO) at ico.org.uk.

New under DUAA:
We may pause the DSAR response timeline if we require clarification from you (a “stop-the-clock” rule).

6. Cookies and Website Tracking

We use cookies to support essential website functions and improve your experience. Some cookies are necessary and do not require consent. Others (like Google Analytics or Ads cookies) are optional and will only be used if you consent.

To learn more, please read our full Cookie Policy.

7. Third Parties and Sharing

We do not sell your personal data. We only share it with:

  • Service providers (e.g. web hosting, analytics platforms) under contract
  • Regulators, law enforcement, or insurers where required by law
  • Business partners for legitimate business needs (e.g. vehicle collection or delivery coordination)

All partners must comply with data protection regulations and use your data only for specified purposes.

8. International Transfers

We do not transfer personal data outside the EU.

9. Changes to This Notice

We may update this notice to reflect legal changes (such as DUAA 2025) or operational updates. Check back periodically for the latest version.

Contact Us

If you have any questions about this notice or your data rights:
Data Protection Officer
Redcorn Ltd
Contact us
020 8365 9591