Privacy Policy

Last Updated: [Insert Date]

This Privacy Policy explains how VentureDocs, a trading name of Marshall Sterling Investment Management Limited ("Company", "we", "us", "our"), collects, uses, and protects personal data when you use VentureDocs.co.uk ("Website") or engage with our services.

Table of Contents

• 1. Data Controller
• 2. Personal Data We Collect
• 3. How We Use Personal Data
• 4. Lawful Basis for Processing
• 5. Data Sharing and Third Parties
• 6. International Data Transfers
• 7. Data Security
• 8. Data Retention
• 9. Your Rights
• 10. Cookies and Tracking Technologies
• 11. Contact

1. Data Controller

Marshall Sterling Investment Management Limited is the data controller for the purposes of the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

If you engage with VentureDocs services, we control how your personal data is collected, used, and protected.

2. Personal Data We Collect

We may collect and process the following categories of personal data:

• Identity and contact details including name, email address, telephone number, company name and job title
• Information submitted through contact forms, enquiry forms or service onboarding processes
• Information provided when purchasing or requesting services
• Communications exchanged with us including email, messaging platforms or recorded calls where applicable
• Technical and usage data including IP address, browser type, device data and website interaction data
• Billing and transactional information where services are purchased

We do not intentionally collect special category (sensitive) personal data. Clients should avoid submitting such information unless specifically requested.

3. How We Use Personal Data

We use personal data for legitimate business purposes including:

• Responding to enquiries and client communications
• Providing corporate finance documentation and preparation services
• Managing client engagements and service delivery
• Processing payments and maintaining financial records
• Operating, maintaining, and improving our Website and services
• Preventing fraud or misuse of our services
• Complying with legal, regulatory, or professional obligations

4. Lawful Basis for Processing

We process personal data on one or more of the following lawful bases:

• Performance of a contract or taking steps at your request before entering into a contract
• Legitimate interests in operating, improving and protecting our business and services
• Compliance with legal or regulatory obligations
• Consent where required, including for certain cookie or marketing activities

5. Data Sharing and Third Parties

We do not sell personal data.

We may share personal data with carefully selected third parties including:

• Website hosting, IT infrastructure and software providers
• Payment processing providers
• Professional advisers including legal, accounting or compliance consultants
• Regulatory authorities, law enforcement, or courts where legally required

All service providers are required to process personal data securely and in accordance with applicable data protection laws.

6. International Data Transfers

Where personal data is transferred outside the United Kingdom, we ensure appropriate safeguards are in place. These may include:

• Transfers to countries recognised as providing adequate data protection standards
• Use of approved Standard Contractual Clauses or equivalent safeguards
• Transfers necessary for contract performance

7. Data Security

We implement appropriate technical and organisational measures designed to protect personal data against unauthorised access, loss, misuse or alteration.

Access to personal data is restricted to personnel and service providers who require access for legitimate business purposes.

8. Data Retention

We retain personal data only for as long as reasonably necessary for the purposes for which it was collected, including to satisfy legal, accounting and regulatory obligations.

Retention periods may vary depending on the nature of the engagement and applicable record keeping requirements.

9. Your Rights

Under UK data protection law, you have rights including:

• The right to access your personal data
• The right to request correction of inaccurate or incomplete data
• The right to request erasure of personal data where legally permissible
• The right to restrict or object to processing
• The right to data portability in certain circumstances
• The right to withdraw consent where processing is based on consent
• The right to lodge a complaint with the Information Commissioner’s Office (ICO)

Further information about your rights is available from the ICO at www.ico.org.uk.

10. Cookies and Tracking Technologies

The Website uses cookies and similar technologies to support functionality, performance monitoring and user experience.

Where required, cookies are deployed based on user consent. Users may control or disable cookies through browser settings or cookie management tools available on the Website.

Further information is available in our Cookie Policy.

11. Contact

If you have any questions regarding this Privacy Policy or how personal data is processed, you may contact us using the details provided on the Website.

We may update this Privacy Policy from time to time. The most current version will always be available on this Website.