PRIVACY POLICY

Corep Ltd – Data Protection and Privacy Policy

Corep Ltd is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store, and safeguard your personal data when you interact with us—including as a customer, supplier, website visitor, or partner. It also outlines your rights under the UK General Data Protection Regulation (UK GDPR) and Data Protection Act 2018.

 

1. Who We Are

Corep Ltd is the “data controller” for the personal data we collect. This means we determine the purposes and means of processing your data.

If you have questions about this policy or how your data is handled, please contact:

Email: kellyd@corep-group.com

Address: 3rd Floor, 88 Baker Street, London, W1U 6TQ

Telephone: 0203 998 2020

 

2. What Personal Data We Collect

We may collect and process personal data in the following categories:

Identity and Contact Information: Name, email address, phone number, job title, postal address

Business Information: Company name, sector, and interaction history

Communication Records: Emails, enquiries, messages via website forms, and telephone calls

Marketing Preferences: Consent, subscription choices, and engagement with marketing materials

Website Data: IP address, device type, browser type, browsing activity (via cookies and analytics tools)

We collect data directly from you (e.g. through contact forms, service use, or communications), or indirectly (e.g. through cookies or referrals).

 

3. How and Why We Use Your Data

We will only use your personal data when legally permitted and for legitimate purposes. These include:

To provide services and respond to enquiries.

To administer our relationship with clients, partners, or suppliers.

To communicate important updates about our services.

To comply with legal and regulatory obligations. 

To improve our website, services, and communications.

To send marketing communications (where you have provided consent or where legitimate interests apply)

We do not use your data for automated decision-making or profiling.

 

4. Legal Bases for Processing

We rely on the following lawful bases under the UK GDPR:

Consent – where you have given us clear permission

Contractual necessity – to perform a contract with you

Legal obligation – to meet regulatory or statutory duties

Legitimate interests – where it is reasonable and does not override your rights (e.g. for business development or service improvement) 

5. Your Rights Under UK GDPR

You have the following rights regarding your personal data:

Access – request a copy of the data we hold about you

Correction – request correction of inaccurate or incomplete data

Erasure – request deletion of your data when no longer necessary

Restriction – request limited processing in certain circumstances

Objection – object to processing based on legitimate interests or direct marketing

Data Portability – request your data in a machine-readable format

Withdraw Consent – where processing is based on consent

Lodge a Complaint – with the Information Commissioner’s Office (ICO) at www.ico.org.uk

To exercise your rights, contact us using the details in section 1. We will respond within one calendar month.

 

6. How We Protect Your Data

We implement robust technical and organisational security measures to protect your data from:

Unauthorised access

Accidental loss or destruction

Alteration or disclosure

Examples of these measures include access controls, data encryption, secure data storage, employee training, and regular IT audits.

Our staff and service providers are required to maintain confidentiality and act in accordance with this policy.

 

7. How Long We Keep Your Data

We only keep your personal data for as long as is necessary for the purpose for which it was collected, including legal, regulatory, and accounting requirements. Retention periods may vary based on data type and purpose, but we periodically review all data and delete it when no longer needed.

If you would like more information on specific retention times, please contact us.

 

8. Sharing Your Data

We do not sell your personal data to any third parties.

We may share your data with:

Trusted service providers who perform services on our behalf (e.g. IT, marketing, CRM, or legal services) Regulatory bodies, law enforcement, or public authorities where legally required

Partners involved in delivering services to you, under strict confidentiality agreements

All third parties are required to protect your data in accordance with the law and our instructions.

 

9. International Data Transfers

Your personal data may be transferred outside the UK where necessary (e.g. use of international service providers). In such cases, we ensure appropriate safeguards are in place, including:

Adequacy decisions by the UK government

Standard contractual clauses (SCCs) approved by the ICO.

Other recognised transfer mechanisms

We will notify you where such transfers occur and ensure your data remains protected.

 

10. Cookies and Website Tracking

Our website uses cookies and tracking tools to:

Improve functionality and performance

Monitor website traffic and user engagement

Deliver relevant content

You can manage or disable cookies through your browser settings.

For full details, please see our Cookie Policy.

 

11. Links to Other Websites

Our website may contain links to third-party sites. We are not responsible for the content or privacy practices of those sites. We encourage you to read the privacy policies of any site you visit.

 

12. Children’s Privacy

Our website and services are not directed at children under 16. We do not knowingly collect personal data from children. If you believe we have inadvertently collected such data, please contact us so we can delete it.

 

13. Changes to This Policy

We may update this policy from time to time in response to legal, technical, or business developments. Updates will be posted on this page with a revised effective date. We recommend reviewing this page regularly to stay informed.

COREP Group is committed to the principles of the Modern Slavery Act 2015 and the abolition of modern slavery and human trafficking.

As an equal opportunities employer, we’re committed to creating and ensuring a non-discriminatory and respectful working environment for our staff. We want all our staff to feel confident that they can expose wrongdoing without any risk to themselves.

Our recruitment and people management processes are designed to ensure that all prospective employees are legally entitled to work in the UK and to safeguard employees from any abuse or coercion.

We do not enter into business with any organisation, in the UK or abroad, which knowingly supports or is found to be involved in slavery, servitude and forced or compulsory labour.

 Diversity and Inclusion Statement

COREP Group is committed to encouraging equality, diversity, and inclusion among our workforce, and eliminating unlawful discrimination.

The aim is for our workforce to be truly representative of all sections of society and our clients, and for each employee to feel respected and able to give their best. The organisation – in providing services and facilities – is also committed against unlawful discrimination of our clients or the public.

You can find our full Equality, Diversity, and Inclusion Policy here.

COREP Group is committed to conducting business in an ethical and honest manner, and is committed to implementing and enforcing systems that ensure bribery is prevented. COREP Group has zero-tolerance for bribery and corrupt activities. We are committed to acting professionally, fairly, and with integrity in all business dealings and relationships.

You can find our full Anti-Bribery and Corruption Policy here.

 CSR – Corporate Social Responsibility

We aim to conduct our business in a socially responsible manner, to contribute to the communities in which we operate and to respect the needs of employees, investors, customers, suppliers, regulators and other stakeholders.

 Quality Statement

The Directors and Management of COREP Group are committed to operate every aspect of the business to those standards that offer the highest possible quality of service to all clients. This is supported by a progressive management style that encourages the Quality culture throughout the Company.

To reinforce this commitment to quality, COREP Group have implemented a UKAS accredited Quality Management System (QMS) to ISO 9001:2015 standards, which is reviewed and externally audited annually.

The management are committed to the continuous improvement of the QMS by establishing and reviewing quality objectives for the company. This is to ensure that we operate effectively and efficiently and meets the needs of our customers.

The gaining of UKAS registration to ISO 9001:2015 is a minimum requirement for COREP Group, as is the continued search for improvement. The effectiveness of the QMS is monitored by planned audits, management reviews, and effective corrective and preventative action.

All personnel have been made aware of the Management Commitment to this policy and are encouraged to support the System by continuous active participation.

You can find our full Quality Policy here.

Environmental Statement

fCOREP Group recognise that need for sustainable development and continually aims to improve the environmental effect of its activities. To reinforce this commitment to protecting the environment , COREP Group have implemented a UKAS accredited Environmental Management System (EMS) to ISO 14001:2015 standards, which is reviewed and externally audited annually.

You can find our full Environmental Policy here.