Last updated: 14th November 2025
1. Who we are
This website is operated by NETSTRONGHOLD (UK) LIMITED (“NetStronghold”, “we”, “us”, “our”).
Company name: NETSTRONGHOLD (UK) LIMITED
Registered number: 07573203
Office Address: Wimbletech – Zone 1, Wimbledon Hill Road, London, United Kingdom, SW19 7NB, United Kingdom
Website: https://www.netstronghold.co.uk & https://www.netstronghold.com/
Contact email: hello@netstronghold.com
For the purposes of UK data protection law (including the UK GDPR and Data Protection Act 2018), we are usually the data controller of personal data collected via this website. Where we provide consulting services to clients, we may act as either data controller or data processor, as described in our contract with that client.
How to contact us
If you have any questions about this Privacy Policy or how we handle your personal data, you can contact us at:
Email: hello@netstronghold.com
Postal address: Privacy Enquiries, NETSTRONGHOLD (UK) LIMITED, Wimbletech – Zone 1, Wimbledon Hill Road, London, United Kingdom, SW19 7NB, UK
You also have the right to complain to the UK Information Commissioner’s Office (ICO), but we would appreciate the chance to deal with your concerns first.
What this policy covers
This Privacy Policy explains:
- what personal data we collect when you visit netstronghold.co.uk, netstronghold.com or interact with us,
- how and why we use that data,
- who we share it with,
- how long we keep it, and
- your rights in respect of your personal data.
It applies to:
- visitors to our website;
- individuals who contact us (for example via email, contact forms, or social media);
- prospective and existing clients and their staff;
- subscribers to our newsletters, events or other marketing communications.
What personal data we collect
The personal data we collect depends on how you interact with us, but may include:
1 Data you provide to us directly
Contact & enquiry data
When you contact us (for example via a contact form, email, phone or social media), we may collect:
- name
- job title and role
- company name
- contact details (email address, phone number)
- the content of your message and any other information you choose to provide
Sales & client relationship data
If you engage with us as a client or prospective client, we may also process:
- business contact details for you and your colleagues
- details about your organisation, projects and systems
- records of meetings, calls and emails
- proposals, Statements of Work and contracts
Marketing preferences
If you sign up for newsletters, webinars, events or other marketing from us, we may collect:
- name
- email address
- company and role
- your marketing and communication preferences
2 Data we collect automatically
When you visit our website, we may automatically collect certain information from your device, such as:
- IP address and general location (e.g. city/region)
- browser type and version
- device type and operating system
- pages viewed and links clicked
- referring website or source (e.g. LinkedIn, search engine)
- date, time and duration of visits
This information is typically collected using cookies and similar technologies. See Section 7 – Cookies and similar technologies.
How we use your personal data and legal bases
We will only use your personal data where we have a lawful basis to do so. Under UK data protection law these bases include consent, contract, legal obligation and legitimate interests.
1 To respond to enquiries and provide our services
We use your data to:
- respond to enquiries and requests you send us;
- discuss potential projects or opportunities;
- provide consulting and advisory services, including Salesforce and AWS implementation and related services;
- manage our relationship with you and your organisation.
Legal basis:
- Performance of a contract or taking steps at your request prior to entering into a contract;
- Our legitimate interests in running and growing our business and providing services to our clients.
2 To manage our website and improve user experience
We use analytics and technical data to:
- operate, administer and secure our website;
- understand how visitors use the website;
- improve content, layout and navigation;
- troubleshoot issues.
Legal basis:
- Our legitimate interests in operating an effective, secure website and understanding how it is used;
- Consent where required for non-essential cookies.
3 To send marketing communications
If you opt in (or where permitted under UK marketing rules for B2B contacts), we may use your details to:
- send newsletters, updates and thought leadership content;
- invite you to webinars, events, or training;
- share information about our services and offerings.
You can opt out of marketing at any time by using the unsubscribe link in our emails or contacting us at francis@netstronghold.com.
Legal basis:
- Your consent (where required);
- Our legitimate interests in promoting our services to business contacts in a proportionate way, in line with the Privacy and Electronic Communications Regulations (PECR).
4 To meet our legal and regulatory obligations
We may process your personal data to:
- comply with tax, accounting and company law;
- respond to lawful requests from public authorities;
- maintain appropriate business records.
Legal basis:
- Compliance with legal obligations.
5 To protect our rights and manage disputes
We may use your data to:
- enforce our contractual or legal rights;
- manage and resolve disputes;
- prevent, detect or investigate fraud or security incidents.
Legal basis:
- Our legitimate interests in protecting our business, enforcing our rights and ensuring the security of our systems and information.
Who we share your personal data with
We do not sell your data. We may share personal data with:
- Service providers / processors who help us operate our business, such as:
- website hosting and IT support providers;
- email, CRM and marketing automation platforms;
- webinar/event platforms;
- professional advisers (e.g. lawyers, accountants).
- Clients and partners where necessary to perform a contract or deliver a joint project (for example, where you are part of a joint delivery team).
- Public authorities and regulators where we are legally required to do so, or where we need to protect our legal rights.
- Prospective buyers or investors and their advisers as part of a business sale, merger, restructuring or similar process, subject to appropriate confidentiality safeguards.
Where we engage third parties to process personal data on our behalf, we ensure they are subject to appropriate contractual obligations to protect that data in line with UK data protection laws.
Cookies and similar technologies
Our website may use cookies and similar technologies (such as pixels or tags) to:
- make the website work properly;
- remember your preferences;
- understand how visitors interact with our content;
- measure and improve the effectiveness of our marketing.
Types of cookies we may use:
- Strictly necessary cookies – required for core site functionality; these cannot usually be switched off.
- Performance/analytics cookies – to help us understand how the site is used (for example, via tools like Google Analytics).
- Functional cookies – to remember your settings and preferences.
- Marketing/targeting cookies – to measure and optimise campaigns, and in some cases to show relevant content on other platforms.
Where required by law, we will ask for your consent before placing non-essential cookies on your device. You can manage your cookie preferences via your browser settings and, where available, through any cookie banner or controls on the site.
International transfers
Our business is based in the UK, but some of our service providers and systems may be located outside the UK or the European Economic Area (EEA) or may store data in those locations.
Where personal data is transferred outside the UK/EEA, we will ensure that appropriate safeguards are in place, such as:
- an adequacy regulation from the UK government; or
- standard contractual clauses or other appropriate safeguards approved under UK data protection law.
You can contact us if you would like more information about these safeguards.
How long we keep your personal data
We keep personal data only for as long as reasonably necessary for the purposes set out in this policy, including:
- as long as we have an ongoing relationship with you or your organisation;
- as required by legal, tax or accounting obligations;
- for the period necessary to deal with potential disputes or to establish, exercise or defend legal claims.
Typical retention periods include (as a guide only):
- Enquiry data: usually up to 2–3 years after our last substantive interaction, unless you become a client or ask us to delete it sooner.
- Client and project data: usually for the duration of the engagement and for at least 6–7 years afterwards (to meet legal and contractual requirements).
- Marketing data: until you opt out or we determine that it is no longer appropriate to contact you (for example, if emails continually bounce).
We may retain anonymised or aggregated data that no longer identifies you indefinitely.
How we protect your data
We take appropriate technical and organisational measures to protect personal data from unauthorised access, use, disclosure, alteration or destruction. Measures may include:
- access controls and authentication;
- encryption and secure transmission where appropriate;
- secure configuration and monitoring of our systems;
- staff awareness and confidentiality obligations.
However, no system is completely secure, and we cannot guarantee absolute security of information transmitted over the internet.
Your rights
Under UK data protection law, you have a number of rights in relation to your personal data. These rights are subject to certain conditions and exceptions, but generally include:
- Right of access – to obtain a copy of your personal data and information about how we process it.
- Right to rectification – to have inaccurate or incomplete data corrected.
- Right to erasure – to ask us to delete your personal data in certain circumstances.
- Right to restriction – to ask us to restrict the processing of your data in certain circumstances.
- Right to data portability – to receive personal data you provided to us in a structured, commonly used, machine-readable format and to transmit it to another controller, where technically feasible.
- Right to object – to object to processing based on our legitimate interests, and to object at any time to direct marketing.
- Right to withdraw consent – where we rely on consent, you can withdraw it at any time; this will not affect the lawfulness of processing prior to withdrawal.
If you wish to exercise any of these rights, please contact us at hello@netstronghold.com.
You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO) if you are unhappy with how we have used your personal data. More information is available via the ICO’s website.
Third-party websites
Our website may contain links to third-party websites, plug-ins or services (for example, social media platforms or partner sites). Clicking on those links or enabling those connections may allow third parties to collect or share information about you.
We are not responsible for the privacy practices of those third parties and encourage you to read the privacy policies of every website you visit.
Children
Our website and services are aimed at business users and are not intended for children. We do not knowingly collect personal data relating to children. If you believe we have collected personal data about a child, please contact us so that we can delete it.
Changes to this Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in law, technology, our services or our practices. When we do, we will revise the “Last updated” date at the top of this page.
We encourage you to review this page periodically to stay informed about how we handle your personal data.