.png?width=783&height=479&name=BBE%20Logo%20Teal%20Background%20(1).png "Bykov-Brett Logo")
LEGAL
Privacy Policy
Last updated: March 2026
Introduction
Bykov-Brett Enterprises Ltd ("we", "us", "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal data when you visit our website at bykovbrett.net or engage with our services.
We are registered in England and Wales. For the purposes of applicable data protection legislation (including the UK General Data Protection Regulation and the Data Protection Act 2018), we are the data controller.
Information We Collect
We may collect and process the following categories of personal data:
Information you provide directly
- Contact information: name, email address, phone number, and organisation name when you complete a contact form, book a discovery call, or email us.
- Professional information: job title, company details, and project requirements shared during consultations or proposals.
- Communication records: correspondence via email, contact forms, or meeting notes.
Information collected automatically
- Technical data: IP address, browser type and version, operating system, time zone, and device information.
- Usage data: pages visited, time spent on pages, navigation paths, and referring URLs.
- Cookie data: information collected through cookies and similar tracking technologies (see Cookies & Tracking below).
How We Use Your Information
We use your personal data for the following purposes, each supported by a lawful basis under UK GDPR:
- To respond to enquiries and provide our services — Lawful basis: performance of a contract or steps taken at your request prior to entering a contract.
- To send relevant updates about our services — Lawful basis: legitimate interest (you may opt out at any time).
- To improve our website and user experience — Lawful basis: legitimate interest.
- To comply with legal obligations — Lawful basis: legal obligation.
- To send marketing communications — Lawful basis: consent (where required). You can withdraw consent at any time by clicking "unsubscribe" in any email or contacting us directly.
We will never sell your personal data to third parties.
Data Sharing
We may share your data with:
- Service providers: hosting (HubSpot), email (Microsoft 365), analytics (Google Analytics), and scheduling tools that process data on our behalf under appropriate data processing agreements.
- Professional advisors: accountants and legal advisors, where necessary.
- Legal authorities: where required by law or to protect our legal rights.
All third-party processors are required to handle your data in accordance with UK GDPR and our instructions.
Data Retention
We retain personal data only for as long as necessary to fulfil the purposes for which it was collected:
- Enquiry and contact data: 2 years from last interaction.
- Client project data: 6 years after project completion (for legal and accounting purposes).
- Marketing consent records: retained until consent is withdrawn.
- Website analytics data: 26 months (Google Analytics default).
Cookies & Tracking
Our website uses cookies to enhance your experience and help us understand how the site is used. Cookies are small text files stored on your device.
Essential cookies
Required for the website to function properly. These cannot be disabled. They include session management and security cookies.
Analytics cookies
Help us understand how visitors interact with our website by collecting anonymous usage data. We use Google Analytics with IP anonymisation enabled.
Marketing cookies
Used to track visitors across websites to display relevant advertisements. These are only set with your explicit consent via our cookie banner.
You can manage your cookie preferences at any time through our cookie settings or through your browser settings. For more information about cookies, visit allaboutcookies.org.
International Transfers
Some of our service providers may process data outside the UK. Where this occurs, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the Information Commissioner's Office (ICO), or the recipient is in a country deemed adequate by the UK Secretary of State.
Your Rights
Under UK GDPR, you have the following rights regarding your personal data:
- Right of access: request a copy of the personal data we hold about you.
- Right to rectification: request correction of inaccurate or incomplete data.
- Right to erasure: request deletion of your data where there is no compelling reason for continued processing.
- Right to restrict processing: request that we limit how we use your data.
- Right to data portability: request your data in a structured, machine-readable format.
- Right to object: object to processing based on legitimate interests or direct marketing.
- Rights related to automated decision-making: we do not use automated decision-making or profiling that produces legal effects.
To exercise any of these rights, please contact us using the details below. We will respond within one month of receiving your request.
Security
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These include encryption in transit (TLS/SSL), access controls, and regular security reviews.
Changes to This Policy
We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated "Last updated" date. We encourage you to review this policy periodically.
Contact
If you have any questions about this Privacy Policy or wish to exercise your data rights, please contact us:
- Email: privacy@bykovbrett.net
- Website: bykovbrett.net/contact
- Company: Bykov-Brett Enterprises Ltd
If you are not satisfied with our response, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):
- Website: ico.org.uk
- Helpline: 0303 123 1113