LEGAL

Privacy Policy

Last updated 16 June 2026. This policy explains how we collect, use and protect personal data.

This privacy policy explains how Keybridge IT Solutions Ltd ("Keybridge", "we", "us" or "our") collects, uses and protects personal data when you visit our website, make an enquiry or use our services. We are committed to handling personal data responsibly and in line with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Who we are

Keybridge IT Solutions Ltd is the data controller responsible for your personal data. We provide managed IT, cyber security and AI services to professional-services firms.

  • Registered office: 75 King William Street, London EC4N 7BE
  • Company registration number: 07444390
  • Email: info@keybridgeit.com
  • Telephone: 0330 335 4444

The personal data we collect

We collect only the data we need for the purposes set out below.

  • Enquiry and contact details you provide when you contact us, request a review or correspond with us, typically your name, company, job role, email address, telephone number and the content of your message.
  • Client and service data we process when delivering services under a contract, which may include the contact details of your staff and information needed to support and secure your systems.
  • Website and analytics data collected automatically when you use our website, such as a truncated IP address, device and browser type, the pages you view and how you arrived at the site. This is collected through Google Analytics. See our Cookie Policy for details.

How we use your data and our lawful bases

Under UK GDPR we must have a lawful basis for using your personal data. We rely on the following.

  • Responding to your enquiry and taking steps at your request before entering into a contract. Lawful basis: legitimate interests and, where relevant, steps prior to a contract.
  • Providing, managing and supporting our services. Lawful basis: performance of a contract.
  • Meeting our legal, regulatory and security obligations. Lawful basis: legal obligation and legitimate interests.
  • Understanding how our website is used so we can improve it, using Google Analytics. Lawful basis: legitimate interests. You can opt out at any time, as explained in our Cookie Policy.
  • Sending occasional updates about our services where you have agreed to receive them or are an existing client. Lawful basis: consent or legitimate interests. You can opt out at any time.

We do not sell your personal data and we do not use it for automated decision-making that produces legal or similarly significant effects.

Who we share your data with

We share personal data only where necessary, and we put appropriate agreements in place with the providers who process data on our behalf. They may include:

  • our website hosting and infrastructure providers;
  • Google, which provides our website analytics;
  • email, communication and customer-management providers we use to operate the business;
  • professional advisers such as accountants, insurers and lawyers; and
  • regulators, law enforcement or other authorities where we are required to do so by law.

International transfers

Some of our providers, including Google, may process data outside the UK. Where data is transferred internationally, we rely on appropriate safeguards such as UK adequacy regulations or the International Data Transfer Agreement or Addendum, so that your data continues to receive an equivalent level of protection.

How long we keep your data

We keep personal data only for as long as we need it. Enquiry correspondence is generally retained for up to 24 months unless it leads to a contract. Client and service records are retained for the duration of our engagement and for a reasonable period afterwards to meet legal, tax and regulatory obligations. Analytics data is retained in line with the settings described in our Cookie Policy.

How we protect your data

As a cyber security business, protecting information is central to how we operate. We apply technical and organisational measures appropriate to the risk, including access controls, encryption where appropriate, monitoring and staff training, to keep personal data secure.

Your rights

Under UK GDPR you have the right to access your personal data, to have it corrected or erased, to restrict or object to its use, to data portability, and to withdraw consent at any time where we rely on consent. To exercise any of these rights, contact us at info@keybridgeit.com. We will respond within one month.

If you are unhappy with how we have handled your data, you can complain to the Information Commissioner's Office (ICO), Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF, telephone 0303 123 1113, ico.org.uk. We would, however, appreciate the chance to address your concerns first.

Cookies

Our website uses cookies and similar technologies. Please see our Cookie Policy for full details and how to manage your preferences.

Children

Our website and services are intended for businesses and are not directed at children. We do not knowingly collect personal data relating to children.

Changes to this policy

We may update this policy from time to time. The date at the top of this page shows when it was last revised. Any significant changes will be reflected here.

Contact us

For any questions about this policy or your personal data, contact us at info@keybridgeit.com, call 0330 335 4444, or write to us at 75 King William Street, London EC4N 7BE.