Privacy Policy

1. Introduction

Novo Data Services (“we”, “us”, “our”) is committed to protecting your personal data and respecting your privacy. This Privacy Notice explains how we collect, use, store and protect your information when you engage with our services or visit our website.

We act as a Data Controller for personal data we collect directly from clients and a Data Processor when we process client data on their behalf as part of data protection or fraud prevention reviews.

2. Who We Are

Novo Data Services
Email: novodataservices@gmail.com
Phone: 07769 363214
Location: Newcastle upon Tyne, UK

If you have any questions about this Privacy Notice or how we handle your data, please contact us using the details above.

3. What Personal Data We Collect

We may collect and process the following types of information:

Contact information (e.g. name, email address, phone number, business details)

Business information (e.g. company size, structure, or sector)

Data supplied for review (which may include employee, customer or supplier data, depending on the scope of services provided)

Technical data (e.g. IP address, browser type, and usage data if you visit our website)

4. How We Use Your Data

We use your personal data to:

Provide data protection, fraud prevention, and GDPR compliance services

Communicate with you about services, quotes, and reports

Manage our relationship and contractual obligations

Maintain business records and comply with legal requirements

Improve and tailor our services

5. Lawful Bases for Processing

We process personal data under the following lawful bases, as defined by the UK GDPR:

Contractual necessity – to perform a contract with you or take steps at your request before entering a contract.

Legal obligation – to comply with UK laws and regulatory requirements.

Legitimate interests – to operate and improve our business (e.g. record-keeping, fraud prevention, and marketing to existing clients).

Consent – where required (e.g. for optional marketing communications).

Where we process data on behalf of clients (e.g. customer or employee records), we act as a Data Processor, and the client remains the Data Controller.

6. Data Sharing

We will not sell or rent your data to third parties.
We may share information only with:

Trusted service providers (e.g. secure cloud storage or IT support) who act under strict data protection agreements

Regulatory or legal authorities where required by law

All third parties are required to respect the security of your personal data and to process it only in accordance with the law.

7. International Transfers

We do not routinely transfer personal data outside the UK. If international transfers become necessary, we will ensure appropriate safeguards (such as UK adequacy regulations or standard contractual clauses) are in place.

8. Data Retention

We keep personal data only for as long as necessary to fulfil the purposes for which it was collected, including any legal, accounting, or reporting requirements.
Typically, client data is retained for up to six years following the end of our engagement unless otherwise agreed.

9. Data Security

We use appropriate technical and organisational measures to protect your data from unauthorised access, loss, or misuse, including encryption, access controls, and secure storage.

10. Your Rights

Under the UK GDPR, you have the following rights:

Access – request a copy of your personal data

Rectification – correct inaccuracies

Erasure – request deletion where data is no longer needed

Restriction – limit how we process your data

Data portability – request transfer to another provider

Objection – object to certain processing (e.g. marketing)

Withdraw consent – where processing is based on consent

To exercise these rights, contact us using the details above.

11. Complaints

If you have concerns about our handling of your personal data, please contact us first.
You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO):
www.ico.org.uk
Tel: 0303 123 1113

12. Updates to This Notice

We may update this Privacy Notice from time to time. The latest version will always be available on our website, with the date of the last update shown below.

Last updated: October 2025

We need your consent to load the translations

We use a third-party service to translate the website content that may collect data about your activity. Please review the details in the privacy policy and accept the service to view the translations.