The confidence behind every step.
Privacy, in plain English.
The data we hold, why we hold it, and what you can ask us to do with it. Written so a reasonable reader can follow it, no legalese where the law allows plain English.
HOW EXPORT READY ARE YOU
Take the test. Get the score.
HOW WE WORK
Privacy Policy
This policy explains how Torsik Ltd handles your personal data. Read it alongside our Cookie Policy and Terms & Conditions.
Who we are
Torsik Ltd (Company No. 16864103), registered in England and Wales. Registered office: Bartle House, Oxford Court, Manchester, England, M2 3WQ. Email: info@torsik.co.uk.
Torsik Ltd is the data controller under UK GDPR. We are registered with the Information Commissioner's Office (ICO), registration number ZC138992.
The data we collect
We collect:
- Name
- Email address
- Company (optional)
- Job title (optional)
- Phone number (optional)
- The content of any message, enquiry or form you send us, including the registration form for sample reports and the brochure
We do not intentionally collect special category data. Please do not send us sensitive personal information through the website.
Why we use it
We process personal data to:
- Respond to enquiries
- Arrange and hold clarity calls
- Assess whether our services suit your needs
- Enter into and perform consulting agreements
- Maintain our client and prospect records
- Send marketing communications where you have asked us to or where we are otherwise permitted
- Measure and improve how the website performs
Our lawful basis
We rely on:
- Legitimate interests, for business-to-business communication, responding to enquiries, and running and improving our service
- Contractual necessity, where we are entering into or performing an agreement with you
- Consent, for marketing where consent is required, and for any non-essential cookies that require it
Where we rely on legitimate interests, we have weighed our interests against your rights. You can ask us about that assessment at any time.
Service providers we use
We share personal data with trusted providers who process it on our behalf, under written terms that require them to protect it and use it only as we instruct:
- Website hosting and domains: Squarespace, and GoDaddy (domain registration)
- Customer relationship management (CRM): Zoho CRM
- Invoicing and accounting: Zoho Books
- Email, calendar and file storage: Google Workspace (Gmail, Drive and Calendar) and Apple iCloud
- Project management: ClickUp
- Documents and knowledge base: Notion
- Email and newsletters: MailerLite
- Website analytics: Google Analytics 4
- Video conferencing: Google Meet, Microsoft Teams and Zoom, whichever a client prefers
- Artificial intelligence tools: see section 6
- Social media: LinkedIn, Instagram (Meta) and X, where you interact with our pages or embedded content
We do not sell your personal data.
How we use AI
We use artificial intelligence tools to help prepare internal research, analysis and draft materials. These tools may include OpenAI, Anthropic (Claude), Google (including Gemini and NotebookLM), xAI (Grok) and Perplexity.
Where these tools process personal data:
- We use them on business terms that do not allow the provider to train its models on our data.
- Providers retain prompts and outputs only for the limited periods set out in their own business terms.
- All AI-assisted output is reviewed by a person before it is delivered to a client.
Please do not submit confidential material through the website. Confidential information should only be shared once a written agreement is in place.
Sending data outside the UK
Some of our providers, including some of the AI tools above, are based outside the UK, including in the United States. Where we transfer personal data abroad, we rely on a recognised safeguard:
- UK adequacy regulations, where the destination country is covered
- The UK Extension to the EU-US Data Privacy Framework (the "UK-US data bridge"), where the US provider is certified under it
- The UK International Data Transfer Agreement (IDTA) or the UK Addendum to the EU Standard Contractual Clauses, in other cases
We take reasonable steps to make sure your data is protected to a UK standard wherever it is processed.
How long we keep it
We keep personal data:
- For the duration of our relationship with you
- For up to six years after that, where we may need it to defend a legal claim or meet a legal obligation
- Marketing data, until you withdraw consent or ask us to stop
Your rights
Under UK GDPR you have the right to:
- Access your data
- Correct inaccurate data
- Erase data, where the law allows
- Restrict how we use it
- Object to processing
- Data portability
- Withdraw consent at any time, where we rely on it
To exercise any of these, email info@torsik.co.uk. We will respond within one month.
Complaints
If you are unhappy with how we have handled your personal data, please tell us first so we can put it right. Email info@torsik.co.uk. We operate a formal complaints procedure: we will acknowledge your complaint promptly and respond within one month.
If you remain dissatisfied, you have the right to complain to the ICO. You do not have to come to us first, but it often resolves things faster.
ICO: ico.org.uk, or 0303 123 1113.
Cookies
We use cookies and similar technologies on this website. How they work, which ones we use, and how to manage them are set out in our Cookie Policy.
Security
We protect your data with secure hosting, access controls and other commercially reasonable safeguards. No system is ever completely secure, but we take the protection of your data seriously.
Changes to this policy
We may update this Privacy Policy from time to time. The latest version will always appear on this page, with the date at the top.
NEWSLETTER