Privacy Policy

Privacy Policy

Effective date: 01/02/2026

Website: 365 Risk Desk

Operated by: 365 Performance Group Ltd

Trading as: 365 Risk Desk

Contact: via the contact form at https://365riskdesk.com/contact-risk-enquiry (365riskdesk.com in Bing)

Business address: 24 Clarence Road, PE36 6HQ

Who we are

This Privacy Policy explains how 365 Performance Group Ltd, trading as 365 Risk Desk, collects, uses, stores and protects personal information when you use this website, contact us, purchase a product, subscribe to a membership, join a mailing list, or otherwise interact with us. For the purposes of UK data protection law, 365 Performance Group Ltd is the data controller of the personal information described in this Privacy Policy.

What this policy covers

This Privacy Policy applies to personal information collected through the 365 Risk Desk website, contact forms and enquiry forms, membership sign-up and account creation, product purchases and checkout processes, newsletter or mailing list sign-ups, communications you send to us, and analytics, cookies and similar technologies used on the website. This policy does not apply to third‑party websites, services or platforms linked from this website; if you visit a third‑party website, read that organisation’s privacy notice.

Personal information we may collect

Depending on how you use the website, we may collect and process information you provide directly to us such as your name, email address, telephone number, company details, enquiry details, account details, billing details and any other information you submit. We may also collect technical and usage information automatically, including IP address, browser type, device information, operating system, referral data, pages visited, clicks, scrolling, searches and timestamps. Where relevant we collect transaction and account information, including records of purchases, subscriptions, membership activity and customer‑service history. We only collect personal information relevant to operating the website, supplying products and services, communicating with users, and legitimately running the business.

How we collect your information

We collect personal information directly from you when you submit a form, make a purchase, create an account, subscribe to updates or contact us. We collect information automatically when you use the website through cookies, analytics and similar technologies. We receive information from payment providers or platform providers involved in processing your purchase or subscription, and from third‑party services where you choose to interact with us through them.

How we use your information

We use personal information to provide and manage access to the website, accounts, memberships and digital products; to process purchases, subscriptions and payments; to communicate with you about your account, purchase, enquiry or subscription; to respond to questions, complaints or support requests; to send service‑related messages including updates relating to products, memberships or legal documents; to improve the website, content, user experience and product offering; to monitor and protect the security, integrity and proper use of the website; to maintain internal business records and comply with legal, regulatory, accounting or tax obligations; to send marketing communications where permitted by law or where you have opted in; and to analyse website usage and performance.

Lawful bases for processing

We rely on one or more lawful bases under UK data protection law. Processing necessary to perform a contract applies where you request or purchase a product, membership, subscription, account or other service. Legitimate interests apply where processing is necessary for our legitimate interests in operating, improving, securing and growing 365 Risk Desk, provided those interests are not overridden by your rights and freedoms; this includes site administration, fraud prevention, analytics, business management, internal record‑keeping and customer support. Consent applies where you have given consent, for example for certain marketing communications or cookies where consent is required. Legal obligation applies where processing is necessary to comply with legal, tax, accounting or regulatory obligations.

Marketing communications

If you opt in, we may send marketing communications about 365 Risk Desk products, content, services or updates. You can opt out at any time using the unsubscribe option in the message or by contacting us via the contact form.

Cookies and similar technologies

We use cookies and similar technologies for website functionality, performance, analytics, security and user experience. Some cookies are necessary for the operation of the website. Others, including analytics and tracking technologies, may require consent. You can manage cookie preferences through your browser settings and via the cookie controls on our site.

Who we may share your information with

We may share personal information where necessary with payment processors and payment service providers, website hosting providers and technology service providers, email, communications and mailing platforms, analytics and performance providers, professional advisers such as accountants, lawyers or consultants, regulators, authorities or law enforcement where required by law, and service providers who help us operate the website, memberships, digital products or business administration. We require third‑party service providers acting on our behalf to handle personal information appropriately and in line with applicable data protection requirements. We do not sell your personal information to third parties.

International transfers

Some service providers may process personal information outside the United Kingdom. Where personal information is transferred internationally, we will take appropriate steps to ensure it is protected in accordance with applicable data protection law.

How long we keep your information

We keep personal information only for as long as reasonably necessary for the purposes for which it was collected, including to provide services, maintain records, resolve disputes, enforce agreements, meet legal obligations and protect the business. Account and transaction data may be retained for financial, tax and record‑keeping purposes for a period consistent with legal requirements. Support and enquiry records may be retained for customer service, operational and legal purposes. Marketing records may be retained until you opt out or they are no longer needed. Technical and analytics data may be retained for performance, security and reporting purposes for an appropriate period. When personal information is no longer required, we will delete it or anonymise it where appropriate.

Security

We take appropriate technical and organisational measures to protect personal information against accidental or unlawful destruction, loss, alteration, unauthorised disclosure or unauthorised access. No internet‑based service is completely secure and we cannot guarantee absolute security.

Your rights

Depending on the circumstances, you may have the right to request access to the personal information we hold about you; request correction of inaccurate or incomplete personal information; request erasure of your personal information; request restriction of processing; object to certain types of processing; request transfer of your personal information in a portable format where applicable; withdraw consent where we rely on consent; and object to direct marketing at any time. These rights are not absolute and may only apply in certain circumstances. To exercise any of your rights, contact us via the contact form at https://365riskdesk.com/contact-risk-enquiry (365riskdesk.com in Bing). We aim to respond to contact‑form enquiries and data‑subject requests within 10 business days and will fulfil rights requests within one month unless an extension is permitted by law.

Automated decision making

We do not use personal information for automated decision‑making that produces legal or similarly significant effects.

Children’s data

365 Risk Desk is not intended for children and we do not knowingly collect personal information from children through the website. If you believe a child has provided personal information to us, contact us and we will review the position.

Third‑party websites and services

This website may contain links to third‑party websites, platforms or services. We are not responsible for the privacy practices or content of those third parties. Read the privacy policies of any third‑party websites or services you use.

Changes to this Privacy Policy

We may update this Privacy Policy from time to time. The latest version will be published on this page with the effective date shown at the top. Where changes are material, we may take reasonable steps to bring them to your attention.

Complaints

If you have concerns about how we handle your personal information, contact us first via the contact form at https://365riskdesk.com/contact-risk-enquiry (365riskdesk.com in Bing). You also have the right to complain to the Information Commissioner’s Office if you believe your personal information has been handled unlawfully or unfairly.

Contact

If you have any questions about this Privacy Policy or how your personal information is handled, contact 365 Performance Group Ltd trading as 365 Risk Desk via the contact form at https://365riskdesk.com/contact-risk-enquiry