Case Studies

Our Privacy policy

Privacy Policy

Privacy Policy

Effective Date: 22 May 2025
Last Updated: 22 May 2025

 

Welcome to https://www.lmacgroup.com (the “Site”). LMAC Group Ltd (“we,” “our,” or “us”) is committed to protecting your personal information and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our Site, including any data you may provide through it when you submit an enquiry, subscribe to updates, or access our services.

 

By using this Site, you agree to the practices described in this Privacy Policy.

 

  1. What Information We Collect

Personal Data (Personally Identifiable Information)
We may collect the following types of personal data from Visitors and Authorised Customers:

  • Name, address, email, and phone number
  • Company name and job title
  • IP address, browser details, and cookies
  • Social media profile links
  • Enquiry content or project information submitted through forms
  • Financial data if making purchases (processed via secure third-party gateways)

 

Sensitive Information
We do not intentionally collect sensitive personal data (e.g., health, ethnicity, religious beliefs) unless explicitly provided and necessary for a contractual purpose.

 

  1. How We Collect Your Data

We collect your data through:

  • Direct interactions (e.g., website forms, email communication, account registration)
  • Automated technologies (e.g., cookies, log files, analytics tools)
  • Third-party integrations (e.g., CRM, analytics platforms, payment gateways)

 

  1. How We Use Your Data

We process personal information for the following purposes:

  • To respond to enquiries and provide services
  • To manage our relationship with you
  • To improve our Site, products, and services
  • To send relevant updates, marketing materials, and bid-related insights (with your consent)
  • To comply with legal or regulatory requirements

 

We adhere to APMP-aligned best practice principles, ensuring we process only relevant data aligned to legitimate business needs, with regular audits to ensure accuracy and security.

 

  1. Lawful Bases for Processing

We process personal data under the following lawful bases under UK GDPR:

  • Consent – when you explicitly opt in (e.g., to receive updates)
  • Contract – to fulfil our obligations to you
  • Legal obligation – where required by law
  • Legitimate interest – for business administration, analytics, and service improvement

 

  1. Sharing Your Data

We do not sell or rent your data. We may share your personal data with:

  • Trusted third-party service providers (e.g., hosting, CRM, analytics, payment processing)
  • Professional advisers (e.g., auditors, legal consultants)
  • Public authorities, if legally required to do so

 

All data processors are contractually bound to adhere to GDPR-compliant practices.

 

  1. Cookies and Tracking Technologies

We use cookies to:

  • Analyse website traffic and user behaviour
  • Remember preferences and improve functionality
  • Enhance security and user session control

 

You can manage your cookie preferences via your browser or our Cookie Settings page. For details, see our separate [Cookie Policy].

 

  1. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes we collected it for, including legal, accounting, or reporting requirements. Residual data may be retained in backup systems for continuity purposes, but will be securely archived or deleted where no longer relevant.

 

  1. Data Security

We employ industry-standard technical and organisational measures, including:

  • Encryption (SSL/TLS protocols for data in transit)
  • Role-based access controls for staff
  • Regular data integrity audits and system penetration testing
  • Secure servers hosted in GDPR-compliant locations

 

  1. International Data Transfers

If we transfer data outside the UK or EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) or adequacy decisions by the UK Government.

 

  1. Your Data Rights

Under the UK GDPR, you have the right to:

  • Access your personal data
  • Request correction of inaccurate data
  • Request erasure (“right to be forgotten”)
  • Object to or restrict data processing
  • Request transfer of your data (data portability)
  • Withdraw consent at any time
  • Lodge a complaint with the ICO

 

To exercise any of these rights, contact us at: info@lmacgroup.com

 

  1. Children’s Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware of such data being collected, we will delete it immediately.

 

  1. Policy Updates

We may update this Privacy Policy from time to time. Changes will be posted on this page with a revised “Last Updated” date. If significant changes occur, we will notify you directly where appropriate.

 

  1. External Links

Our Site may include links to third-party websites. We are not responsible for their content or privacy practices. We encourage you to review their respective policies before sharing data.

 

  1. Contact

If you have any questions about this Privacy Policy or your personal data, please contact:

LMAC Group Ltd
George House, Hallsford Bridge Industrial Estate,
Ongar, Essex CM5 9RB
Email: info@lmacgroup.com
Phone: +44 (0)1277 285166