Legal
Privacy Policy
Effective date: 23 April 2026
Last updated: 23 April 2026
This Privacy Policy explains how Cooper Concierge LTD ("we", "us", "our") collects, uses, discloses, and protects personal data when you use cooperconcierge.co.uk and related pages, including enquiry forms, account/portal features, and concierge service requests.
This policy is written to support UK/EU and US privacy expectations.
1) Who we are
Data controller: Cooper Concierge LTD
Contact email: privacy@cooperconcierge.co.uk
Phone: +44 7485 540 379
2) Personal data we collect
Depending on how you use the site, we may collect:
- Identity and contact data: name, email, phone number, social handle, and other details you submit.
- Enquiry and booking data: event preferences, date/location requests, group size, and communications.
- Account and portal data: login/session data, role/access information, and account actions.
- Technical data: IP address, browser/device information, pages viewed, referring URL, and timestamps.
- Cookie/consent data: analytics preference, consent timestamps, and policy version metadata.
3) How we collect data
We collect data directly from you (forms, account actions, messages), automatically through essential website technologies, and through optional analytics tools only when permitted by your consent settings.
4) Why we use personal data (purposes)
We use personal data to:
- respond to enquiries and provide concierge services;
- manage accounts, authentication, and portal access;
- maintain security, prevent abuse, and troubleshoot issues;
- improve website usability and performance (where analytics consent is provided);
- comply with legal, accounting, and regulatory obligations;
- establish, exercise, or defend legal claims.
5) Legal bases (UK/EU GDPR)
Where UK/EU laws apply, we process personal data under one or more of:
- Contract: to provide requested services and account functionality.
- Legitimate interests: running and securing our business and website.
- Consent: for non-essential analytics/cookies and similar optional tracking.
- Legal obligation: where processing is required by law.
6) Cookies, analytics, and privacy choices
We use essential technologies required for site operation and optional analytics technologies for measuring traffic and improving services.
Optional analytics are loaded based on your consent choice. You can update your preferences at any time via Cookie preferences in the site footer.
For US visitors, this section also serves as a Do Not Sell or Share My Personal Information access point where required by applicable state law.
7) How we share personal data
We may share data with:
- service providers that host, secure, and support our website and operations (for example, hosting, authentication, analytics, and infrastructure providers);
- professional advisers (legal, accounting, insurance) where necessary;
- regulators, courts, or law enforcement where legally required;
- potential buyers/investors in connection with a merger, acquisition, or restructuring (subject to confidentiality safeguards).
We do not sell personal information for money.
8) International data transfers
If your data is transferred outside your country, we use appropriate safeguards where required (for example, adequacy decisions, standard contractual clauses, and equivalent protections).
9) Data retention
We retain personal data only as long as reasonably necessary for the purposes in this policy, including legal, tax, accounting, dispute, and enforcement needs. Retention periods vary by data type and legal requirement.
10) Data security
We implement technical and organizational measures designed to protect personal data against unauthorized access, loss, misuse, alteration, and disclosure. No method of transmission or storage is completely secure.
11) Your privacy rights
UK/EU rights may include access, correction, deletion, restriction, objection, portability, and withdrawal of consent at any time.
US state privacy rights may include rights to know/access, delete, correct, opt out of sale/share/targeted advertising, limit certain uses of sensitive data (where applicable), and non-discrimination for exercising rights.
To exercise rights, contact us at [PRIVACY EMAIL]. We may verify your identity before completing a request. You may also designate an authorized agent where legally permitted.
12) Children's privacy
Our services are not directed to children under 13 (or under the applicable digital age of consent in your region), and we do not knowingly collect personal data from children without appropriate authorization.
13) Third-party links and services
Our site may include links to third-party websites or integrations. Their privacy practices are governed by their own policies, not this one.
14) Changes to this policy
We may update this Privacy Policy from time to time. Material changes will be posted on this page with an updated effective date.
15) Complaints
If you are in the UK/EU, you may lodge a complaint with your local supervisory authority (for example, the UK Information Commissioner's Office) if you believe your data rights have been infringed.