SendIQ (“SendIQ”, “we”, “us”, or “our”) is a trading name of David Cooper Digital Ltd. We are committed to protecting your privacy and being transparent about how we handle personal data.

Quick summary

We collect business contact information to provide our services and conduct B2B marketing. You can opt out of marketing anytime, and you have rights over your data including access, deletion, and correction. We keep data secure and only share it with trusted service providers.

Controller information

Data Controller: David Cooper Digital Ltd t/a SendIQ
Registered office:4 Chester Court, Chester Hall Lane, Basildon, Essex, United Kingdom, SS14 3WR
Company number: 13710226
Privacy contact: info@sendiq.co.uk
When we’re the controller vs processor:

  • Controller: When we decide how to use data (our websites, our marketing, client relationships)

  • Processor: When clients instruct us to process data on their behalf (covered by a separate Data Processing Addendum)

1. Who this policy applies to

This Privacy Policy covers:

  • Website visitors to our Sites

  • Prospective customers we contact for B2B marketing

  • Clients, suppliers, and partners using our services

  • Job applicants

Note: When we process data solely on behalf of our clients (as a processor), their privacy notice applies instead.

2. Legal framework

We comply with:

  • UK General Data Protection Regulation (UK GDPR)

  • Data Protection Act 2018

  • Privacy and Electronic Communications Regulations 2003 (PECR)

3. What personal data we collect

Website visitors

  • Technical data: IP address, browser type, device identifiers, pages viewed, visit times, referring pages

  • Contact details: Name, business email, phone, company, job title (if you provide them via forms or chat)

  • Communications: Support tickets and correspondence

B2B prospects and contacts

  • Business information: Name, work email, phone, job title, employer, business address, LinkedIn profile

  • Company data: Industry, company size, technologies used, location

  • Engagement data: Email opens, clicks, replies, website visits

  • Interaction notes: Call summaries, meeting notes, communication preferences

Clients, suppliers, and partners

  • Account details: Contact information, roles, service configuration

  • Billing information: Purchase orders, invoices (payment card details are processed by our payment providers, not stored by us)

  • Usage data: Service logs, feature usage, feedback

Job applicants

  • Application materials: CV, cover letter, portfolio

  • Assessment data: Interview notes, references, right-to-work documents

  • Voluntary information: Equal opportunities data (only if you choose to provide it)

Special category data

We do not intentionally collect sensitive personal data (health, religion, race, etc.) or criminal conviction data. Please do not provide such information unless specifically requested.

4. Where we get personal data from

  • Directly from you: Forms, emails, calls, meetings, events

  • Public sources: Company websites, LinkedIn, professional directories, press releases

  • Third-party providers: Business contact databases, data enrichment services, email verification tools (where legally permitted)

  • Automated collection: Cookies and analytics on our Sites

  • Referrals: Business partners and recommendations

5. How and why we use your personal data

What we do

Data we use

Legal basis

Operate our websites and services

Technical data, account details, support records

Legitimate interests (running our business), Contract (delivering services), Legal obligation

B2B marketing and sales outreach

Business contact details, engagement metrics, public professional information

Legitimate interests (growing our business) for corporate emails; Consent where required by law

Manage client contracts

Contact details, service configuration, billing data

Contract, Legitimate interests

Improve our products

Usage data, analytics, feedback

Legitimate interests (service improvement)

Security and fraud prevention

Logs, IP addresses, security identifiers

Legal obligation, Legitimate interests

Recruitment

Application materials, interview notes

Legitimate interests, Contract (pre-employment steps), Legal obligation

About B2B marketing

We send marketing emails to business addresses in accordance with UK law (PECR). For corporate email addresses (like name@company.co.uk), we can use our legitimate business interests. Every marketing email includes an easy unsubscribe option. For individual or sole trader email addresses, we obtain consent where required.

Lead scoring and profiling

We may analyze business attributes (industry, role, company technology) and engagement signals (email opens, clicks) to prioritize outreach and personalize communications. This does not result in decisions that legally or significantly affect you.

6. Cookies and tracking

We use cookies and similar technologies for:

  • Essential functions: Security, login sessions, site functionality

  • Analytics: Understanding how visitors use our Sites

  • Marketing: Measuring campaign effectiveness and retargeting (with your consent)

You can control cookies through our cookie banner when you first visit or through your browser settings.

7. Who we share data with

We may share personal data with:

Service providers who help us operate (examples):

  • Hosting and infrastructure providers

  • CRM and email platforms

  • Analytics and marketing tools

  • Data enrichment services

  • Payment processors

  • Customer support platforms

All service providers are bound by contracts requiring them to protect your data and use it only as we instruct.

Other recipients:

  • Professional advisers: Lawyers, accountants, auditors (under confidentiality)

  • Business partners: With appropriate safeguards and your consent where required

  • Legal authorities: When required by law or to protect rights and safety

  • Corporate transactions: If we merge, sell, or reorganize, data may transfer as part of that process

We do not sell your personal data.

8. International data transfers

Some of our service providers are located outside the UK (including the EEA and United States). When we transfer data internationally, we use approved safeguards such as:

  • UK International Data Transfer Addendum to EU Standard Contractual Clauses

  • UK adequacy decisions

  • Additional security measures (encryption, access controls)

You can request copies of transfer safeguards by contacting us.

9. How long we keep your data

We retain personal data only as long as necessary:

Data type

Retention period

Prospects/B2B contacts

Up to 24 months from last meaningful interaction (or until you opt out)

Clients and suppliers

Contract duration plus 7 years (for legal and tax obligations)

Support records

Up to 36 months after resolution

Job applicants

12 months after recruitment concludes (longer with your consent)

Website analytics

Typically 26 months

After retention periods expire, we securely delete or anonymize data. Backup copies may persist briefly during standard backup cycles.

10. Security measures

We protect personal data through:

  • Encryption in transit (TLS/SSL) and at rest where applicable

  • Access controls and authentication

  • Regular security assessments and vulnerability testing

  • Staff training on data protection

  • Incident response procedures

While we take reasonable precautions, no system is completely secure. We will notify you and relevant authorities of any data breach as required by law.

11. Your rights

You have the following rights under UK GDPR:

Access: Request a copy of your personal data

Rectification: Correct inaccurate or incomplete data

Erasure: Request deletion of your data (“right to be forgotten”)

Restriction: Limit how we use your data in certain circumstances

Data portability: Receive your data in a structured, machine-readable format

Object: Object to processing based on legitimate interests, including direct marketing (we’ll stop immediately for marketing)

Withdraw consent: Where we rely on consent, withdraw it anytime

Automated decisions: Not be subject to solely automated decisions with significant effects

How to exercise your rights

Email us at info@sendiq.co.uk. We may need to verify your identity before responding. We aim to respond within one month of receiving your request.

Unsubscribe from marketing

Click the “unsubscribe” link in any marketing email, or email info@sendiq.co.uk.

12. How to complain

If you’re unhappy with how we handle your data, please contact us first at info@sendiq.co.uk.

You also have the right to complain to the UK data protection authority:

Information Commissioner’s Office (ICO)
Wycliffe House, Water Lane
Wilmslow, Cheshire, SK9 5AF
Website: ico.org.uk
 Tel: 0303 123 1113

13. Children’s privacy

Our services are for business users only. We do not knowingly collect data from anyone under 16. If you believe a child has provided us with data, please contact us immediately for deletion.

14. Third-party links

Our Sites may link to external websites or integrate with third-party platforms (social media, analytics services). We are not responsible for their privacy practices. Please review their privacy notices.

15. When we process data for clients (as processor)

When clients use our services to process their own data (such as running marketing campaigns or managing prospect lists):

  • The client is the controller and determines how data is used

  • We are the processor and follow the client’s instructions

  • Our obligations are detailed in our Data Processing Addendum (DPA) with each client

  • We implement security measures, maintain confidentiality, and help clients meet their UK GDPR obligations

  • We only use approved sub-processors under written contracts

For data we process on behalf of clients, the client’s privacy notice applies.

16. Automated decision-making

We do not make decisions based solely on automated processing that would legally or significantly affect you. While we use automated tools to support marketing (like lead scoring), humans oversee these processes and you can always opt out of marketing.

17. Changes to this policy

We may update this Privacy Policy occasionally. When we do:

  • The “Last updated” date at the top will change

  • The updated version becomes effective immediately upon posting

  • For material changes, we may notify you via email or a notice on our Sites

We encourage you to review this policy periodically.

18. Contact us

For privacy questions, data requests, or complaints:

Email: info@sendiq.co.uk
Post: Data Protection, David Cooper Digital Ltd t/a SendIQ.

Quick reference: Key processing activities

Activity

Data used

Why

Website operation

IP address, device data, usage patterns

To run and improve our Sites (legitimate interests)

B2B marketing

Business contact details, engagement data

To promote our services (legitimate interests for corporate emails, consent where required)

Client services

Account and billing information

To deliver contracted services (contract, legitimate interests)

Data processing for clients

Client prospect/customer data

As instructed by client (covered by DPA)

Security

Logs, security identifiers

To protect our systems and comply with law (legal obligation, legitimate interests)

Recruitment

Application materials, interview data

To evaluate candidates (legitimate interests, contract)