Our Brochure
Our Brochure

Privacy Policy

Introduction

At Façade Creations Ltd (Company No. 16267073, registered in England), we are committed to protecting your personal data and privacy. We specialise in façade design, supply, and installation services, and we handle personal information in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. This Privacy Policy explains why we need your personal data, what we do with it, how long we keep it, and who we share it with – being clear about these details helps build trust and lets you know what to expect. We also adhere to the Privacy and Electronic Communications Regulations 2003 (PECR) for cookies and electronic marketing where applicable.

We have written this policy in plain English with user-friendly headings and a logical structure, so it’s easy to read and navigate. Our goal is to be transparent about our data practices, as recommended by the UK Information Commissioner’s Office (ICO), because simple and accessible privacy information helps those, we do business with trust us with their data. Whenever we collect personal data, we will let you know at the time how and why we intend to use it. Please read this policy carefully to understand how we handle your information. If you have any questions or concerns about our privacy practices, you can find our contact details in the Contact Us section below.

What Personal Data We Collect

 We only collect personal information that we genuinely need to operate our business and provide our services to you. The types of personal data Façade Creations Ltd may collect and process include:

  • Identity and contact details: Your name, job title, company or organization name, business address, email address, and phone number.
  • Project and correspondence information: Details about your project requirements and records of our communications with you (emails, messages, call notes).
  • Transactional and financial data: Billing and payment information for clients and suppliers, such as invoice details or bank information necessary for payments.
  • Website usage data: Technical data like your IP address or browser information when you visit our website, collected through cookies or analytics tools (as described in the Cookies section).

 We do not intentionally collect any special categories of personal data (such as information about your health, ethnicity, political opinions, or similar sensitive data) in the normal course of business. We also do not knowingly collect personal data from anyone under 18, as our services are intended for businesses and adult clients. If we ever need to process sensitive personal data (for example, an employee’s health information for safety reasons), we will only do so with your explicit consent and in accordance with the law (see Special Category Data below).

 How We Collect Personal Data

 We collect personal data directly from you in a few ways, depending on how you interact with us:

  • When you contact us or request a quote: For instance, through website enquiry forms or quote request forms, where you enter your contact details and project information. We obtain your clear opt-in consent on these forms before you submit them (e.g. via a tick box) so you know and agree to how your data will be used.
  • Through communications: If you reach out to us by email or telephone, or if we correspond during a project, we will collect and retain that information as needed to assist you. This includes any business cards or contact details you give us at events or meetings.
  • During business engagements: We may collect data as part of contract documentation, proposals, purchase orders, or invoices when you become a client or supplier. This is information required to execute our services and fulfill agreements (e.g. names on contracts, billing addresses).
  • Via our website and IT systems: Our website uses cookies and analytics tools (like Google Analytics 4) which may collect technical identifiers like IP addresses and browsing behavior, but only as described in our Cookies section (and with your consent where required). Aside from analytics, we do not obtain personal data about you from third-party marketing lists, data brokers, or social media profiling. In short, if we have your data, it’s because you chose to provide it to us or it’s necessary for a service you requested.

 At each point of data collection, we strive to inform you what data is being collected and why. For example, our online forms include privacy notices or links to this policy, and you’ll see clear explanations when we ask for your consent. We do not use any hidden means of collecting data about you. If you ever have questions about why we are asking for a particular piece of information, please feel free to ask.

How and Why, We Use Personal Data

 We use the personal data we collect only for legitimate business purposes and in a manner that is fair and transparent. In particular, Façade Creations Ltd may use your information for the following purposes:

  • Providing quotes and responding to enquiries: To contact you and provide information or quotations that you have requested, and to discuss your project needs. We use your contact and project details to respond to your enquiry and prepare proposals or estimates as part of pre-contract steps.
  • Fulfilling contracts and delivering services: To carry out our façade design, supply, and installation services for you as a client. This includes using your information to plan and execute projects, coordinate with you on project specifications, and communicate during the course of the contract.
  • Processing transactions and administration: To handle payments, invoicing, and account management. For example, we use billing information to issue invoices and process payments, and we maintain business records of projects, agreements, and communications for our internal administration.
  • Legal and regulatory compliance: To comply with our legal obligations and good business practices. This covers keeping financial records for tax and accounting (HMRC) purposes, maintaining health and safety records if applicable, and retaining contract documentation to meet regulatory requirements or potential audits. We only retain the necessary information needed for such compliance (see Data Retention section).
  • Communicating updates and marketing (with consent): With your permission, we may use your contact details to send you updates about your project, information about our services, or newsletters/company news that could interest you. We will only use your data for marketing or non-essential communications if you have explicitly opted in (or as otherwise permitted by law – see Marketing Communications below). You are free to opt out at any time.

We will not use your personal data for any purpose that is incompatible with the reasons listed above. In particular, we do not use your data for any kind of automated decision-making or profiling (see Automated Decision-Making), and we do not sell your information to third parties for advertising. All our processing activities are conducted in a lawful, fair, and transparent manner, following the principles set out in Article 5 of the UK GDPR. If we intend to use your data for a new purpose that isn’t covered here, we will update this policy and, if required, seek your consent.

 Legal Bases for Processing

Under the UK GDPR, we must have a valid legal basis to process your personal data. Depending on the specific context, Façade Creations Ltd relies on the following legal grounds:

  • Performance of a Contract: Most of our data processing is necessary to take steps at your request prior to entering into a contract or to perform a contract with you (UK GDPR Article 6(1)(b)). For example, when we use your details to provide a quote, respond to an enquiry, or deliver our façade services, we do so to fulfill our contractual obligations or to form a contract with you.
  • Legal Obligation: In some cases, we must process data to comply with a legal or regulatory obligation (Article 6(1)(c)). This includes keeping records for tax compliance, health and safety regulations, or providing information if lawfully required by authorities. We only retain the data needed to meet these obligations.
  • Consent: We will ask for your consent before processing your data in situations where consent is the appropriate legal basis (Article 6(1)(a)). The clearest example is using your email to send marketing communications or using optional analytics cookies – we only do so if you have opted in. You have the right to withdraw your consent at any time (see Your Rights and Marketing Communications), and we will honor your choice going forward. Withdrawing consent will not affect the lawfulness of any processing already carried out based on your consent before withdrawal.
  • Legitimate Interests: In limited cases, we may process personal data for our legitimate interests as a business (Article 6(1)(f)), provided such processing is not overridden by your rights and interests. For instance, maintaining the security of our website (capturing IP addresses in server logs to detect fraud or attacks) and improving our services could be considered our legitimate interests. If we rely on this basis, we will ensure our interests are balanced against your privacy rights. You always have the right to object to processing based on legitimate interests (see Your Rights).

No matter which legal basis applies, we only collect and use the minimum amount of data necessary for that purpose, and we always consider your rights and expectations. If you have questions about the legal basis for any specific processing activity, feel free to contact us.

Cookies and Tracking Technologies

Like most websites, our company website uses cookies and similar tracking technologies to function effectively and to help us understand how people use the site. When you visit facadecreations.co.uk, we may place a small data file called a cookie on your device. We use cookies for the following purposes:

  • Essential functionality: Some cookies are necessary for the website to operate, such as maintaining your session when you navigate between pages. These cookies enable core features like page navigation and access to secure areas. Without them, the site might not function properly.
  • Analytics and performance: We use Google Analytics 4 (an analytics service) to collect anonymised usage statistics – for example, how many users visit our site, which pages are viewed, and what browsers are used. This helps us improve user experience and site performance by understanding traffic patterns. The information collected via analytics cookies is aggregated and does not directly identify you. We have configured Google Analytics to avoid collecting any personally identifiable information (IP addresses may be collected in truncated or anonymized form).
  • Security and stability: Certain technical cookies or similar tools help maintain website security (for example, by distinguishing real visitors from malicious bots) and ensure the site loads correctly and consistently. These might track technical data like your browser type or IP address temporarily to protect our site from threats.

What we don’t use: We do not use any advertising cookies, tracking pixels, or behavioral profiling techniques on our website. In other words, we’re not tracking you for marketing ads or selling your browsing data to advertising networks. No third-party advertising or social media cookies will be placed by our site.

Cookie consent: When you first visit our website, you will see a cookie banner requesting your consent for us to use any non-essential cookies (such as Google Analytics). We will not set analytics cookies unless you actively accept them. Essential cookies (which are required for site functionality) are used based on our legitimate interest in operating a secure and user-friendly website; all other cookies will only be used with your agreement, in compliance with PECR and ICO guidance. You have full control over your cookie preferences – you can opt in or out via the banner settings, and you can withdraw or modify your consent at any time by using our website’s cookie control tool or by clearing cookies in your browser.

For more detailed information, please refer to our Cookie Policy (if available) or contact us with any questions about specific cookies. By adjusting your browser or device settings, you can also refuse or delete cookies; however, please note that blocking essential cookies may affect site functionality.

Marketing Communications and Your Choices

Façade Creations Ltd may occasionally want to send you news, updates or marketing communications – for example, an email newsletter about our services, or an invitation to events. Because we respect your privacy, we will only send you marketing emails or texts if you have given us specific consent to do so, or if you are an existing customer and the law otherwise permits it. In practice, this means:

  • Opt-in consent: Our website forms and offline signup methods include opt-in checkboxes for marketing. We will only add you to our email newsletter or contact list if you intentionally tick a box (or take equivalent clear action) to consent to receive such communications. We do not use pre-ticked boxes, and we do not assume consent from silence or inactivity. This ensures we have your explicit permission, as required by the PECR and data protection law.
  • Soft opt-in for clients: If you are an existing client who has used our services, we may send you information about similar services in the future under the “soft opt-in” exception, but only if we provided you a clear chance to opt out both when we collected your details and in every message. This means, for example, if you have previously engaged us for a project, we might email you about a new service or update only if you did not object at the time and you haven’t since. Every marketing message will still include an easy way to unsubscribe.
  • No third-party marketing: We will never sell your contact information to third parties or authorize others to send you marketing on our behalf without your consent. You will only hear from Façade Creations Ltd or perhaps our authorized partners (such as a co-host of an event), and in the latter case, only if you have agreed to it.

Your control: You have the right to opt out of marketing communications at any point. If you no longer wish to receive our newsletter or promotional emails, simply click the “unsubscribe” link included in the footer of each email, or contact us directly and we will remove you from the list. You can also email or call us to let us know of your preferences. Once you opt out, we will stop using your data for direct marketing. (Please note that even if you opt out of marketing, we may still send you essential communications about any ongoing services or projects we are handling for you – those are service-related, not marketing.) Your choice regarding marketing communications will be respected without question, and there is no penalty or effect on the services we provide to you.

Data Sharing and Third Parties

We treat your personal information with care and confidentiality. We do not sell your data to anyone, and we limit sharing to what is necessary for running our business or as required by law. Situations where we may share personal data include:

  • Service providers (data processors): We sometimes share certain information with trusted third-party service providers who perform services on our behalf. This includes, for example, our IT and cloud service providers (such as Microsoft 365 for email/document storage or Xero for accounting), our external accountants or bookkeepers who help with financial record-keeping, and any consultants or professional advisors (like legal counsel) who need data to provide us with advice. In all cases, these providers are bound by strict confidentiality obligations and data processing agreements that require them to handle your data in compliance with UK GDPR. They are not allowed to use your data for any purposes other than providing services to us.
  • Project partners and logistics: If necessary for your project, we may share limited information with delivery partners or subcontractors. For instance, if we need to arrange delivery of façade materials to a site, we might share the on-site contact’s name and number with a logistics company. Or, if we collaborate with architects, engineers, or other contractors on a project you’re involved in, we will share only the data required for coordination (such as your contact details or project specifications). All such partners are informed they must protect your data and use it only for the project purposes.
  • Legal or regulatory disclosures: We may disclose personal data when required to do so by law or regulatory authorities. For example, we might need to provide information to HMRC (the UK tax authority) during an audit, or to comply with a court order or government request. We will only share the data specifically requested and will verify the validity of any request before doing so. Additionally, if necessary, we may share information to establish or defend our legal rights – for instance, disclosing relevant data in a legal claim or enforcing the terms of a contract. This will be done judiciously and only to the extent allowed by data protection law.

Crucially, any third party that receives personal data from us is contractually or legally obligated to keep it secure and confidential. We require all our service providers to implement appropriate data protection measures. We do not permit them to use your data for their own purposes. If in the future we ever need to transfer personal data in a way not covered here, we will inform you and ensure a proper legal basis exists for the sharing.

International Data Transfers

Façade Creations Ltd is based in the UK, and we primarily store and process personal data on servers located in the UK or European Economic Area (EEA). However, some of our third-party service providers may host or process data in other countries. For example, we use cloud platforms like Microsoft 365 and Google services, which might involve storing data on servers in the United States or other locations. When personal data is transferred outside of the UK (or EEA), we take steps to ensure it remains protected to UK standards. In particular, we will only transfer data internationally if:

  • The destination country has an adequacy decision from the UK Government (meaning it’s been officially approved as providing an equivalent level of data protection); or
  • We have in place appropriate safeguards such as the UK International Data Transfer Agreement or Standard Contractual Clauses (SCCs) with the receiving party; or
  • A relevant exception or derogation under UK GDPR applies (used only in special cases, such as with your explicit consent or to perform a contract with you when the transfer is necessary).

For example, Microsoft and Google are companies that implement standard contractual clauses and other measures to lawfully transfer data from the UK to their global data centers. These contractual clauses commit the recipient to protect your information to the same standards as it would be inside the UK. We also assess the risk of each transfer and ensure that any foreign party can uphold those commitments in practice.

You can rest assured that any cross-border transfer of your data is handled securely and in compliance with law. If you have questions about international data transfers (for instance, if you want to know if your data is stored in a certain country), please contact us. We can provide you with further details of the safeguards in place for transfers to specific providers or countries.

Data Security Measures

We understand the importance of security in protecting personal data. Façade Creations Ltd has implemented a range of technical and organisational measures to safeguard the information we hold from unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Secure cloud storage: We store digital data using trusted cloud services like Microsoft 365 (for emails and documents) and Xero (for accounting records), which offer encryption and robust security features. Data is encrypted in transit (e.g., when sending emails or uploading files) and at rest wherever possible.
  • Access controls: We protect our systems with strong passwords and, where available, two-factor authentication. Access to personal data is restricted to authorized personnel only – for example, only the Director and specific staff who need the information to perform their job can access client data. We enforce role-based access control, meaning each employee or contractor only sees the data necessary for their role.
  • Employee training and policies: All Façade Creations staff are trained in basic data protection and confidentiality procedures. We have internal policies in place to prevent unauthorized sharing of data and to handle personal data correctly. Employees are required to adhere to these policies and are aware of their responsibilities under data protection law.
  • Network and IT security: We use up-to-date security software and hardware protections. This includes firewalls and antivirus/anti-malware tools on our computers, regular software updates/patches to protect against vulnerabilities, and secure configurations for our devices and accounts. We also utilize secure email protocols and file transfer methods to prevent data interception. Whenever we transfer or backup data, we aim to use encrypted channels or encryption of the files themselves.
  • Physical security: For any paper documents or printed records containing personal data (such as signed contracts or printed invoices), we store them in locked cabinets with controlled access. Our offices have appropriate security measures (locks, alarms, etc.) to prevent unauthorized entry. When such documents are no longer needed, we dispose of them securely (e.g., through shredding).
  • Monitoring and maintenance: We perform regular checks and updates on our systems. This includes periodic security audits or reviews of our IT environment, monitoring for any suspicious activity, and ensuring that any vulnerabilities are promptly addressed. We also have procedures to handle any suspected data breach swiftly and effectively (including notifying affected individuals and regulators when required by law).

While we strive to protect your personal data with these robust measures, it’s important to note that no method of transmission over the internet or electronic storage is 100% secure. However, we continuously review and enhance our security practices to meet or exceed industry standards and legal requirements. If you have reason to believe that your data may have been compromised (for example, if you suspect any unauthorized access), please contact us immediately so we can investigate and take appropriate action.

Data Retention and Deletion

We will keep your personal data only for as long as necessary to fulfill the purposes we collected it for, including for any legal, accounting, or reporting requirements. Retention periods can vary depending on the type of data and the context. Broadly, our retention schedule is as follows:

  • Project and contract data: Information related to projects, client contracts, and associated communications is typically retained for 6 to 10 years. This period covers the duration of the project plus the time we may need to retain records for legal purposes (for example, contract limitation periods can be up to 6 years, and construction-related warranties or obligations may last up to 10 years). Keeping these records helps us address any post-project issues or legal obligations that arise.
  • Financial and transaction records: Accounting records, invoices, and payment histories are kept for 6 years after the end of the financial year in which the transaction occurred. This retention length is in line with HMRC requirements and standard accounting practices.
  • Employee data: If you were an employee of Façade Creations Ltd (past or present), we retain your personnel records for 6 years after the end of your employment. This allows us to fulfill any post-employment obligations (such as providing references or handling any legal claims or tax issues). (Note: Employee data is handled under internal policies not fully detailed in this external privacy policy, but we apply the same care and legal compliance.)
  • Marketing and contact list data: If you have consented to receive marketing emails (e.g., you’re on our newsletter list), we will keep your contact information until you withdraw your consent or unsubscribe from our communications. If we notice you’ve long been inactive (not opening emails, etc.), we may also remove your details as part of regular list cleaning. In any case, if you opt out or the marketing purpose ends, we will promptly delete or anonymise your details from our marketing database.

After the relevant retention period ends, or once the data is no longer needed, we will either securely delete or anonymise the personal data. Secure deletion may involve permanent erasure of electronic files and shredding of physical documents, ensuring the data cannot be recovered or misused. Anonymisation means we might retain certain information in a form that no longer identifies you (for example, keeping aggregated project statistics with personal identifiers removed) – this allows us to have historical metrics without compromising your privacy.

If there is any piece of data we cannot immediately delete (for instance, if it’s stored in a backed-up archive that is not easily editable), we will ensure it’s put beyond ordinary use and deleted as soon as practicable. We also periodically review the data we hold and erase or anonymise anything that is no longer necessary.

Your Data Protection Rights

Under the UK GDPR and applicable data protection laws, you have a number of important rights regarding the personal data that we hold about you. We fully support these rights and have processes in place to enable you to exercise them. Your rights include the following:

  • Right to be informed: You have the right to clear and transparent information about how we collect and use your personal data. We fulfill this right by providing notices like this Privacy Policy and explaining things at the point of data collection.
  • Right of access: You can request a copy of the personal data we hold about you, as well as information on how we use it, who we share it with, how long we keep it, etc. This is often called a “Subject Access Request.” We will provide you with a copy of your data and the relevant information, free of charge (unless an exemption applies), within one month of your request.
  • Right to rectification: If any of your personal data we have is inaccurate or incomplete, you have the right to have it corrected or updated without undue delay. Just let us know what needs fixing, and we will amend our records and notify any third parties who received the incorrect data.
  • Right to erasure: Also known as the “right to be forgotten,” this gives you the right to request that we delete your personal data in certain circumstances. For example, if the data is no longer necessary for the purposes it was collected, or if you withdraw consent and we have no other legal basis to keep it, or if you object to processing and we have no overriding legitimate grounds – you can ask us to erase your data. We will also take steps to inform others (e.g., service providers) processing your data to do the same. Keep in mind, this right is not absolute; sometimes we may need to retain certain information if required by law or for legal claims, but we will inform you if that is the case.
  • Right to restrict processing: You have the right to request that we limit the processing of your data in certain situations. This means we would still store your data but would not use it for anything new until the restriction is lifted. You might exercise this right if, for example, you contest the accuracy of the data (while we verify it), or if you object to our processing and we are considering that objection, or if you need us to preserve data for a legal claim. When processing is restricted, we will make note of it and only process it with your consent or for legal reasons.
  • Right to data portability: You can request to receive certain personal data that you have provided to us in a structured, commonly used, machine-readable format, and you have the right to have that data transmitted to another controller where technically feasible. This right applies only to data processed by automated means, which you initially provided to us, and that we process based on your consent or on a contract. For instance, if you wanted to switch service providers, you could ask us for a copy of the data you gave us so you can easily reuse it with the new provider.
  • Right to object: You have the absolute right to object to your personal data being used for direct marketing purposes at any time. If you object, we will stop using your data for marketing immediately. Additionally, if we are processing your data based on a legitimate interest or for a task in the public interest, you have the right to object to that processing on grounds relating to your particular situation, unless we have compelling legitimate grounds to continue (or the processing is for legal claims) . In practice, this means if you disagree with something like analytics or an internal use based on legitimate interests, you can challenge it – and we will stop unless we have a strong justification that your rights do not override.
  • Rights related to automated decision-making: You have the right not to be subject to a decision based solely on automated processing (including profiling) that has legal or similarly significant effects on you, unless certain exceptions apply. As noted in this policy, Façade Creations does not engage in automated decision-making or profiling on personal data, so this right is generally not triggered in our activities. If that ever changes, we will inform you and ensure compliance (including your right to request human intervention, to express your point of view, and to contest the decision).

Exercising your rights: We will do our best to make it easy for you to exercise these rights. If you want to make any request regarding your personal data, you can contact us by email at info@facadecreations.co.uk or by using the contact details in the Contact Us section. There is no fee for making a request (except in rare cases of excessive or unfounded requests, where a reasonable fee might be charged as permitted by law). We will respond to your request as soon as possible and no later than one month from receiving it. If your request is complex or numerous, we may extend this deadline by up to two further months, but we will inform you and explain why if that happens.

 We may need to verify your identity before acting on a data rights request, to ensure we don’t disclose data to an unauthorized person. This is usually done by asking for basic information to match our records. You will not be discriminated against or penalized for exercising any of these rights.

 If you make a request and are not satisfied with our response or you believe we are not processing your personal data lawfully, you also have the right to lodge a complaint with the UK supervisory authority, the Information Commissioner’s Office (ICO). We welcome the opportunity to address your concerns first, but you are entitled to contact the ICO at any time. (ICO’s website: ico.org.uk, telephone: 0303 123 1113.)

Special Category (Sensitive) Data

 “Special category data” refers to particularly sensitive personal information that is given extra protection under law. This includes data about your racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic or biometric identifiers, health information, or sex life/sexual orientation. Façade Creations Ltd does not routinely collect or process any special category data. Our projects and services generally do not require this type of information. We focus on business-related data (as described in Personal Data We Collect) and avoid collecting sensitive details unrelated to our work.

 In the normal course of business, we will not ask you for special category data, and we request that you do not send us such information unless absolutely necessary. There may be very rare exceptions where we might handle special category data, for example:

  • If we have employees, we might process limited health information for employment law purposes (such as processing sick leave or workplace injuries) or diversity data for equal opportunity monitoring.
  • If a project has specific safety requirements, we might need to note medical or dietary information for individuals attending a site (e.g., allergy information for event catering, or health conditions relevant to site work).
  • If you voluntarily provide us with sensitive information for a specific purpose (for instance, if you share a health concern that affects project scheduling, or you have accessibility needs we should accommodate in meetings).

 In any such cases, we would only process special category data with your explicit consent or where otherwise lawfully permitted (e.g., if it’s necessary to protect someone’s vital interests in an emergency) . We will clearly explain why the information is needed and how it will be used, and we will apply extra care in handling it (for example, heightened security measures and limited access only to those who need to know). If we do not have a valid reason or consent, we will refrain from recording any special category details you might inadvertently share and may securely delete them.

Please note: We do not collect information about criminal convictions or offenses as part of our usual business. Should we ever need to conduct due diligence that involves such data (e.g., background checks for a significant contract), we would do so in strict compliance with legal requirements and notify you in advance.

Automated Decision-Making

 Automated decision-making means making decisions about individuals solely by automated means (i.e., without human involvement) that have legal or similarly significant effects on them. Profiling is related, involving automated processing of personal data to evaluate certain things about an individual (like interests or behavior). Façade Creations Ltd does not use any automated decision-making or profiling in our processing of personal data.

All decisions regarding our projects, client relationships, hiring, or services involve human deliberation and oversight. For example, if you contact us for a quote, a real person reviews your requirements and prepares the proposal – we do not have a computer program unilaterally deciding prices or project acceptance. Similarly, any assessments or decisions (such as selecting suppliers or evaluating job applicants) are made by our qualified staff, not by algorithms.

Because we do not engage in these practices, the provisions of UK GDPR relating to automated decision-making (Article 22) do not presently apply to data we hold. That means you will not be subject to a decision with legal or significant effects made purely by a machine or AI in our dealings. If in the future we ever introduce an automated process that could significantly affect you, we will update this Privacy Policy accordingly and ensure all your rights in relation to such processing are respected (including the right to be informed, the right to request human intervention, and the right to contest the decision).

Policy Updates and Availability

We may update this Privacy Policy from time to time to reflect changes in our business practices, legal requirements, or to improve clarity. If we make significant changes, we will notify you either by posting a prominent notice on our website or by contacting you directly (for example, via email, if appropriate). We encourage you to review this policy periodically to stay informed about how we are protecting your information. The “last updated” date at the top of this policy indicates when the latest changes were made.

This Privacy Policy is publicly available and easily accessible: it is posted on our official website (typically on the footer of each page or the legal section). If you prefer a different format, we can provide this policy as a PDF or a printed document upon request. We are also happy to assist anyone who requires accommodations to access the information – for instance, we can provide large-print or audio versions if needed to meet accessibility standards. Our aim is to ensure that everyone can understand our privacy practices, in line with the transparency obligations of the UK GDPR and our commitment to accessibility (WCAG 2.1 AA).

 Additionally, we integrate privacy information into our interactions where appropriate. For example, we may include reminders or links to this policy in our client contracts, proposals, or email communications, so that you can reference it at any time. If you are working with us under a contract, this Privacy Policy can be provided as part of the contract documentation or upon request, and it will govern how we handle any personal data in that context.

Contact Us

Façade Creations Ltd takes data protection seriously, and we welcome any questions or requests you may have about this Privacy Policy or your personal data. Hashim Choksi (Director) oversees our data privacy compliance and would be the point of contact for any data protection queries. While we are not required by law to appoint a formal Data Protection Officer at our current size, our director assumes responsibility to ensure we meet all our privacy obligations.

If you have any questions, concerns, or wish to exercise your rights, please do not hesitate to contact us:

  • Email: info@facadecreations.co.uk
  • Postal Address: Façade Creations Ltd, 124 City Road, London, EC1V 2NX, United Kingdom
  • Telephone: +44 (0)116 289 3343 (ask for the data protection contact)

 Using email is usually the quickest way to reach us for privacy matters, but you are welcome to contact us by mail or phone if you prefer. When you contact us, please let us know it’s regarding privacy or data protection so we can direct your query appropriately. We will endeavor to respond to all inquiries promptly and courteously.

 If you contact us to exercise a data right or about a potential issue, we may ask you to verify your identity or provide additional information to ensure we understand and address your request correctly. We appreciate your cooperation in this process as it helps us safeguard your data from unauthorized access.

 Your trust is important to us. We truly value the confidence you place in Façade Creations Ltd to handle your personal information responsibly. If there’s anything we can clarify or if you have suggestions about this Privacy Policy, please let us know. We continually strive to improve our privacy practices and communication.

 Thank you for taking the time to read our Privacy Policy. We are committed to protecting your data and your rights, and we look forward to working with you in a way that respects your privacy.

Last updated: February 2026