Privacy Policy

Privacy Policy for Virsolus Limited

Effective Date: 28th October 2025

Virsolus Limited (Company Number 13145816), ("Virsolus, "we," "us," or "our"), is committed to protecting the privacy and security of your personal data. This Privacy Policy describes how we collect, use, and share your personal data, and what rights you have regarding your data.

1. Who We Are

Virsolus Limited is a management consultancy providing services to businesses. For the purposes of data protection law, Virsolus is the Data Controller of the personal data you provide to us, meaning we determine the purposes and means of processing that data.

2. The Data We Collect

We may collect, use, store, and transfer different kinds of personal data about you, which we have grouped as follows:

Identity Data
Contact Data
Financial Data
Transaction Data
Technical Data
Usage Data
Marketing and Communications Data

We do not typically collect Special Categories of Personal Data (such as race, religion, health, etc.) unless specifically required for a project and with your explicit consent.

3. How We Collect Your Data

We use different methods to collect data from and about you, including:

Direct Interactions: You may give us your Identity, Contact, and Financial Data by filling in forms or corresponding with us by post, phone, email, or otherwise. This includes data you provide when you:
- Engage us for consultancy services
- Subscribe to our service or publications
- Request marketing to be sent to you
- Give us feedback or contact us
Automated Technologies or Interactions: As you interact with our website, we will automatically collect Technical Data and Usage Data using cookies, server logs, and other similar technologies.
Third Parties or Publicly Available Sources: We may receive personal data about you from various third parties and public sources, such as:
- Analytics providers like Google
- Search information providers

4. How We Use Your Data (Purpose and Lawful Basis)

We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:

Purpose/Activity

Type of Data Used

Lawful Basis for Processing

To provide our consultancy services and manage our contract with you.

Identity, Contact, Financial, Transaction

Performance of a contract with you.

To process and deliver your order, including managing payments and fees.

Identity, Contact, Financial, Transaction

Performance of a contract with you; Necessary for our legitimate interests (to recover debts due to us).

To manage our relationship with you, including notifying you about changes to our terms or privacy policy.

Identity, Contact, Marketing and Communications

Performance of a contract with you; Necessary to comply with a legal obligation; Necessary for our legitimate interests (to keep our records updated).

To administer and protect our business and website (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data).

Identity, Technical, Usage

Necessary for our legitimate interests (for running our business, provision of administration and IT services, network security, and preventing fraud).

To send marketing communications.

Identity, Contact, Marketing and Communications

Consent (where required); Necessary for our legitimate interests (to develop our services and grow our business).

5. Sharing Your Personal Data

We may share your personal data with the parties set out below for the purposes outlined in Section 4:

Internal Third Parties: Other companies in the WR Hill acting as joint controllers or processors.
External Third Parties:
- Service providers acting as processors who provide IT and system administration services.
- Professional advisers including lawyers, bankers, auditors, and insurers who provide consultancy, banking, legal, insurance, and accounting services.
- Regulators and other authorities who require reporting of processing activities in certain circumstances.

We require all third parties to respect the security of your personal data and to treat it in accordance with the law.

6. Data Security and Retention

Security: We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorised way, altered, or disclosed.
Retention: We will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting, or reporting requirements.

7. Your Legal Rights

Under data protection laws, you have rights in relation to your personal data. These include the right to:

Request access to your personal data (commonly known as a "data subject access request").
Request correction of the personal data that we hold about you.
Request erasure of your personal data.
Object to processing of your personal data.
Request restriction of processing your personal data.
Request transfer of your personal data to you or a third party.
Withdraw consent at any time where we are relying on consent to process your personal data.

If you wish to exercise any of the rights set out above, please contact us using the details in Section 8.

8. Contact Details and Complaints

If you have any questions about this Privacy Policy or our privacy practices, please contact the Data Protection Lead:

Full name of legal entity: Virsolus Limited
Email address: privacy@virsolus.com

You have the right to make a complaint at any time to the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO, so please contact us in the first instance.

Privacy Policy

This website uses cookies.