STERLING CODE - Privacy Policy
STERLING CODE LTD - sterlingcode.co.uk | Last updated: 25 June 2026
This Privacy Policy explains how STERLING CODE LTD (“Sterling Code”, “we”, “us”, “our”) collects and uses personal data of visitors to sterlingcode.co.uk and of individuals who contact us through the website contact form, email, phone or other channels. We are the controller of this personal data.
Company number: 15800092 (registered in England and Wales)
Registered office: 85 Great Portland Street, First Floor, London, United Kingdom, W1W 7LT
Website: sterlingcode.co.uk
Privacy contact: [email protected]
We process personal data in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018 and the Privacy and Electronic Communications Regulations 2003 (PECR), as amended by the Data (Use and Access) Act 2025.
This Policy covers initial communications about IT consulting, software development, web development, UI/UX design, technical support and related services.
We do not ask for special category data (such as health, biometric, political, religious or similar sensitive data) through the website. Please do not include such information unless it is strictly necessary for your inquiry.
The table below links each processing activity to the personal data used and the lawful basis we rely on under the UK GDPR.
We use strictly necessary cookies to operate the website and keep it secure; these do not require consent. Following the Data (Use and Access) Act 2025, certain low-risk first-party cookies used only for statistical/analytics purposes - to measure and improve the website - may be used on an opt-out basis, provided we give you a clear and free way to opt out. Cookies used for advertising, profiling or cross-site tracking are set only with your consent.
Where consent is required, we provide a cookie banner that lets you accept, reject or manage cookies. You can change your choice at any time through “Cookie settings” and your browser settings. A current cookie list, purposes and retention periods are set out in our Cookie Policy / cookie banner where such cookies are used.
We share personal data only with providers and parties that help us run the website and respond to your inquiry. Indicative categories are below - confirm and complete the actual providers before publication.
We do not sell website visitors’ personal data. We put appropriate data processing terms in place with our processors.
Some providers or contractors are located outside the United Kingdom - typically in the European Economic Area (EEA) and the United States. Where we transfer personal data internationally, we rely on UK “adequacy” regulations where they apply, or on appropriate safeguards (the UK International Data Transfer Agreement (IDTA) or the UK Addendum to the EU Standard Contractual Clauses), applying the UK “data protection test” introduced by the Data (Use and Access) Act 2025. You can request a copy of the relevant safeguards by emailing [email protected].
Subject to UK GDPR conditions, you have the right to: be informed; access your data; have inaccurate data corrected; have data erased; restrict or object to processing; data portability; and to withdraw consent at any time where processing is based on consent (this does not affect processing done before withdrawal).
To exercise your rights, email [email protected]. We respond within one month; for complex or multiple requests we may extend this by up to two further months and will tell you if we do. We may ask you to verify your identity, and we may ask for clarification where a request is broad (in which case the time limit pauses until we receive it).
We do not make decisions about you based solely on automated processing that produce legal or similarly significant effects, and we do not carry out such profiling through the website.
The website and our services are aimed at businesses and are not directed at children. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, contact us and we will delete it.
If you have a concern about how we handle your personal data, please contact us first at [email protected]. In line with the Data (Use and Access) Act 2025, we will acknowledge your complaint within 30 days and take appropriate steps to resolve it without undue delay, keeping you informed of progress and the outcome.
You also have the right to complain to the UK Information Commissioner’s Office (ICO) (which is becoming the Information Commission):
ICO: Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF, United Kingdom
Helpline: 0303 123 1113
Online: ico.org.uk/make-a-complaint
We use reasonable technical and organisational measures - including access controls, encryption in transit where appropriate and limiting access on a need-to-know basis - to protect personal data against unauthorised access, loss, alteration or disclosure. No method of internet transmission or storage is completely secure, so we cannot guarantee absolute security.
Our website may link to third-party websites or services. We are not responsible for their privacy practices. Please review their privacy notices before providing personal data to them.
We may contact business users who have made an inquiry about related services where this is permitted by law. We do not send marketing where consent is required unless we have it. You can opt out at any time by contacting us or using any unsubscribe link provided.
We may update this Policy from time to time. The current version is identified by the “Last updated” date above and takes effect when published, unless stated otherwise. Material changes will be highlighted on the website.
For any question about this Policy or your personal data, contact us at [email protected].