Privacy Policy

Who we are

RAPD Services Ltd is a quality assurance and testing consultancy registered in England and Wales. Our registered office is Suite RA01, 195-197 Wood Street, London, E17 3NU.

We are the data controller for any personal data we collect through this website or through our business activities. If you have any questions about how we handle your data, please contact us at contact@rapdservice.co.uk.

This policy applies to personal data collected via our website at rapdservice.co.uk, through our contact form, by email and through our client and prospect relationships. We are committed to handling your data responsibly and in accordance with UK GDPR and the Data Protection Act 2018.

What data we collect and why

Contact and enquiry data

When you submit an enquiry through our website contact form or contact us by email or phone, we collect your name, company name, email address, phone number and the content of your message. We use this information to respond to your enquiry and, where relevant, to discuss potential work together. The legal basis for this processing is our legitimate interest in responding to business enquiries.

Client relationship data

When we work with you as a client, we collect and retain the personal data necessary to deliver our services and manage the business relationship. This includes contact details for key individuals, details relevant to the scope of work and any personal data shared with us in the course of an engagement. The legal basis for this processing is the performance of a contract or our legitimate interests in managing client relationships.

Website usage data

Our website may collect standard technical data about how it is accessed, including IP addresses, browser type, pages visited and time spent on the site. This data is used to understand how our website is used and to maintain and improve it. Where this constitutes personal data, the legal basis is our legitimate interest in operating an effective website.

QA Maturity Assessment data

Our QA Maturity Assessment is hosted at assess.rapdservice.co.uk. Any data collected through that tool is subject to the privacy notice applicable to that platform. If you have questions about data collected through the assessment, please contact us directly.

How we use your data

We use the personal data we collect to:

• Respond to enquiries and provide information about our services
• Deliver the QA and testing services we have been engaged to provide
• Manage our client relationships and fulfil our contractual obligations
• Send service-related communications where relevant to an ongoing engagement
• Comply with our legal and regulatory obligations
• Maintain and improve this website

We do not sell your personal data to third parties. We do not use your data for automated decision-making or profiling. We do not send unsolicited marketing communications.

Who we share your data with

We share personal data only where necessary and with appropriate safeguards in place. The categories of recipients are:

Service providers: We use EmailJS to process contact form submissions. EmailJS acts as a data processor on our behalf and processes data only in accordance with our instructions. We may also use standard business tools such as email and document management platforms, which may involve limited data processing by those providers.

Our India delivery team: Where our India-based delivery capability is involved in a client engagement, relevant contact and project information may be shared with those team members. This constitutes an international transfer of data. We ensure that appropriate safeguards are in place for any such transfers in accordance with UK GDPR requirements.

Legal and regulatory bodies: Where we are required to do so by law, we may share personal data with regulatory authorities or in connection with legal proceedings.

How long we keep your data

We retain personal data for as long as is necessary for the purposes for which it was collected, subject to any longer retention periods required by law.

Enquiry data from individuals who do not become clients is retained for up to 12 months after the last contact, after which it is securely deleted unless there is a specific reason to retain it.

Client relationship data is retained for a minimum of six years after the end of the engagement in accordance with standard UK business record-keeping requirements. Financial records are retained in line with HMRC guidance.

Your rights

Under UK GDPR, you have the following rights in relation to your personal data:

To exercise any of these rights, please contact us at contact@rapdservice.co.uk. We will respond within one month. You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk if you are not satisfied with how we handle your data.

Cookies

This website may use essential cookies to ensure it functions correctly. We do not currently use tracking cookies, advertising cookies or analytics platforms that set persistent third-party cookies. If this changes, we will update this policy and implement an appropriate consent mechanism.

Security

We take reasonable technical and organisational measures to protect personal data against unauthorised access, loss or disclosure. Our website is served over HTTPS. Access to personal data within our business is restricted to those who need it to carry out their responsibilities.

No method of electronic transmission or storage is completely secure. Whilst we take our security obligations seriously, we cannot guarantee the absolute security of data transmitted to us over the internet.

Changes to this policy

We review this privacy policy periodically and will update it where necessary to reflect changes in our practices or in applicable law. The date at the bottom of this page shows when it was last updated. We recommend checking this page occasionally if you have an ongoing relationship with us.