About Brands Why Us Careers Let's Talk

Privacy Policy

How Phytoventures Ltd collects, uses, and protects your personal data.

Last updated: 15 March 2026 Phytoventures Ltd (Company No. 16388003)

1. Introduction

Phytoventures Ltd ("we", "us", "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and share your personal data when you visit or interact with our website at phytoventures.net (the "Website").

Phytoventures Ltd (Company Number: 16388003), registered at Belmont Suite, Paragon Business Park, Chorley New Rd, Lostock, Bolton BL6 6HG, is the data controller for the purposes of applicable data protection legislation, including the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Data We Collect

2.1 Information You Provide

When you submit our contact form, we collect the following personal data:

  • Name — to identify and address you
  • Email address — to respond to your inquiry
  • Company name (optional) — to understand your business context
  • Inquiry type — to route your message appropriately
  • Message content — the details of your inquiry

2.2 Information Collected Automatically

When you visit our Website, we may automatically collect certain technical data, including:

  • IP address
  • Browser type and version
  • Operating system
  • Referring website
  • Pages visited and time spent on the Website
  • Date and time of access

3. How We Use Your Data

We use the personal data we collect for the following purposes:

  • To respond to your inquiries — processing and replying to messages submitted through our contact form
  • To send confirmation emails — acknowledging receipt of your inquiry
  • To improve our Website — analysing usage patterns to enhance user experience
  • To comply with legal obligations — meeting our regulatory and legal requirements

4. Legal Basis for Processing

We process your personal data on the following legal bases under the UK GDPR:

  • Consent (Article 6(1)(a)) — when you submit our contact form and tick the consent checkbox
  • Legitimate interests (Article 6(1)(f)) — to operate and improve our Website, provided these interests do not override your rights
  • Legal obligation (Article 6(1)(c)) — where we are required to process data by law

5. Third-Party Services

We use the following third-party services that may process your personal data:

  • Resend — email delivery service used to send contact form submissions and confirmation emails. Resend processes your name and email address on our behalf. For more information, see Resend's Privacy Policy.

We do not sell, rent, or trade your personal data to third parties for marketing purposes.

6. Cookies

Our Website uses minimal, essential cookies required for the site to function correctly. We do not currently use analytics cookies, advertising cookies, or tracking cookies.

If we introduce additional cookies in the future, we will update this policy and provide appropriate notice and consent mechanisms.

7. Data Retention

We retain personal data collected through our contact form for a maximum of 24 months from the date of your inquiry, unless a longer retention period is required by law or for the establishment, exercise, or defence of legal claims.

Technical data collected automatically (such as server logs) is retained for up to 12 months.

8. Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include:

  • Encrypted data transmission (HTTPS/TLS)
  • Input validation and sanitisation
  • Rate limiting on form submissions
  • Secure hosting infrastructure
  • Regular security reviews

9. Your Rights Under GDPR

Under the UK GDPR, you have the following rights regarding your personal data:

  • Right of access — request a copy of the personal data we hold about you
  • Right to rectification — request correction of inaccurate or incomplete data
  • Right to erasure — request deletion of your personal data ("right to be forgotten")
  • Right to restrict processing — request that we limit how we use your data
  • Right to data portability — request your data in a structured, commonly used format
  • Right to object — object to our processing of your personal data
  • Right to withdraw consent — withdraw your consent at any time, without affecting the lawfulness of processing before withdrawal

To exercise any of these rights, please contact us at [email protected]. We will respond to your request within one month.

10. International Transfers

Your personal data may be transferred to and processed in countries outside the United Kingdom where our third-party service providers operate. Where such transfers occur, we ensure that appropriate safeguards are in place in accordance with UK data protection law.

11. Children's Privacy

Our Website is not directed at individuals under the age of 18. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a minor, please contact us immediately.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated "Last updated" date. We encourage you to review this policy periodically.

13. Contact Us

If you have any questions about this Privacy Policy, wish to exercise your data rights, or have concerns about how we handle your personal data, please contact us:

  • Email: [email protected]
  • Data Controller: Phytoventures Ltd
  • Company Number: 16388003
  • Registered in: England and Wales

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) if you believe that your data protection rights have been violated. You can contact the ICO at ico.org.uk.