In short: We collect only the information you provide to us through our enquiry form or by email. We use it to respond to your enquiry and prepare any audit or proposal you've requested. We don't sell your data, share it with marketers, or send unsolicited messages. You can ask us to delete your information at any time.
1. Who we are
This privacy policy explains how Clermont Works ("we", "us", "our") collects, uses, and protects personal data in connection with our website and services. Clermont Works is a trading name of Bishop Industries Ltd, a company registered in England and Wales. References to "Clermont Works" in this policy include our divisions, including Clermont Growth.
For all privacy-related queries, please contact us at hello@clermontgrowth.co.uk.
2. What information we collect
We collect personal data that you voluntarily provide when you interact with us. The categories of data we collect are:
- Contact details — your name, email address, role, and the firm you work for, when you submit our enquiry form or email us directly.
- Firm information — your firm's name, location, sector, service or practice areas, and website URL, where you provide these in an enquiry.
- Communication content — the contents of any messages, emails, or other communications you send to us.
- Technical data — limited information about your device, browser, and how you interact with our website, collected automatically through standard web hosting logs maintained by our hosting provider.
We do not collect special category data (such as health information, religious beliefs, or biometric data), and we do not knowingly collect any data from children under 18.
3. How we use your information
We use the personal data you provide for the following purposes:
- To respond to your enquiry — including preparing and sending you an AI visibility audit or proposal where you have requested one.
- To deliver our services — if you become a client, to fulfil our contractual obligations to you and your firm.
- To communicate with you — including following up on your enquiry, scheduling calls, and sending information directly relevant to your request.
- To improve our services — analysing patterns in how visitors use our website (in aggregate, non-identifying form) to make our content and offer more useful.
- To meet legal and regulatory obligations — including tax, accounting, and compliance requirements.
We do not use your data for automated decision-making, profiling, or any form of marketing to which you have not consented. We do not sell your data to third parties.
4. Lawful basis for processing
Under UK GDPR, we must have a lawful basis for processing personal data. The lawful bases we rely on are:
- Consent — when you submit our enquiry form, you provide consent for us to process your information for the purposes set out in this policy. You can withdraw consent at any time by contacting us.
- Legitimate interests — to respond to enquiries, prepare audits, and operate our business effectively. We have considered the impact on your rights and concluded that our processing is proportionate and necessary.
- Contractual necessity — where you become a client, processing your data is necessary to perform our contract with you.
- Legal obligation — where we are required by law to retain certain information (for example, financial records).
5. How long we keep your data
We retain personal data only for as long as necessary for the purposes for which it was collected.
- Enquiry data — retained for up to 36 months from your last contact with us, after which it is deleted unless you have become a client.
- Client data — retained for the duration of our engagement and for up to 7 years after the end of our engagement, in line with UK accounting and tax obligations.
- Email correspondence — retained for as long as needed to manage the relationship, then archived or deleted in line with the periods above.
6. Who we share your data with
We do not sell, rent, or trade your personal data. We share your data only in the following limited circumstances:
- Service providers — we use trusted third-party providers to operate our business, including our website host (Netlify), email infrastructure (Microsoft 365 via GoDaddy), and outreach platform (Instantly.ai). These providers process data on our behalf under appropriate contractual safeguards.
- Professional advisers — including accountants and legal advisers where necessary for the operation of our business.
- Legal and regulatory authorities — where we are required by law to disclose information.
Some of our service providers may process data outside the UK or EEA. Where this happens, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the UK Information Commissioner's Office.
7. Your rights
Under UK GDPR, you have the following rights in relation to your personal data:
- Right of access — to request a copy of the personal data we hold about you.
- Right to rectification — to request that we correct any inaccurate or incomplete data.
- Right to erasure — to request that we delete your personal data, subject to certain exceptions.
- Right to restrict processing — to request that we limit how we use your data.
- Right to data portability — to request a copy of your data in a structured, commonly used format.
- Right to object — to object to our processing of your data on grounds relating to your particular situation.
- Right to withdraw consent — where we are processing your data on the basis of consent, you can withdraw it at any time.
To exercise any of these rights, please email us at hello@clermontgrowth.co.uk. We will respond within one month.
If you are unhappy with how we have handled your personal data, you have the right to complain to the UK Information Commissioner's Office (ICO) at ico.org.uk or by calling 0303 123 1113.
8. How we protect your data
We take the security of your personal data seriously. We use industry-standard technical and organisational measures to protect against unauthorised access, alteration, disclosure, or destruction of your data. These include:
- HTTPS encryption on all our websites
- Authenticated email infrastructure (SPF, DKIM, DMARC)
- Access controls limiting who can view personal data
- Regular security updates to our systems and tools
- Vetting of our third-party service providers
While we take all reasonable precautions, no method of transmission over the internet is completely secure. If you have concerns about the security of your data, please contact us.
9. Cookies
Our websites do not currently use tracking cookies, advertising cookies, or third-party analytics that identify individual visitors. Our hosting provider may set essential cookies necessary for the website to function correctly.
If we introduce additional cookies in the future, we will update this policy and provide a cookie notice on our websites where required.
10. Changes to this policy
We may update this privacy policy from time to time to reflect changes in our practices, legal requirements, or for other operational reasons. The "Last updated" date at the top of this policy will indicate when it was most recently revised. Significant changes will be highlighted on our websites.
11. Contact us
If you have any questions about this privacy policy, our data practices, or your rights, please contact us:
Email: hello@clermontgrowth.co.uk
Entity: Clermont Works, a trading name of Bishop Industries Ltd
Registered in: England and Wales