Privacy Policy

1. Introduction

This Privacy Policy explains how Woodyer Capital Ltd (“Woodyer Capital”, “we”, “our”, or “us”) collects, uses, stores, and shares personal data when you interact with our website, contact us, or engage with our services.

We operate as an industrial intelligence and market research firm. This policy applies to personal data processed through our website, email, and related communications (the “Services”).

If you do not agree with this Privacy Policy, you should not use our website or submit personal data to us.

2. Who We Are and How to Contact Us

Controller: Woodyer Capital Ltd (the “Data Controller” for the personal data described in this Privacy Policy).

Contact: You can contact us using the details published on our website, including the email address shown in the footer.

Where required, we will respond to privacy-related requests in accordance with applicable law.

3. Personal Data We Collect

We may collect and process the following categories of personal data:

• Identity and contact data: name, company name, job title, email address, phone number, and any details you include in messages.
• Communication data: the content of your enquiries, emails, and other correspondence with us.
• Technical data: IP address, device type, browser type, operating system, referral source, and similar technical identifiers.
• Usage data: how you interact with our website (e.g., pages viewed, time on page, clicks), where collected through analytics tools.
• Business-related data you provide: any information you submit about mandates, requirements, target markets, asset criteria, or organisational preferences.

We do not intentionally collect special category data (such as health or biometric data). Please do not submit such data to us. If you do provide it, you acknowledge you do so voluntarily and at your own risk.

4. How We Use Personal Data and Our Legal Bases

We process personal data only where we have a lawful basis to do so. Depending on the context, our legal bases may include:

• Legitimate interests: operating and securing our website, communicating with counterparties, developing business relationships, and delivering industrial intelligence services in a professional context.
• Contract / steps prior to contract: responding to enquiries, providing information requested by you, and administering service discussions or engagement.
• Legal obligation: complying with applicable laws, responding to lawful requests, and maintaining records where required.
• Consent (where applicable): for certain cookies/analytics or marketing communications where opt-in is required.

We use personal data for purposes that may include:

• responding to messages and enquiries submitted via the website or email;
• assessing requests, mandates, or requirements and determining whether we can assist;
• providing and improving our Services, including operational administration and internal record-keeping;
• protecting our website and systems, including fraud prevention, security monitoring, and misuse detection;
• analytics and performance measurement (where enabled) to understand how the site is used and improve user experience;
• sending administrative or relationship communications relevant to your enquiry or engagement.

We do not sell personal data. We do not use your personal data to make automated decisions that produce legal or similarly significant effects.

5. Sharing Personal Data

We may share personal data only where necessary and proportionate for legitimate business and operational reasons, including:

• Service providers: hosting, analytics, website tooling, communications, and security providers who process data on our instructions.
• Professional advisers: legal, accounting, or compliance advisers where required for risk management and governance.
• Legal and regulatory requests: where we are required to disclose personal data to comply with applicable law, court orders, or lawful requests.
• Corporate events: in the event of a merger, acquisition, reorganisation, or sale of assets, where personal data may be transferred as part of that transaction.

Where we use third-party processors, we take reasonable steps to ensure appropriate confidentiality and security obligations apply.

6. International Transfers, Retention, and Security

International transfers: Some service providers may process personal data outside the UK. Where transfers occur, we take steps designed to ensure an appropriate level of protection, such as contractual safeguards where applicable.

Retention: We retain personal data only for as long as necessary for the purposes described in this Privacy Policy, including responding to enquiries, maintaining business records, and meeting legal or compliance obligations. Retention periods vary based on the nature of the data and the context in which it was collected.

Security: We implement reasonable technical and organisational measures designed to protect personal data against accidental loss, unauthorised access, alteration, disclosure, or destruction. However, no method of transmission or storage is completely secure and we do not guarantee absolute security.

7. Your Rights and Cookies

Depending on your location and applicable law (including UK GDPR), you may have rights in relation to your personal data, which can include:

• the right to access the personal data we hold about you;
• the right to request correction of inaccurate or incomplete personal data;
• the right to request deletion of personal data in certain circumstances;
• the right to restrict or object to certain processing (including processing based on legitimate interests);
• the right to data portability in certain circumstances;
• the right to withdraw consent where we rely on consent (without affecting processing before withdrawal).

Cookies: Our website may use cookies or similar technologies. Where required, we will present choices regarding non-essential cookies. For full details, refer to our Cookie Policy.

Complaints: If you have concerns about our processing of your personal data, you may contact us first. You may also have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO) or your local supervisory authority.