Leadium GDPR Statement

Leadium GDPR Statement

1. Who we are
Leadium Ltd (“Leadium”, “we”, “us”) is committed to protecting and respecting your privacy. We are the data controller for any personal data you provide to us via our website, services or other interactions.

2. What personal data we collect and why
We collect only the minimum personal data needed to deliver our service—typically your name, email address, company name, and any planning preferences you submit. We process this data on the lawful bases that (a) it is necessary for the performance of our contract with you (e.g. to send you filtered planning leads), and (b) where required, because you have given us your explicit consent (e.g. the service is emailed based).

3. How we use and disclose your data
Your data is used solely to power Leadium’s filters, generate planning lead alerts, fulfill subscriptions and support you. We will never sell your personal data. We may disclose data to our processors (e.g. hosting providers, Stripe for payments) under strict confidentiality and only to the extent necessary to provide our service.

4. Data retention
We retain your personal data only for as long as needed to provide you with our service, comply with legal obligations, resolve disputes or enforce our agreements. Typical retention is the duration of your active subscription plus up to two years thereafter, unless you ask us to delete it sooner.

5. Your rights
Under the UK GDPR, you have the right to:

  • Access the personal data we hold about you.

  • Rectify any inaccuracies.

  • Erase your data (“right to be forgotten”) where we have no overriding legitimate interest to retain it.

  • Restrict or object to our processing (e.g. unsubscribe from marketing).

  • Port your data in a common, machine-readable format.

  • Be informed if your data is used for automated decision-making (we do not do this).

To exercise any of these rights, please email us at ross@leadium.co.uk.

6. Security
We implement appropriate technical and organisational measures to protect your data against unauthorized access, alteration, disclosure or destruction (e.g. SSL encryption in transit, access controls, regular security reviews).

7. International transfers
Where your data is processed or stored outside the UK, we ensure an adequate level of protection through UK-approved transfer mechanisms (e.g. Standard Contractual Clauses).

8. Complaints
If you believe we have breached your data protection rights, please contact us first (ross@leadium.co.uk). You also have the right to lodge a complaint with the UK Information Commissioner’s Office: https://ico.org.uk/.

9. Changes to this policy
We may update this GDPR Statement to reflect changes in the law or our practices. The latest version will always be published on this page.