Privacy Statement
Last updated: August 2025
1. Introduction
SBF Eco Ltd (“we”, “our”, “us”) is committed to protecting your personal data and respecting your privacy. This statement explains how we collect, use, and protect personal data when we interact with businesses and individuals in a business-to-business (B2B) context, including through our website and email marketing activities.
We comply with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and the Privacy and Electronic Communications Regulations (PECR).
2. Who We Are
· Business name: SBF Eco Ltd
· Registered address: 23 Ashford Crescent, Grange Farm. MK8 0NN.
· Company number: 16512276
· Data protection contact: Data Protection Officer
· Email: hello@sbfeco.com
3. What Data We Collect
In a B2B context, we may collect and process the following information:
· Name and contact details (e.g. business email address, phone number)
· Job title and role within your organisation
· Company name, address, and industry sector
· Details of previous communications or transactions with us
· Marketing preferences and consent records
We do not intentionally collect sensitive personal data unless required and agreed in writing.
4. How We Collect Data
We collect personal data in the following ways:
· When you provide it directly to us (via our website, email, phone, events, or meetings)
· From publicly available sources such as company websites, LinkedIn, and business directories
· From third-party data suppliers, where it is lawful to do so
5. How We Use Your Data
We process personal data only where we have a lawful basis under UK GDPR, which may include:
· Legitimate interests – e.g. promoting and growing our business to relevant industry contacts
· Consent – e.g. where you have opted in to receive marketing
· Contract – e.g. fulfilling an order or providing a service
· Legal obligation – e.g. complying with accounting or tax requirements
We may use your data to:
· Send relevant B2B marketing communications about our products and services
· Manage customer relationships and respond to enquiries
· Carry out contracts with your business
· Improve our website, products, and services
· Maintain business records
6. Marketing Communications
In line with PECR, we may send B2B marketing communications to corporate subscribers (e.g. company email addresses) where:
· You have an existing business relationship with us, or
· Your contact details are publicly available and relevant to your role
You may opt out of marketing at any time by clicking the “unsubscribe” link in our emails or by contacting us directly.
7. How We Protect Your Data
We use appropriate technical and organisational measures to protect personal data from unauthorised access, loss, or misuse.
8. Data Sharing
We may share your personal data with:
· Service providers acting on our behalf (e.g. email marketing platforms, CRM providers, IT support)
· Professional advisers (e.g. accountants, solicitors)
· Regulatory bodies or authorities where required by law
We do not sell your personal data.
9. International Data Transfers
If we transfer data outside the UK, we will ensure appropriate safeguards are in place (e.g. adequacy decisions, standard contractual clauses).
10. Data Retention
We keep personal data only for as long as necessary to fulfil the purposes for which it was collected, including for legal, accounting, or reporting requirements.
11. Your Rights
Under UK GDPR, you have the right to:
· Access your personal data
· Correct inaccurate data
· Request erasure of your data
· Object to or restrict processing
· Withdraw consent where processing is based on consent
· Complain to the Information Commissioner’s Office (ICO) at www.ico.org.uk
To exercise these rights, please contact us using the details above.
12. Updates to This Statement
We may update this Privacy Statement from time to time. The latest version will always be available on our website.