Privacy Policy
UK GDPR & Data Protection Act 2018 Compliant · Last updated: June 2026
1. Introduction
This privacy policy is issued by Network Consultancy (“NetCon”, “we”, “us”, and “our”) and applies to all services we provide. It is here to guide our users, clients, and anyone outside our organisation on exactly how we collect, use, store, and protect your personal information.
This policy is legally binding and complies with regulations such as the EU General Data Protection Regulation (GDPR), the UK Data Protection Act 2018, and the Privacy and Electronic Communications Regulations (PECR).
To protect your sensitive data from the latest AI-driven cyber threats, this policy will see occasional changes. It is your responsibility to check back here regularly to see updates.
Please read this privacy policy carefully alongside our other core pages for a better understanding of how we handle your digital environment:
- Terms of Service
- Cookies Policy
2. Who is Responsible for Your Data?
Network Consultancy is the organisation responsible for managing the data you share with us. We are incorporated in England and Wales and focus entirely on secure business network architecture and managed firewall engineering.
If you have any questions about how your information is handled, you can reach out directly to our compliance team using the contact details at the end of this page.
3. The Information We Collect
We only gather the minimum data required to deploy, monitor, and support your network security.
3.1 Information you give us directly
This includes any details your team submits during onboarding, engineering consultations, or helpdesk requests:
- Work contact details: Full names, business email addresses, phone extensions, and physical office locations.
- Account files: Corporate profiles, signed service contracts, and billing references.
- Technical blueprints: Temporary remote access credentials, network user lists, and firewall configuration parameters required by our team to set up your perimeter defences.
3.2 Information collected automatically
When your team visits our website or accesses our secure client support portal, our systems automatically log basic technical metadata to ensure connection stability:
- IP addresses, web browser versions, and device operating systems.
- Log-in timestamps, page navigation patterns, and system error diagnostic reports.
- Automated network traffic logs (such as port activity data and blocked IP lists) are generated during our round-the-clock threat monitoring.
4. Our Legal Basis for Handling Your Data
We only process your information when there is a practical, lawful reason to do so under UK and EU data laws:
- To fulfil our contract, we cannot set up your firewall rules, manage your network zones, or fix server drops without your technical data and staff contact info.
- To maintain network security: We have a legitimate interest in analysing incoming traffic patterns to block malware, prevent data breaches, and secure your business assets.
- To meet legal duties: We must maintain accurate corporate invoice ledgers and financial records to comply with UK tax regulations.
5. Data Retention Period
We do not store information indefinitely. Once its operational and legal purpose is complete, the data is permanently erased from our systems.
| Data Category | Specific Items | Retention Period | Practical Purpose |
|---|---|---|---|
| Network & Firewall Logs | Traffic packet logs, blocked IP registries, system events. | 90 Days | Monitoring active security events and resolving live connection drops. |
| Remote Access Records | VPN authentication histories, remote user log-in timestamps. | 12 Months | Post-incident audits to verify exactly who logged into your systems. |
| Technical Support History | Helpdesk tickets, engineer troubleshooting notes, email chains. | 3 Years | Contract verification and tracking recurring infrastructure faults. |
| Client Profiles & Contracts | Corporate account details, service contracts, billing contacts. | 6 Years | Ongoing corporate account management and service renewals. |
| Financial Ledger Records | Invoices, VAT tracking, transaction histories. | 7 Years | Strict compliance with statutory UK corporate tax auditing laws. |
6. How We Use Your Information
We use your data solely to keep your business communications safe. We do not use your network maps for marketing, and we never sell your data.
Your data is processed to:
- Configure and update your firewall rules, network segmentation boundaries, and user permissions.
- Scan network pathways 24/7 to identify, isolate, and block cyber threats before they spread.
- Establish encrypted, secure paths for your remote or hybrid workforce to log in safely.
- Troubleshoot downtime, resolve helpdesk tickets, and maintain network speed.
- Manage corporate accounts, process payments, and track contract terms.
7. Who We Share Your Data With
We only share technical or account data with essential partners who are required to help keep your network online. Every partner is legally bound to protect your data under the same strict guidelines we follow.
We only disclose data to:
- System infrastructure hosts: Highly secure data centres and cloud service providers that host our ticketing systems and tracking dashboards.
- Hardware manufacturers: The vendors who build your physical firewalls and routers, but only when we need to assign software licenses or escalate a major firmware bug.
- Payment processing systems: Secure banking networks used to process your corporate invoices.
- Legal authorities: UK law enforcement bodies, exclusively when we are served with a legally binding court order.
8. Data Security Controls
We maintain strict operational defences to protect your network layouts and contact details:
- Access to client network blueprints and firewall rulesets is restricted to certified, in-house network security engineers who need that data to do their jobs.
- All remote engineering support sessions travel through encrypted data tunnels.
- Our business networks are protected by continuous endpoint protection and strict multi-factor authentication (MFA).
9. Your Rights Over Your Data
Your staff members hold clear legal rights regarding the personal information we keep on file:
- The right to see it: You can request a complete copy of all the contact information and account profiles we hold for your business.
- The right to fix it: You can tell us to immediately correct inaccurate or outdated names, phone extensions, or email addresses.
- The right to delete it: You can request that we wipe your personal records, provided it does not conflict with our legal duty to preserve corporate tax records.
To use any of these choices, just email or call our team using the contact points listed below.
10. Contact Us
If you have any questions about this privacy policy, want to request your data records, or want to know how our engineers handle your network metadata, please contact us:
- Email: info@network-consultancy.com
- Phone: +44 (0) 203 150 1401
- Office Address: Beech House, Greenfield Crescent, Edgbaston, Birmingham, B15 3BE