Privacy Policy (UK) | Eagle Security Protection Ltd
Privacy Policy — UK GDPR

Privacy Policy for Eagle Security Protection Ltd

This Privacy Policy explains how Eagle Security Protection Ltd ("ESP", "we", "us") collects and uses personal information in the United Kingdom in line with UK GDPR and the Data Protection Act 2018. It covers our website, enquiries, service delivery (including CCTV monitoring and mobile patrols), recruitment, and supplier management.

Contents

  1. Who we are & contact
  2. What this policy covers
  3. Data we collect
  4. How we use your data & lawful bases
  5. Cookies, analytics & preferences
  6. CCTV monitoring & patrol evidence
  7. Who we share data with
  8. International transfers
  9. How long we keep data
  10. How we keep data secure
  11. Your UK GDPR rights
  12. Recruitment & vetting
  13. Questions & complaints (ICO)
  14. Updates to this policy

Who we are & how to contact us

Company: Eagle Security Protection Ltd

Registered office: 12 Kingsleigh Road, Handsworth Wood, Birmingham B20 3UG

Company number: 08010801 (England & Wales)

Telephone: 0121 240 8586

Email: [email protected]

ESP is the data controller for our website, enquiries and our own business records. When we provide services like CCTV monitoring or manned guarding on behalf of clients, we usually act as a data processor; in those cases, our client is the controller and their privacy notice also applies.

What this policy covers

This policy applies to: our public website and contact forms; calls and emails to our 24/7 control room; quotes and contracts; service delivery (including access control, mobile patrols, K9 units and incident logs); recruitment and HR; supplier/contractor management; and CCTV footage we monitor for clients.

It does not cover third-party websites you may access via links from our site.

Data we collect

  • Contact & business details (name, company, role, email, phone) when you enquire or request a quote.
  • Service & site information (site address, risks, hours, access notes, keyholder details).
  • Operational records (occurrence books, patrol scans, incident reports, photos, vehicle logs).
  • Website & device data (pages viewed, IP address, cookies/analytics preferences).
  • CCTV footage we receive from client systems for monitoring and response.
  • Recruitment data (CV, right-to-work, SIA licence, training, references, DBS where appropriate).
  • Supplier data (contact, banking details for payments, compliance documents).

We do not intentionally collect children’s data. If you believe a child has provided us personal information, please contact us and we will delete it.

How we use your data & lawful bases

  • Provide quotes and deliver contracts (scheduling, access control, monitoring, reporting) — Contract.
  • Ensure safety and investigate incidentsLegitimate interests and/or Legal obligation.
  • Manage our relationship (updates, invoices, service notices) — Contract / Legitimate interests.
  • Improve our website and services via anonymised analytics — Consent.
  • Recruitment & vettingLegitimate interests, Legal obligation (e.g., right-to-work), Public task where applicable.
  • Comply with law (tax, health & safety, crime prevention) — Legal obligation / Vital interests in emergencies.

Cookies, analytics & your preferences

We use essential cookies to make the site work and (with your consent) analytics cookies to understand performance. You can change your preferences any time.

Google Analytics 4: We use GA4 with IP anonymisation and aggregated reporting. Data may be processed by Google. Analytics only loads after you enable it below.

CCTV monitoring & patrol evidence

  • When we monitor CCTV on behalf of a client, the client is the controller and we are the processor.
  • We review live/recorded footage to detect intrusions and coordinate response. Clips and stills may be created for evidence.
  • Footage may be shared with the client, emergency services or insurers where necessary and lawful.
  • Signs at the site identify the controller and contact details for CCTV queries.

Who we share data with

  • Service providers (e.g., ARC monitoring partners, IT, cloud hosting, payroll, accountants) under contract.
  • Clients (where we’re a processor) — operational logs, incident reports, photos and relevant data.
  • Authorities (police, courts, HSE) where required by law or to protect vital interests.
  • Business transfers if we reorganise or sell part of our business; privacy commitments will continue.

International transfers

Where data is transferred outside the UK (for example, by some cloud providers), we ensure appropriate safeguards such as UK adequacy regulations, the International Data Transfer Agreement (IDTA) or Standard Contractual Clauses (SCCs) with supplementary measures as needed.

How long we keep data

  • Quotes & enquiries: up to 18 months.
  • Contracts & operational logs: normally 6 years after final invoice (accounting limitation), longer if required for claims.
  • CCTV clips for incidents: typically 30–90 days unless needed for investigation or legal proceedings.
  • Recruitment (unsuccessful): up to 12 months, or sooner if you ask us to delete.

How we keep data secure

  • Access controls, staff vetting and training; strong passwords and MFA.
  • Encryption in transit, secure cloud storage and device management.
  • Supplier due diligence and data processing agreements.
  • Incident response procedures and breach notification where required.

Your UK GDPR rights

You have the right to access, correct, delete or restrict your personal data; to object to certain processing (including direct marketing); to withdraw consent where relied upon; and to data portability where applicable. To exercise these rights, contact us at [email protected]. We may ask for ID.

Recruitment & vetting

  • We collect CV details, SIA licence numbers, training and employment history.
  • We conduct right-to-work checks and where appropriate DBS and reference checks.
  • Recruitment data is accessed on a need-to-know basis and retained per our retention schedule.

Questions & complaints

If you have questions or concerns, please contact us first at [email protected]. You also have the right to complain to the UK Information Commissioner’s Office (ICO):

  • Website: ico.org.uk
  • Helpline: 0303 123 1113
  • Address: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF

Updates to this policy

We may update this policy to reflect changes in law or our services. We will post changes on this page.

Last updated: 9 October 2025

Need help or want to exercise your rights?

Email our team or call 0121 240 8586.