Privacy Policy

Who we are
CESECO Limited is a company registered in England and Wales with company number 15566274. Our registered office is 128 City Road, London, EC1V 2NX.

In this policy, ‘CESECO’, ‘we’, ‘us’ and ‘our’ refer to CESECO Limited.

For privacy enquiries, contact privacy@ceseco.org.

What this policy covers
We retain personal data only for as long as reasonably necessary for the purposes described in this policy. As an indicative approach, general contact and form enquiries may be retained for up to 24 months after the last meaningful contact. Investor, partnership and project enquiries may be retained for up to six years where retention is justified by commercial, legal or governance requirements. Cookie consent records and analytics data will be retained in accordance with the settings of the relevant tools in use and applicable law.

CESECO applies appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse or disclosure. These measures should be reviewed periodically as the website and its enquiry processes develop.

Where CESECO offers newsletters, event invitations or optional updates, users will be able to choose whether to receive them and will be provided with a clear opt-out route. The website should use the minimum cookies necessary for launch. Where non-essential cookies are used, users should receive clear information and a genuine choice before those cookies are placed on their device.

The personal data we collect
We may collect and process the following categories of personal data:

  • Identity and contact data, such as your name, title, organisation, email address, telephone number and country.
  • Enquiry data, such as enquiry type, project interest, message content and any documents or attachments you send to us.
  • Technical and usage data, such as IP address, browser type, device information, referring URLs, page views and site interactions.
  • Cookie and consent data, such as your cookie preferences and records of consent where a consent management tool is used.

How we collect personal data
We collect personal data directly from you when you complete a form, send us an email, request a briefing, subscribe to updates, or otherwise contact us.
We may also collect technical and usage data automatically through server logs, cookies and analytics tools, where these are enabled and lawfully used.

Why we use personal data
We may use personal data to:

  • Respond to enquiries and requests.
  • Route messages to the correct team.
  • Provide corporate, project or investor information where appropriate.
  • Operate, secure and improve our website.
  • Maintain records of correspondence and business development activity.
  • Comply with legal, regulatory and governance requirements.
  • Establish, exercise or defend legal claims where necessary.

Lawful bases for processing
Depending on the context, we rely on one or more of the following lawful bases:

  • Legitimate interests, where it is reasonable for us to manage enquiries, operate our website, develop commercial relationships and protect the business.
  • Consent, where this is required, such as for non-essential cookies or certain optional communications.
  • Legal obligation, where we must retain or disclose information to comply with applicable law or regulation.
  • Steps at your request before entering into a contract, where you ask us to provide information or begin a commercial discussion.

Sharing personal data
We may share personal data with service providers and professional advisers who support our website, email, document handling, analytics, legal, finance, compliance or security operations.
We may also share data with carefully selected project or delivery partners where this is necessary to respond to your request or advance a legitimate business discussion.
We do not sell personal data.

International transfers
Some service providers may process personal data outside the United Kingdom. Where this happens, we will take appropriate steps to ensure that personal data is protected in a manner consistent with applicable data protection law.

Data retention
We retain personal data only for as long as reasonably necessary for the purposes set out in this policy.
Recommended default retention periods for the website build are:

  • General contact and form enquiries: up to 24 months after last meaningful contact.
  • Investor, partnership and project enquiries: up to 6 years after last meaningful contact, where retention is justified by commercial, legal or governance needs.
  • Cookie consent records: 12 months.
  • Analytics data: in line with the chosen analytics settings, subject to lawful use and review.

Security
We take appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse or disclosure. Website, hosting and form security settings should be configured before launch and reviewed periodically.

Cookies and similar technologies
Our website may use cookies and similar technologies to keep the site working, understand how it is used and improve performance.
Where non-essential cookies are used, users should be given clear information and a genuine choice before those cookies are placed on their device.
See our Cookie Policy (below) for more detail.

Marketing and subscriptions
If the website later includes a newsletter or other optional updates, users should be able to choose whether to receive them. Any direct marketing process should include a clear opt-out route and the privacy policy should be updated to reflect the chosen provider and workflow.

Your rights
Depending on the circumstances, you may have the right to request access to personal data, ask for correction, request erasure, restrict processing, object to processing, and request data portability.
You may also withdraw consent at any time where we rely on consent. To exercise your rights, contact privacy@ceseco.org.

Complaints
If you have concerns about how we use personal data, please contact us first so we can try to resolve the issue.
You also have the right to complain to the Information Commissioner’s Office in the UK.

Changes to this policy
We may update this policy from time to time. The version published on the website should show the date it was last updated.

Cookie Policy

What cookies are
Cookies are small text files placed on a user’s device when they visit a website. They can help a website function properly, remember preferences, measure performance and support embedded services.

How CESECO uses cookies
The website should use the minimum cookies necessary at launch.
Recommended cookie categories are:

  • Strictly necessary cookies, which are required for site operation, security and form handling.
  • Analytics cookies, which help us understand how the site is used and improve performance.
  • Functionality cookies, which remember preferences or settings where relevant.
  • Embedded media or third-party cookies, where videos, maps or external content are used.

Consent
Where non-essential cookies are used, the website should explain them clearly and obtain consent before placing them on a user’s device.
The cookie banner should offer a genuine choice, including a clear reject option for non-essential cookies.

Recommended cookie table
The builder should populate a live cookie table before launch using the actual tools in use. The table should include category, name, provider, purpose and duration.

Managing cookies
Users should be able to manage preferences through the cookie banner or a persistent cookie settings link in the footer. Users can also control cookies through their browser settings, although some site functions may be affected.

Changes to this policy
Update this policy whenever analytics, embeds, advertising technologies or other storage and access technologies are added, removed or changed.

Top
ceseco website logo

CESECO™ Limited
Registered in England and Wales
Company No. 15566274
Registered office: 128 City Road,
London, EC1V 2NX

Key Channels
Information
Legal