-3.png)
Privacy Policy
Praetorian Advisory Ltd Last updated: April 2026
I. Introduction
Praetorian Advisory Ltd ("we", "us", "our") is committed to protecting the privacy and personal data of all individuals who interact with our firm. This Privacy Policy explains how we collect, use, store, and protect your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
Praetorian Advisory Ltd is registered in England and Wales. Company Number 16534431. Registered Office: 86-90 Paul Street, London, EC2A 4NE.
We are registered with the Information Commissioner's Office (ICO) as a data controller.
II. Data Controller
The data controller responsible for your personal data is:
Praetorian Advisory Ltd 86-90 Paul Street London EC2A 4NE
London Liaison: london@praetorianadvisory.co.uk Somerset Operations: somerset@praetorianadvisory.co.uk Telephone: 0203 026 3653
III. What Personal Data We Collect
We may collect and process the following categories of personal data:
Identity Data — including your title, first name, last name, and job title.
Contact Data — including your email address, telephone number, and postal address.
Professional Data — including your organisation, professional role, and the nature of your interest in our services.
Communications Data — including records of correspondence between you and Praetorian Advisory, whether by email, telephone, post, or through our website contact and request forms.
Technical Data — including your IP address, browser type, and pages visited on our website, collected through standard website analytics tools.
Special Category Data — where the nature of our services requires it, we may process special category data including financial information and data relating to criminal convictions or offences. This is conducted only with your explicit consent and where legally permitted, in accordance with our Special Category Data Policy.
IV. How We Collect Your Personal Data
We collect personal data through the following means:
Direct interactions — when you complete a contact form, request form, or consultation form on our website, correspond with us by email, telephone, or post, or engage us for services.
Third party sources — where a third party introduces you to our firm or provides your details in connection with an instruction.
Publicly available sources — including professional directories, company registers, and open source information where relevant to the services we provide.
V. How We Use Your Personal Data
We use your personal data for the following purposes:
To respond to your enquiries and provide the services you have requested.
To fulfil our contractual obligations to you or your organisation.
To comply with our legal and regulatory obligations, including our obligations as a registered data controller and data processor.
To manage and administer our client relationships.
To send you information relevant to our services where you have consented to receive it.
To maintain records required by law or regulation.
We do not use your personal data for automated decision-making or profiling.
VI. Legal Basis for Processing
We process your personal data on the following legal bases under UK GDPR:
Contract — where processing is necessary to fulfil a contract with you or to take steps at your request before entering into a contract.
Legal obligation — where processing is necessary to comply with a legal obligation to which we are subject.
Legitimate interests — where processing is necessary for our legitimate business interests, provided those interests are not overridden by your rights and interests.
Consent — where you have given explicit consent to the processing of your personal data for a specific purpose. You may withdraw consent at any time by contacting us.
VII. Data Processor Activities
Where Praetorian Advisory acts as a data processor on behalf of a client organisation, we do so under a Data Processing Agreement which governs the nature, purpose, and duration of the processing. In these circumstances, the client organisation is the data controller and Praetorian Advisory processes personal data only on their documented instructions.
All individuals whose data is processed by Praetorian Advisory in its capacity as a data processor are informed of this processing through a privacy notice served at the point of data collection. Praetorian Advisory Ltd remains identifiable to data subjects at all times in accordance with UK GDPR requirements.
VIII. Data Retention
We retain personal data only for as long as is necessary for the purposes for which it was collected, subject to any legal or regulatory requirements to retain it for longer.
In general terms:
Client and matter files are retained for a minimum of six years following the conclusion of an engagement, in accordance with standard professional practice and limitation periods under the Limitation Act 1980.
Enquiry and correspondence records are retained for two years from the date of last contact where no engagement results.
Vetting records and reports are retained in accordance with the terms of the relevant Data Processing Agreement and applicable legal requirements.
Upon expiry of the relevant retention period, personal data is securely deleted or destroyed.
IX. Data Security
We take the security of your personal data seriously. All client intelligence and personal data processed by Praetorian Advisory is stored on an end-to-end encrypted platform hosted outside the United Kingdom, ensuring your information is protected against unauthorised access and interception.
We implement appropriate technical and organisational measures to protect your personal data against accidental loss, destruction, alteration, unauthorised disclosure, or access. These measures are reviewed and updated regularly.
In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the ICO within 72 hours of becoming aware of the breach, and will notify you directly where required by law.
X. Data Sharing
We do not sell, rent, or share your personal data with third parties for marketing purposes.
We may share your personal data in the following limited circumstances:
With service providers who process data on our behalf under appropriate contractual safeguards, including our secure data storage provider.
Where required by law, court order, or regulatory authority.
Where necessary to protect the vital interests of an individual.
With your explicit consent.
We do not transfer your personal data outside the United Kingdom except where adequate safeguards are in place in accordance with UK GDPR requirements.
XI. Your Rights
Under UK GDPR you have the following rights in relation to your personal data:
The right to access — you may request a copy of the personal data we hold about you.
The right to rectification — you may request that we correct any inaccurate or incomplete personal data we hold about you.
The right to erasure — you may request that we delete your personal data in certain circumstances.
The right to restriction of processing — you may request that we restrict the processing of your personal data in certain circumstances.
The right to data portability — you may request that we provide your personal data to you in a structured, commonly used, and machine-readable format.
The right to object — you may object to the processing of your personal data where we rely on legitimate interests as our legal basis.
The right to withdraw consent — where we process your personal data on the basis of consent, you may withdraw that consent at any time.
The right to lodge a complaint — you have the right to lodge a complaint with the Information Commissioner's Office (ICO) if you believe we have not handled your personal data in accordance with the law. The ICO can be contacted at ico.org.uk or by telephone on 0303 123 1113.
To exercise any of these rights, please contact us at london@praetorianadvisory.co.uk. We will respond to your request within one calendar month.
XII. Cookies
Our website uses cookies and similar tracking technologies to improve your browsing experience and to collect anonymous analytical data about how our website is used. We use only the minimum cookies necessary for the website to function.
You may adjust your cookie settings at any time through your browser settings. Please note that disabling certain cookies may affect the functionality of our website.
XIII. Third Party Links
Our website may contain links to third party websites. We are not responsible for the privacy practices of those websites and encourage you to review their privacy policies before providing any personal data.
XIV. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. The date at the top of this policy indicates when it was last updated. We encourage you to review this policy periodically.
XV. Contact Us
If you have any questions about this Privacy Policy or about how we handle your personal data, please contact us:
By email: london@praetorianadvisory.co.uk
By post: Praetorian Advisory Ltd, 86-90 Paul Street, London, EC2A 4NE
By telephone: 0203 026 3653