Legal

Privacy Policy

How we collect, use and protect your information.

Last updated: 29 April 2026 This is the holding version of our Privacy Policy. A solicitor-drafted version covering our full marketplace operations will replace this document before we begin processing booking transactions. Material changes will be notified by updating this date and, where appropriate, by contacting users directly.

1. Who we are

RiskSorted Limited (referred to in this policy as "we", "us" or "RiskSorted") is a private company registered in England and Wales. We operate the website at risksorted.com and provide UK compliance services through a network of verified local engineers.

We are the data controller for the information we collect about you through this website. If you have any questions about this policy or how we handle your information, you can contact us at [email protected].

2. What information we collect

The personal information we collect from you depends on how you interact with us. We aim to collect only what we genuinely need.

When you fill in a contact form
We collect your name, email address, phone number (if you choose to provide it), company name, the service you are interested in, and any details you include in the message field.
When you apply to join our engineer network
We collect your name, business name, email, phone number, base postcode, travel radius, services offered and information about your qualifications and experience.
When you visit the website
We collect basic technical information including the type of device and browser you use, the pages you visit, and the country you are visiting from. This is collected through Cloudflare's edge infrastructure for security and performance purposes, and through our analytics provider where applicable.
What we do not collect
We do not request or collect special category data, payment card information, identification documents, or location data through this website. When the booking platform launches, payment and verification information will be handled by separate, regulated providers (such as Stripe) and that flow will be covered by an updated privacy policy at that time.

3. How we use your information

We use the information you give us to:

  • Respond to your enquiry or quote request
  • Provide you with information about the services you have asked about
  • Assess engineer applications and verify credentials where you have applied to join our network
  • Send you a confirmation email when you submit a form
  • Improve our website and the services we offer
  • Comply with our legal obligations

We will not send you marketing emails unless you have specifically agreed to receive them. We will not pass your details to other companies for marketing purposes.

4. The legal basis for processing your information

Under UK data protection law, we must have a lawful basis for processing your personal data. The bases we rely on are:

  • Legitimate interests — when you contact us with an enquiry, we process your information to respond to you and to provide the service you have asked about. We have considered this against your rights and interests and have concluded that it does not override them.
  • Contract — where we are taking steps at your request before entering into a contract for services.
  • Consent — where you have specifically agreed to receive marketing communications. You can withdraw consent at any time.
  • Legal obligation — where we are required by law to retain or process certain information.

5. How long we keep your information

We keep your personal information only for as long as is necessary for the purposes set out in this policy.

  • Contact form enquiries are retained for 24 months from the last interaction, then deleted or anonymised.
  • Engineer application data is retained for the duration of any working relationship plus six years (matching standard UK contract law dispute periods), or for 24 months if the application does not proceed.
  • Website analytics data is aggregated and anonymised, and is retained according to the analytics provider's policy.

6. Who we share your information with

We share personal information only with the service providers who help us run the website and our business operations. These currently include:

  • Cloudflare — our website hosting and security provider
  • Email service providers — for sending you confirmation emails and managing our business correspondence
  • CRM and analytics providers — for managing enquiries and understanding website usage

All of our service providers are contractually required to protect your information and use it only for the purposes we have agreed with them. We do not sell your information. We do not share it with marketing companies. We do not transfer it outside the UK or European Economic Area without an appropriate safeguard such as Standard Contractual Clauses.

7. Your rights

Under UK data protection law you have a number of rights in relation to your personal information:

  • The right to be informed about how we use your data (this policy)
  • The right to access the data we hold about you
  • The right to have inaccurate data corrected
  • The right to have your data deleted in certain circumstances
  • The right to restrict processing of your data in certain circumstances
  • The right to data portability
  • The right to object to processing based on legitimate interests
  • The right to withdraw consent where we are relying on consent

To exercise any of these rights, email us at [email protected]. We will respond within one month.

If you are not satisfied with how we have handled your data, you have the right to complain to the Information Commissioner's Office (ICO) at ico.org.uk.

8. Cookies and similar technologies

This website currently uses only essential cookies and privacy-respecting analytics that do not require consent under the Privacy and Electronic Communications Regulations. Specifically, we use Cloudflare Web Analytics, which does not use cookies, does not track individuals across sessions, and does not share data with advertising platforms.

If we add additional analytics or marketing tools that require cookies in the future, we will introduce a cookie consent banner and update our Cookie Policy.

9. Security

We take reasonable technical and organisational measures to protect your information, including transport-layer encryption (HTTPS) on the website, restricted access to systems containing personal data, and contractual safeguards with service providers. No system is perfectly secure, and we cannot guarantee absolute security, but we work to apply current good practice.

10. Children

This website is not directed at children. We do not knowingly collect personal information from anyone under the age of 16.

11. Changes to this policy

We will update this policy from time to time. The "Last updated" date at the top of this page will reflect the most recent change. Material changes will be highlighted on this page and, where appropriate, notified to users by email.

12. Contact

If you have any questions about this policy or how we handle your information, contact us at:

RiskSorted Limited
Email: [email protected]
Registered office: London, United Kingdom

This is a holding version of RiskSorted's Privacy Policy, written to provide a reasonable basis for early operations. A more comprehensive version, drafted by a solicitor with marketplace business experience, will replace this document before the booking platform launches. This document does not constitute legal advice.