Privacy Policy

Last Updated: June 2026

Highland Security Group (“we”, “us”, “our”) is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal data when you visit our website or engage with our services.

We operate in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. Please read this policy carefully. By using our website, you acknowledge that you have read and understood this policy.

Data Controller:
Highland Security Group
Silverstream House, 45 Fitzroy Street, London, England, W1T 6EB
Email: info@highlandsecuritygroup.co.uk
Phone: 07346 811675

Section 2 — What Information We Collect

Heading: What Information We Collect

We may collect and process the following personal data:

Information you provide directly:

  • Full name
  • Company name and job title
  • Email address
  • Phone number
  • Enquiry or message content submitted via our contact or quote form
  • How you heard about us

Information collected automatically when you visit our website:

  • IP address
  • Browser type and version
  • Pages visited and time spent on site
  • Referring website or search query
  • Device type and operating system

Information collected through cookies:

  • Session and preference cookies
  • Analytics cookies (e.g. Google Analytics, if applicable)
  • See our Cookie Policy for full details (link to Cookie Policy page)

Section 3 — How We Use Your Information

Heading: How We Use Your Information

We use your personal data for the following purposes:

  • To respond to enquiries and quote requests submitted via our website
  • To provide and manage the security services you have contracted us to deliver
  • To communicate with you about your account, contract, or service
  • To send relevant service updates or information (where you have consented or where we have a legitimate interest to do so)
  • To improve our website and services through analytics
  • To comply with legal and regulatory obligations

Legal Bases for Processing (UK GDPR):

  • Contract: Processing is necessary to fulfil a service contract or to take steps at your request before entering into one
  • Legitimate Interests: Processing is necessary for our legitimate business interests, such as responding to enquiries and improving our services
  • Legal Obligation: Processing is necessary to comply with UK law or regulatory requirements
  • Consent: Where you have given explicit consent, such as for marketing communications

Section 4 — How We Share Your Information

Heading: How We Share Your Information

Highland Security Group does not sell, rent, or trade your personal data to third parties. We may share your data in the following limited circumstances:

  • Service Providers: We may share data with trusted third-party providers who assist us in operating our website or delivering our services (e.g. IT support, email platforms), subject to data processing agreements
  • Legal Requirements: We may disclose your data where required to do so by law, court order, or a regulatory authority
  • Business Transfers: In the event of a merger, acquisition, or sale of the business, your data may be transferred to the new controller, of which you will be notified

All third parties with whom we share data are required to handle it in accordance with UK GDPR.

Section 5 — How Long We Keep Your Data

Heading: How Long We Keep Your Data

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by law:

  • Enquiry and contact form data: Retained for up to 2 years from the date of last contact
  • Client contract and service data: Retained for 6 years from the end of the contract in accordance with UK statutory requirements
  • Website analytics data: Retained in accordance with the relevant platform’s data retention settings (typically 26 months for Google Analytics)

When your data is no longer required, it is securely deleted or anonymised.

Section 6 — Your Rights

Heading: Your Rights Under UK GDPR

You have the following rights regarding your personal data:

  • Right of Access: You have the right to request a copy of the personal data we hold about you
  • Right to Rectification: You have the right to request that we correct inaccurate or incomplete data
  • Right to Erasure: You have the right to request that we delete your personal data, where there is no lawful reason to continue processing it
  • Right to Restrict Processing: You have the right to request that we restrict the processing of your data in certain circumstances
  • Right to Data Portability: You have the right to receive your data in a structured, commonly used, machine-readable format
  • Right to Object: You have the right to object to processing based on legitimate interests or for direct marketing purposes
  • Rights Related to Automated Decision-Making: We do not use automated decision-making or profiling

To exercise any of these rights, please contact us at:
Email: info@highlandsecuritygroup.co.uk
Post: Silverstream House, 45 Fitzroy Street, London, England, W1T 6EB

We will respond to all requests within one calendar month in accordance with UK GDPR.

Section 7 — Cookies

Heading: Cookies

Our website uses cookies to distinguish you from other users and to improve your browsing experience. Cookies are small text files placed on your device when you visit a website.

We use the following types of cookies:

  • Strictly Necessary Cookies: Required for the website to function and cannot be switched off
  • Analytics Cookies: Help us understand how visitors use our website so we can improve it (e.g. Google Analytics)
  • Preference Cookies: Remember your settings and preferences to improve your experience

You can control and manage cookies through your browser settings at any time. Please note that disabling certain cookies may affect the functionality of our website.

For full details, please refer to our Cookie Policy.

Section 8 — Data Security

Heading: How We Protect Your Data

We take the security of your personal data seriously. We have implemented appropriate technical and organisational measures to protect your data against accidental loss, unauthorised access, disclosure, alteration, or destruction. These measures include:

  • Secure servers and encrypted data transmission (SSL/TLS)
  • Access controls limiting data access to authorised personnel only
  • Regular review of our data handling and security practices

Where we share data with third-party service providers, we ensure that appropriate data processing agreements and security measures are in place.

Section 9 — Third-Party Links

Heading: Links to Other Websites

Our website may contain links to third-party websites. We are not responsible for the privacy practices or content of those sites. We encourage you to read the privacy policy of any external site you visit.

Section 10 — Changes to This Policy

Heading: Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. The “Last Updated” date at the top of this page will be revised accordingly. We encourage you to review this policy periodically.

Section 11 — How to Complain

Heading: How to Make a Complaint

If you have concerns about how we handle your personal data, please contact us in the first instance at info@highlandsecuritygroup.co.uk and we will do our best to resolve the matter.

If you remain unsatisfied, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO), the UK’s independent body for data protection:

Information Commissioner’s Office (ICO)
Website: www.ico.org.uk
Helpline: 0303 123 1113

Scroll to Top