Insight Professional Partners Ltd (“we”, “us”, “our”) is committed to protecting your privacy. This policy explains what personal data we hold, why we hold it, how long we keep it, and the rights you have over it.
1. Who we are
For the personal data described in this policy, the data controller is:
| Company | Insight Professional Partners Ltd |
|---|---|
| Company number | 16943160 (registered in England & Wales) |
| Registered office | Water End, Clopton, Kettering, NN14 3DZ |
| ICO registration | ZC108683 |
| Contact | peter@insightprofessionalpartners.com |
The practice is led by Peter Edwards ACMA CGMA, a CIMA Member in Practice.
2. When we act as controller and when we act as processor
For the personal data we hold about you — for example, as an enquirer or as a client contact — we are the data controller and this policy applies.
When we deliver bookkeeping, management accounts or finance-director services, we necessarily handle personal data within your own business records (for example, data about your customers, suppliers or employees). For that data we act as a data processor on your behalf and under your instructions; you remain the controller of it. The terms of that processing are set out in our engagement letter.
3. The personal data we collect
If you make an enquiry
- Your name and the business you represent
- Your email address and any phone number you provide
- The content of your enquiry and any information you choose to share about your business
If you become a client
- Contact and business details for you and relevant officers of your business
- Identity-verification and anti-money-laundering records we are legally required to obtain (see section 5)
- Financial and accounting records needed to deliver the engagement, including data accessed through your accounting software (e.g. Xero) under read-only authorisation you grant
When you use this website
- Basic technical data (such as IP address and browser type) and essential cookies needed for the site to function. We do not use the website to build marketing profiles of you.
4. Why we use your data, and our lawful basis
| To respond to your enquiry | Our legitimate interest in answering people who contact us, and taking steps at your request before entering a contract |
|---|---|
| To deliver our services | Performance of our contract with you (the engagement) |
| To meet our legal duties | Legal obligation — including anti-money-laundering, tax and statutory record-keeping requirements |
| To send you our newsletter | Your consent, which you can withdraw at any time |
5. Anti-money-laundering and identity checks
As an accountancy practice we are required by law to carry out client due diligence before and during an engagement. This means we will verify the identity of our clients and relevant beneficial owners, assess money-laundering risk, and keep records of those checks. We are legally obliged to retain this information and, in defined circumstances, may be required to report concerns to the authorities. We cannot waive these checks at a client’s request.
6. Who we share data with
We do not sell your personal data. We use a small number of trusted service providers who process data on our behalf, under contract and only on our instructions:
| Supabase | Secure database and application hosting (data hosted in the EU / Frankfurt region) |
|---|---|
| Resend | Sending transactional and newsletter email |
| Anthropic | The generic AI automation layer that assists in drafting and reviewing documents within the system |
| Companies House API | Public-record business information used to prepare and enrich proposals |
| Xero | Accounting platform we connect to (read-only) to deliver your services |
We may also disclose information where we are required to do so by law or by a regulator.
7. International transfers
We aim to keep personal data within the UK and EU. Where a provider processes data outside the UK, we rely on appropriate safeguards recognised under UK data protection law (such as adequacy regulations or the International Data Transfer Agreement / Standard Contractual Clauses).
8. How long we keep it
| Client records | Kept for 7 years after the engagement ends, reflecting statutory record-keeping and limitation periods |
|---|---|
| Enquiries that do not become clients | Deleted within 12 months |
| Anti-money-laundering records | Retained for the period required by the applicable regulations |
9. Your rights
You have the right to access the personal data we hold about you, to have it corrected or erased, to restrict or object to its processing, and to data portability — in each case subject to the legal limits that apply (for example, where we must retain records to meet our anti-money-laundering or tax obligations). To exercise any of these rights, email peter@insightprofessionalpartners.com.
If you are unhappy with how we have handled your data, you can complain to the Information Commissioner’s Office (ICO) at ico.org.uk or on 0303 123 1113. We would, however, appreciate the chance to put things right first.
10. Security
We use appropriate technical and organisational measures to protect your data, including encryption in transit, access controls, and reputable hosting providers. No system is perfectly secure, but we take our responsibility to safeguard your information seriously.
11. Changes to this policy
We may update this policy from time to time. The date at the top of the page shows when it was last revised.