Privacy policy

(see below for GDPR)

Effective Date: 1/4/2025
Last Updated: 1/4/2025

Crossbeck Investigations ("we", "our", or "us") is committed to protecting the privacy and security of our clients and visitors to our website. This Privacy Policy outlines how we collect, use, store, and protect personal information in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Information We Collect

We may collect and process the following types of personal information:

  • Name, job title, and contact details including email address and telephone number

  • Case-related information you provide to us voluntarily

  • Information provided when you communicate with us or use our services

  • Technical data collected from your use of our website, such as IP address, browser type, and browsing behaviour

2. How We Use Your Information

We use your personal data for the following purposes:

  • To provide and manage our services

  • To respond to enquiries and communicate with clients

  • To manage case files and associated investigations

  • To comply with legal and regulatory requirements

  • To improve our services and website functionality

3. Legal Basis for Processing

We process personal data on the following legal bases:

  • Performance of a contract

  • Compliance with legal obligations

  • Legitimate interests

  • Consent (where explicitly provided)

4. Data Sharing and Disclosure

We do not sell or rent personal data to third parties. We may share your data with:

  • Trusted subcontractors or service providers assisting us in delivering our services (under strict confidentiality agreements)

  • Legal representatives or regulatory bodies where legally required

5. Data Security

We are committed to keeping your data secure. We use appropriate technical and organisational measures to prevent unauthorized access, disclosure, or destruction of personal data. These include:

  • Non-networked storage solutions

  • Encrypted storage solutions

  • Access control systems

  • Regular data reviews and audits

6. Data Retention

We retain personal information only for as long as necessary to fulfil the purposes for which it was collected, or as required by law. Typically, data is retained for a period of 6 years from the closure of a case or last contact.

7. Your Data Rights

You have the right to:

  • Access the personal data we hold about you

  • Request correction or deletion of your data

  • Object to or restrict how we use your data

  • Withdraw consent at any time (where consent is the basis of processing)

  • Lodge a complaint with the Information Commissioner's Office (ICO)

8. Cookies

Our website may use cookies to enhance user experience. You can choose to accept or decline cookies through your browser settings. More information is available in our Cookie Policy.

9. Changes to This Policy

We may update this policy from time to time. Updates will be posted on this page, and where appropriate, notified to you by email.

10. Contact Us

For any questions or to exercise your data rights, please contact:

Crossbeck Investigations
3 Grosvenor Road, West Yorkshire,WF17 0LX
crossbeckinvestigations@gmail.com
07503 064839

By using our website and services, you agree to the terms of this Privacy Policy.

GDPR Compliance

Effective Date: 1/4/2025
Last Updated: 1/4/2025

1. Introduction Crossbeck Investigations Ltd ("the Company") is committed to ensuring that all personal data collected, stored, processed, and disposed of complies with the General Data Protection Regulation (GDPR) and the Data Protection Act 2018. This policy outlines our approach to data privacy, security, and compliance.

2. Data Controller

Elizabeth Beck is the Data Controller for personal data provided by clients, partners, and any individuals who interact with our services. We determine the purposes and means of processing personal data.

3. Types of Data Collected

We may collect and process the following types of personal data:

  • Full names, addresses, and contact details.

  • Identification information where required by law.

  • Case-related data provided by clients for investigative or security advisory purposes.

  • Payment details for invoicing purposes.

4. Legal Basis for Processing

We collect and process personal data under the following legal bases:

  • Contractual necessity: When data processing is required to fulfil a contract or service agreement with a client.

  • Legal obligation: When processing is necessary for compliance with legal obligations.

  • Legitimate interest: Where processing is required for the operational needs of Crossbeck without infringing individual rights.

  • Consent: When explicit consent is obtained for specific data processing activities.

5. How We Use Personal Data

Personal data is used strictly for the following purposes:

  • Delivering investigative support and security advisory services.

  • Responding to client inquiries and maintaining client records.

  • Processing payments and managing financial transactions.

  • Complying with legal and regulatory requirements.

  • Enhancing service delivery through internal record-keeping.

6. Data Storage & Security

We take all reasonable precautions to protect personal data from loss, misuse, or unauthorized access. Measures include:

  • Secure non-networked storage with encryption.

  • Access controls to ensure only authorized personnel handle personal data.

  • Regular security audits and risk assessments.

  • Data minimization policies to store only essential information.

7. Data Retention & Disposal

  • Personal data is retained only for as long as necessary to fulfil the purpose for which it was collected, comply with legal obligations, or protect the Company’s interests.

  • Investigation-related data will be retained for 6 years after case closure unless required for legal purposes.

  • Upon reaching retention limits, data is securely disposed of via digital deletion or physical document shredding.

8. Data Sharing & Third-Party Processors

We do not sell or share personal data with third parties unless:

  • It is required to fulfil the services outlined in our contract.

  • It is necessary for legal or regulatory compliance.

  • The data subject has given explicit consent.

  • A subcontractor under our direct supervision requires access to perform agreed services.

9. Data Subject Rights

Individuals have the following rights under GDPR:

  • The right to access their personal data held by Crossbeck.

  • The right to request correction of inaccurate or incomplete data.

  • The right to request data deletion (‘right to be forgotten’).

  • The right to restrict processing under certain conditions.

  • The right to object to processing based on legitimate interests.

  • The right to data portability in a structured format.

Requests regarding personal data can be made in writing to Crossbeck Investigations Ltd, 3 Grosvenor Road, West Yorkshire,WF17 0LX.

10. Data Breaches & Incident Response

  • Any personal data breach will be assessed and, where required, reported to the Information Commissioner's Office (ICO) within 72 hours.

  • Affected individuals will be notified if there is a high risk to their rights and freedoms.

11. Policy Updates & Review

This policy is reviewed annually or upon significant regulatory changes. Updates will be communicated via our website or direct client notifications.

12. Contact Information For any GDPR-related inquiries or to exercise your data rights, please contact:

Elizabeth Beck
Crossbeck Investigations Ltd.
3 Grosvenor Road, West Yorkshire,WF17 0LX
crossbeckinvestigations@gmail.com
07503 064839

By engaging with Crossbeck, clients and data subjects acknowledge this policy and consent to the terms outlined above.