top of page

Privacy Policy

Last Updated: February 2026

Overview

At Rushworth Architecture Ltd (trading as Rushworth Architecture, referred to as "we"/"us"/"our" within this privacy policy), we take your privacy seriously. This privacy notice explains what personal information we collect about you, how and why we use it, and how we keep it safe. It also tells you about your rights under UK data protection law (UK GDPR and the Data Protection Act 2018).

 

We want this to be easy to read and understand, so we’ve kept it as clear and straightforward as possible.

 

If you have any questions, please contact us using the details below.

Who we are

Rushworth Architecture Ltd

Registered Office Address: 3 The Gardens, Fareham, Hampshire, United Kingdom, PO16 8SS

Phone: (+44) 01329 275124

Email: info@rushwortharchitecture.co.uk

Registered Company Number: 12300333

We are the "data controller", which means we determine how your personal information is stored and protected.

What personal information we collect

The information that we collect depends on how you work with us, but generally the information we collect as follows:

  • Basic details

    • Name

    • Address

    • Phone number

    • Email address

  • Project information

    • Property address

    • Drawings

    • Planning details

    • Photographs

    • Any other related documents

  • Account information

    • Billing address

    • Payment records

    • Service history

  • Correspondance and records

    • Emails and other messages

    • Call recordings

    • Meeting notes

    • Project discussions

  • Website and usage data

    • Information about how you interact with our website and online services.

  • Special category information (only when necessary, and protected with extra care)

    • Health information (e.g. accessibility requirements or safety considerations)

    • Religious or philosophical beliefs (if relevant to the project)

We only collect information that we genuinely need to carry out the requested work and/or to meet legal obligations.

We do not knowingly collect information of a person under the age of 18. Anyone wishing to engage in our services who is under the age of 18 must do so through a parent or legal guardian, who will be our point of contact for any correspondence. If we unknowingly collect the information of anyone under the age of 18, upon discovering this we will take reasonable measures to ensure that the details are permanently deleted from our records. 

How we collect your information

We usually collect information directly from you, for example when you:

  • Contact us by phone, email, or through our website

  • Engage us for architectural or design services

  • Apply for a job or send a CV

  • Make a complaint or request

We may also receive information from other sources, such as:

  • Local councils or regulatory bodies

  • Other consultants or contractors working on your project

  • Publicly available sources (like planning portals)

  • Professional advisers or insurers

How we use your information

We use your personal information to:

  • Provide and manage architectural and related services

  • Communicate with you about your project or enquiries

  • Submit planning and building regulation applications on your behalf

  • Manage billing, invoicing, and account administration

  • Recruit and manage employees and contractors

  • Handle feedback, complaints, and insurance queries

  • Meet legal, tax, and regulatory requirements

We collect and process this information in accordance with our business requirements as laid out in this policy, and will never use it for any other purpose without direct permission from you, unless required by law.

We will not sell your data, and we only share it when necessary for the purposes above.

Our lawful bases for using your information

UK data protection law requires us to have a lawful basis for each way we use your personal information. We rely on the following:

  • Contract - To carry out our contract with you or take steps before entering one (for example, providing quotes, project work, or consultancy).

  • Legal obligation - To meet legal or regulatory requirements (for example, record keeping or health and safety).

  • Legitimate interests - To run and improve our business efficiently and deliver the best possible service to clients. We balance our interests carefully to ensure your privacy is not negatively affected.

  • Consent - In some cases (for example, recruitment or marketing), we may ask for your consent. You can withdraw this at any time.

Who we share your information with

We only share your personal information when necessary, for example with:

  • Service providers and data processors - who help us run our business

  • Professional advisers – such as accountants, solicitors, insurers, or consultants involved in your project

  • Regulatory authorities and local councils – for planning applications and compliance purposes

  • Auditors, insurers, and law enforcement – where legally required or for fraud prevention

  • Third-party consultants – where collaboration is needed for your project

​​

All third parties are required to handle your data securely and only use it for the purpose we specify. 

With your permission, we may also share certain details online in order to aid our growth as a business. This may come in the form of photos, articles, testimonials, or other forms of online publication. We will always ask permission beforehand and will never publish these without your consent. You are entitled to withdraw your constent for this at any time, and we will remove the relevant publications with reasonable care and haste. If you wish for us to remove something relevant to yourself, please contact us using the above details and include the place(s), date(s), and details so that we may act appropriately.

We never sell your personal information to anyone.

Transferring your data outside of the UK

Some service providers (such as Outlook) may store or process data outside the UK. When this happens, we make sure that appropriate safeguards are in place, such as standard contractual clauses or adequacy decisions approved by the UK government, to keep your data secure and compliant. 

If you would like more details about how your data is protected when transferred internationally, please contact us.

How long we keep your information

We only keep your personal information for as long as necessary to fulfil the purposes we collected it for, including to meet legal, accounting, or reporting requirements.

After that, your information will be securely deleted or anonymised.

Your data protection rights

You have the following rights under data protection law:

  • Access - Ask for a copy of the personal information we hold about you.

  • Correction - Ask us to correct or update inaccurate or incomplete data.

  • Erasure - Ask us to delete your information in certain circumstances.

  • Restriction - Ask us to limit how we use your information.

  • Objection - Object to how we use your data when we rely on legitimate interests.

  • Data portability - Ask us to transfer your data to you or another organisation.

  • Withdraw consent - If we rely on consent, you can withdraw it at any time.

If you’d like to make a request, please contact us using the details provided above. We’ll respond within one month, as required by law.

How we protect your data

We use a combination of technical and organisational measures to protect your personal information, including secure systems, access controls, and staff training. 


Only authorised individuals have access to your data, and they are required to keep it confidential.

Use of cookies

We make use of cookies to ensure our website functions as intended, to defend from potential security threats, and to reduce spam through our 'Contact Us' form. Any non-essential cookies can be opted out at any time by refusing cookies either when accessing the website for the first time, or by pressing the fingerprint icon in the bottom of this screen and refusing there. 

A list of all the cookies that we use can be found below. If this list changes, you will be prompted to make the choice to use cookies again the next time you load the website.

Cookie Name
Duration
Purpose
Cookie Type
XSRF-TOKEN
Session
Cookie for fraud detection of calls
Essential
hs
Session
Security Cookie for Hive (legacy)
Essential
svSession
12 months
Cookie for security, stability, and core site function
Essential
SSR-caching
24 hours
Performance cookie for rendering
Essential
TS*
Session
Cookies for attack detection
Essential
bSession
24 hours
Used for system effectiveness measurement
Essential
fedops.logger.sessionId
12 months
Tracking session errors and issues (resilience)
Essential
_wixAB3|*
6 months
Cookie for site experiments
Essential
server-session-bind
Session
Cookie for API protection
Essential
client-session-bind
Session
Cookie for API Protection
Essential
oAuthState
Session
Session cookie for identification
Essential
wixSession
12 months
Cookie for security, stability, and core site function
Essential
sec-fetch-unsupported
Session
Used to indicate browser limitations preventing the enabling of site security features
Essential
uc_settings and/or ucString
12 months
USERCENTRICS: This holds the ControllerID and SettingsID, the language, settings version and services with their consent history.
Essential
uc_user_interaction
12 months
USERCENTRICS: This is used to signal whether a user has already given consent.
Essential
ucData
12 months
USERCENTRICS: This holds information aabout the Google Consent Mode.
Essential
uc_ui_version
12 months
USERCENTRICS: This key states the UI version used by the clients.
Essential
uc_user_country
12 months
USERCENTRICS: This is used to recognize the location of the user and show the correct version of the CMP.
Essential
recent-writes
Session
Part of the site architecture, used to ensure navigation and forms function as intended.
Essential
consent-policy
12 months
Stores user cookie consent level.
Essential
__Secure-BUCKET
6 months
Set by Google, this cookie is designed to authenticate users, prevent fraud, and manage secure, encrypted data across Google services.
Essential
__Secure-ENID
13 months
Set by Google, this security cookie is designed authenticate users, to prevent fraudulent login attempts and protect user data.
Essential
_GRECAPTCHA
180 days
reCAPTCHA sets a necessary cookie (_GRECAPTCHA) when executed for the purpose of providing its risk analysis.
Analytics
AEC
6 months
Set by Google Analytics, this cookie prevents Cross-Site Request Forgery attacks and other malicious, automated behaviour.
Analytics
SOCS
13 months
Set by Google, this cookie is used to store a user's state regarding their cookie choices.
Preferences
NID
183 days
Set by Google, this cookie is used for marketing purposes, such as such as tracking usage behaviour, optimising experience, or enabling marketing functionality.
Analytics

How to make a complaint

If you have any concerns about how we handle your personal information, please contact us first so we can try to resolve the issue.

If you’re still unhappy, you have the right to complain to the Information Commissioner’s Office (ICO):

Information Commissioner’s Office
Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF
Helpline: 0303 123 1113
Website: https://www.ico.org.uk/make-a-complaint

Updates to this privacy notice

We may update this notice occasionally to reflect changes in how we handle personal information or to comply with legal requirements.


The latest version will always be available on our website, and significant updates will be clearly communicated.

bottom of page