Privacy Policy

Last updated: February 2025

1. Introduction

NFRisk is an independent advisory practice operated by Draz Ivezic (trading as NFRisk). This privacy policy explains how we collect, use, and protect your personal information when you visit our website or contact us.

We are committed to protecting your privacy and complying with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Information We Collect

We may collect the following information:

  • Contact form data: Name, email address, organisation (optional), and any information you provide in your message.
  • Website usage data: We may collect anonymous usage statistics to improve our website (if you have consented to cookies).

3. How We Use Your Information

We use your information solely for:

  • Responding to your enquiries
  • Providing the information or services you request
  • Improving our website and services

We do not sell, rent, or trade your personal information to third parties.

4. Legal Basis for Processing

Our legal basis for processing your personal data is:

  • Legitimate interests: To respond to enquiries and provide information about our services.
  • Consent: Where you have consented to cookies or marketing communications.

5. Data Retention

We retain contact form submissions for up to 12 months, after which they are securely deleted. If you become a client, we retain information in accordance with our professional obligations and UK law.

6. Your Rights

Under UK GDPR, you have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data (subject to legal obligations)
  • Object to processing based on legitimate interests
  • Withdraw consent at any time

To exercise these rights, please contact us at contact@nfrisk.com.

7. Cookies

Our website uses essential cookies for functionality. Any non-essential cookies (e.g., analytics) will only be used with your consent. You can manage cookie preferences through your browser settings.

8. Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction.

9. Third-Party Links

Our website may contain links to external sites. We are not responsible for the privacy practices of those sites and encourage you to read their privacy policies.

10. Changes to This Policy

We may update this privacy policy from time to time. The latest version will always be available on this page with the effective date.

11. Contact Us

If you have any questions about this privacy policy or how we handle your data, please contact us at:

Email: contact@nfrisk.com
Address: London, United Kingdom

NFRisk is the data controller for the purposes of UK GDPR.