PRIVACY NOTICE + WEBSITE TERMS OF USE + ACCESSIBILITY STATEMENT

Saurce Ltd — Privacy Notice
Last updated: 21 January 2026

1) Important information and who we are

This privacy notice explains how Saurce Ltd (“Saurce”, “we”, “us”, “our”) collects and uses personal data when you visit our website, contact us, or subscribe to updates.

Controller
Saurce Ltd is the controller of personal data collected through this website and for our own business administration and marketing. Under UK GDPR, individuals have the right to be informed about how their personal data is used, and privacy notices should provide clear information about purposes, lawful bases, sharing and retention.

Our details

  • Legal entity: Saurce Ltd

  • Company number: 16876798

  • Registered office address: 48 Skitteridge Wood Road, Derby, DE22 4PD, United Kingdom

  • Privacy contact email: hello@saurce.co.uk

Complaints
You can complain to the UK Information Commissioner’s Office (ICO) if you’re unhappy with how we use your data. We’d appreciate the chance to deal with your concerns first — please contact us at hello@saurce.co.uk.

Children
Our website is not intended for children and we do not knowingly collect personal data relating to children.

2) The data we collect about you

We may collect and process the following categories of personal data:

  • Identity data: your name.

  • Contact data: email address, phone number, company/organisation name.

  • Enquiry data: information you provide in your message (eg your request, context and any details you choose to share).

  • Technical data: IP address, browser type/version, device identifiers, time zone and general location (approximate), operating system and platform.

  • Usage data: information about how you use our website (eg pages viewed, interactions).

  • Marketing preferences: whether you’re subscribed and your opt-out preferences.

We do not intentionally collect special category data (eg health, ethnicity, political opinions) via this website.

3) How we collect your personal data

We collect personal data through:

  • Direct interactions: when you fill in our website contact form, email us, or subscribe to updates.

  • Automated technologies: cookies and similar technologies that collect technical and usage information (see Cookie Policy). Cookie consent must be obtained for non-essential cookies under PECR.

4) How we use your personal data (purposes and lawful bases)

We use personal data only where UK GDPR allows. What you must be told (and when) is set out in ICO transparency guidance (Articles 13/14).

PurposeData usedLawful basisRespond to enquiries and requestsIdentity, Contact, EnquiryLegitimate interests (responding to requests and running our business) and/or pre-contract steps (where you ask us to provide information or a proposal)Provide services and manage client relationshipsIdentity, Contact, Enquiry, and any client-provided data needed for deliveryContract (where applicable) and legitimate interests (business administration)Send newsletters / updates to subscribersIdentity, Contact, Marketing preferencesConsent (you can withdraw at any time)Send marketing to existing clientsIdentity, Contact, Marketing preferencesSoft opt-in may apply where permitted under PECR (with clear opt-out at collection and in every message) Improve our website using analyticsTechnical, UsageConsent for non-essential cookies/technologies (see Cookie Policy) Security and fraud preventionTechnical, UsageLegitimate interests (keeping systems secure)

Marketing choices and opting out

  • You can opt out of marketing at any time by using the unsubscribe link in our emails or contacting hello@saurce.co.uk.

  • If you opt out, we may keep a minimal record of your opt-out to ensure we respect your preferences.

5) Who we share data with

We may share data with trusted suppliers who help us run the website and business, including:

  • Squarespace (website hosting, forms, and newsletter functionality)

  • Google (Google Analytics 4, Google Tag Manager, Google Workspace)

  • Microsoft (Microsoft Clarity)

  • Basecamp (project management)

  • Xero and Monzo (accounting and banking administration, as relevant)

  • Professional advisers (eg accountants, insurers, legal advisers) where necessary

  • Authorities/regulators where required by law

We only share what is necessary, and we require suppliers to protect personal data and process it appropriately.

6) International transfers

Some suppliers may process personal data outside the UK. Where we make a “restricted transfer”, we use appropriate safeguards such as the International Data Transfer Agreement (IDTA) or the UK Addendum to EU Standard Contractual Clauses (as applicable).

You can contact hello@saurce.co.uk if you want more information about safeguards used.

7) Data security

We use appropriate technical and organisational measures to protect personal data, including access controls and multi-factor authentication where available.

8) Data retention

We keep personal data only as long as necessary for the purposes described above:

  • Enquiry emails / contact form enquiries: up to 1 year from last interaction.

  • Newsletter subscribers: while you remain subscribed; after unsubscribe, we remove/stop using subscriber data within 1 week (and may retain minimal suppression data to respect your opt-out).

  • Client records / invoices: typically 6 years for tax and accounting purposes.

We may retain data longer if needed to establish, exercise or defend legal claims.

9) Your legal rights

You have rights under UK data protection law, including to:

  • request access to your personal data

  • request correction of inaccurate data

  • request erasure in certain circumstances

  • object to certain processing

  • request restriction of processing in certain circumstances

  • data portability in limited circumstances

  • withdraw consent at any time where we rely on consent

These rights sit within the UK GDPR transparency and individual rights framework.

To exercise your rights, contact hello@saurce.co.uk. We aim to respond within one month.

10) When we act as a processor for clients

When delivering consultancy services, we may process information provided by our clients (eg performance reporting, business insights, and operational information). In those cases, the client is typically the controller and we act as a processor, processing data on documented instructions and contract terms.

11) Automated decision-making

We do not use your website data for automated decision-making that produces legal or similarly significant effects.

12) Changes to this notice

We may update this notice from time to time. The “Last updated” date at the top shows when it was most recently revised.

WEBSITE TERMS OF USE (Saurce Ltd)

Last updated: 21 January 2026

These terms apply to your use of the Saurce website (“Site”). By using the Site, you agree to these terms.

1) About us

The Site is operated by Saurce Ltd (company number 16876798), registered office 48 Skitteridge Wood Road, Derby, DE22 4PD. Contact: hello@saurce.co.uk.

2) Use of the site

You agree that you will:

  • use the Site lawfully and not in a way that infringes others’ rights or restricts anyone else’s use;

  • not attempt to gain unauthorised access to the Site, servers, or systems;

  • not introduce viruses, malware, or other harmful material.

We may suspend or restrict access if we reasonably believe these terms have been breached.

3) Content and intellectual property

Unless stated otherwise, we (or our licensors) own the intellectual property rights in the Site and its content. You may view, download, and print pages for your own personal or internal business use, but you must not reproduce, distribute, or commercially exploit content without our written permission.

4) No reliance on information

The Site is provided for general information. It is not intended as professional advice, and you should not rely on it as such. You should obtain appropriate professional advice for your specific situation.

5) Links to third-party websites

The Site may include links to third-party websites. We are not responsible for the content, policies, or availability of third-party sites.

6) Availability and changes

We may update, change, suspend, or withdraw the Site (in whole or part) without notice. We do not guarantee that the Site will always be available or uninterrupted.

7) Liability

Nothing in these terms limits or excludes liability that cannot be limited or excluded under applicable law (including liability for death or personal injury caused by negligence, or fraud).

Subject to the above, we are not liable for losses arising from your use of, or inability to use, the Site, including indirect or consequential losses, loss of profit, or loss of data.

8) Governing law and jurisdiction

These terms are governed by the laws of England and Wales. The courts of England and Wales will have exclusive jurisdiction over any dispute relating to these terms.

ACCESSIBILITY STATEMENT (Saurce Ltd)

Last updated: 21 January 2026

Saurce is committed to making its website accessible and usable for as many people as possible. We aim to improve accessibility and work towards good practice standards, including WCAG 2.1 AA where reasonably practicable.

1) How accessible this website is

We aim for the Site to be accessible. However, some content or areas may not fully meet all accessibility expectations at all times.

2) Feedback and contact

If you have difficulty using the Site, or need information in a different format, please contact us:

Please tell us:

  • the web page URL (if possible),

  • what the issue is, and

  • what assistive technology you’re using (if any).

We aim to respond within 10 business days.

3) What we’re doing to improve accessibility

We review accessibility as part of ongoing improvements, including:

  • maintaining clear structure and headings,

  • ensuring adequate colour contrast and readable text sizes where possible,

  • using descriptive links and labels.

4) Preparation of this statement

This statement was prepared on 21 January 2026 and is based on a self-assessment of the Site.