Privacy and GDRP

We take privacy very seriously at Concept First Ltd.

Our websites and cookies

Our websites do not require cookies to work. If a user has cookies turned on, we use google analytics for Search Engine Optimisation only.

Client information

As part of our business contracts with our client businessness, we hold names, email addresses and contact telephone numbers of members of their staff, and no other personal data. This information is held in emails, in files on our network, and in our addresss books. No information is held on individuals outside of a business relationship with our clients.

This information is used to contact and carry out our business arrangement with our clients. We do not advertise, profile or market to any of our clients' staff, or any individuals.

Third parties

We use Google to host our email, their GDPR compliance can be found here. This is the only information we share with a third party. All other information is kept on our systems, and backed up, within the UK.


All information is encrypted at rest and is subject to access control and regular security reviews. HTTPS is used to transfer all information securely. Information on clients where the relationship is not ongoing will be removed as far as possible, whilst keeping limited historic records for legal and commercial auditing.

More information

Please contact for more information from our Data Proection Officer. The same email address can be used for any data requests or general enquiries.