Privacy Notice

We respect your privacy and are committed to protecting it.

Personal information means any information about you from which you can be identified, but it does not include information where your identity has been removed (anonymous data).

As the controller of personal information, we are responsible for how that data is managed. This Notice sets out how PDi Ltd may collect, use and share information.

Principles of Data Protection

As the ‘controller’ of your personal information, we have adopted the following principles to ensure that the personal information we hold about you is:

What information do we collect about you?

We collect personal information about you when you use our website, visit our office, talk to us at a meeting or event and ask us for information. We may also collect personal information about you when you use our software, including our APP’s that assist in the effective performance of offshore projects. The information about you which we will collect may include:

When using our website or software, we collect standard internet log information including:

This is statistical information only which we collect in order to find out the numbers of visitors to our site and the pages they have visited. This information is collected in such a way that it is not used to identify individuals. Where we do collect personal information on the website, this will be made obvious to you through the relevant pages.

Please be aware that our website may provide you with links to other websites. If you follow a link to any other website please note they have their own privacy notices. We do not accept any responsibility or liability for the privacy and security practices of such third-party websites and your use as such is at your own risk.

What are our responsibilities to you?

As a data controller, we are responsible for ensuring our systems, processes, people and suppliers comply with data protection laws in relation to the information we handle.

All of our people must abide by this Notice when handling personal data and must take part in any required data protection training. Any breach will be taken seriously and may result in disciplinary action.

We currently have a Data Protection Leader to oversee our compliance with data protection laws and this Notice, and provide guidance and advice to PDi Ltd and our people as required. Our Data Protection Leader will be responsible for reporting any failures to comply with the data protection legislation.

How we may use and share the information we collect

We may use the information we collect for the following purposes:

We may also use your personal information to provide you with details about services which may be of interest to you or the company you act for and we may contact you about these by post, email, SMS or telephone. If you no longer want us to use your personal information in this way, please contact our Data Protection Leader.

How we may share the information we collect

We may share your personal data with the parties set out below for the purposes described above:

If the business of PDi Ltd is sold or integrated with another business your details may also be disclosed to our advisors and any prospective purchasers and their advisors and will be passed on to the new owners of the business. If a change happens to our business, then the new owners may use your personal data in the same way as set out in this Notice.

We will not share, sell or trade your personal information with any other third party without your consent.

Transfer of your information out of the EEA

To deliver our services to the company you act for, it is sometimes necessary for us to share your personal information outside the European Economic Area (EEA), for example with our parent company.

Countries outside the EEA may not have the same data protection laws as the United Kingdom and EEA. Any transfer of your personal information will be subject to appropriate or suitable relevant safeguards.

If you would like further information regarding the mechanisms used to comply with data protection laws when transferring your personal information out of the EEA, please contact our Data Protection Leader.

Whether information has to be provided by you

The provision of your personal information is necessary to enable us to provide services to the company you act for. Without this information, we will not be able to fulfil our legal and contractual oblations or provide such services.

Legal grounds for using personal information

We rely on the following legal grounds to process personal information, namely:

Legitimate interests: We may use your personal data to provide you with information you have requested. It is also in our legitimate interests to collect your information in order for us to provide our services to you or the company you act for more effectively. We will always act reasonably and give full and proper consideration to your interests when balancing them against our legitimate interest, and will only process the minimum data required in order to achieve this legitimate interest.

Consent: We may provide you with information about our services where you have specifically requested this information. You may request that we stop sending you information at any time.

Performing a contract: We will process your personal information to the extent that it is necessary for the performance of our obligations under the contract we have entered into with the company you act for.

The measures we have in place to protect and safely store the information we collect

The confidentiality and security of your information is of paramount importance to us. We have appropriate organisational and technical security measures in place to prevent personal information from being accidentally lost or accessed in an unauthorised way. However, no information system can be 100% secure. So, we cannot guarantee the absolute security of your information. We are not responsible for the security of information you transmit to us over networks that we do not control, including the internet and wireless networks.

We have taken appropriate steps to ensure that that there are adequate procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so.

Retention of the information we collect

We will only retain your personal information for as long as necessary to fulfil the purposes we collected it for. In general, this will mean retaining personal information for so long as we have a contract with the company you act for and for a period of 6 years thereafter.

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

Your choices and rights in respect of the information we hold

Personal data must be processed in line with individuals’ rights, including the right to:

How to make a complaint

If you have any queries concerning your personal information or any questions on our use of the information, please contact our Data Protection Leader. You also have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues.

How to contact us

If you have any queries concerning your personal data or any questions on our use of that information, please contact our Data Protection Leader at

Changes to this privacy notice

We keep this Notice under regular review and we will notify you by posting notice of the changes in a clear and conspicuous manner on our website

This Notice was last updated August 2018.

More information

Detailed information about your rights under Data Protection legislation can be found on the website of the United Kingdom Information Commissioner, the address of which is (as at the date of this policy)