Privacy statement

Throughout this policy the term Webb Yates Engineers refers to Webb Yates Engineers Ltd and Webb Yates (Midlands) Ltd and their employees collectively. 


1.0 Introduction

Webb Yates Engineers is committed to protecting your personal data. This privacy statement outlines why and how we collect and use your personal data, and provides information about your rights. It applies to personal data provided to us by you directly, or by others on your behalf. We may use your personal data for the purposes outlines in this privacy statement or as otherwise stated at the point of collection.

Personal data is any information relating to an identified or identifiable living person. Webb Yates Engineers processes personal data for a number of purposes, and the means of collection, lawful basis of processing, use, disclosure, and retention periods for each purpose may differ. 

When collecting and using your personal data, our policy is to be transparent about why and how we process it. To find out more about the processing activities that apply to your personal data, please read the relevant sections of this statement.


2.0 Our processing activities

2.1 Clients and collaborators

2.2 Suppliers and subcontractors

2.3 Staff and former staff

2.4 Job applicants

2.5 Website users


3.0 Security

Your data is an important asset to us, and as such, we make reasonable efforts to ensure the necessary measures are in place to prevent unauthorised or inappropriate access, use, modification, disclosure or destruction.

Measures we take to keep data secure include, but are not limited to:

  • making regular backups of files;
  • protecting file servers and workstations with virus scanning software;
  • using a system of passwords so that access to data is restricted;
  • allowing only authorised staff into certain computer areas;
  • using data encryption techniques to code data when in transit;
  • ensuring that staff are only given sufficient rights to any systems to enable them to perform their job function.


4.0 When and how we share your personal data

We will only share personal data with others when we are legally permitted to do so. When we share data with others, we put arrangements in place to protect the data and to comply with our data protection standards.

Personal data held by us may be transferred to:

Other Webb Yates Engineers offices

We may share personal data with other Webb Yates Engineers offices where necessary for administrative purposes and to provide professional services to our clients.

Third party IT service providers

We use third parties to support us in providing our services and to help provide, run and manage our internal IT systems. For example, providers of information technology, cloud-based software, website hosting and management, data back-up, and security and storage services. The servers powering and facilitating this infrastructure are located in the United Kingdom.

Office365 data locations are available here -

Third party suppliers

Auditors and other professional advisers

Law enforcement or other government bodies


5.0 Changes to this privacy statement

We recognise that our commitment to transparency is an ongoing responsibility, so we will keep this privacy statement under regular review.


6.0 Our data controller and contact information

The data controller on behalf of Webb Yates Engineers Ltd and Webb Yates (Midlands) Ltd is Webb Yates Engineers Ltd, 48-50 Scrutton Street, London EC2A 4HH (registered in England and Wales No. 5393930).

If you have any questions about this privacy statement or how and why we process personal data, please contact us:

By post: Webb Yates Engineers Ltd, 48-50 Scrutton Street, London EC2A 4HH

By email:

By telephone: 020 3696 1550


7.0 Your rights and how to exercise them

You have certain rights over your personal data and we, as data controller, are responsible for fulfilling these rights.


7.1 Right to access

You have the right to access the personal data we hold for you. This includes information on:

  • why we are processing your personal data
  • which categories of data are being processed
  • who we share your data with
  • how long we will keep your data
  • the rights you have to erase or rectify your data, and how to restrict and object to us processing it
  • the rights you have to make a complaint
  • the source of the data.

If you want to access your personal data, you can email us at We will respond to any requests within one month of receipt.


7.2 Right to rectification

You have the right to amend any errors in the personal data we hold for you. If you want to amend your personal data, you can email us at We will respond to any requests within one month of receipt.


7.3 Withdrawal of consent

Where we process personal data based on consent,you have the right to withdraw consent at any time. If you want to exercise this right, you can email us at We will respond to any requests within one month of receipt.


7.4 Other rights

As well as rights to access, to rectify and to withdraw consent, you may have other rights in relation to your personal data. These include the right to erasure, the right to restrict or object to the processing of your data, and the right to data portability. If you want to exercise any of these rights, you can email us at We will respond to any requests within one month of receipt.


8.0 Complaints

If you want to make a complaint about our use of your personal data, you can email us at


This privacy statement was last updated on 16th May 2018.