Privacy Policy

We have reviewed our data collection and retention policy in line with the General Data Protection Act (GDPR).  This page provides an overview and if you would like more details please contact us at 

This page relates specifically to data collected via this website or in person. Please contact us if you need other information.

Information Collected

We collect data from visitors to this website using google analytics and the contact page when you email us with an enquiry. We also collect your details when we met you in person following our initial consultation. 

If you are a client or contractor when you submit your data to us by email or in person this is collected and is used by us in a variety of ways. We take your privacy very seriously and we will have your data stored in several other places for the purposes of invoicing along with statutory and legal requirements to deliver your project, including the following:

In all cases our aim is that it is clear what you are opting into and you will have given your consent for us to use your data. More generally, we do not pass on your data to any third party without consent. If you would not like us to pass on your data, please email

Where your Data is Stored?

Your data stored includes names, email addresses, telephone numbers and postal address which is stored on our Microsoft Office 365 account and is also backed up on multiple remote hard drives. In this instance, Office 365 is the data processor and Graham Rivers Architects is the data controller. Microsoft Office 365 is a security-hardened cloud-based online data storage subscription service. All of our office devices and data are protected with Prey Anti-Theft software. 

More information about Office 365 security can be found here:

More about the Microsoft Office 365 commitment to data protection can be found here: 

More information about Prey Anti-theft security can be found here:

Disclosure, opt out and deletion of your data Disclosures

We will not share your data with third parties unless we are obliged to disclose personal data by law, or the disclosure is necessary for purposes of national security, taxation and criminal investigation, or we have your consent. Please be aware that planning application information is open to the public to view and comment on. If you have any concerns please see your local authority’s privacy policy.

More details

You have the right to see the data we have collected about you. If you have any requests concerning your personal information or any queries regarding these practices, please contact us (the Data Compliance Officer) at

Opt out

If you would like to opt-out from receiving email or postal communications from us or would like to change the media that we use to contact you (e.g. changing from email to postal mail), please contact us at 

Data Retention and Deletion

Our policy is to retain data for the duration of the six-year liability period, a requirement as a chartered architects practice. Following the end of the six-year liability period we will delete your data from our database. If you would like to see or remove your personal data from our database, again please get in contact with us (the Data Compliance Officer) at

Other websites

Our website contains links to other social media websites that are outside of our control and are not covered by this Policy. If you access other sites using the links provided, the operators of these sites may collect information from you that will be used by them in accordance with their privacy policy, which may differ from ours.

In addition to the above, we collect anonymous data information automatically about your visit to our website through cookies. Please see our Cookies Policy for more details.  This does not fall within the remit of GDPR but is important.

If you have any concerns about our GDPR policy, you can contact us at


Please note that this privacy policy is subject to change from time to time and was last updated in May 2018.