InfiniTEN

Privacy notice

How we handle the information you share with us.

Effective 18 May 2026 Version 1.0 Controller InfiniTEN Limited

This notice explains what personal information InfiniTEN Limited collects, why we collect it, how we use it, and the rights you have over it. It is written to be read in plain English. If anything is unclear, write to us and we will explain it.

01Who we are

InfiniTEN Limited is the data controller for the personal information described in this notice. We are a company registered in England and Wales (company number 14874849), with a registered office at 128 City Road, London, EC1V 2NX. We are registered with the Information Commissioner's Office under reference ZB649481.

For any question about this notice or how we handle personal information, contact us at enquiries@infiniten.co.uk.

02What we collect

We collect personal information that you give us directly when you get in touch or when we work together. Specifically:

  • Contact details. Your name, the organisation you represent, your role, your email address, and any phone number you choose to share.
  • Correspondence. The content of emails, letters, and meeting notes connected to an enquiry or an engagement.
  • Engagement information. Details relevant to a mandate, including instructions, decisions, financial information where it is needed for the work, and counterparty details.
  • Information you choose to share. Anything you send us in support of a brief or as part of a conversation.

We do not collect special category data (for example health or political opinions) and we do not ask for it. If you send it to us anyway, we will only keep it where it is necessary for the engagement and we will hold it under the same controls as the rest of the file.

03How we use it

We use the personal information you share with us to:

  • Respond to enquiries and decide whether we are a sensible fit for the work.
  • Carry out engagements once a mandate is in place, including conversations with counterparties, advisers, and other parties on your instructions.
  • Send written reports, recommendations, and correspondence connected to live work.
  • Meet our own legal and regulatory obligations, including record keeping for tax and accounting.
  • Manage the practice. This covers invoicing, file management, professional indemnity arrangements, and similar internal activity.

We do not use your information for marketing. We do not sell your information. We do not pass it to third parties for their own purposes.

04Lawful basis

Under UK data protection law, we need a lawful basis to process personal information. The bases we rely on are:

  • Legitimate interests. For responding to enquiries, evaluating fit, and running the practice. The interest is to operate a property and asset advisory business and respond to people who ask us to.
  • Contract. For carrying out engagements once a mandate is in place.
  • Legal obligation. For records we are required to keep, including tax and accounting records.

05Who we share it with

We share personal information only where it is necessary for the work or required by law. The categories are short and named:

  • Specialist advisers we bring in on a specific engagement, such as planning, tax, legal, or finance professionals. They act under their own professional obligations and we only share what is needed for them to do their part.
  • Counterparties and their representatives, where engagement with them is the point of the work and you have instructed us to engage.
  • Our accountants, our bank, and our professional indemnity insurer, where the information is needed for those routine business functions.
  • Regulators, courts, or government bodies where we are legally required to disclose information.

We do not pass personal information to advertising networks, data brokers, or anyone else who would use it for their own commercial purposes.

06International transfers

Our work is principally based in the United Kingdom. Where an engagement involves an overseas investor group, counterparty, or adviser, personal information may travel outside the UK in the ordinary course of that work. Where it does, we rely on the safeguards recognised under UK data protection law, such as the UK addendum to the EU standard contractual clauses or an adequacy decision covering the receiving country.

If you want to know whether a particular engagement involves a transfer outside the UK, ask us and we will tell you.

07How long we keep it

We hold personal information only for as long as it is useful or as long as the law requires.

  • Enquiries that do not proceed to an engagement: two years from last contact, then deleted.
  • Engagement files: seven years from the end of the engagement, in line with HMRC and professional record-keeping requirements.
  • Accounting and tax records: six full tax years plus the current year, as required by HMRC.
  • Records relevant to ongoing legal claims or disputes: held until the matter is fully resolved.

When the retention period ends, the information is deleted or securely destroyed.

08Security

We take sensible, proportionate measures to keep information secure. Email and document storage sit on reputable, contractually committed providers. Devices are encrypted and access is controlled. Where information needs to travel between parties on an engagement, we agree the route in advance. Where written reports or sensitive material need stronger protection, we will use encrypted file transfer.

No system is completely immune from incident. If we became aware of a personal data breach that posed a risk to you, we would notify you and the Information Commissioner's Office in line with the timescales the law sets out.

09Your rights

Under UK GDPR you have rights over the personal information we hold about you. These include:

  • The right to be told what information we hold and how we use it. This notice covers most of it. If you want more, ask.
  • The right to a copy of the information we hold about you.
  • The right to ask us to correct information that is wrong.
  • The right to ask us to delete information where there is no good reason for us to continue to hold it.
  • The right to ask us to restrict how we use the information, or to object to a particular use, in certain circumstances.
  • The right to ask for a copy of the information in a structured, commonly used format where the law allows.

To exercise any of these rights, write to us at enquiries@infiniten.co.uk. We will respond within one month. There is no fee for a reasonable request. If a request is plainly excessive or repetitive we may decline or charge a reasonable fee, and we will explain why.

10Cookies and tracking

This website does not use cookies, analytics, or any third-party tracking. Nothing is loaded that identifies you or follows you across sites. The only network traffic the page generates is the request for the page itself and for the typefaces it uses.

If that changes — for example if we add a contact form or an analytics tool — we will update this notice and the change date below before the new behaviour goes live.

11Changes to this notice

We will update this notice when we change how we handle personal information, when the law moves, or when something we have written is no longer accurate. The version number and effective date at the top of this page will change when the notice changes. For material changes that affect people we are already working with, we will write to them as well.

12Contact and complaints

For any question about your information, your rights, or this notice, write to enquiries@infiniten.co.uk. We will respond, and we will try to put things right.

If you remain unsatisfied, you have the right to complain to the Information Commissioner's Office. Their contact details are at ico.org.uk/make-a-complaint, by telephone on 0303 123 1113, or by writing to Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF.