Legal

Privacy Policy

Last updated: 15 May 2026

This policy explains how Modbury Remote collects, uses and protects your personal data. It applies to everything you do on modburyremote.co.uk, including the Block Compliance Check service.

1. Who we are

Modbury Remote Limited, company number 17209651, registered in England & Wales. Registered office: 128 City Road, London, EC1V 2NX.

For regulated services we operate under the parent practice, Modbury Estates Ltd (company number 13690686, VAT 461215814), registered office Office 31, Genesis Building, Plymouth.

For any privacy queries, email alex@modburyremote.co.uk.

2. What data we collect

When you visit the website

  • Usage data via Google Analytics (pages visited, time on site, general location, device type) - only if you consent to analytics cookies

When you submit the suitability check form on the homepage

  • Name, email address, phone number (optional)
  • Block address and number of units
  • Your role at the block, and any context you provide in the notes field

When you complete the free Compliance Score

  • Your name and email address
  • Your answers to the 15-question Compliance Score quiz, which describe your block's compliance position against 10 statutory and best-practice obligations
  • Building context fields (units, year built, height, services)
  • Your consent to receive your report plus occasional compliance follow-up emails, captured at submission

When you buy a Block Compliance Check

  • Name, email address, phone number (optional)
  • Block name, address, and number of units
  • Building details you provide at intake: year built, height, management structure, communal gas, commercial premises, current managing agent, known compliance concerns
  • Postcode (Tier 3 only, for mileage calculation)
  • Payment information processed by Stripe - we do not see or store your card details ourselves
  • Any further information you share by email or during your video walkthrough call or site visit

3. How we use your data

  • Service delivery. To assess fit, prepare your audit, deliver the report and templates pack, and provide the 30 days of post-delivery follow-up (Tier 2 and Tier 3).
  • Compliance Score report. To generate and email your personalised Compliance Score report after you complete the free quiz.
  • Compliance follow-up emails (marketing). When you submit the Compliance Score quiz, the clear notice on that page confirms that you consent to receive occasional compliance-related follow-up emails from us. Every follow-up email contains a one-click unsubscribe link; we will stop on receipt.
  • Communications. To respond to your enquiries, send order confirmations, send the booking link for your call or visit, and send the final deliverables.
  • Analytics. To understand how the site is used and improve it.
  • Compliance. To meet our legal, accounting and regulatory obligations (record-keeping for tax and consumer law purposes).

We do not sell or share your data with any third party for their own marketing. Marketing emails from us are limited to compliance topics relevant to your block; you can unsubscribe with one click at any time.

4. Lawful bases for processing

  • Contract: for everything we do to deliver the Block Compliance Check you paid for.
  • Legitimate interests: for responding to general enquiries, running analytics (where you have consented to cookies), and protecting our business.
  • Legal obligation: for retaining accounting records and responding to lawful requests from regulators or courts.
  • Consent: for any optional marketing communications (you can withdraw at any time).

5. Who we share your data with

We use the following third-party processors. Each is bound by their own data processing agreement with us.

Stripe
Payment processing for the Block Compliance Check. Stripe collects your card details directly - we never see or store them.
Resend
Transactional email delivery (confirmations, booking links, audit deliverables).
Google Workspace
Email correspondence with you, calendar booking for your audit walkthrough call, document storage and sharing.
Google Analytics
Aggregated website analytics, only if you accept analytics cookies.
Vercel
Hosting for the website and the API endpoints that process your intake and payment.
Anthropic
We may use AI tooling to help draft internal notes about your audit. Your data is not used to train any model and is processed under Anthropic's enterprise agreement.

We do not sell your data to any third party. We do not pass your data to contractors (the contractor shortlist in your audit is a one-way recommendation - we do not introduce them to you).

6. International transfers

Some of our processors (notably Stripe, Google and Anthropic) operate servers outside the UK and EU. Where this happens, transfers are protected by either the UK International Data Transfer Agreement, EU Standard Contractual Clauses, or an adequacy decision under UK GDPR.

7. Cookies

We use Google Analytics cookies to measure website traffic, and Google Ads cookies to measure the performance of our advertising and reach relevant audiences. These cookies are only set after you accept the cookie banner. Until you accept, no analytics or advertising cookies are stored, and any measurement runs in a cookieless, anonymised mode. We do not sell your data or use it for marketing without your separate, explicit consent. You can withdraw consent at any time by declining the banner or clearing your browser cookies for this site.

8. Data retention

  • Analytics data: retained by Google for up to 14 months.
  • Suitability check form submissions: retained for up to 12 months unless you request earlier deletion.
  • Block Compliance Check audit records, including intake and deliverables: retained for 7 years to meet our accounting and consumer-law obligations, then deleted.
  • Payment records held by Stripe: subject to Stripe's retention policy (typically 7 years for financial record-keeping).
  • Email correspondence: retained for as long as needed to operate the service and meet legal obligations, then deleted on request or by routine review.

9. Your rights

Under UK GDPR you have the right to:

  • Access the personal data we hold about you
  • Correct any inaccurate or incomplete data
  • Have your data deleted (subject to our legal obligations to retain certain records)
  • Restrict or object to how we process your data
  • Receive a copy of your data in a portable format
  • Withdraw consent at any time, where consent is the lawful basis
  • Complain to the Information Commissioner's Office at ico.org.uk

To exercise any of these rights, email alex@modburyremote.co.uk. We aim to respond within one calendar month.

10. Security

We use industry-standard measures to protect your data, including encrypted transmission (HTTPS everywhere), restricted access to internal systems, and reputable processors with their own security certifications. No system is perfectly secure, but we treat your data as if it were our own.

11. Children

Our services are aimed at directors, leaseholders and managing agents. We do not knowingly collect data from anyone under 18.

12. Changes to this policy

We may update this policy from time to time. The "last updated" date at the top will always reflect the latest version. Material changes will be flagged on the homepage where appropriate.

13. Contact

For anything related to privacy or your data:

Plain English summary. We collect what we need to deliver your audit and to run a clean business. We do not sell your data. We do not pass it to contractors. We keep it for as long as the law requires, then delete it. If you want any of it gone sooner, ask.

Modbury Remote Limited  ·  Company No. 17209651  ·  TPI & RICS qualified property professionals