Privacy Notice

This privacy notice was last updated on 15/03/2021.


Yodu understands that your privacy is important and that you care about how your personal data is used and shared online. We respect the privacy of our clients.

We are committed to respecting, securing, and protecting your privacy and private data. We are also committed to being transparent about what we collect from you and how we use it. 

This privacy notice, which covers your use of our services and our website, provides you with information about what personal data we collect, how we use your data, how we ensure your privacy is maintained, and your legal rights relating to your personal data. 

Who We Are 

We are Yodu. Our founder is Will Thomas, you can find him on Linked In.

You can contact us by: 

We don’t do post, we’re not old fashioned.

Your Rights 

Under the General Data Protection Regulation (GDPR) and The Data Protection Act 2018 (DPA) you have a number of rights with regard to your personal data; which this policy and our use of your data has been designed to uphold:

  • Right to be informed – you have the right to be informed about our collection and use of your personal data.
  • Right of access – you have the right to request a copy of the information that we hold about you. You can do this by contacting us using the above details.
  • Right of rectification – you have a right to correct data that we hold about you that is inaccurate or incomplete.
  • Right to be forgotten – in certain circumstances you can ask for the data we hold about you to be erased from our records.
  • Right to restriction of processing – where certain conditions apply, you have a right to restrict our processing.
  • Right of portability – you have the right to have the data we hold about you transferred to another organisation.
  • Right to object – you have the right to object to certain types of processing (such as direct marketing).

If you have cause for complaint about our use of your data, or you would like to exercise any of your rights, then please contact us using the details provided in the section “Who we are” in this policy and we will do our best to solve the problem for you.

If we are unable to help, or you aren’t satisfied with our response, you also have the right to lodge a complaint with the UK’s supervisory authority – The Information Commissioner’s Office (ICO). The ICO can be contacted:

  • By post – The Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, SK9 5AF
  • By telephone – 0303 123 1113
  • Via its website –

What Data Do We Collect from You? 

We collect some data automatically from you when you use our website. That information is:

  • Your IP address, browser type and version, time zone setting, browser plug-in types, geolocation information about where you might be, operating system and version.
  • Your URL clickstreams (the path you take through our site), products/services viewed, page response times, download errors, how long you stay on our pages, what you do on those pages, how often, and other actions.

If you use the contact form on our website we will collect your name, email address and telephone number in addition to the automatically collected information above. We will also gather any comments you may wish to write.

If you enquire on our website we will store this data for a reasonable period. Should your enquiry lead to us providing services to you we may collect further, reasonable data with your permission.

How We Use Your Data 

Data protection law means that we can only use your data for certain reasons and where we have a legal basis to do so. Below are the reasons for which we process your data, and the legal basis we rely on. We explain what the legal basis means in the next section.

  • Answering Your Queries & Customer Support: We will use your email and contact details to answer your contact requests and queries. Our legal basis for doing so is legitimate interest.
  • Providing you services: We will use information about your business in order to help us in delivering you quality services. Our legal basis for doing so is legitimate interest.
  • Keeping Our Website Running: providing and managing your access to our website and services, personalising and tailoring your experience on our website and services. Our legal basis for this is legitimate interest (see below).
  • Marketing Purposes: We may send you emails, messages and advertisements about our services and content and keep in touch with you generally, but only with your agreement. You will always be able to unsubscribe from these. Our legal basis for doing that is consent (see below). We may also use tracking cookies (providing you agree to them on your web browser) to advertise to you using 3rd party marketing platforms. For example, Facebook Ads.

Legal Basis

We have identified a legal basis for each of our purposes in the section “How we use your data”. This is what they mean:

Contractual Obligation

Processing your data is necessary for a contract you have with us, or because we have asked you to take specific steps before entering into that contract.


  • You have given clear consent for you to process your personal data for a specific purpose.
  • You can always withdraw your consent. You can do this by clicking on unsubscribe in any marketing email we send, or by getting in touch via the contact details in the section “who we are”.
  • If you withdraw your consent and we have no other legal basis for processing your data we will stop. If we do have another legal basis we will continue to do so, subject to your legal rights.

Legitimate Interest

Processing your data is necessary for our legitimate interests or the legitimate interests of a third party, provided those interests are not outweighed by your rights or your explicit instructions. These legitimate interests are:

  • Gaining insights from your behaviour on our website
  • Delivering, developing and improving our service
  • Enabling us to enhance, customise or modify our services and communications
  • Enhancing data and physical security
  • Promoting our products, services and business.
  • Responding to customer enquiries and contact requests.

In each case, these legitimate interests are only valid if they are not outweighed by your rights and explicit instructions.

You can always object to our processing of your data based on legitimate interest. If you do so and we have no other legal basis for processing your data we will stop. If we do have another legal basis we will continue to do so, subject to your legal rights or explicit instructions.

Storing and Sharing Your Data

Data security is very important to us and we take appropriate security measures to safeguard and secure your data which is collected via our website and in providing our services.

Our Data protection policy is inline with industry best practice. All of our paper or digital files are kept safe with physical security and destroyed in line with the retention periods specified below.

We endeavour to keep all of your personal information in the European Economic Area (EEA). The EEA includes all EU Member States plus Norway, Iceland and Liechtenstein.

In limited, and necessary, circumstances your information may be transferred outside of the EEA; this will only happen where it can’t be avoided. Where this does happen, we will put special protections in place.

We will only move data to countries or organisations:

  • Where the EU Commission has deemed their data protection measures to be adequate;
  • Or under a contract which enforces the EU Commission approved “standard data protection clauses” which can be viewed here.

We will never sell or otherwise transfer or disclose your other personal data to any third party except:

  • Where we are dealing with a third party company and they require said data. We will ensure this is minimised appropriately and they have up-to-date data protection policies and procedures in place.
  • We may sometimes contract with trusted service providers to provide goods and services on our behalf. These are generally limited to email servers, IT services, software providers and payment processing. We may have to transfer your personal data to these companies, or your personal data may pass through them when you deal with us.
  • Where we transfer your data to our trusted service providers we will have confirmed that they will apply data protection and security measures to the same standard we would. We will always impose contractual terms on all our providers to ensure your data remains secure.
  • Our trusted service providers may use your data with third party applications, services and companies however this will always be encrypted, minimised and used solely to help us provide you with a better service. 
  • In certain limited circumstances we may be legally required to share your personal data – for example where we are involved in legal proceedings, or where we are complying with a court order, regulatory requirement, or government department with appropriate legal authority to compel us to do so.

How Long We Keep Your Data

We do not keep your personal data for any longer than it is necessary in light of the reason(s) for which it was first collected and for our obligation under other laws.

We will keep client data for no longer than 8 years after the end of your last enquiry of service delivery – whichever comes last.

At the end of that period your data will be either deleted completely or anonymised.

Exceptions to the above will be:

  • Where you have exercised your right to have the information where it applies.
  • Where the law requires us to keep your data for longer or delete it sooner.
  • Where a legal claim is in progress – we’ll keep your data until that claim is concluded.

Changes to Our Privacy Notice

We may change this privacy notice from time to time (for example, if the law changes). Any changes will be immediately posted on our site. We recommend you check the privacy notice regularly to remain up to date.