top of page

Privacy Policy

Privacy Policy

 

BM&Co Limited ("we", "our", "us") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal information in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and other applicable privacy laws.

1. Information We Collect

We may collect and process the following personal data:

  • Identity Data: name, title, date of birth.

  • Contact Data: address, email address, telephone number.

  • Financial Data: bank account details, payment information.

  • Business Information: company details, accounting records, tax information.

  • Technical Data: IP address, browser type, operating system, and browsing behaviour on our website.

  • Communication Data: records of communications with us (email, calls, messages).

2. How We Collect Your Data

We may collect data from:

  • Direct interactions (e.g., completing our contact form, emailing us, calling us).

  • Engagements as a client (when you provide documents or accounting information).

  • Automated technologies (cookies, analytics tools).

  • Third parties (e.g., HMRC, Companies House, other professional advisers).

3. How We Use Your Data

We use your personal data to:

  • Provide accounting, tax, and advisory services.

  • Communicate with you regarding your enquiries, services, and updates.

  • Comply with legal and regulatory obligations.

  • Process payments and maintain records.

  • Improve our website and services.

  • Send newsletters or marketing communications (only with your consent).

4. Lawful Basis for Processing

We process your personal data on the following lawful bases:

  • Contract – to perform our services under an engagement agreement.

  • Legal obligation – to meet HMRC, regulatory, and record-keeping requirements.

  • Legitimate interests – to manage our business and improve services.

  • Consent – for marketing or promotional communications.

5. How We Share Your Data

We do not sell your personal information.
We may share your data with:

  • HMRC, Companies House, and other authorities when legally required.

  • Our professional advisers (e.g., lawyers, auditors, IT support).

  • Third-party service providers (e.g., cloud accounting platforms like QuickBooks and Xero, secure file storage services).

  • Subcontractors engaged to provide specialist services, under confidentiality agreements.

6. International Transfers

Some of our third-party service providers may store or process data outside the UK. Where this occurs, we ensure appropriate safeguards are in place in line with UK GDPR requirements.

7. Data Retention

We retain personal data for as long as necessary to:

  • Provide our services to you.

  • Comply with legal obligations (typically 6 years after the end of the engagement).

8. Your Rights

Under UK GDPR, you have the right to:

  • Access the personal data we hold about you.

  • Request correction or deletion of your personal data.

  • Object to or restrict our processing of your data.

  • Request data portability.

  • Withdraw consent at any time (where consent is the lawful basis).

To exercise your rights, please contact us using the details below.

9. Cookies

Our website uses cookies to enhance your browsing experience and collect analytics data. You can control cookies through your browser settings. For more details, see our Cookie Policy.

10. Security

We use appropriate technical and organisational measures to protect your personal data from unauthorised access, disclosure, alteration, or destruction.

11. Contact Us

If you have any questions about this Privacy Policy or how we handle your data, please contact:

BM&Co Limited
Email: theoffice@bmnco.co.uk
Phone: 01604946666
Address: 18 the Spinney, Northampton, NN4 5BT

You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO): www.ico.org.uk.

bottom of page