Privacy Policy

This policy tells you how we, Connected Architecture Limited, gather and look after your information. We stick to the EU’s General Data Protection Regulations (GDPR). Your personal and business details are safe with us. We only collect information that we need and have a legal basis for gathering, such as contractual necessity, legal obligation, or your explicit consent.

How We Gather Data

We use a contact form that emails us with the information you enter into the fields. The data is not stored on our website, and we only keep emails for the duration necessary to deal with your enquiry.

The Information We Have

When you contact us, we may collect information like your name, email address, phone number, social media username, and the company you work for, if applicable. If we do business, we’ll also have your business name and bank details, along with a record of invoices and payments.

What We Do With Your Information

Your details are only used for the purpose for which you provided them. We won’t share your information unless the law says we have to, or you’ve given explicit consent. Occasionally, we’ll use your contact details to update you about our services, but you can opt-out anytime.

Who’s in Charge and Who Can See Your Information

Your information is under the care of Bronwen Gombert, owner and operator of Connected Architecture Limited. Only those who need access—like certain associates, our accountant, and some third-party service providers—can see your information.

Where Your Information Is Kept

Your data may be stored or processed through our:

  • Email provider, for correspondence
  • Project management system, for ongoing work
  • Payment processor, for transactions
  • Accounting software, for billing

The third-party systems we use are chosen for their commitment to security. If you have questions, feel free to ask.

Data Retention and Security

We’ll hold onto your data only as long as necessary. For third-party storage, we ensure only authorised people have access. In case of a data breach, we will notify you and the relevant authorities within 72 hours.

Your Rights

Under GDPR, you have the right to access, correct, or delete your data. To exercise these rights, please contact us.

Children’s Data

Our services are not intended for individuals under 16. We don’t knowingly collect data from children without parental consent.

International Data Transfers

Currently, we don’t transfer data outside the UK or EU. If this changes, we’ll update this section with the protective measures in place.


We take complaints seriously. If you’re not satisfied, email us at

Changes to this Policy

Any changes will be effective as soon as they’re posted on the website.