020 8429 8800
We’re part of the B1G1 global movement making a positive impact on the world – find out more here >>>
I WANT A PROACTIVE ACCOUNTANT
I WANT TO SAVE TAX

I WANT TO INCREASE PROFITS

Privacy Policy & Cookies Notice

Last updated: 14 August 2025

Sobell Rhodes LLP (“SRLLP”, “we”, “our”, “us”) is committed to protecting and respecting your privacy.

This policy explains how we collect, use, and protect your personal data, and sets out your rights under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018 (DPA 2018).

By using our website or services, you acknowledge that you have read this Privacy Policy.

1. Data Controller

For the purposes of the UK GDPR and DPA 2018, the data controller is:

Sobell Rhodes LLP
The Kinetic Centre, Theobald Street, Elstree, Borehamwood WD6 4PJ
Email: info@sobellrhodes.co.uk

2. Statement of Commitment

We fully comply with the UK GDPR and the DPA 2018.
We regularly review our privacy and data protection practices to ensure your personal data is processed lawfully, fairly, and transparently.

3. Lawful Basis for Processing

We process your personal data under one or more of the following lawful bases:

  • Performance of a contract – where processing is necessary for the services we provide to you.

  • Legal obligation – where we are required to comply with UK law (e.g., HMRC reporting).

  • Legitimate interests – for running our business, providing updates, developing our services, and protecting our network security (balanced against your rights).

  • Consent – for specific marketing activities or non-essential cookies where you have explicitly opted in.

We keep a record of the lawful basis for each category of personal data we process.

4. Information We Collect

We may collect and process the following information:

Information you provide to us directly, when subscribed to our newsletter or use of some of the social media functions on our site. This information you give many include (but is not ncecessarily limited to):

  • Name, address, and contact details (email, phone)

  • Business name and address

  • Date of birth

  • Job title or role

  • Payment information (where applicable)

  • Any other information you provide via forms, email, phone, or in person (eg photograph, ID) .

Information we collect automatically:

  • IP address, your login information, browser type/version, device information, operating system

  • Website usage data (pages visited, time on site, clickstream)

  • Interaction with marketing emails (opening the email, link you have clicked on)

Information from third parties:

  • Data from business partners, public registers, and analytics providers

5. How We Use Your Information

We may use your personal data to:

  • Provide and manage our services

  • Meet legal and regulatory requirements

  • Maintain business records

  • Send updates, marketing, and invitations (if you have not opted out)

  • Improve our website and services through analytics

  • Manage events, competitions, or surveys

Information we received from other sources:

We may combine this information with information you give to us and information we collect about you. We may use this information and the combined information for the purposes set out above (depending on the types of information we receive).

6. Marketing

We may contact you with information about our services or events where:

  • You are an existing client or contact, and have not opted out

  • You have expressly opted in to receive marketing

You can opt out at any time by clicking “unsubscribe” in our emails or emailing us at info@sobellrhodes.co.uk.

7. Data Retention

We only keep personal data for as long as necessary for the purpose it was collected and to comply with legal obligations:

  • Current clients: reviewed periodically and retained only while the relationship is active, plus any legal retention period.

  • Disengaged clients: normally deleted from live systems after 6 years, unless retention is required for legal or regulatory reasons.

8. International Transfers

If we transfer your personal data outside the UK, we ensure that appropriate safeguards are in place in accordance with the UK GDPR.
This includes:

  • Only using suppliers and vendors who can demonstrate compliance with the UK GDPR or equivalent data protection laws.

  • Carrying out due diligence and ongoing monitoring of all vendors who process personal data on our behalf.

These measures ensure that your personal data is given the same level of protection as it receives in the UK.

9. Security of Your Data

We use appropriate technical and organisational measures to protect personal data, including:

  • Encryption of data in transit and at rest

  • Access controls and authentication

  • Regular security monitoring and audits

All information you provide to us is stored on our own servers or our third-party servers.

Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.

10. Your Rights

Under the UK GDPR, you have the right to:

  • Access your personal data (Subject Access Request)

  • Correct inaccurate or incomplete data

  • Request deletion of your data (“right to be forgotten”)

  • Restrict how we use your data

  • Object to processing, including marketing

  • Request your data in a portable format

  • Withdraw consent at any time (where consent is the lawful basis)

  • Not be subject to decisions based solely on automated processing

To exercise these rights, contact info@sobellrhodes.co.uk.

11. Disclosure of Your Information

We may share your personal information with any member of our group, which means our subsidiaries, as defined in section 1159 of the UK Companies Act 2006.

We may also share your information (including personal data) with selected third parties including:

  • Business partners, suppliers and sub-contractors for the performance of any contract we enter with them or you
  • Analytics and search engine providers that assist us in the improvement and optimisation of our site
  • In the event that we sell or buy any business or assets, the prospective seller or buyer of such business or assets
  • Parties to whom we are under a duty to disclose or share your personal data to comply with any legal obligation, or in order to enforce or apply our terms of use or terms and conditions of supply and other agreements; or to whom we disclose or share data in order to protect the rights, property, or safety of Sobell Rhodes LLP, our customers, or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction

12. Cookies

We use cookies to improve your website experience.

  • Essential cookies – required for site functionality

  • Analytics cookies – help us understand how visitors use our site (requires consent)

  • Marketing cookies – personalise ads and track engagement (requires consent)

You can change your cookie preferences at any time via our cookie banner or browser settings.

Google Analytics:
We use Google Analytics with IP anonymisation enabled. Data may be processed in the USA with UK-approved safeguards. Google’s privacy policy is available at https://policies.google.com/privacy.

13. Links to Other Websites

Our site may contain links to other sites. We are not responsible for their privacy policies.

14. Changes to This Policy

We review this policy annually. Any updates will be posted on this page and, where significant, emailed to you.

15. Contact Us

If you have questions about this policy or how we process your data, contact:
Email: info@sobellrhodes.co.uk
Post: Sobell Rhodes LLP, The Kinetic Centre, Theobald Street, Elstree, Borehamwood WD6 4PJ

If you are not satisfied with our response, you have the right to complain to the Information Commissioner’s Office (ICO): www.ico.org.uk.

16. Use of Artificial Intelligence (AI)

We may use Artificial Intelligence (“AI”) tools and technologies to support the delivery of our services, improve efficiency, and enhance quality.

Examples of AI use include:

  • Drafting or summarising documents

  • Organising and categorising data

  • Assisting with research and analysis

  • Detecting anomalies or patterns in financial data

How we protect your data when using AI:

  • We only use AI solutions that meet UK GDPR compliance standards.

  • Personal data is anonymised or pseudonymised wherever possible before being processed by AI tools.

  • AI outputs are always reviewed and verified by qualified staff — we do not rely solely on AI for decisions that could have legal or significant effects on you.

  • We do not sell or share your personal data with AI providers for their own purposes.

Automated decision-making:
We do not use AI systems to make fully automated decisions about you that have a legal or similarly significant effect without human involvement.