Log in Request a demo

Legal

Privacy Policy

DRAFT for solicitor sign-off. Re-drafted to a 2026 UK GDPR posture for Dryad Global's actual business (the previous notice was a stale consumer-finance template). Confirm the items marked [confirm] (retention periods, named processors, transfer mechanism) before publication.

Last updated: [date]  |  Version: 1.0

This notice explains how Dryad Global Ltd ("Dryad Global", "we", "us", "our") collects and uses your personal data, and your rights over it. Dryad Global provides maritime risk intelligence, including through our Verihelm platform. Verihelm is our product; Dryad Global Ltd is the legal entity and the data controller.

Who we are

Dryad Global Ltd is a company registered in England and Wales (company number 14177766), with its registered office at 167-169 Great Portland Street, 5th Floor, London W1W 5PF. For the purposes of UK data protection law (the UK General Data Protection Regulation and the Data Protection Act 2018) we are the data controller for the personal data described in this notice.

You can contact our Data Protection Officer at dpo@dryadglobal.com or by writing to the DPO at the address above.

The personal data we collect

We mainly process business-contact information about the representatives of our customers, prospects and suppliers. We collect:

  • Identity and contact data - your name, work email address, employer, job title and business telephone number.
  • Account data - login credentials, profile details and your preferences where you hold a Verihelm account.
  • Transaction data - your subscription, orders and payment status. Card payments are processed by our payment provider; we do not store full card details.
  • Usage and technical data - internet protocol (IP) address, device and browser information, and how you use our website and platform.
  • Communications - the content of your emails, support requests and, where we tell you in advance, recordings of telephone calls made for training and quality purposes.
  • Marketing and preference data - your choices about receiving marketing from us.

We do not seek special-category data (such as health data) or criminal-offence data, and we ask that you do not send it to us.

How we use your personal data, and our lawful bases

  • To provide our services and your account, and to give support - to perform our contract with you or your organisation.
  • To take payment and manage billing - to perform our contract and to comply with our legal obligations.
  • To secure, maintain and improve our website and platform, including analytics - our legitimate interests in running and improving a reliable, secure service.
  • To send you relevant marketing about our products - your consent where required, or our legitimate interests in promoting our business to existing and prospective business customers. You can opt out at any time.
  • To comply with law and to establish or defend legal claims - to comply with our legal obligations and our legitimate interests.

Marketing

You can ask us to stop sending you marketing at any time, by using the unsubscribe link in any marketing email or by contacting us. Managing your marketing choices does not affect any service messages we need to send you about your account.

Cookies

Our website uses cookies and similar technologies. For details of the cookies we use and how to manage them, see our Cookie Policy.

Who we share your personal data with

We share personal data only where necessary, with:

  • Service providers acting as our processors - including providers of hosting and infrastructure, website and customer-relationship management, email delivery, analytics, and payment processing. They act on our instructions under written contracts. [confirm and, as good practice, name the key processors.]
  • Professional advisers - such as our lawyers, accountants and auditors, where needed.
  • Authorities and others - where we are required to do so by law, or to establish, exercise or defend legal claims.
  • A buyer or successor - if we sell or reorganise our business.

We do not sell your personal data.

International transfers

Some of our service providers are located outside the United Kingdom. Where we transfer personal data outside the UK, we make sure it is protected by an approved safeguard - either a transfer to a country the UK has decided provides adequate protection, or the UK International Data Transfer Agreement (or the UK Addendum to the EU Standard Contractual Clauses). [confirm the mechanism(s) actually relied on.]

How long we keep your personal data

We keep personal data only for as long as we need it for the purposes set out in this notice. The criteria we use include the nature of our relationship with you, our legal and accounting obligations, and whether we may need it to establish or defend legal claims. For example, we generally retain records relating to a customer relationship for the duration of that relationship and for up to [confirm, e.g. 6-7] years afterwards.

Your rights

Under UK data protection law you have the right to:

  • ask for access to your personal data;
  • ask us to correct inaccurate or incomplete data;
  • ask us to erase your data in certain circumstances;
  • ask us to restrict our use of your data in certain circumstances;
  • ask us to transfer your data to you or another provider (data portability), where applicable;
  • object to our use of your data where we rely on legitimate interests, and to object to direct marketing at any time; and
  • withdraw your consent at any time where we rely on consent.

We do not make decisions about you based solely on automated processing that produce legal or similarly significant effects. To exercise any of your rights, contact our Data Protection Officer at dpo@dryadglobal.com. We will not usually charge a fee, and we aim to respond within one month.

How we keep your personal data secure

We use appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse or alteration, and we keep those measures under review.

Complaints

We hope you will raise any concern with us first, so we can put things right. You also have the right to complain to the Information Commissioner's Office (ICO), the UK supervisory authority, at ico.org.uk or on 0303 123 1113.

Changes to this notice

We may update this notice from time to time. When we do, we will change the "last updated" date above and, where appropriate, tell you.

Contact us

If you have any questions about this notice or about how we use your personal data, contact our Data Protection Officer at dpo@dryadglobal.com or DPO, Dryad Global Ltd, 167-169 Great Portland Street, 5th Floor, London W1W 5PF.