top of page

Privacy Policy

SCH Create Ltd trading as UK Cyber Plan
Effective date: 16th February 2026

​​1. Who We Are

UK Cyber Plan is a trading name of SCH Create Ltd, a company registered in England and Wales.

We provide cyber security advisory and related services to small and medium-sized organisations.

For the purposes of UK data protection law, SCH Create Ltd is the data controller of personal data collected through this website and during the delivery of our services.

Contact details: Sapna Chadha
Email: info@UKCyberPlan.co.uk
Registered office: 50 Geary Road, London, NW10 1HH

If applicable, our ICO registration number is: ZC094221

​

2. What Personal Data We Collect

We may collect and process the following information:

  • Name

  • Job title

  • Organisation name

  • Email address

  • Telephone number

  • Information submitted via website forms

  • Information provided during enquiries or consultations

  • Technical data such as IP address and browser type (via cookies)

We only collect data that is necessary for legitimate business purposes.

​

3. How We Collect Your Data

We collect personal data when you:

  • Complete a “Book a Call” or contact form

  • Subscribe to updates

  • Engage our services

  • Communicate with us by email or phone

  • Visit our website (via cookies and analytics tools)

​

4. How We Use Your Data

We process personal data for the following purposes:

  • To respond to enquiries

  • To provide our services

  • To manage client relationships

  • To send relevant business communications

  • To comply with legal obligations

  • To improve our website and services

​

5. Lawful Basis for Processing

We rely on one or more of the following lawful bases under UK GDPR:

  • Performance of a contract

  • Legitimate interests (business development and service improvement)

  • Legal obligation

  • Consent (where required, for example marketing communications)

Where consent is relied upon, you may withdraw it at any time.

​

6. Data Storage and Security

We use appropriate technical and organisational measures to protect personal data.

We may store data using secure third-party systems including:

  • Wix (website hosting and forms)

  • Zoho CRM (client relationship management)

Access to personal data is restricted to authorised individuals only.

​

7. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including legal, regulatory, tax, and accounting requirements.

When data is no longer required, it is securely deleted.

​

8. Sharing Your Data

We do not sell personal data.

We may share data with:

  • Trusted delivery partners (where necessary for service delivery)

  • Professional advisers

  • Regulators or authorities where legally required

All third parties are expected to process data securely and lawfully.

​

9. Your Rights

Under UK GDPR, you have the right to:

  • Access your personal data

  • Correct inaccurate data

  • Request erasure

  • Restrict processing

  • Object to processing

  • Withdraw consent

  • Lodge a complaint with the Information Commissioner’s Office (ICO)

ICO website: https://ico.org.uk

Requests should be made via email to: info@UKCyberPlan.co.uk

​

10. Changes to This Policy

We may update this Privacy Policy periodically. The latest version will always be available on this website.

bottom of page