Last updated: 4 April 2026. This page describes how Zanders Group ("we", "us") handles personal data when you use zandersgrp.com. It is provided for transparency. If you need wording tailored to a specific legal entity (for example a named UK company), ask your adviser to adapt it.
Zanders Group is the data controller for the personal data described below. For privacy questions or requests, email info@zandersgrp.com. You can also reach us via support@zandersgrp.com for operational matters.
Contact form. If you use the contact form, we collect the details you submit: typically first name, last name, email address, and your message.
Newsletter. If you subscribe in the footer, we collect the email address you enter.
Website and analytics. When enabled, we use PostHog (configured to use PostHog's EU cloud) to understand how the site is used (for example page views and interactions). That may include technical data such as device or browser type, approximate location derived from IP, and identifiers PostHog uses to distinguish sessions. PostHog is set to create person profiles only when you are identified (for example if we later tie events to an email you gave us).
Server and infrastructure. Like most websites, hosting systems may process technical data (such as IP address, date and time, and requested URL) in server logs or security tooling. We use this to run and protect the site.
We do not aim to collect special category data (such as health) through this site. Please do not send us sensitive personal information unless we explicitly ask for it.
Where UK GDPR or the GDPR applies, we rely on:
Form submissions (contact and newsletter) are stored in a database hosted by Supabase, accessed only through our site configuration. Supabase processes data on our instructions as a processor. Their infrastructure may involve transfers outside the UK or EEA; they provide appropriate safeguards (such as standard contractual clauses) as described in their documentation.
Analytics are processed by PostHog using the EU-hosted product (for example eu.i.posthog.com). PostHog acts as a processor for analytics data we configure.
We do not sell your personal data. We do not share it with third parties for their own marketing unless we tell you otherwise and have a valid basis.
We keep contact and newsletter records only as long as needed: for example, while we handle your enquiry, manage your subscription, or meet legal, tax, or dispute requirements. Analytics data is retained according to our PostHog project settings (typically a limited period). Server logs are rotated or deleted on a schedule appropriate for security and troubleshooting.
PostHog may use cookies or local storage in your browser to remember session or usage information. You can restrict cookies and third-party scripts through your browser settings or compatible extensions. If you block analytics entirely, parts of our understanding of site performance may be limited, but the site should still work for normal browsing.
Depending on where you live, you may have the right to:
To exercise these rights, email info@zandersgrp.com. We may need to verify your identity before we act on a request.
This site is aimed at businesses and adults. It is not intended to collect data from children. If you believe a child has given us personal data, contact us and we will delete it where appropriate.
Our site may link to third parties (for example support or client tools). Their privacy policies apply when you leave zandersgrp.com. We are not responsible for those sites.
We may update this policy when our practices or the law change. The "Last updated" date at the top will change when we do. For significant changes, we may also put a short notice on the site.