Site update in progress

We're working on something new.

We're improving a few things behind the scenes. Existing Nimble clients can continue to access the Nimble Portal as normal.

Sign in to the portal → New clients & enquiries

Prefer a quick message? You can also reach us on WhatsApp using the chat below.

Privacy Policy

Nimble Group Marketing Ltd (trading as The Nimble Group)
Last updated: 11 May 2026

1. Who we are

Nimble Group Marketing Ltd ("we", "us", "our") is a marketing services company registered in England and Wales (company number 17055170), trading as The Nimble Group. Our registered office is at 167-169 Great Portland Street, 5th Floor, London, W1W 5PF.

We are registered with the Information Commissioner's Office (ICO) under registration number 00014041467, and we act as the data controller for personal data we collect through this website.

For privacy-related queries, contact us at .

2. What this policy covers

This policy describes how we handle personal data collected through this website (thenimblegroup.co.uk). It does not cover data we hold under specific client engagements, which is governed by the relevant client contract and our internal data handling policies.

This website is aimed at business users, in particular prospective and existing clients. It is not directed at children, and we do not knowingly collect personal data from children through this website.

3. What we collect, and why

This website is currently a holding page and collects minimal personal data. The categories of data we may receive are:

Enquiry data. If you contact us by email (using the email address shown on this website), we receive your name, email address, and the content of your message.

  • Purpose: to respond to your enquiry.
  • Lawful basis: legitimate interest (responding to communications initiated by you).
  • Retention: kept for the duration of any ongoing relationship or enquiry, plus a reasonable period thereafter. Finance and contract-related correspondence is typically retained for up to seven years to meet statutory requirements. General enquiries are deleted sooner.

Technical website data. Our hosting server automatically records information about visits, including IP address, browser and device data, and standard server logs.

  • Purpose: security monitoring, troubleshooting, and operational integrity of the website.
  • Lawful basis: legitimate interest (operating and securing the site).
  • Retention: typically up to 30 days on a rolling basis.

Cookies. This website uses only strictly necessary technical cookies where required for the site to function. We do not use analytics, advertising, or other non-essential cookies, and we do not require consent banners for strictly necessary cookies.

4. Future changes to this site

If we add contact forms, newsletter sign-ups, analytics, advertising tools, or other tracking technologies in future, we will update this policy and, where required by law, request your consent before any non-essential cookies or similar technologies are used.

5. Who we share data with

We do not sell personal data to third parties.

Some categories of data may be processed by service providers acting on our behalf. These typically include:

  • Our email provider (Microsoft 365).
  • Our hosting provider.

Some of these organisations act as processors on our behalf and are subject to appropriate data protection terms. Others, such as professional advisors (e.g. our accountant) or public authorities, may act as independent controllers where required by law or professional obligation.

6. International transfers

Where personal data is transferred outside the United Kingdom, we rely on appropriate safeguards, such as UK adequacy regulations, the UK International Data Transfer Agreement, or the UK Addendum to the EU Standard Contractual Clauses, where applicable. Where required, we also undertake a transfer risk assessment before relying on those safeguards.

7. Your rights

Under UK GDPR you have the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate data.
  • Request deletion of your data (where applicable).
  • Restrict or object to processing.
  • Data portability (where applicable).
  • Withdraw consent at any time (where consent is the lawful basis we rely on).
  • Complain to the Information Commissioner's Office (ico.org.uk) if you are unhappy with how we have handled your data.

To exercise any of these rights, contact us at . We will respond within one month.

8. Security

We take appropriate technical and organisational measures to protect personal data, including encryption in transit and at rest, multi-factor authentication on critical accounts, access controls, and an internal Information Security Policy that governs how we handle data. We hold combined Professional Indemnity and Cyber Liability insurance.

9. Changes to this policy

We may update this policy from time to time. The "last updated" date at the top of the page reflects the most recent revision.

Nimble Group Marketing Ltd · trading as The Nimble Group · Company No. 17055170 · VAT No. GB514920113 · ICO No. 00014041467

Download PDF