Privacy Policy

1. Who we are and how this policy works

Weybourne operates through a group of companies in the United Kingdom and Singapore. This privacy policy explains how personal data is collected and used when you interact with the Weybourne group.

The controller of your personal data will be the Weybourne group company that determines why and how your personal data is processed in the relevant context. For example:

  • the entity operating a website you visit;

  • the property owning or managing entity in relation to a tenancy;

  • the contracting entity in relation to suppliers or professional advisers.

References in this policy to “Weybourne”, “we”, “us” or “our” mean the relevant Weybourne group company acting as controller in that context.

This privacy policy explains how we collect and use personal data whenever we interact with you and/or process your personal data in the course of our business and operations, and is intended to meet the requirements of:

  • UK data protection law (UK GDPR and the Data Protection Act 2018); and

  • Singapore’s Personal Data Protection Act (PDPA).

This website, weybournegroup.com, is operated by Weybourne Limited, a company registered in England and Wales under company number 10260912 and with registered office at Tetbury Hill, Malmesbury, Wiltshire, SN16 9JW.

2. When does this policy apply, and how do we obtain your personal information?

This privacy policy applies whenever we process your personal data, including when you visit our website, contact us, interact with us in relation to our properties, or engage with us in a business capacity (for example as a supplier or professional adviser).

You may provide us with your personal information voluntarily. We may also receive information about you from third parties such as our suppliers, contractors, property managing agents and consultants, group companies, public websites and public agencies, which we refer to as “third party sources” throughout this policy.

3. What personal data do we collect?

We may collect:

  • Identity and contact details, such as your name and contact information (for example, email address, phone number, photograph, and postal address).

  • Communications and enquiry information.

  • Where you are a tenant, information needed to manage a tenancy or property and to communicate with tenants and occupiers.

  • Technical data collected when you use our website, which may include IP address, browser type and usage data (see also our Cookies section).

  • Where relevant, supplier/adviser onboarding and due diligence information, which may include CVs and pitch/tender information, proof of ID/address, visa/work permits, VAT number, insurance certificates, and other identification and compliance information where required.

  • Where goods or services are paid for, payment and administration information, including bank details, expense claims, compensation information and work hours.

  • Site security and access information – for example, CCTV recordings, car registration details, and arrival/departure times on sites.

If you are a tenant/occupier: We (and our property management agents acting on our behalf) need certain types of personal information so that we can make relevant properties available to you and perform contractual and other legal obligations. If you do not provide us with such personal information, or if you ask us to delete it, you may no longer be able to be a tenant at one of our properties.

4. Why do we collect personal data? (our main purposes)

We use personal data only where permitted by applicable law and only for purposes such as:

  • To run our business and deliver services (including managing relationships with tenants/occupiers, suppliers/advisers, and responding to enquiries).

  • To maintain and improve our websites and services (including analytics, troubleshooting, and performance monitoring).

  • To carry out due diligence and engagement administration (for example, assessing suppliers/advisers, managing onboarding, and making payments).

  • To carry out internal processes – including internal corporate reporting, business administration, ensuring adequate insurance coverage, research and development, and identifying/implementing business efficiencies.

  • To keep people, property, and systems safe and secure (including preventing fraud, protecting our IT environment, and managing access).

  • To comply with legal and regulatory obligations (including governance, audit, tax/accounting, and statutory record-keeping).

  • To administer contracts and payments (including processing invoices and keeping appropriate records).

  • To communicate with you (including handling requests, questions, complaints, and operational messages).

  • Where permitted, to send relevant updates/marketing (you can opt out at any time).

  • To deal with privacy-related requests and issues (including requests for a copy of the information we hold about you).

  • To establish, exercise, or defend legal rights (including handling disputes or claims).

Further processing

Before using your personal information for any purposes which fall outside those set out in this policy, we will undertake a process to establish if our new use of your personal information is compatible with the purposes set out in this section 4. Please contact us using the details in section 13 if you want further information on the analysis we will undertake.

5. What is the legal basis for processing your personal data?

Where UK data protection law applies, we process personal data because:

  • it is necessary to perform a contract;

  • it is necessary to comply with legal obligations; or

  • it is in our legitimate interests, such as operating and managing our business safely and effectively.

Where Singapore law applies, we collect, use and disclose personal data for reasonable business purposes, with consent where required, and in accordance with the PDPA.

6. Who do we share your personal data with?

We may share personal data with:

  • other Weybourne group companies or Dyson group companies for internal administration and support;

  • service providers such as IT providers, professional advisers, insurers and payment processors;

  • public authorities where required by law.

We only share personal data where appropriate safeguards are in place.

7. International transfers

As a group operating in more than one country, personal data may be transferred internationally. Where this happens, we put appropriate safeguards in place to ensure your personal data remains protected, in line with applicable law. Where we use certain service providers outside the UK, we may use specific contractual clauses prescribed by law which give personal data the same protection it has in the UK, including International Data Transfer Agreements, unless the service provider is already based in a jurisdiction which offers an adequate level of data protection recognised by UK law. Where Singapore’s Personal Data Protection Act (PDPA) applies, we ensure that any overseas recipients are bound by legally enforceable obligations to provide a standard of protection that is comparable to that required under the PDPA.

8. How long do we keep your personal data?

We keep personal data only for as long as necessary for the purposes for which it was collected, including to meet legal, regulatory and accounting requirements.

9. Your rights and your personal data

You have the following rights with respect to your personal data, subject to applicable data protection law:

(When exercising any of the rights listed below, in order to process your request, we may need to verify your identity for your security. In such cases we will need you to respond with proof of your identity before you can exercise these rights.)

  1. The right to access information we hold on you – At any point you can contact us to request the information we hold on you as well as why we have that information, who has access to the information and where we obtained the information from. Once we have received your request we will respond within one month. There are no fees or charges for the first request but additional requests for the same data may be subject to an administrative fee.

  2. The right to correct and update the information we hold on you – If the data we hold on you is out of date, incomplete or incorrect, you can inform us and your data will be updated.

  3. The right to have your information erased – If you feel that we should no longer be using your data or that we are illegally using your data, you can request that we erase the data we hold. When we receive your request, we will confirm whether the data has been deleted or the reason why it cannot be deleted (for example because we need it for our legitimate interests or regulatory purpose(s)).

  4. The right to object to processing of your data – You have the right to request that we stop processing your data. Upon receiving the request, we will contact you and let you know if we are able to comply or if we have legitimate grounds to continue to process your data. Even after you exercise your right to object, we may continue to hold your data to comply with your other rights or to bring or defend legal claims.

  5. The right to data portability – You have the right to request that we transfer some of your data to another controller. We will comply with your request, where it is feasible to do so, within one month of receiving your request.

  6. The right to withdraw your consent to the processing at any time for any processing of data to which consent was sought – You can withdraw your consent easily by telephone, email, or by post (see Contact Details below).

  7. The right to lodge a complaint with the Information Commissioner’s Office.

We will consider all requests and aim to respond within a reasonable period, and in any event within one month of receiving your request unless we are entitled to a longer period under applicable law (in which case we will tell you).

Please note that some personal data may be exempt from certain requests in specific circumstances (for example, where we need to keep using the information to comply with legal obligations or to establish, exercise or defend legal claims).

10. Security

We take reasonable technical and organisational measures to protect personal data against loss, misuse and unauthorised access.

11. Cookies

Some pages on weybournegroup.com use cookies, which are small files placed on your internet browser when you visit our website. We use cookies in order to offer you a more tailored experience in the future, by understanding and remembering your particular browsing preferences.

Where we use cookies on our website, you may block these at any time. To do so, you can activate the setting on your browser that allows you to refuse the setting of all or some cookies. However, if you use your browser settings to block all cookies (including essential cookies), you may not be able to access all or parts of our website or to use all the functionality provided through our website.

For detailed information on the cookies we use and the purposes for which we use them, please refer to our cookies policy here.

12. Links to other websites

Our website may contain hyperlinks to websites that are not operated by us. These hyperlinks are provided for your reference and convenience only and do not imply any endorsement of the activities of such third-party websites or any association with their operators. This privacy policy only applies to the personal information that we collect or which we receive from third party sources, and we cannot be responsible for personal information about you that is collected and stored by third parties. Third party websites have their own terms and conditions and privacy policies, and you should read these carefully before you submit any personal information to these websites. We do not endorse or otherwise accept any responsibility or liability for the content of such third party websites or third party terms and conditions or policies.

13. Complaints and contact details

If you have questions, concerns or wish to exercise your rights, please contact our Data Protection Officer at enquiries@weybournegroup.com.

If you are based in the UK, you may also complain to the Information Commissioner’s Office. If you are based in Singapore, you may contact the Personal Data Protection Commission.

14. Changes to this policy

We may update this policy from time to time. The current version will always be made available on our website.

Last updated: March 2026

Weybourne Group

Sitemap

Business

Enquiries
enquiries@weybournegroup.com

Press
press@weybournegroup.com

© 2026 Weybourne Group