Privacy Policy

Effective Date: 03/07/2026
Last Reviewed: 03/07/2026

Version: 2.0

Who we are

This Privacy Policy explains how JM Partnerships Ltd (“JM Partnerships Ltd”, “JMP”, “we”, “our” or “us”) collects, uses, stores and protects your personal information when you visit our website, contact us, use our services, apply for employment or otherwise interact with us.

Data Controller

JMP for the personal data collected through this website and the services described within this Privacy Policy.

Company Number: 03341123

Registered Office:
Suite 2.1, Woodhead House
Woodhead Road
Birstall
England
WF17 9TD

Operational Address:
Suite 4
70 Churchill Square
Kings Hill
West Malling
Kent
ME19 4YU

JM Partnerships Ltd is a ringfenced company within the wider enevo group. We do not routinely share client personal data with enevo Ltd or other group companies. Client personal information is only shared where necessary with authorised third parties, regulators, public authorities, professional advisers or service providers, as described in this Privacy Policy.

Employee, worker and applicant personal information may be shared with enevo Ltd or other group companies where necessary for HR, recruitment, payroll, finance, IT, administration, compliance, reporting and business management purposes.

If you have any questions about this Privacy Policy or how we use your information, please contact us using the details at the end of this document.

Our commitment to protecting your privacy

We are committed to protecting your privacy and handling your personal information openly, fairly and securely.

We process personal information in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018 and other applicable UK data protection legislation.

We only collect information that is necessary for legitimate business purposes, to provide our services, comply with legal obligations and improve your experience of our website.

What information we collect

Depending on how you interact with us, we may collect the following categories of personal information.

Information you provide directly

This may include:

  • Name
  • Job title
  • Company name
  • Postal address
  • Email address
  • Telephone number
  • Details contained within correspondence
  • Information submitted through contact forms
  • Enquiry details
  • Quotation requests
  • Project information
  • Uploaded or shared documents and files
  • Marketing preferences
  • Payment and invoicing information
  • Recruitment information including:
  • CVs
  • Cover letters
  • Employment history
  • Qualifications
  • Professional memberships
  • References, where applicable

Information collected automatically

When you visit our website we may automatically collect:

  • IP address
  • Browser type and version
  • Device information
  • Operating system
  • Website usage data
  • Referring website
  • Pages viewed
  • Time spent on our website
  • Cookies and similar technologies

Further information is available within our Cookie Policy.

How we use your personal information

We use personal information to:

  • Respond to enquiries
  • Provide quotations
  • Deliver our Building Control services
  • Manage client relationships
  • Administer contracts
  • Process payments
  • Communicate with clients, applicants, agents, designers, contractors and consultants
  • Recruit employees
  • Improve our website and services
  • Send marketing communications where permitted
  • Meet legal and regulatory obligations
  • Protect our legal rights
  • Prevent fraud and maintain security

Our lawful basis for processing

We only process personal information where we have a lawful basis under UK GDPR.

Purpose Lawful Basis
Responding to enquiries Legitimate Interests
Preparing quotations Legitimate Interests
Delivering contracted services Contract
Client administration Contract and Legitimate Interests
Recruitment Legitimate Interests and Contract
Sending marketing communications Consent or Legitimate Interests, where applicable
Website analytics Consent where required
Financial records Legal Obligation
Building Control functions and statutory regulatory duties Legal Obligation and Public Task, where applicable
Health and safety obligations Legal Obligation
Compliance with legal requirements Legal Obligation

Building Control and statutory processing

As a Registered Building Control Approver, we process certain personal information in order to fulfil statutory functions under building control legislation.

This may include processing information under or in connection with the Building Act 1984, the Building Regulations, the Building Safety Act 2022 and related secondary legislation, guidance and regulatory requirements.

This processing may include maintaining records relating to projects, applications, inspections, plans, compliance matters, regulatory decisions and communications with relevant authorities.

In these circumstances, we process personal information because we are required or permitted to do so by law. Certain information may need to be retained for statutory periods even if you request its deletion.

Recruitment

If you apply for employment with enevo Building Control, we may process information including:

  • CVs
  • Qualifications
  • Employment history
  • References
  • Interview notes
  • Right to work documentation
  • Professional registrations
  • Salary expectations
  • Correspondence relating to your application

We use this information to assess suitability for employment, manage recruitment processes and comply with employment legislation.

Unless required for legal reasons or with your consent, unsuccessful applications will only be retained for an appropriate period.

Marketing communications

Where permitted by law, we may send you information about our services, industry updates, events and other content that we believe may be relevant to you.

You may receive marketing communications where:

  • you have given consent;
  • you are an existing customer and applicable law permits us to contact you; or
  • we have another lawful basis for doing so.

You can withdraw your consent or unsubscribe from marketing communications at any time by following the unsubscribe link in our emails or by contacting us directly.

Website forms

When you submit information through our website, including contact forms, quotation requests, downloads, newsletter sign-ups or careers pages, we use the information you provide to respond to your request, administer our services and maintain appropriate records.

Cookies

Our website uses cookies and similar technologies to:

  • ensure our website functions correctly;
  • understand how visitors use our website;
  • improve performance and user experience; and
  • measure the effectiveness of our marketing.

Some cookies are essential for the operation of our website, while others are used only with your consent.

Further information is available within our Cookie Policy.

Sharing your information

We only share personal information where necessary.

Recipients may include:

  • Professional advisers
  • IT service providers
  • CRM providers
  • Cloud hosting providers
  • Microsoft services
  • Google services
  • HubSpot
  • Payment providers
  • Recruitment service providers
  • Legal advisers
  • Auditors
  • Regulatory bodies
  • Local Authorities
  • Fire and Rescue Authorities
  • Government agencies
  • Professional consultants
  • Contractors and subcontractors involved in delivering our services

All third parties are expected to process personal information securely and only in accordance with our instructions or their own legal obligations.

International transfers

Some of our service providers may process personal information outside the United Kingdom.

Where this occurs, we ensure appropriate safeguards are in place, including:

  • UK adequacy regulations;
  • the UK International Data Transfer Agreement (IDTA);
  • the UK Addendum to the EU Standard Contractual Clauses; or
  • other legally recognised safeguards.

Our technology providers include services supplied by Microsoft, Google and HubSpot, each of which maintains appropriate data protection arrangements for international transfers.

Security

We take appropriate technical and organisational measures to protect personal information against accidental loss, unauthorised access, disclosure, alteration or destruction.

These measures include secure systems, controlled access, staff training and appropriate contractual safeguards with suppliers.

Our legal obligations

In some circumstances we must retain or process personal information because we are required to do so by law.

These obligations may arise under legislation relating to:

  • Building Regulations
  • Building Control
  • Building Safety
  • Health and Safety
  • Employment
  • Taxation
  • Accounting
  • Financial reporting
  • Fraud prevention
  • Professional regulation

Where legal obligations apply, we may be unable to delete certain information until the relevant statutory retention period has expired.

Data retention

We retain personal information only for as long as necessary to fulfil the purposes for which it was collected, including satisfying legal, regulatory, accounting and reporting requirements.

Where statutory retention periods apply, particularly in relation to regulated Building Control activities, records may be retained for up to fifteen years or longer where required by law or where necessary to establish, exercise or defend legal claims.

Your rights

Subject to applicable law, you have the right to:

  • Access your personal information
  • Request correction of inaccurate information
  • Request deletion of personal information in certain circumstances
  • Restrict processing
  • Object to processing
  • Request data portability
  • Withdraw consent where processing is based on consent
  • Lodge a complaint with the Information Commissioner’s Office

Requests can be made using the contact details below.

Automated decision-making

We do not make decisions about individuals based solely on automated processing or profiling that produce legal or similarly significant effects.

Third-party websites

Our website may contain links to third-party websites.

We are not responsible for the privacy practices, content or security of external websites. We encourage you to read the privacy policies of any third-party websites you visit.

Making a complaint

We hope to resolve any concerns you may have about how we use your personal information.

If you have a question or complaint, please contact us first using the details below and we will investigate the matter promptly.

If you remain dissatisfied, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO).

Contact us

For questions about this Privacy Policy or how we process your personal information, please contact:

JM Partnerships Ltd
Suite 2.1, Woodhead House
Woodhead Road
Birstall
Batley
England
WF17 9TD

Email:jmpadmin@jmpartnership.uk.com

Telephone: 01634 733 270

Company Number: 03341123

Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in legislation, guidance, technology or our business operations.

The latest version will always be published on our website.

Revision History

Version Date Summary of Changes
2.0 03/07/2026 Comprehensive review and update of the Privacy Policy, including enhanced transparency, lawful bases, Building Control statutory processing, recruitment, marketing, international transfers, data sharing and governance improvements.