Last updated: 11 February 2026.

1. Introduction

Virtual Operations Limited (“Virtual Operations”, “we”, “our”, or “us”) is the data controller responsible for deciding how we collect, use, and protect your personal information. We are committed to handling your data lawfully, transparently, and securely.

This Privacy Policy explains what information we collect, how we use it, and your rights under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

We may update this notice from time to time. If we make material changes, we’ll notify you via email or another appropriate method.

2. Data Protection Principles

We follow strict data protection principles, ensuring that personal information is:

• Processed lawfully, fairly, and transparently.

• Collected only for clear, legitimate purposes.

• Relevant, accurate, and limited to what is necessary.

• Kept only as long as needed.

• Stored securely.

3. What Information We Collect

The personal data we collect depends on your relationship with us. Typically, this may include your:

• Name, job title, company, and contact details (email, phone, address).

• Employer or sponsor details (for training or academy users).

• Account, subscription, and performance data (for registered users).

• Website or enquiry form information (for visitors and prospects).

Data is collected through direct interactions, subscriptions, training platforms, client engagement, or when you contact us for information.

We also use cookies and analytics tools on our website (see our Cookie Policy).

4. How We Use Your Information

We process your personal data to:

• Deliver and manage our services and subscriptions.

• Communicate with you and respond to enquiries.

• Manage contracts, billing, and support.

• Send updates or marketing (only with your consent).

• Comply with legal or regulatory obligations.

Our lawful bases for processing include contract performance, legitimate interests, legal compliance, and (where applicable) consent.

5. Data Sharing

We only share personal data when necessary and with appropriate safeguards. This includes:

• Internal teams (Delivery, Support, Finance, or Directors).

• Trusted third-party providers (e.g., IT, analytics, or payment processors).

• Legal, regulatory, or group company disclosures where required.

• Potential buyers or sellers if our business undergoes a transaction.

We never sell your personal information.

Some data may be transferred outside the UK/EEA under approved safeguards (e.g. adequacy decisions or contractual clauses).

6. Data Security and Retention

We apply strict technical and organisational measures to protect your data against loss, misuse, or unauthorised access.

Personal data is kept only as long as necessary to fulfil the purpose it was collected for, or as required by law, after which it is securely deleted.

Please inform us if your personal details change so we can keep our records accurate.

7. Your Rights

You have the right to:

• Request access to your data (“data subject access request”).

• Correct inaccurate or incomplete information.

• Request deletion (“right to be forgotten”).

• Object to or restrict processing.

• Withdraw consent for marketing at any time.

To exercise any of these rights, contact our Data Protection Officer (DPO) at dpo@virtual-operations.com.

You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO) at www.ico.org.uk.

8. Marketing

We will only send you marketing communications if you have opted in or where we have a legitimate business relationship. You can unsubscribe at any time by emailing dpo@virtual-operations.com with “Unsubscribe” in the subject line.

9. Third-Party Links

Our website may contain links to partner or affiliate sites. Please note that we are not responsible for their privacy practices. You should review their privacy policies before providing any personal data.