Athla Capital Management Limited, its subsidiaries and associated businesses (‘Athla’ and ‘we’) are committed to protecting your personal data and your privacy.  We endeavour to ensure that any personal data we collect about you will be held and processed strictly in accordance with the Data Protection Act 1998 (DPA) and, on and from 25 May 2018, the European General Data Protection Regulation (GDPR). The terms Personal Data, Data Controller and processing have the meanings given to them in the GDPR (which can be accessed here), unless otherwise indicated.
At Athla we collect and process Personal Data in a number of ways.  For instance, please see the below:
a. You are browsing our website, enquiring about our services; receiving our marketing communications, responding to one of our surveys or otherwise interacting with us as a prospective, current or former customer other than in connection with ongoing services we are providing to you or your organisation;
b. You are a client of Athla;
d. You are applying for or enquiring about a job at Athla
e. You are an employee or contractor of Athla
f. You are a supplier or service provider to Athla

1. Scope

This Privacy Policy demonstrates how Athla handles the Personal Data you provide to us, or which we collect about you, in the following ways (Your Data):

This statement does not apply to:

2. Identity and Contact Details of Data Controller
For the purposes of the DPA and the GDPR, Athla is the controller of Your Data.  If you have any queries regarding this policy or complaints about our use of Your Data, please contact us at or at the address below and we will do our best to deal with your complaint or query as soon as possible.
Athla Capital Management Limited
107 North Street, Martock, Somerset, TA12 6EJ
FAO: Data Processing
3. What we use Your Data for
The table below sets out the purposes for which we may process Your Data and the legal basis for the processing:



Legal Basis

  • Website User Data
  • Marketing Data
  • Prospect Data


To keep you informed of any activities undertaken by us which we believe may be of interest to you and this use may include sending you email and postal marketing from time to time or requests to respond to a survey

Consent – this will be requested either when you submit Your Data to us or, if we have received Your Data indirectly, by way of an email sent prior to us sending you any marketing communications.


  • Website User Data
  • Website Background Data


Website analytic purposes.  For further details on the technology we use in order to analyse our website’s performance, please see our cookies policy here.

Consent – this will be obtained when you click on the banner at the top of our website to accept certain cookies.
Legitimate interest of LOTIUC (see our cookies policy for further information)

  • Website User Data
  • Marketing Data
  • Prospect Data


To provide you with the newsletter(s) or information you have requested

Performance of a contract

  • Website User Data
  • Marketing Data
  • Prospect Data
  • Website Background Data
  • Prospect Data
  • Survey Data


To respond to requests for information from regulated bodies or government agencies

Compliance with a legal obligation

  • Website User Data
  • Prospect Data


To respond to an enquiry you have submitted

Legitimate interest of Athla – it may be necessary for us to process Your Data in order to reply or respond to your enquiry

4. Who we share Your Data with
Please note that we may on occasion be required to share your information with the following categories of recipients:

We have taken steps to ensure that all such entities keep Your Data confidential and secure and only use it for the purposes that we have specified and have informed you of.  Our service providers are subject to data processing agreements which are, or are in the process of being updated to become, compliant with the requirements set out in the GDPR.  Further details regarding any third parties who are located outside the EEA are set out in paragraph 5 below.
In relation to any other third parties, we will only disclose your information in the following circumstances:

5. International Transfers
In certain circumstances, we may transfer Your Data to countries outside the EEA, which may not adhere to the same levels of data protection to which countries within the EEA are subject.  Any such transfers are, at all times, made in accordance with the DPA and the GDPR.  Details of the circumstances and mechanisms in place to ensure compliance are set out below:
6. Retention Period
Your Data will be stored for a maximum period of 6 years, after which time it will be destroyed if it is no longer required for the lawful purpose(s) for which it was obtained. If you consent to marketing, any information we use for this purpose will be kept with us until you notify us that you no longer wish to receive this information. unless we request your consent to store it for a longer period.
7. Your Rights in Relation to Your Data

For further information on your rights, please see the Information Commissioner’s website here.
8. Additional Information

9. Security of Personal Information
We recognise the need to ensure that personal information gathered via this website remains secure. Our site has security measures in place to protect against the loss, misuse and alteration of the personal information under our control. Our security measures include the use of a hardware firewall to prevent unauthorised access. You acknowledge that although we exercise adequate care and security there remains a risk that information transmitted over the Internet and stored by computer may be intercepted or accessed by an unauthorised third party.
11. Data Obtained Indirectly
In some circumstances, we may obtain Personal Data about you from other sources.  This information may include your name, contact details and job title, which we obtain from third party sources such as organisers of events we sponsor or other publicly available sources, such as your company’s website.
12. Links
Our website contains links to other websites belonging to third parties. We do not control the privacy practices of these other websites. You should therefore make sure when you leave our website that you have read that website’s privacy policy.
The Information Commissioners Officer (‘ICO’) is the supervisory authority in the UK for data protection.  You may contact them should you have a complaint to make regarding the treatment of your personal data.
Address: Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF
Tel: 0303 123 1113