Legal Notice

Scope of These Legal Notices

These legal notices govern access to and use of the website available at capitalhouse-edinburgh.co.uk (the “Website”). By browsing or using the Website, you acknowledge that you have read and agree to these notices and to all applicable laws and regulations. If you do not agree, please discontinue use of the Website.

Website and Hosting

Website

The Website provides information about CapitalHouse and related services and activities in Edinburgh, United Kingdom.

Hosting and Content Delivery

Hosting, security, and content delivery network (CDN) services for the Website are provided by Cloudflare. Cloudflare operates as a reverse-proxy, DDoS mitigation, and web application firewall service and may process technical data (such as IP addresses and request headers) for security and performance purposes.

Intellectual Property

All content on the Website—including, without limitation, text, photographs, illustrations, graphics, logos, icons, files, and their arrangement—is protected by intellectual property laws and is owned by or licensed to the respective rights holders. Unless otherwise permitted by mandatory law, any reproduction, adaptation, distribution, public communication, or reuse of the Website’s content, in whole or in part, by any means and for any purpose, is prohibited without prior written authorization from the rights holder.

“CapitalHouse” and any associated names, logos, and trade dress displayed on the Website may constitute trade names or trademarks. All other trademarks are the property of their respective owners. No license or right is granted by the Website to use any trademark displayed.

Use of the Website and Liability

The Website is provided for general informational purposes. While reasonable efforts are made to ensure that content is accurate and up to date, no warranty, representation, or guarantee—express or implied—is given as to the accuracy, completeness, or suitability of the information for any particular purpose. The Website may be updated, modified, or suspended at any time without notice.

To the maximum extent permitted by law, the operator of the Website shall not be liable for any direct or indirect loss or damage arising out of or in connection with use of, reliance on, or inability to use the Website, including but not limited to loss of data, business interruption, or damages caused by malware resulting from the use of the Website or third-party services.

The Website may reference third-party content or services. Such references do not constitute endorsement or control, and the operator is not responsible for any third-party content, products, services, or practices.

Users agree not to misuse the Website and not to interfere with its proper functioning, security, or accessibility. Attempts to bypass security controls, conduct automated scraping without authorization, or introduce malicious code are strictly prohibited.

Personal Data and Privacy

Data Controller

The entity operating this Website acts as the data controller for personal data processed via the Website.

Categories of Data Processed

  • Technical and usage data: IP address, device and browser information, date/time and pages viewed, referrer, log files, and similar diagnostic data.
  • Communications data: information you provide when you contact the Website operator (e.g., via forms), such as your name and message content.
  • Cookie and similar technology data: identifiers and preferences as described in the Cookies and Similar Technologies section.

Purposes and Legal Bases

  • Operating and securing the Website, including fraud and abuse prevention, error monitoring, and performance optimization (legitimate interests and, where necessary for security, compliance with legal obligations).
  • Responding to enquiries and managing requests (performance of a contract or taking steps at your request prior to entering into a contract; legitimate interests in effective communication).
  • Measuring audience and improving services, where implemented (consent where required by law; legitimate interests for strictly necessary measurement that does not rely on personal data).

Recipients and International Transfers

Personal data may be shared with carefully selected service providers acting on behalf of the Website operator, strictly for the purposes described above (for example, hosting, security, maintenance, analytics, and communications support). In particular, Cloudflare processes technical data to provide DDoS protection, caching, and security features.

Where personal data is transferred outside the United Kingdom, appropriate safeguards are used, such as the UK International Data Transfer Addendum to the EU Standard Contractual Clauses or other legally recognized mechanisms, together with supplementary measures where required.

Retention

Personal data is retained only for as long as necessary for the purposes for which it was collected, and thereafter archived or deleted in accordance with legal requirements and limitation periods. Indicative periods include:

  • Server and security logs: up to 12 months unless a longer period is necessary for incident investigation or compliance.
  • Correspondence relating to enquiries: for the duration necessary to handle the request and up to 3 years thereafter for evidence and follow-up.
  • Cookie consent records: up to 6–13 months depending on the consent type and applicable guidance.
  • Non-essential analytics data (if used): typically up to 25 months, or as configured to meet data minimization principles.

Your Rights

Under UK data protection law, you may have the right to request access to, rectification or erasure of your personal data, restriction of processing, data portability, and to object to processing based on legitimate interests. Where processing is based on consent, you may withdraw your consent at any time without affecting the lawfulness of processing carried out before withdrawal.

To exercise your rights or raise a privacy concern, please use the contact options provided on this Website. You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO).

Security

Appropriate technical and organizational measures are implemented to protect personal data against unauthorized access, alteration, disclosure, or destruction. Despite these measures, no method of transmission over the internet or electronic storage is completely secure, and absolute security cannot be guaranteed.

Children

The Website is not intended for children, and personal data relating to children is not knowingly collected.

Cookies and Similar Technologies

Cookies are small files stored on your device that help the Website function and improve your experience. Similar technologies (such as local storage or pixel tags) may also be used. The Website distinguishes between:

  • Strictly necessary cookies: essential for the operation, security, and accessibility of the Website. These are set without consent as they are required to provide the service you request.
  • Performance/analytics cookies: help measure and improve the Website’s performance and content. These are used only with your consent where required by law.
  • Functionality cookies: remember your preferences to enhance your experience. These may require consent, depending on their nature.

Cloudflare Security Cookies

The Website uses Cloudflare security and performance features that may set the following strictly necessary cookies:

  • __cf_bm: used to distinguish between humans and bots for security and site integrity; typical lifespan is around 30 minutes.
  • cf_clearance: used to manage access after a security check; typical lifespan can be up to 1 year.
  • __cfruid: used for rate limiting and incident management; session-based and may only be set temporarily during incidents.

These cookies are essential to deliver the Website securely and cannot be disabled through the Website’s interface. You may configure your browser to block or alert you about these cookies, but parts of the Website may not function properly if they are blocked.

Consent and Management

Where required by the Privacy and Electronic Communications Regulations (PECR), non-essential cookies are set only after you provide consent. You can withdraw or modify your choices at any time via your browser settings and, if available, the cookie controls displayed on the Website. You can also delete cookies at any time through your browser settings. Please note that disabling cookies may affect your ability to use certain features.

Applicable Law and Jurisdiction

These legal notices and any dispute arising out of or relating to the Website are governed by the laws of Scotland. The Scottish courts shall have exclusive jurisdiction, without prejudice to any mandatory rights you may have as a consumer under the laws of your habitual residence within the United Kingdom.

Changes to These Notices

These legal notices may be updated from time to time to reflect changes in law or in the Website’s operations. Material changes will apply from their date of publication on the Website. Continued use of the Website after changes indicates your acceptance of the updated notices.

About The Editorial Team Terms of Service Legal Notice Privacy Policy Sitemap Contact
© 2025 CapitalHouse