By continuing to browse our website, you agree to our use of cookies to enhance your experience and provide personalized content.

Privacy Policy

Effective Date: 18 April 2025

This Privacy Policy explains how Watermelon Partners Ltd (trading as "Watermelon Partners", "WP", “we”, “us” or “our”) collects, uses, stores and protects personal and business information in connection with our certification services, compliance checks, website, and related operations.

We are committed to protecting your privacy and handling all data in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and our internal ethical standards.

1. Who We Are

Watermelon Partners Ltd is an independent compliance organisation and certifying body that ensures businesses, brands, products, and services do not contribute to or support wars and conflict.

Our services include compliance checks, ethical certification, and promotion of certified partners via our platforms.

Registered Address:
124-128 City Road, London, EC1V 2NX
Company Registration Number: 16326995
Contact: info@watermelonpartners.co.uk
Website: www.watermelonpartners.co.uk

2. What Information We Collect

We may collect and process the following types of personal and business information:

  • Business name and registration details
  • Contact names, job titles, email addresses and phone numbers
  • Company structure, ownership and supplier information
  • Product and service listings
  • Financial records and banking details
  • Purchase and sales information
  • Website and social media links
  • Any additional documentation required for compliance checks
  • IP address, browser information and cookies from our website

We do not collect unnecessary personal data or sensitive data unless explicitly required for the purpose of certification.

3. How We Use Your Information

We use your data for the following purposes:

  • To process certification applications and compliance checks
  • To manage partner status and certification records
  • To communicate with you regarding compliance status, payments and audits
  • To issue and display your certification via our platforms
  • To ensure our website and services function securely and efficiently
  • To meet legal obligations and respond to lawful requests

4. Legal Basis for Processing

We process your data on the following legal bases:

  • Contractual necessity: to provide our services and fulfil certification requirements
  • Legitimate interest: to maintain the credibility and functionality of our certification scheme
  • Legal obligation: where necessary for compliance with applicable laws

5. Cookies and Tracking

Our website uses cookies to provide essential functionality and improve user experience. These may include:

  • Session cookies for navigation
  • Analytics cookies to understand website usage
  • Preference cookies to remember settings

By using our website, you consent to our use of cookies in line with our Cookie Policy. You may manage or disable cookies via your browser settings at any time.

6. Sharing of Data

We do not sell or rent your personal or business information to third parties. We may share your data with:

  • Our compliance officers and internal team members
  • External parties where required by law (e.g., HMRC or the ICO)
  • Marketing platforms for the promotion of certified partners (business name and public-facing details only)

We do not use third-party payment processors. All payments are made by BACS or Direct Debit and processed internally.

7. Data Storage and Security

All data is securely stored on our internal, access-controlled systems. We take appropriate physical, digital, and managerial precautions to protect your information from loss, misuse, unauthorised access or alteration.

If we use cloud-based tools or services hosted outside the UK, we ensure appropriate safeguards are in place in line with the UK GDPR.

8. Retention of Data

We only retain personal and business information for as long as necessary to:

  • Fulfil certification and contractual obligations
  • Meet regulatory and legal retention requirements
  • Maintain accurate compliance records

Data no longer required will be securely deleted or anonymised.

9. Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Correct inaccurate or incomplete data
  • Request deletion of your data (where legally permissible)
  • Restrict or object to certain types of processing
  • Withdraw consent (where applicable)
  • File a complaint with the Information Commissioner’s Office (ICO)

To exercise any of your rights, please email us at info@watermelonpartners.co.uk.

10. Confidentiality

All information provided during compliance checks is treated as strictly confidential and used solely for the purpose of evaluating a business's compliance with WP's ethical standards. We will not disclose confidential data without your written permission, unless required by law.

11. Data Breach Procedure

In the event of a data breach, we will assess the risk to individuals and notify the ICO and affected parties as required under data protection legislation.

12. Children’s Data

Our services are not designed for or directed at children under 18, and we do not knowingly collect personal information from children.

13. Changes to This Privacy Policy

We may update this policy from time to time to reflect changes in legal requirements or service offerings. The latest version will always be available on our website. Continued use of our services following any update constitutes acceptance of the changes.