Privacy & Data Security Policy

Effective Date: 20 March 2026
Next Review Date: 20 March 2027

Who We Are

FWRD is a consultancy that helps growing businesses streamline operations through Zoho and other cloud-based systems, including process optimisation, systems integration, and AI enablement.
This privacy policy explains how we collect, use, and protect personal data when you interact with us, whether through our website, direct communication, or marketing activity.

It is drafted in accordance with UK GDPR and applicable data protection laws. Where you are located outside the UK, equivalent local laws may also apply

Data We Collect

We may collect and process the following types of data:

1. Website Usage Data

When you visit our website, we may collect anonymised data through tools such as:

Zoho SalesIQ
Zoho PageSense
Google Analytics (GA4)

This includes:

Pages visited
Time spent on site
Device and browser type

This data is used to improve website performance and user experience.

2. Information You Provide Directly

We collect personal data when you:

Submit a contact form
Book a consultation
Engage via live chat
Communicate with us via email

This may include:

Name
Email address
Company name
Job role
Any information you choose to share

3. Business Contact Data (B2B Prospecting)

We may collect and process business contact data from publicly available sources in order to identify organisations that may benefit from our services.

This may include:

Company websites
Public business directories
Technology identification tools (e.g. identifying use of platforms such as Zoho, Salesforce, HubSpot)

Additional sources may include professional networking platforms (e.g., LinkedIn) and trusted B2B data providers (e.g., Apollo, Wappalyzer, BuiltWith).

We use this information to:

Identify relevant organisations
Contact appropriate individuals within those organisations in a business context

We do not collect or use personal data unrelated to business activity.

We focus on limited companies and multi-employee organisations and avoid contacting individuals (e.g., sole traders) where consent may be required. Outreach is always targeted, contextual, and relevant.

Legal Basis for Processing

We rely on the following lawful bases under GDPR:

Legitimate Interest
We process data where it is necessary for our legitimate business interests, including:

Improving our website and services
Communicating with businesses that may benefit from our services
Conducting B2B marketing and outreach

We ensure that:

Our outreach is relevant and targeted
It is reasonable for the recipient to expect contact
It does not override individual rights or freedoms

Consent

We rely on consent where required, including:

Acceptance of cookies
Submission of forms where explicit consent is given

B2B Marketing & Outreach

FWRD conducts targeted B2B outreach to organisations that we believe may benefit from our services.

This involves:

Contacting individuals in roles such as operations, finance, IT, or leadership
Using publicly available business data to identify relevant companies

All outreach communications:

Clearly identify who we are
Explain why we are contacting you
Provide a clear and simple way to opt out

Outreach communications always explain why you are being contacted, tied to your role or organisation. Focus is on limited companies; individuals where consent may be required (e.g., sole traders) are avoided.

Where required, we comply with applicable electronic marketing regulations, including business vs individual distinctions.

FWRD acts as the data controller for all outreach activities.

You have the right to object to this processing at any time.

You have the right to object to the use of your personal data for direct marketing at any time. If you object, we will stop processing your data for this purpose immediately.

Opt-Out & Your Choices

If you receive a communication from us and do not wish to be contacted again, you can:

Reply directly to the email requesting removal
Contact us at info@fwrdcrm.com

We will process opt-out requests promptly and ensure you are not contacted again.

Data Retention

We retain personal data only for as long as necessary to:

Fulfill the purpose it was collected for
Meet legal or regulatory requirements

Analytics data is retained for up to 26 months.

Marketing contact data is reviewed regularly and removed when no longer relevant.

Data Security

We take appropriate technical and organisational measures to protect data, including:

Secure cloud platforms (e.g. Zoho, Google Workspace, Microsoft 365)
Access controls and permissions
Encryption and secure data handling practices

Use of AI Tools

We use AI tools within controlled environments to support internal workflows such as:

Drafting content
Summarising meetings
Process automation

We do not use public AI tools to process client or personal data without appropriate safeguards and approval.

Your Rights

Under data protection law, you have the right to:

Access the personal data we hold about you
Request correction of inaccurate data
Request deletion of your data
Restrict or object to processing
Object to direct marketing at any time
Request a copy of your data (data portability)
Lodge a complaint with a supervisory authority

You can also withdraw consent where given. Effect of objection to marketing: we will immediately stop all marketing communications.

To exercise your rights, contact: info@fwrdcrm.com

Policy Review & Changes to This Policy

We may update this policy from time to time. Any significant changes will be published on this page.

Reviews ensure compliance with UK GDPR, PECR, and applicable international laws.

If you have any questions about this policy or how your data is handled, please contact:

Email: info@fwrdcrm.com
Address: FWRD Pte Ltd, 68 Circular Road, #02-01, Singapore, 049422