Privacy Policy
Tholos Architects ltd
Who we are
We are Tholos Architects Ltd, our website addresses are https://tholos-architects.com and all its sub-domains.
Comments & Media
Posting of comments and uploading of media are disabled on this site.
Embedded content
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.
Your data
Use of our website and any of its sub-domains requires cookies and data transfer.
Region-specific compliance is detailed in the next section.
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
If you contact us using any contact form on our websites, by email, by telephone, by mail, or sharing your personal information and contact details with a member of our staff:
Your data is handled safely, manually, and stored on an secure database where it can be retained indefinitely.
You agree in being contacted by us for commercial and marketing purposes.
You can request an extract of the personal data we hold about you, including any data you have provided to us.
You can request that we erase any personal data (identification data) we hold about you, anonimising your enquiry and preventing future any contact. This does not include any data we are obliged to keep for administrative, legal, or security purposes (for example during the preparation, execution, duration of a legal agreement).
🇬🇧
UK COMPLIANCE
We comply with UK GDPR, DUAA 2025, and PECR.
1. Personal Data We Collect
Comments: Info you provide, IP, browser info, Gravatar hash. Lawful basis: consent
Media Uploads: EXIF location data removed. Lawful basis: consent
Contact Forms & Subscriptions: name, email, phone; opt-in required. Lawful basis: consent
Cookies: login/session, display prefs, comments, pop-ups (1 day–1 year). Lawful basis: consent or legitimate interests
Embedded Content: videos/images; data collected by third parties. Lawful basis: consent/legitimate interests
Analytics: Google Analytics, ExactMetrics, Popup Maker. Lawful basis: legitimate interests
Email/Newsletters: MailPoet; tracking opens/clicks. Lawful basis: consent
Image Optimisation: WP Smush/Stackpath CDN; limited logs. Lawful basis: legitimate interests
2. Data Sharing
Trusted providers: Google, ExactMetrics, MailPoet, WP Smush/Stackpath CDN, Popup Maker.
Third-party subscription services (Mailchimp) may process data.
Data outside UK: UK SCC addendum applied.
3. Data Retention
Comments: indefinitely
User profiles: indefinitely
Subscribers: until unsubscribe/deletion
Cookies: 1 day–1 year
CDN logs: 7 days
4. Your Rights (UK)
Access, correct, delete, restrict/object, data portability, withdraw consent.
Complaints: ICO
5. Security & Breach Procedures
Trained staff, secure servers, restricted access. Breaches notified to ICO promptly.
6. Automated Decision-Making
Not used.
7. Regulatory Compliance
Chartered Architects, comply with RIBA disclosure requirements.
8. Cookie Policy (UK)
We use cookies to enhance your browsing experience.
Users can Accept All OR Reject Non-Essential. Duration: session or 1 month
Explicit consent is required for non-essential cookies.
🇪🇺
EU COMPLIANCE
We comply with EU GDPR 2016/679 and ePrivacy Directive.
1. Personal Data We Collect
Comments: Info you provide, IP, browser info, Gravatar hash. Lawful basis: consent
Media Uploads: EXIF location data removed. Lawful basis: consent
Contact Forms & Subscriptions: name, email, phone; opt-in required. Lawful basis: consent
Cookies: login/session, display prefs, comments, pop-ups (1 day–1 year). Lawful basis: consent required for non-essential cookies
Embedded Content: videos/images; data collected by third parties. Lawful basis: consent/legitimate interests
Analytics: Google Analytics, ExactMetrics, Popup Maker. Lawful basis: legitimate interests
Email/Newsletters: MailPoet/Mailchimp; tracking opens/clicks. Lawful basis: consent
Image Optimisation: WP Smush/Stackpath CDN; limited logs. Lawful basis: legitimate interests
2. Data Sharing
Trusted providers: Google, ExactMetrics, MailPoet, WP Smush/Stackpath CDN, Popup Maker.
Third-party subscription services (Mailchimp) may process data.
Data outside EU: EU SCC or EU–US Data Privacy Framework applied.
3. Data Retention
Comments: indefinitely
User profiles: indefinitely
Subscribers: until unsubscribe/deletion
Cookies: 1 day–1 year
CDN logs: 7 days
4. Your Rights (EU)
Access, correct, delete, restrict/object, data portability, withdraw consent.
Complaints: local DPA
5. Security & Breach Procedures
Trained staff, secure servers, restricted access. Breaches notified to local DPA promptly.
6. Automated Decision-Making
Not used.
7. Regulatory Compliance
RIBA Chartered Practice, comply with RIBA disclosure requirements.
8. Cookie Policy (EU)
We use cookies to improve site functionality, analyze usage, and deliver content. Categories include Strictly Necessary, Functional/Preferences, Performance & Analytics, Marketing & Targeting, and Third-Party. Duration: session or 1 month.
Explicit prior consent required for all non-essential cookies.
Return to our home page.