Last updated: June 2026
NOVTRIQ is the trading name of Novus Projects Ltd, a company registered in England and Wales (company registration number 13629950). We are an engineering consultancy providing services across energy, infrastructure, digital innovation, and sustainability sectors.
We are committed to protecting your privacy and ensuring transparent data practices in accordance with the UK Data Protection Act 2018 and the UK General Data Protection Regulation (UK GDPR), the EU General Data Protection Regulation (EU GDPR), the Swiss Federal Act on Data Protection (FADP), and the EU Digital Services Act (DSA) where applicable.
Data Controller: Novus Projects Ltd (trading as NOVTRIQ)
Company Registration: 13629950 (England and Wales)
ICO Registration: ZB304701
Email: [email protected]
Data Protection Officer: [email protected]
We collect information in several ways:
For our B2B engineering consultancy activities, we may collect business contact information from publicly available sources such as company websites, professional directories, business registries, and public engineering tender platforms. This is processed on the basis of legitimate interest for B2B prospecting purposes, in accordance with UK GDPR Article 6(1)(f) and equivalent EU GDPR provisions.
We process your personal data on the following legal bases under UK GDPR, EU GDPR, and Swiss FADP:
To provide engineering consultancy services, fulfill project requirements, send invoices, and manage client relationships.
Complying with UK tax, employment, professional engineering regulations, anti-money laundering laws, and data protection authorities' requests.
We use automated systems to analyse engineering opportunities and match them with our services. These systems may include AI-assisted tools for content analysis and prioritisation. All decisions affecting individuals are subject to human review before any direct outreach. You have the right not to be subject to solely automated decision-making (see Section 7).
Where we use artificial intelligence to generate content (such as personalised communications), we disclose this fact in accordance with applicable regulations. Any AI-generated content sent to you will be clearly identified as such.
We do not sell your personal data. We may share information with the following categories of recipients, all bound by data processing agreements:
We work with carefully selected third-party providers to deliver our services. These include:
We may disclose data if required by law, court order, regulatory authority, or to protect our legal rights, property, or safety, or that of others.
If NOVTRIQ is sold, merged, or restructured, your data may be transferred as part of that transaction. We will provide notice of any such change.
All third-party processors are contractually bound by Data Processing Agreements requiring confidentiality, security measures, and data protection obligations equivalent to our own standards.
Your data is primarily processed within the United Kingdom and European Union. Where we transfer data internationally, we implement appropriate safeguards including:
You may request information about safeguards in place for international transfers by contacting us at [email protected].
We retain personal data for as long as necessary to fulfil the purposes stated in this policy, in accordance with the principle of storage limitation under Article 5(1)(e) of GDPR:
After the retention period, we securely delete or anonymise your data, unless legal obligations require longer retention. Our automated systems enforce these retention periods.
You have the following rights regarding your personal data:
Request a copy of the personal data we hold about you (Subject Access Request). We will provide this free of charge within 30 calendar days.
Correct inaccurate or incomplete personal data without undue delay.
Request deletion of your data in certain circumstances (the "right to be forgotten"), such as when the data is no longer necessary, you withdraw consent, or the processing was unlawful.
Restrict how we use your data while we assess a complaint, verify information, or in other specified circumstances.
Receive your data in a structured, commonly used, machine-readable format and transfer it to another controller, where the legal basis is consent or contract.
Object to processing based on legitimate interests, including profiling. We will cease processing for direct marketing immediately upon objection.
You have the right not to be subject to solely automated decision-making that produces legal or similarly significant effects. Our processes include human review where applicable.
Where processing is based on consent, you can withdraw it at any time without affecting the lawfulness of processing based on consent before withdrawal.
You have the right to complain to a supervisory authority, in particular in the EU Member State of your habitual residence, place of work, or place of the alleged infringement (see Section 13).
To exercise any of these rights, please contact our Data Protection Officer at [email protected] or use our contact page. We will respond within 30 calendar days. For EU/EEA and Swiss residents, you may also contact our EU/EEA & Swiss Representative (see Section 8).
In accordance with Article 27 of the EU GDPR and Article 14 of the Swiss FADP, and Article 13 of the EU Digital Services Act (DSA), we have appointed DataRep as our representative in the European Union/EEA, Switzerland, and for DSA purposes.
EU/EEA residents, Swiss residents, and EU regulatory authorities may contact our representative directly regarding any matter related to the processing of personal data or the DSA:
EU/EEA & Swiss Representative: DataRep (Data Protection Representative Limited)
Address: 3rd Floor, Kilmore House, Park Lane, Spencer Dock, Dublin 1, D01 YE64, Ireland
Online contact form: www.datarep.com/data-request
Email: [email protected]
Reference: Novus Projects Ltd (trading as NOVTRIQ)
DataRep maintains contact addresses in 30 EU/EEA member states and Switzerland. Please refer to www.datarep.com/locations for the contact address in your jurisdiction. All correspondence to local addresses must be addressed to 'DataRep' to reach us.
Digital Services Act (DSA): Our DSA point of contact and Member State of main establishment for DSA purposes is Ireland. EU users and authorities may contact DataRep regarding DSA matters using the details above.
We use cookies to improve your experience on our website. For comprehensive information about cookies we use and your preferences, please visit our Cookie Policy.
Cookie types include:
You can manage your cookie preferences at any time through our cookie consent banner or browser settings. Withdrawing consent will not affect the lawfulness of processing prior to withdrawal.
We implement comprehensive technical and organisational measures to protect your personal data, in accordance with ISO 27001 principles:
In the event of a personal data breach, we will notify the Information Commissioner's Office (ICO) within 72 hours where required, and affected individuals where the breach is likely to result in a high risk to their rights and freedoms.
While we strive to protect your data, no system is entirely secure. Please safeguard your login credentials and notify us immediately of any suspected security breaches at [email protected].
Our services are directed exclusively to professional and business audiences. We do not knowingly collect personal data from individuals under 16 years of age (UK GDPR) or under the equivalent age of consent in your jurisdiction. If we become aware that a child has provided us with personal data, we will delete it promptly. If you believe we may have inadvertently collected information from a child, please contact us at [email protected].
We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes by:
Your continued use of our services after such changes constitutes acceptance of the updated policy. For material changes affecting your rights, we may require fresh consent where applicable.
If you have questions about this Privacy Policy, wish to exercise your rights, or want to report a data protection concern, please contact us:
Data Controller: Novus Projects Ltd (trading as NOVTRIQ)
Company Registration: 13629950 (England and Wales)
ICO Registration: ZB304701
Website: novtriq.com
General Email: [email protected]
Data Protection Officer: [email protected]
Privacy Requests: [email protected]
Unsubscribe: [email protected]
Contact Form: novtriq.com/contact
DataRep (Data Protection Representative Limited), 3rd Floor, Kilmore House, Park Lane, Spencer Dock, Dublin 1, D01 YE64, Ireland. Online: www.datarep.com/data-request. See Section 8 for details.
If you believe we have breached your rights, you have the right to lodge a complaint with the supervisory authority in your jurisdiction:
Operations aligned with ISO 9001, 14001, 27001, 45001 frameworks. Learn more →
NOVTRIQ is a trading name of Novus Projects Ltd, a company registered in England and Wales (Company No. 13629950). Registered office: 27 Old Gloucester Street, London, WC1N 3AX, United Kingdom.