Privacy policy

Source Workwear is a trading name of Lyfcycle Ltd (company number 12173416), a private limited company registered in England and Wales. Our registered office is 16 Church Street, Cropwell Bishop, Nottingham, England, NG12 3DB. For data protection enquiries, contact hello@sourceworkwear.com.

For the purposes of UK data protection law, Lyfcycle Ltd is the data controller for personal data collected through this website.

This policy covers personal data we collect through Source Workwear at sourceworkwear.com (and related subdomains), including when you browse pages, read insights content, or submit a product brief via our contact form. It does not apply to third-party websites we link to, or to data processed solely by our customers in their own systems.

We collect only the information needed to run the site and respond to enquiries. We do not operate user accounts or e-commerce checkout on this site.

Product brief / contact form

• Name and company name
• Email address
• Telephone number (optional)
• Your message / product brief
• Product category and the page you submitted from

When you browse the website

• Technical data such as IP address, browser type, device type, and pages visited — typically in server and security logs maintained by our hosting provider
• Requests to our content delivery network when pages and images load (see processors below)

If you accept optional analytics in our cookie banner, we receive aggregated usage data via Vercel Web Analytics. We do not use advertising or social tracking. See our Cookie policy for details.

Under UK GDPR we must have a lawful basis for each use of personal data. We rely on the following:

• Pre-contract / contract: to review and respond to your product brief and to take steps at your request before a commercial agreement
• Legitimate interests: to operate, secure, and improve our website; to maintain business records of enquiries; and to communicate with prospective B2B customers — balanced against your rights, which we do not override for marketing we have not asked for
• Consent: where you accept optional analytics cookies in our cookie banner (you may withdraw consent on our Cookie policy page)
• Legal obligation: where we must retain or disclose information to comply with law

We do not add you to marketing mailing lists or sell your details. We do not pass your brief to third parties for their own marketing.

We share personal data only with service providers that help us run the website and handle enquiries, under contracts that require them to protect your data and use it only on our instructions:

• Vercel — website hosting and related infrastructure; may process IP addresses and request logs; optional Web Analytics if you consent to analytics cookies
• Twilio SendGrid — sends internal notification emails when you submit a product brief (when email is configured)
• Sanity.io — content management and image CDN for public pages and insights articles

Access within Lyfcycle Ltd is limited to people who need it to respond to enquiries and operate the site.

We may disclose data if required by law, court order, or to protect our legal rights.

Some providers may process data outside the UK (for example in the United States or European Economic Area). Where required, we rely on appropriate safeguards such as the UK International Data Transfer Agreement, UK Addendum to EU Standard Contractual Clauses, or provider certifications recognised under UK law. You may contact us for more information about transfers relevant to your enquiry.

• Product briefs and correspondence: typically up to three years from our last meaningful contact, unless a longer period is needed for an active commercial relationship or legal claim
• Server logs:retained according to our hosting provider's default periods (often a limited number of days to weeks unless needed for security investigation)
• Email held in our mail systems: according to our normal business retention and backup practices

We delete or anonymise data when it is no longer needed for the purposes above, subject to legal retention requirements.

We use appropriate technical and organisational measures to protect personal data, including HTTPS, access controls, and reputable hosting and email providers. No method of transmission over the internet is completely secure; we cannot guarantee absolute security.

If UK GDPR applies to our processing of your data, you have the right to:

• Access a copy of your personal data
• Ask us to correct inaccurate data
• Ask us to erase your data in certain circumstances
• Restrict or object to processing in certain circumstances
• Data portability where processing is based on consent or contract and carried out by automated means
• Withdraw consent where we rely on consent (we do not rely on consent for routine product brief handling)
• Lodge a complaint with the UK Information Commissioner's Office (ico.org.uk)

To exercise these rights, email hello@sourceworkwear.com. We may need to verify your identity. You may also write to us at our registered office (see section 1).

Our website and services are aimed at business buyers. We do not knowingly collect personal data from children under 16. If you believe a child has provided us with personal data, contact us and we will delete it where appropriate.

We may update this policy from time to time. The "Last updated" date at the top of this page shows when it was last revised. Material changes will be reflected on this page; we encourage you to review it periodically.

For questions about this policy or our use of your personal data, contact hello@sourceworkwear.com, or write to: Data protection enquiries, Lyfcycle Ltd, 16 Church Street, Cropwell Bishop, Nottingham, England, NG12 3DB. We do not have a separate Data Protection Officer; enquiries are handled by our team.

For information about cookies, see our Cookie policy.