Privacy & Cookie Policy

The Tsunami Axis Group of companies includes Tsunami Axis Ltd, Tsunami Operations Ltd, Tsunami Axis GmbH, and Flourish Healthcare. We are committed to upholding our responsibilities under General Data Protection Regulation (GDPR) EU 2016/679. GDPR requires that this Privacy Policy that is jargon-free, and in plain language.

1. What GDPR-applicable Data We Hold

Our employees collect and hold the following categories of personal data, in the following formats:

1.1. Customer Data, comprising names, roles, organisation, contact details. This information is held on our: Customer Relationship Management system, Business Management System, Financial Management System, Personal Information Management and Email System.

1.2. Supplier Data: We hold supplier data comprising names, roles, organisation, contact details. This information is held on our: Business Management System, Financial Management System, Personal Information Management and Email System.

Sub-contractors: In addition, we hold personal data for individual sub-contractor employees, to confirm they are safe and eligible to work on our sites.

1.3. Employee Data, comprising names, roles, contact details, personal details. This information is held:
• In hard-copy format, held in secure filing and accessed only by the Tsunami Axis HR Manager
• Payroll Management System
• Contact details are help in our Email and Contact System, Microsoft Office 365 Exchange system.

1.4. Office and Site Visitors: Visitor’s information is recorded for health and safety purposes. (I.e. ensuring safe evacuation.)

1.5. Back Up Data, held by our IT support company, i-Dash.

2. Lawful Basis

There are six lawful bases that can be applied for processing your data: Consent; Contract; Legal Obligation; Vital Interests; Public Task; Legitimate Interests. The data we hold complies with this requirement:

2.1. Customer Data:
• Legitimate interest
• For quotation, tendering, and project purposes: Contractual

2.2. Supplier and Subcontractor Data:
• For quotation or tendering purposes: Contractual
• For project management purposes: Contractual

2.3. Employee Data:
• Legal Obligation

3. Data Processors

We use third parties to process legitimate personal data. The third parties fall into the following categories
3.1. Our IT service providers, who develop, maintain, and back up our systems
3.2. CRM service provides: Data processors who provide or process within our CRM software
3.3. Our website provider
3.4. Personal Information Manager/Email service provider
3.5. Financial Management System

4. Keeping Your Data Secure

We commit to ensuring the data we keep is secure. Our premises are secured, and our IT systems are secured with relevant protection suites. Our systems are proactively managed by our By our in-house IT department supported by out IT Consultants. The data processors we use have demonstrated their safe handling of data.

5. Keeping Your Data Relevant

We will only keep data that is relevant. We will delete any data that is redundant, and we will not keep data without good reason. Our CRM database is managed to ensure it is current, and staff access is limited.

6. Use of Data for Marketing

Legitimate Interest: We may contact our business customers with details of products, services, notices relevant to the supply and management of office furniture. If you do not wish to receive such communications, we will remove you from our communication lists.

7. Data Requests

You can ask us what personal data you hold, and we must give you that information free of charge, within one month of your request.

8. Deleting Data

If you ask us to delete your data, we must do so immediately.

9. Data Breaches

We have standard operating procedures in place to ensure data breaches are identified and remedied.

10. Buying or Selling Data

If we choose to buy personal data, we will ensure that the seller is GDPR compliant, and that all persons whose data is sold, has explicitly consented to their use of that data.We will not sell your data.
Should our organisation be sold to another person or business in the future, your data may also be transferred to the new organisation. However that data may only be used for it’s original lawful basis. You can still opt out, request information, or request the deletion of your data.

11. Cookies

Cookies are text files placed on your computer to collect standard internet log information and visitor behavior information. This information is used to track visitor use of the website and to compile statistical reports on website activity.

For further information visit www.aboutcookies.org or www.allaboutcookies.org.

You can set your browser not to accept cookies and the above websites tell you how to remove cookies from your browser. However, in a few cases some of our website features may not function as a result.

Cookies used on this site

The following are names of the cookies we currently use on this website. Each cookie includes a short description of what the cookie does and its expiry time.


Cookie Name: gadwp_wg_default_dimension, gadwp_wg_default_metric, gadwp_wg_default_swmetric, mp_a36067b00a263cce0299cfd960e26ecf_mixpanel, ga, gat, gid
Description: These cookies are used to collect information about how visitors use our website and WordPress blog. We use the information to compile reports and to help us improve the website. The cookies collect information in an anonymous form, including the number of visitors to the website and blog, where visitors have come to the website from and the pages they visited.
Read Google’s overview of privacy and safeguarding data
Expiry: Various


Cookie Name: tsunami_analytics
Description: This cookie is used to remember a user’s choice about cookies on <a href=”https://tsunami-axis.co.uk”>tsunami-axis.co.uk</a>. Where users have previously indicated a preference, that user’s preference will be stored in this cookie.
Expiry: 180 Days


Cookie Name: wordfence_verifiedHuman
Description: This cookie is used by Wordfence – this manages site security preventing hacking and blocking access from suspicious IP addresses.
Expiry: 24 hours


Cookie Name: wfvt_469931293
Description: This cookie is used by Wordfence – this manages site security preventing hacking and blocking access from suspicious IP addresses.
Expiry: 30 mins

If you would like to update your cookie preferences, click the button below

12. Data Manager

Our appointed Data Manager is Raphael Wellington. If you have a question relating to this policy, please contact him via Tsunami Axis Ltd.

Contact us to find out how we can help.