Privacy Policy is a website (“Site”, “Website”) operated by Aldred Baxter LLP (“We”, “Us, “Our”) and we are committed to protecting and respecting your privacy. For the purposes of the General Data Protection Regulations (GDPR) and any subsequent UK legislation covering data protection, we are the Data Controller.

This privacy policy (“Policy”) sets out why we collect personal information about individuals and how we use that information. We may change this Policy from time to time. If we make any significant changes we will advertise this on our website or contact you directly with the information. If you have any questions about this Policy or about your personal information, please contact us.

Information we collect from you

The type and amount of information we collect depends on why you are providing it. This is illustrated below:

Where we store your personal data

Your personal data is stored on servers which are in the European Economic Area. If we store or host your personal data with any third party service provider in the course of providing you with our services, those third parties are required to process your data in accordance with contracts which comply with applicable data protection legislation.

How we use your information

We use information held about you in the following ways:

Sharing or transfer of your information

We ensure that only authorised persons have access to your information and that everyone who has access is appropriately trained to manage your information. This means that only our employees and contractors have access to your information.

We may disclose your personal information if we are required to do so under any legal obligation. We may use external data for the purposes of fraud prevention and credit risk reduction, or where doing so would not infringe your rights, but is necessary and in the public interest.

We do not store any information when you use the free version of our products. This information is stored locally on your own computers or devices.

We do not share personal data with third parties.

Use of aggregated data

Where data can be aggregated and anonymised, we may use this for research and training purposes without restriction. We are entitled to do this because the resulting data will not personal identify you and will therefore no longer constitute personal data for the purposes of data protection laws.

Third-party websites or links

Our site may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.

Your rights to access, correct or delete information

If you ask us to delete your all personal data, you may do so at any time (unless we are in the process of responding to any complaint that you may have made) by contacting us. Please note that we only hold a minimum of personal data about you in the first place. We may not delete any of your data, even if requested, if it is necessary for our legitimate business purposes as defined under GDPR.

If you ask us to stop contacting you with marketing materials, we will keep a record of your contact details and limited information needed to ensure we comply with your request.

If you wish to receive a copy of the personal data we hold about you, you may do so at any time by contacting us.

If your contact details have changed, please let us know. You can contact us at

Data security policy

We are committed to providing a safe and secure online environment. You can learn more about some of the most common internet security threats, what you can do to protect yourself, and what we do to ensure your details remain secure.

(1) What you can do to protect yourself

  1. Be aware of common security threats such as:
    • Money laundering (usually involving unusual requests to transfer or receive money)
    • Phishing (emails requesting unusual or sensitive data from you)
    • Spoofing (a fake website looking like a legitimate one)
    • Identity theft (use of your personal data, usually following a security breach, for fraudulent purposes.
  2. Never include the following in your interview recording in the paid version of our products:
    • National Insurance number
    • Driving license number
    • Bank details
    • Credit card details
    • Passwords
    • Sensitive personal data about ethnicity, religion, disability, sexual orientation, etc.

If you're suspicious of any email you receive from, or apparently from, Poor Alexander, please contact us immediately at including the subject line of the email you received, and the email address it was sent from.

(2) What we're doing to protect you

We understand the importance of keeping your personal information safe, and we take appropriate steps to safeguard it.

The measures we take include:

  1. Encryption to keep your data safe while it is in transit: When you do things like send us an email, fill in a purchase order form, the data that you enter moves between your device and our software and/or server environment. We protect this data using encryption technology like HTTPS, Transport Layer Security and Secure FTP.
  2. Encryption and password-protection to keep your data safe while it is stored with us: Once you give us your data, it is stored in leading cloud-based environments, on servers, and in software running on our computers. These computers are password protected. Where your data is stored in the cloud or on a server, our contracts with these service providers contain terms that confirm your data is managed in accordance with principles of GDPR.
  3. Enforcement of strong password rules: We use strong passwords and a password management environment to keep our online and cloud-based environments secure.
  4. Regular infrastructure updates: We keep our IT infrastructure up to date to ensure that security measures keep up with evolving threats. This includes upgrades to our online learning environment and the server it is hosted on, and updates to operating systems and software packages. Because much of our infrastructure is provided by leading cloud-based providers, many of these upgrades and updates are automated, reducing the scope for human error or forgetfulness.

No data transmission over the internet can be guaranteed to be completely secure. So whilst we strive to safeguard your information, we cannot guarantee the security of any information you provide online, and you do this at your own risk. This applies particularly to email transmissions: although we apply encryption at our end, if your email service does not support encryption, you may inadvertently send or receive unencrypted data.

Cookies policy

Our site does not use Cookies.

Jurisdiction and applicable law

This Privacy Policy and our site are governed by and construed in accordance with the laws of England and Wales and any disputes will be decided only by the English courts.

This policy was last updated on 15 May 2019.