Privacy and Data Protection Statement

Privacy and Data Protection Policy Statement

UK Bid Writer and Lyndsey Michaels – Bid Writing Services  are trading names of Mrs Lyndsey Michaels Wray, Sole Trader (henceforth referred to as ‘the organisation’), registered with the Information Commissioners Office: Reg Ref. ZA348392.

Formal notification of the types of personal data registered as likely to be collected by the organisation can be found here.

The personal data currently collected by this organisation generally includes:

  • IP addresses
  • Contact names
  • Email addresses
  • Telephone numbers

The organisation may collect other forms of data in the future.

Data collection

Data collected for the purposes of conducting business with clients and potential clients

The data listed above is used by the organisation to respond to initial client enquiries, correspond with engaged clients and may from time to time be used to provide further information on services, offers and other updates.

This information may be shared with:

  • Employees of and/or other suppliers hired by the organisation

Data collected for the purpose of providing the business services

The data listed above (excluding IP address) may also be used within documents created by the organisation at the request of the client as part of the services the organisation offers, for example, to complete tender submissions on behalf of the client.

In addition, personal data about each client’s management, employees and own customers/service users may also be collected for the purpose of completing tender submissions, for example:

  • Individual employee CVs, biographies and employment history
  • Individual customer/service user case studies

Sensitive personal data may be collected where it has a relevant purpose within the context of providing the business services, e.g. as part of an answer when responding to a tender.

This information may be shared with:

  • Contracting authorities to which tender response documentation is to be submitted
  • Third parties involved in the submission of the tender response, e.g. the client’s suppliers and/or partners in a consortium etc.
  • Third parties involved in the creation of the tender response documentation, e.g. employees of and/or other suppliers hired by the organisation.

Data collected for the purposes of managing the business of the organisation

Employees general personal data and, where relevant, some sensitive personal data may be collected for necessary HR records. The personal data of suppliers to the organisation, including that of freelancers, sole traders and other individuals the organisation may engage to fulfil its business obligations, may be collected.

This information may be shared with:

  • Other employees of the organisation, suppliers to the organisation and relevant authorities, e.g. the organisation’s accountants, HMRC etc.

Data provided by visitors to this website


When visitors leave comments on the site the data shown in the comments form is collected, as well as the visitor’s IP address and browser user agent string to help spam detection. An anonymised string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: After approval of your comment, your profile picture is visible to the public in the context of your comment. If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.

  • Visitor comments may be checked through an automated spam detection service.


If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included.

  • Visitors to the website can download and extract any location data from images on the website.


If you leave a comment on this site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year. If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser. When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed. If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

  • For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

  • These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Please note, the examples above are not exhaustive.

Your rights

Right to access

Under GDPR, an individual has the right to find out from a data controller if their personal data is being processed, where this is happening and why. Controllers must provide a copy of that data free of charge when requested.

Right to erasure

Also known as ‘the right to be forgotten’, individuals can ask the data controller to:

  • delete their personal data
  • stop its dissemination
  • stop third parties processing it

Contacting the organisation

If you would like to request a copy of the data the organisation holds about you, would like to exercise your right to be forgotten, or would like any further detail on the organisation’s GDPR compliance, please contact Lyndsey Michaels Wray:


Phone: 07813 606033