Menu Close
Close

Privacy Policy

Last updated: [07 March 2026]

Vestra Global Sourcing (“we”, “us”, “our”) is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use and protect personal information when you visit our website, contact us, or request a quotation (RFQ).

1. Who we are

Vestra Global Sourcing is a B2B procurement partner providing global sourcing, supply and delivery coordination services.

Contact (privacy):

Email: [email protected]
If you prefer, you may contact us using the contact form on this website.

Contracting entity: The contracting Vestra entity depends on delivery destination and is confirmed in the quotation and invoice.

2. What data we collect

We may collect and process the following categories of personal data:

  • Contact details: name, job title, company name, email address, phone number.
  • Enquiry and RFQ data: delivery country/postcode, requested items, quantities, specifications, required dates, and any files you attach (lists, drawings, photos).
  • Communication data: emails and messages exchanged with us, including any information you choose to share.
  • Website usage data: information about how you use our website (for example pages visited, time spent, referral source).
  • Technical data: IP address, device type, browser type, and other standard log data.

We do not intentionally collect special category data (such as health information, political opinions, religious beliefs) and ask you not to provide it.

3. How we use your data

We use your personal data for the following purposes:

  • To respond to enquiries and RFQs and provide quotations, lead times and delivery options.
  • To provide and manage our services, including sourcing, order coordination, delivery coordination, and documentation support.
  • To communicate with you about your enquiry, quote, order status, delivery updates, and any issues requiring resolution.
  • To improve our website and services, including understanding which pages are useful and how visitors navigate the site.
  • To protect our business, prevent fraud, maintain security, and enforce our rights.

4. Legal bases for processing

We process personal data under the following legal bases (as applicable):

  • Contract / steps prior to contract: to prepare and provide quotations and to perform services once agreed.
  • Legitimate interests: to respond to business enquiries, run and improve our business, maintain security and prevent fraud.
  • Consent: where required for non-essential cookies and certain analytics/marketing technologies. You can withdraw consent at any time via the cookie settings (where available) or by adjusting your browser settings.

5. Sharing your data

We may share your personal data with trusted third parties only where necessary, including:

  • Suppliers and manufacturers (to identify availability, lead times, specifications, and fulfilment feasibility).
  • Carriers, freight forwarders and logistics providers (to arrange delivery, tracking and documentation).
  • IT and website providers (hosting, security, analytics tools, and communication systems).
  • Professional advisers (accountants, legal advisers) where required.
  • Authorities (where we are legally required to disclose data).

We do not sell personal data to third parties.

6. International transfers

Because we source globally, some suppliers or service providers may be located outside the UK/EEA. Where we transfer personal data internationally, we take steps to ensure appropriate safeguards are in place (for example, standard contractual clauses or equivalent protections).

7. Data retention

We retain personal data only for as long as necessary for the purposes described in this Privacy Policy, including:

  • Handling enquiries and providing quotations;
  • Managing ongoing customer relationships;
  • Meeting legal, tax and accounting obligations;
  • Establishing, exercising or defending legal claims.

Retention periods may vary depending on the nature of the data and our legal obligations.

8. Security

We implement appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse or alteration. However, no internet transmission is completely secure; you should also take care when sending sensitive information by email.

9. Your rights

Depending on your location and applicable law (UK GDPR / EU GDPR), you may have rights including:

  • Right to access your personal data;
  • Right to rectify inaccurate data;
  • Right to request deletion of your data (in certain circumstances);
  • Right to restrict or object to processing (in certain circumstances);
  • Right to data portability (in certain circumstances);
  • Right to withdraw consent where processing is based on consent.

To exercise your rights, contact us at [email protected]. We may need to verify your identity before responding.

10. Cookies and analytics

We use cookies and similar technologies to operate the site and (subject to your consent where required) to understand website performance and improve user experience. For details, see our Cookies Policy.

11. Third-party links

Our website may contain links to external sites. We are not responsible for the privacy practices of third-party websites. Please review their privacy policies.

12. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated “Last updated” date.