Who we are

Sinnalba is an international project manager headquartered in Edinburgh, Scotland. We deliver complex project management solutions with a focus on new technologies and innovation that improve efficiency and connectivity. Our experienced team and network of technical specialists provide a broad range of services, from consultancy on bespoke equipment design and procurement, to strategic advice in relation to corporate finance transactions.

Personal data is collected by each member of the Sinnalba Group. In the European Union our primary data collectors are Sinnalba Group Limited and Sinnalba (Cyprus) Limited.

If you have any questions about Sinnalba’s use of your personal data, please contact:

Sinnalba Group Limited
110 George Street

Data collection and usage

We will collect the following personal data:

  • Contact information: your name, position, role, company or organisation, telephone (including mobile phone number where provided) as well as email and postal address;
  • Business information: data identifying you in relation to matters on which you instruct us or in which you are involved;
  • Visitor records: to record your attendance at our offices for security purposes;
  • Supplier data: contact details and other information about you or your company or organisation where you provide services to Sinnalba;
  • Technical information: We do not collect any personal information about you via our website. We use session cookies for analytical and performance purposes. They allow us to recognise and count the number of visitors and to see how visitors move around our website when they are using it. This helps us to improve the way our website works, for example, by ensuring that users are finding what they are looking for easily.
  • Special categories of personal data: such as dietary, disability or similar requirements for events and meetings.  If you do not provide this information, we may not be able to respond to your particular needs or preferences.


Your communications with us

Sinnalba may also collect information that you choose to provide in communications with us.


How we use your personal data

We use your personal data for the following purposes:

  • Business relationship: managing and administering our relationship with you, your company or organisation including keeping records about business contacts, services and payments so we can customise our offering for you and develop our relationship;
  • Communication: sending emails and meeting invitations;
  • Events: sending out invitations to our corporate events;
  • Website monitoring: to check the website and our other technology services are being used appropriately and to optimise their functionality;
  • Site security: to provide security to our offices and other premises (normally collecting your name and contact details on entry to our buildings);
  • Online security: protecting our information assets and technology platforms from unauthorised access or usage and to monitor for malware and other security threats;
  • Managing suppliers: who deliver services to us;
  • Legitimate interest: to pursue the legitimate business interests listed in the “Legitimate Interests” section of this policy below.


Our reasons for using your personal data

We will process your personal data for a number of reasons:

  • you have given us consent: for example, where you share details for particular purposes;
  • processing is necessary for our legitimate business interests or those of a third party:  provided this does not override any interests or rights that you have as an individual. Our legitimate interests are listed in the next section.


Legitimate interests

We have legitimate business interests in:

  • providing project management services;
  • managing our business and relationship with you or your company or organisation;
  • understanding and responding to inquiries and client feedback;
  • understanding how our clients use our services and websites;
  • identifying what our clients want and developing our relationship with you, your company or organisation;
  • improving our services and offerings;
  • receiving information from other Sinnalba companies for shared clients;
  • enforcing our terms of engagement and website and other terms and conditions;
  • ensuring our systems and premises are secure;
  • managing our supply chain;
  • developing relationships with business partners;
  • ensuring debts are paid;


Our reasons for using special category data

Special category data in the EU and certain other jurisdictions refers to sensitive data such as your racial or ethnic origin, religious beliefs or health data. We will process this data where:

  • we have your explicit consent: for the particular processing;
  • this is necessary to protect your vital interests or those of another person: for example, in medical emergencies; you have made the data public: for example, where you have published it on social media;
  • this is necessary to deal with legal claims: for example, involving court proceedings;
  • this is necessary for substantial public interest: for example, to prevent or detect unlawful acts;
  • as permitted by applicable law: outside the EU and other jurisdictions where these restrictions apply.


With whom do we share your data?

We may share your information as with others as follows:

  • Companies comprising of Sinnalba Group Limited and its subsidiaries:  including their management, lawyers, staff and contractors in order to provide our services;
  • Suppliers: who support our business including IT and communication suppliers, outsourced business support, marketing and back up. Our suppliers have to meet minimum standards as to information security and they will only be provided data in line with their function;
  • Law enforcement bodies and our regulators: or other competent authorities in accordance with legal requirements or good practice;
  • Appropriate parties in the event of emergencies: in particular to protect health and safety of our clients, staff and organisations;



We will hold your information securely in line with physical, technical and administrative security measures. However, the transmission of information via the internet is not completely secure. Although we will take reasonable measures to protect your personal information, we cannot guarantee the security of your information transmitted and any transmission is at your own risk.


Where will your information be held?

We are international project managers, therefore your information may be transferred out of your local jurisdiction or region. Data protection laws vary by country and those applicable in the USA and elsewhere are not equivalent to those applicable in, for example, the EU or certain other jurisdictions.  Sinnalba will take steps to protect your information in line with locally applicable data protection requirements.


How long do we keep your data?

We will only retain your personal information for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.


Your Rights

You have the right to:

  • Request access to, and a copy of, your personal information
  • Request correction of the personal information that we hold about you
  • Request erasure of your personal information.
  • Object to processing of your personal information where we are relying on a legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground. You also have the right to object where we are processing your personal information for direct marketing purposes.


If you want to exercise any of these rights, please contact us using the details at the top of this notice.

If you believe we have not complied with your rights, you can complain to the Information Commissioner,


Links to third party websites

Our website, newsletters, email updates and other communications may, from time to time, contain links to and from the websites of others. The personal data that you provide through these websites is not subject to this privacy notice and the treatment of your personal data by such websites is not our responsibility.


If you follow a link to any other websites, please note that these websites have their own privacy notices which will set out how your information is collected and processed when visiting those sites.


Changes to this Notice

This notice may be changed from time to time.

If we change anything important about this notice (the information we collect, how we use it or why) we will highlight those changes at the top of the notice and provide a prominent link to it for a reasonable length of time following the change.


How to contact us 

If you would like more information about the way we manage personal data that we hold about you please contact us as set out at the top of this notice.