BBRELCOTE

Legal

Data Protection Statement

Operational data protection statement for personal data governance, protection, retention and cross-border administrative handling.

Effective version: 2026. Company registered in Singapore. UEN: [insert registered UEN].

Brelcote treats data protection as a governance function. Personal data, authority records, correspondence and ownership-linked materials are handled through purpose, retention and access discipline.

Brelcote is a company registered in Singapore. UEN: [insert registered UEN]. Registered office: [insert registered office address]. Correspondence: [email protected]. The website is maintained as a static informational presence for the company and does not create a public portal, client onboarding channel, investment platform, advisory desk, brokerage facility or invitation to transact. This Data Protection Statement sets out Brelcote’s position on data protection governance and operating controls and should be read together with the other legal documents linked in the website footer.

1. Governance commitment

Brelcote expects information connected with governance commitment to be handled on a need-to-know basis. The company may verify identity, capacity, authorisation, purpose, source, integrity and legitimacy before recognising any instruction or disclosure request. A communication that appears complete may still be insufficient if the underlying authority is unclear, if the requested action could compromise confidentiality, if the record is inconsistent, or if additional review is required under internal policy. The company is entitled to preserve the integrity of its files and to refuse actions that would weaken the administrative record or create avoidable risk.

The operational standard for governance commitment is documentation rather than assumption. Dates, names, capacities, approvals, notices, distribution references, account details, register entries and evidence materials should be recorded in a manner capable of later review. Brelcote may retain copies, metadata, correspondence trails, decision notes and control confirmations where necessary for governance, compliance, accounting, dispute management, audit readiness, legal preservation or business continuity. Retention does not imply public availability, and deletion is subject to legal, operational and evidentiary constraints.

Where governance commitment involves external parties, Brelcote may restrict disclosure to the minimum information required for the legitimate purpose. The company may require written authority, secure channels, verified signatories, updated reference documents and satisfactory counterparty information before proceeding. No public statement on the website should be read as an open consent to disclose, distribute, rely on, reproduce or adapt company information. Any person receiving information from Brelcote must use it only for the authorised purpose and must maintain confidentiality and security appropriate to the character of the material.

The company reserves discretion in the administration of governance commitment. It may revise procedures, escalate matters, require additional approvals, correct records, suspend processing, reject incomplete requests, or preserve material while a question is being assessed. These controls are not procedural decoration; they are part of the company’s governance framework. Brelcote’s preference is for careful administration, stable records and low-noise communication rather than speed without authority, convenience without verification or disclosure without a defined purpose.

2. Accountability structure

The operational standard for accountability structure is documentation rather than assumption. Dates, names, capacities, approvals, notices, distribution references, account details, register entries and evidence materials should be recorded in a manner capable of later review. Brelcote may retain copies, metadata, correspondence trails, decision notes and control confirmations where necessary for governance, compliance, accounting, dispute management, audit readiness, legal preservation or business continuity. Retention does not imply public availability, and deletion is subject to legal, operational and evidentiary constraints.

Where accountability structure involves external parties, Brelcote may restrict disclosure to the minimum information required for the legitimate purpose. The company may require written authority, secure channels, verified signatories, updated reference documents and satisfactory counterparty information before proceeding. No public statement on the website should be read as an open consent to disclose, distribute, rely on, reproduce or adapt company information. Any person receiving information from Brelcote must use it only for the authorised purpose and must maintain confidentiality and security appropriate to the character of the material.

The company reserves discretion in the administration of accountability structure. It may revise procedures, escalate matters, require additional approvals, correct records, suspend processing, reject incomplete requests, or preserve material while a question is being assessed. These controls are not procedural decoration; they are part of the company’s governance framework. Brelcote’s preference is for careful administration, stable records and low-noise communication rather than speed without authority, convenience without verification or disclosure without a defined purpose.

For accountability structure, Brelcote applies a controlled and conservative interpretation of data protection governance and operating controls. The company’s public website is intentionally limited, and the operational record is maintained separately from public-facing text. This distinction is important because a static website cannot capture the authority, facts, approvals, conditions, restrictions and timing that may apply to a particular administrative matter. Readers should not treat general language as a complete statement of any private file, transaction, mandate, ownership position, distribution event, instruction or legal relationship. The controlling documents remain the relevant contracts, corporate records, board materials, registers, confirmations, written instructions and applicable law.

3. Data inventory

Where data inventory involves external parties, Brelcote may restrict disclosure to the minimum information required for the legitimate purpose. The company may require written authority, secure channels, verified signatories, updated reference documents and satisfactory counterparty information before proceeding. No public statement on the website should be read as an open consent to disclose, distribute, rely on, reproduce or adapt company information. Any person receiving information from Brelcote must use it only for the authorised purpose and must maintain confidentiality and security appropriate to the character of the material.

The company reserves discretion in the administration of data inventory. It may revise procedures, escalate matters, require additional approvals, correct records, suspend processing, reject incomplete requests, or preserve material while a question is being assessed. These controls are not procedural decoration; they are part of the company’s governance framework. Brelcote’s preference is for careful administration, stable records and low-noise communication rather than speed without authority, convenience without verification or disclosure without a defined purpose.

For data inventory, Brelcote applies a controlled and conservative interpretation of data protection governance and operating controls. The company’s public website is intentionally limited, and the operational record is maintained separately from public-facing text. This distinction is important because a static website cannot capture the authority, facts, approvals, conditions, restrictions and timing that may apply to a particular administrative matter. Readers should not treat general language as a complete statement of any private file, transaction, mandate, ownership position, distribution event, instruction or legal relationship. The controlling documents remain the relevant contracts, corporate records, board materials, registers, confirmations, written instructions and applicable law.

Brelcote expects information connected with data inventory to be handled on a need-to-know basis. The company may verify identity, capacity, authorisation, purpose, source, integrity and legitimacy before recognising any instruction or disclosure request. A communication that appears complete may still be insufficient if the underlying authority is unclear, if the requested action could compromise confidentiality, if the record is inconsistent, or if additional review is required under internal policy. The company is entitled to preserve the integrity of its files and to refuse actions that would weaken the administrative record or create avoidable risk.

4. Purpose control

The company reserves discretion in the administration of purpose control. It may revise procedures, escalate matters, require additional approvals, correct records, suspend processing, reject incomplete requests, or preserve material while a question is being assessed. These controls are not procedural decoration; they are part of the company’s governance framework. Brelcote’s preference is for careful administration, stable records and low-noise communication rather than speed without authority, convenience without verification or disclosure without a defined purpose.

For purpose control, Brelcote applies a controlled and conservative interpretation of data protection governance and operating controls. The company’s public website is intentionally limited, and the operational record is maintained separately from public-facing text. This distinction is important because a static website cannot capture the authority, facts, approvals, conditions, restrictions and timing that may apply to a particular administrative matter. Readers should not treat general language as a complete statement of any private file, transaction, mandate, ownership position, distribution event, instruction or legal relationship. The controlling documents remain the relevant contracts, corporate records, board materials, registers, confirmations, written instructions and applicable law.

Brelcote expects information connected with purpose control to be handled on a need-to-know basis. The company may verify identity, capacity, authorisation, purpose, source, integrity and legitimacy before recognising any instruction or disclosure request. A communication that appears complete may still be insufficient if the underlying authority is unclear, if the requested action could compromise confidentiality, if the record is inconsistent, or if additional review is required under internal policy. The company is entitled to preserve the integrity of its files and to refuse actions that would weaken the administrative record or create avoidable risk.

The operational standard for purpose control is documentation rather than assumption. Dates, names, capacities, approvals, notices, distribution references, account details, register entries and evidence materials should be recorded in a manner capable of later review. Brelcote may retain copies, metadata, correspondence trails, decision notes and control confirmations where necessary for governance, compliance, accounting, dispute management, audit readiness, legal preservation or business continuity. Retention does not imply public availability, and deletion is subject to legal, operational and evidentiary constraints.

5. Consent and notification

For consent and notification, Brelcote applies a controlled and conservative interpretation of data protection governance and operating controls. The company’s public website is intentionally limited, and the operational record is maintained separately from public-facing text. This distinction is important because a static website cannot capture the authority, facts, approvals, conditions, restrictions and timing that may apply to a particular administrative matter. Readers should not treat general language as a complete statement of any private file, transaction, mandate, ownership position, distribution event, instruction or legal relationship. The controlling documents remain the relevant contracts, corporate records, board materials, registers, confirmations, written instructions and applicable law.

Brelcote expects information connected with consent and notification to be handled on a need-to-know basis. The company may verify identity, capacity, authorisation, purpose, source, integrity and legitimacy before recognising any instruction or disclosure request. A communication that appears complete may still be insufficient if the underlying authority is unclear, if the requested action could compromise confidentiality, if the record is inconsistent, or if additional review is required under internal policy. The company is entitled to preserve the integrity of its files and to refuse actions that would weaken the administrative record or create avoidable risk.

The operational standard for consent and notification is documentation rather than assumption. Dates, names, capacities, approvals, notices, distribution references, account details, register entries and evidence materials should be recorded in a manner capable of later review. Brelcote may retain copies, metadata, correspondence trails, decision notes and control confirmations where necessary for governance, compliance, accounting, dispute management, audit readiness, legal preservation or business continuity. Retention does not imply public availability, and deletion is subject to legal, operational and evidentiary constraints.

Where consent and notification involves external parties, Brelcote may restrict disclosure to the minimum information required for the legitimate purpose. The company may require written authority, secure channels, verified signatories, updated reference documents and satisfactory counterparty information before proceeding. No public statement on the website should be read as an open consent to disclose, distribute, rely on, reproduce or adapt company information. Any person receiving information from Brelcote must use it only for the authorised purpose and must maintain confidentiality and security appropriate to the character of the material.

6. Accuracy discipline

Brelcote expects information connected with accuracy discipline to be handled on a need-to-know basis. The company may verify identity, capacity, authorisation, purpose, source, integrity and legitimacy before recognising any instruction or disclosure request. A communication that appears complete may still be insufficient if the underlying authority is unclear, if the requested action could compromise confidentiality, if the record is inconsistent, or if additional review is required under internal policy. The company is entitled to preserve the integrity of its files and to refuse actions that would weaken the administrative record or create avoidable risk.

The operational standard for accuracy discipline is documentation rather than assumption. Dates, names, capacities, approvals, notices, distribution references, account details, register entries and evidence materials should be recorded in a manner capable of later review. Brelcote may retain copies, metadata, correspondence trails, decision notes and control confirmations where necessary for governance, compliance, accounting, dispute management, audit readiness, legal preservation or business continuity. Retention does not imply public availability, and deletion is subject to legal, operational and evidentiary constraints.

Where accuracy discipline involves external parties, Brelcote may restrict disclosure to the minimum information required for the legitimate purpose. The company may require written authority, secure channels, verified signatories, updated reference documents and satisfactory counterparty information before proceeding. No public statement on the website should be read as an open consent to disclose, distribute, rely on, reproduce or adapt company information. Any person receiving information from Brelcote must use it only for the authorised purpose and must maintain confidentiality and security appropriate to the character of the material.

The company reserves discretion in the administration of accuracy discipline. It may revise procedures, escalate matters, require additional approvals, correct records, suspend processing, reject incomplete requests, or preserve material while a question is being assessed. These controls are not procedural decoration; they are part of the company’s governance framework. Brelcote’s preference is for careful administration, stable records and low-noise communication rather than speed without authority, convenience without verification or disclosure without a defined purpose.

7. Access restrictions

The operational standard for access restrictions is documentation rather than assumption. Dates, names, capacities, approvals, notices, distribution references, account details, register entries and evidence materials should be recorded in a manner capable of later review. Brelcote may retain copies, metadata, correspondence trails, decision notes and control confirmations where necessary for governance, compliance, accounting, dispute management, audit readiness, legal preservation or business continuity. Retention does not imply public availability, and deletion is subject to legal, operational and evidentiary constraints.

Where access restrictions involves external parties, Brelcote may restrict disclosure to the minimum information required for the legitimate purpose. The company may require written authority, secure channels, verified signatories, updated reference documents and satisfactory counterparty information before proceeding. No public statement on the website should be read as an open consent to disclose, distribute, rely on, reproduce or adapt company information. Any person receiving information from Brelcote must use it only for the authorised purpose and must maintain confidentiality and security appropriate to the character of the material.

The company reserves discretion in the administration of access restrictions. It may revise procedures, escalate matters, require additional approvals, correct records, suspend processing, reject incomplete requests, or preserve material while a question is being assessed. These controls are not procedural decoration; they are part of the company’s governance framework. Brelcote’s preference is for careful administration, stable records and low-noise communication rather than speed without authority, convenience without verification or disclosure without a defined purpose.

For access restrictions, Brelcote applies a controlled and conservative interpretation of data protection governance and operating controls. The company’s public website is intentionally limited, and the operational record is maintained separately from public-facing text. This distinction is important because a static website cannot capture the authority, facts, approvals, conditions, restrictions and timing that may apply to a particular administrative matter. Readers should not treat general language as a complete statement of any private file, transaction, mandate, ownership position, distribution event, instruction or legal relationship. The controlling documents remain the relevant contracts, corporate records, board materials, registers, confirmations, written instructions and applicable law.

8. Protection measures

Where protection measures involves external parties, Brelcote may restrict disclosure to the minimum information required for the legitimate purpose. The company may require written authority, secure channels, verified signatories, updated reference documents and satisfactory counterparty information before proceeding. No public statement on the website should be read as an open consent to disclose, distribute, rely on, reproduce or adapt company information. Any person receiving information from Brelcote must use it only for the authorised purpose and must maintain confidentiality and security appropriate to the character of the material.

The company reserves discretion in the administration of protection measures. It may revise procedures, escalate matters, require additional approvals, correct records, suspend processing, reject incomplete requests, or preserve material while a question is being assessed. These controls are not procedural decoration; they are part of the company’s governance framework. Brelcote’s preference is for careful administration, stable records and low-noise communication rather than speed without authority, convenience without verification or disclosure without a defined purpose.

For protection measures, Brelcote applies a controlled and conservative interpretation of data protection governance and operating controls. The company’s public website is intentionally limited, and the operational record is maintained separately from public-facing text. This distinction is important because a static website cannot capture the authority, facts, approvals, conditions, restrictions and timing that may apply to a particular administrative matter. Readers should not treat general language as a complete statement of any private file, transaction, mandate, ownership position, distribution event, instruction or legal relationship. The controlling documents remain the relevant contracts, corporate records, board materials, registers, confirmations, written instructions and applicable law.

Brelcote expects information connected with protection measures to be handled on a need-to-know basis. The company may verify identity, capacity, authorisation, purpose, source, integrity and legitimacy before recognising any instruction or disclosure request. A communication that appears complete may still be insufficient if the underlying authority is unclear, if the requested action could compromise confidentiality, if the record is inconsistent, or if additional review is required under internal policy. The company is entitled to preserve the integrity of its files and to refuse actions that would weaken the administrative record or create avoidable risk.

9. Retention schedule

The company reserves discretion in the administration of retention schedule. It may revise procedures, escalate matters, require additional approvals, correct records, suspend processing, reject incomplete requests, or preserve material while a question is being assessed. These controls are not procedural decoration; they are part of the company’s governance framework. Brelcote’s preference is for careful administration, stable records and low-noise communication rather than speed without authority, convenience without verification or disclosure without a defined purpose.

For retention schedule, Brelcote applies a controlled and conservative interpretation of data protection governance and operating controls. The company’s public website is intentionally limited, and the operational record is maintained separately from public-facing text. This distinction is important because a static website cannot capture the authority, facts, approvals, conditions, restrictions and timing that may apply to a particular administrative matter. Readers should not treat general language as a complete statement of any private file, transaction, mandate, ownership position, distribution event, instruction or legal relationship. The controlling documents remain the relevant contracts, corporate records, board materials, registers, confirmations, written instructions and applicable law.

Brelcote expects information connected with retention schedule to be handled on a need-to-know basis. The company may verify identity, capacity, authorisation, purpose, source, integrity and legitimacy before recognising any instruction or disclosure request. A communication that appears complete may still be insufficient if the underlying authority is unclear, if the requested action could compromise confidentiality, if the record is inconsistent, or if additional review is required under internal policy. The company is entitled to preserve the integrity of its files and to refuse actions that would weaken the administrative record or create avoidable risk.

The operational standard for retention schedule is documentation rather than assumption. Dates, names, capacities, approvals, notices, distribution references, account details, register entries and evidence materials should be recorded in a manner capable of later review. Brelcote may retain copies, metadata, correspondence trails, decision notes and control confirmations where necessary for governance, compliance, accounting, dispute management, audit readiness, legal preservation or business continuity. Retention does not imply public availability, and deletion is subject to legal, operational and evidentiary constraints.

10. Disposal standards

For disposal standards, Brelcote applies a controlled and conservative interpretation of data protection governance and operating controls. The company’s public website is intentionally limited, and the operational record is maintained separately from public-facing text. This distinction is important because a static website cannot capture the authority, facts, approvals, conditions, restrictions and timing that may apply to a particular administrative matter. Readers should not treat general language as a complete statement of any private file, transaction, mandate, ownership position, distribution event, instruction or legal relationship. The controlling documents remain the relevant contracts, corporate records, board materials, registers, confirmations, written instructions and applicable law.

Brelcote expects information connected with disposal standards to be handled on a need-to-know basis. The company may verify identity, capacity, authorisation, purpose, source, integrity and legitimacy before recognising any instruction or disclosure request. A communication that appears complete may still be insufficient if the underlying authority is unclear, if the requested action could compromise confidentiality, if the record is inconsistent, or if additional review is required under internal policy. The company is entitled to preserve the integrity of its files and to refuse actions that would weaken the administrative record or create avoidable risk.

The operational standard for disposal standards is documentation rather than assumption. Dates, names, capacities, approvals, notices, distribution references, account details, register entries and evidence materials should be recorded in a manner capable of later review. Brelcote may retain copies, metadata, correspondence trails, decision notes and control confirmations where necessary for governance, compliance, accounting, dispute management, audit readiness, legal preservation or business continuity. Retention does not imply public availability, and deletion is subject to legal, operational and evidentiary constraints.

Where disposal standards involves external parties, Brelcote may restrict disclosure to the minimum information required for the legitimate purpose. The company may require written authority, secure channels, verified signatories, updated reference documents and satisfactory counterparty information before proceeding. No public statement on the website should be read as an open consent to disclose, distribute, rely on, reproduce or adapt company information. Any person receiving information from Brelcote must use it only for the authorised purpose and must maintain confidentiality and security appropriate to the character of the material.

11. Transfer controls

Brelcote expects information connected with transfer controls to be handled on a need-to-know basis. The company may verify identity, capacity, authorisation, purpose, source, integrity and legitimacy before recognising any instruction or disclosure request. A communication that appears complete may still be insufficient if the underlying authority is unclear, if the requested action could compromise confidentiality, if the record is inconsistent, or if additional review is required under internal policy. The company is entitled to preserve the integrity of its files and to refuse actions that would weaken the administrative record or create avoidable risk.

The operational standard for transfer controls is documentation rather than assumption. Dates, names, capacities, approvals, notices, distribution references, account details, register entries and evidence materials should be recorded in a manner capable of later review. Brelcote may retain copies, metadata, correspondence trails, decision notes and control confirmations where necessary for governance, compliance, accounting, dispute management, audit readiness, legal preservation or business continuity. Retention does not imply public availability, and deletion is subject to legal, operational and evidentiary constraints.

Where transfer controls involves external parties, Brelcote may restrict disclosure to the minimum information required for the legitimate purpose. The company may require written authority, secure channels, verified signatories, updated reference documents and satisfactory counterparty information before proceeding. No public statement on the website should be read as an open consent to disclose, distribute, rely on, reproduce or adapt company information. Any person receiving information from Brelcote must use it only for the authorised purpose and must maintain confidentiality and security appropriate to the character of the material.

The company reserves discretion in the administration of transfer controls. It may revise procedures, escalate matters, require additional approvals, correct records, suspend processing, reject incomplete requests, or preserve material while a question is being assessed. These controls are not procedural decoration; they are part of the company’s governance framework. Brelcote’s preference is for careful administration, stable records and low-noise communication rather than speed without authority, convenience without verification or disclosure without a defined purpose.

12. Processor management

The operational standard for processor management is documentation rather than assumption. Dates, names, capacities, approvals, notices, distribution references, account details, register entries and evidence materials should be recorded in a manner capable of later review. Brelcote may retain copies, metadata, correspondence trails, decision notes and control confirmations where necessary for governance, compliance, accounting, dispute management, audit readiness, legal preservation or business continuity. Retention does not imply public availability, and deletion is subject to legal, operational and evidentiary constraints.

Where processor management involves external parties, Brelcote may restrict disclosure to the minimum information required for the legitimate purpose. The company may require written authority, secure channels, verified signatories, updated reference documents and satisfactory counterparty information before proceeding. No public statement on the website should be read as an open consent to disclose, distribute, rely on, reproduce or adapt company information. Any person receiving information from Brelcote must use it only for the authorised purpose and must maintain confidentiality and security appropriate to the character of the material.

The company reserves discretion in the administration of processor management. It may revise procedures, escalate matters, require additional approvals, correct records, suspend processing, reject incomplete requests, or preserve material while a question is being assessed. These controls are not procedural decoration; they are part of the company’s governance framework. Brelcote’s preference is for careful administration, stable records and low-noise communication rather than speed without authority, convenience without verification or disclosure without a defined purpose.

For processor management, Brelcote applies a controlled and conservative interpretation of data protection governance and operating controls. The company’s public website is intentionally limited, and the operational record is maintained separately from public-facing text. This distinction is important because a static website cannot capture the authority, facts, approvals, conditions, restrictions and timing that may apply to a particular administrative matter. Readers should not treat general language as a complete statement of any private file, transaction, mandate, ownership position, distribution event, instruction or legal relationship. The controlling documents remain the relevant contracts, corporate records, board materials, registers, confirmations, written instructions and applicable law.

13. Incident assessment

Where incident assessment involves external parties, Brelcote may restrict disclosure to the minimum information required for the legitimate purpose. The company may require written authority, secure channels, verified signatories, updated reference documents and satisfactory counterparty information before proceeding. No public statement on the website should be read as an open consent to disclose, distribute, rely on, reproduce or adapt company information. Any person receiving information from Brelcote must use it only for the authorised purpose and must maintain confidentiality and security appropriate to the character of the material.

The company reserves discretion in the administration of incident assessment. It may revise procedures, escalate matters, require additional approvals, correct records, suspend processing, reject incomplete requests, or preserve material while a question is being assessed. These controls are not procedural decoration; they are part of the company’s governance framework. Brelcote’s preference is for careful administration, stable records and low-noise communication rather than speed without authority, convenience without verification or disclosure without a defined purpose.

For incident assessment, Brelcote applies a controlled and conservative interpretation of data protection governance and operating controls. The company’s public website is intentionally limited, and the operational record is maintained separately from public-facing text. This distinction is important because a static website cannot capture the authority, facts, approvals, conditions, restrictions and timing that may apply to a particular administrative matter. Readers should not treat general language as a complete statement of any private file, transaction, mandate, ownership position, distribution event, instruction or legal relationship. The controlling documents remain the relevant contracts, corporate records, board materials, registers, confirmations, written instructions and applicable law.

Brelcote expects information connected with incident assessment to be handled on a need-to-know basis. The company may verify identity, capacity, authorisation, purpose, source, integrity and legitimacy before recognising any instruction or disclosure request. A communication that appears complete may still be insufficient if the underlying authority is unclear, if the requested action could compromise confidentiality, if the record is inconsistent, or if additional review is required under internal policy. The company is entitled to preserve the integrity of its files and to refuse actions that would weaken the administrative record or create avoidable risk.

14. Notification logic

The company reserves discretion in the administration of notification logic. It may revise procedures, escalate matters, require additional approvals, correct records, suspend processing, reject incomplete requests, or preserve material while a question is being assessed. These controls are not procedural decoration; they are part of the company’s governance framework. Brelcote’s preference is for careful administration, stable records and low-noise communication rather than speed without authority, convenience without verification or disclosure without a defined purpose.

For notification logic, Brelcote applies a controlled and conservative interpretation of data protection governance and operating controls. The company’s public website is intentionally limited, and the operational record is maintained separately from public-facing text. This distinction is important because a static website cannot capture the authority, facts, approvals, conditions, restrictions and timing that may apply to a particular administrative matter. Readers should not treat general language as a complete statement of any private file, transaction, mandate, ownership position, distribution event, instruction or legal relationship. The controlling documents remain the relevant contracts, corporate records, board materials, registers, confirmations, written instructions and applicable law.

Brelcote expects information connected with notification logic to be handled on a need-to-know basis. The company may verify identity, capacity, authorisation, purpose, source, integrity and legitimacy before recognising any instruction or disclosure request. A communication that appears complete may still be insufficient if the underlying authority is unclear, if the requested action could compromise confidentiality, if the record is inconsistent, or if additional review is required under internal policy. The company is entitled to preserve the integrity of its files and to refuse actions that would weaken the administrative record or create avoidable risk.

The operational standard for notification logic is documentation rather than assumption. Dates, names, capacities, approvals, notices, distribution references, account details, register entries and evidence materials should be recorded in a manner capable of later review. Brelcote may retain copies, metadata, correspondence trails, decision notes and control confirmations where necessary for governance, compliance, accounting, dispute management, audit readiness, legal preservation or business continuity. Retention does not imply public availability, and deletion is subject to legal, operational and evidentiary constraints.

15. Training and awareness

For training and awareness, Brelcote applies a controlled and conservative interpretation of data protection governance and operating controls. The company’s public website is intentionally limited, and the operational record is maintained separately from public-facing text. This distinction is important because a static website cannot capture the authority, facts, approvals, conditions, restrictions and timing that may apply to a particular administrative matter. Readers should not treat general language as a complete statement of any private file, transaction, mandate, ownership position, distribution event, instruction or legal relationship. The controlling documents remain the relevant contracts, corporate records, board materials, registers, confirmations, written instructions and applicable law.

Brelcote expects information connected with training and awareness to be handled on a need-to-know basis. The company may verify identity, capacity, authorisation, purpose, source, integrity and legitimacy before recognising any instruction or disclosure request. A communication that appears complete may still be insufficient if the underlying authority is unclear, if the requested action could compromise confidentiality, if the record is inconsistent, or if additional review is required under internal policy. The company is entitled to preserve the integrity of its files and to refuse actions that would weaken the administrative record or create avoidable risk.

The operational standard for training and awareness is documentation rather than assumption. Dates, names, capacities, approvals, notices, distribution references, account details, register entries and evidence materials should be recorded in a manner capable of later review. Brelcote may retain copies, metadata, correspondence trails, decision notes and control confirmations where necessary for governance, compliance, accounting, dispute management, audit readiness, legal preservation or business continuity. Retention does not imply public availability, and deletion is subject to legal, operational and evidentiary constraints.

Where training and awareness involves external parties, Brelcote may restrict disclosure to the minimum information required for the legitimate purpose. The company may require written authority, secure channels, verified signatories, updated reference documents and satisfactory counterparty information before proceeding. No public statement on the website should be read as an open consent to disclose, distribute, rely on, reproduce or adapt company information. Any person receiving information from Brelcote must use it only for the authorised purpose and must maintain confidentiality and security appropriate to the character of the material.

16. Audit evidence

Brelcote expects information connected with audit evidence to be handled on a need-to-know basis. The company may verify identity, capacity, authorisation, purpose, source, integrity and legitimacy before recognising any instruction or disclosure request. A communication that appears complete may still be insufficient if the underlying authority is unclear, if the requested action could compromise confidentiality, if the record is inconsistent, or if additional review is required under internal policy. The company is entitled to preserve the integrity of its files and to refuse actions that would weaken the administrative record or create avoidable risk.

The operational standard for audit evidence is documentation rather than assumption. Dates, names, capacities, approvals, notices, distribution references, account details, register entries and evidence materials should be recorded in a manner capable of later review. Brelcote may retain copies, metadata, correspondence trails, decision notes and control confirmations where necessary for governance, compliance, accounting, dispute management, audit readiness, legal preservation or business continuity. Retention does not imply public availability, and deletion is subject to legal, operational and evidentiary constraints.

Where audit evidence involves external parties, Brelcote may restrict disclosure to the minimum information required for the legitimate purpose. The company may require written authority, secure channels, verified signatories, updated reference documents and satisfactory counterparty information before proceeding. No public statement on the website should be read as an open consent to disclose, distribute, rely on, reproduce or adapt company information. Any person receiving information from Brelcote must use it only for the authorised purpose and must maintain confidentiality and security appropriate to the character of the material.

The company reserves discretion in the administration of audit evidence. It may revise procedures, escalate matters, require additional approvals, correct records, suspend processing, reject incomplete requests, or preserve material while a question is being assessed. These controls are not procedural decoration; they are part of the company’s governance framework. Brelcote’s preference is for careful administration, stable records and low-noise communication rather than speed without authority, convenience without verification or disclosure without a defined purpose.

17. Individual requests

The operational standard for individual requests is documentation rather than assumption. Dates, names, capacities, approvals, notices, distribution references, account details, register entries and evidence materials should be recorded in a manner capable of later review. Brelcote may retain copies, metadata, correspondence trails, decision notes and control confirmations where necessary for governance, compliance, accounting, dispute management, audit readiness, legal preservation or business continuity. Retention does not imply public availability, and deletion is subject to legal, operational and evidentiary constraints.

Where individual requests involves external parties, Brelcote may restrict disclosure to the minimum information required for the legitimate purpose. The company may require written authority, secure channels, verified signatories, updated reference documents and satisfactory counterparty information before proceeding. No public statement on the website should be read as an open consent to disclose, distribute, rely on, reproduce or adapt company information. Any person receiving information from Brelcote must use it only for the authorised purpose and must maintain confidentiality and security appropriate to the character of the material.

The company reserves discretion in the administration of individual requests. It may revise procedures, escalate matters, require additional approvals, correct records, suspend processing, reject incomplete requests, or preserve material while a question is being assessed. These controls are not procedural decoration; they are part of the company’s governance framework. Brelcote’s preference is for careful administration, stable records and low-noise communication rather than speed without authority, convenience without verification or disclosure without a defined purpose.

For individual requests, Brelcote applies a controlled and conservative interpretation of data protection governance and operating controls. The company’s public website is intentionally limited, and the operational record is maintained separately from public-facing text. This distinction is important because a static website cannot capture the authority, facts, approvals, conditions, restrictions and timing that may apply to a particular administrative matter. Readers should not treat general language as a complete statement of any private file, transaction, mandate, ownership position, distribution event, instruction or legal relationship. The controlling documents remain the relevant contracts, corporate records, board materials, registers, confirmations, written instructions and applicable law.

18. Documentation

Where documentation involves external parties, Brelcote may restrict disclosure to the minimum information required for the legitimate purpose. The company may require written authority, secure channels, verified signatories, updated reference documents and satisfactory counterparty information before proceeding. No public statement on the website should be read as an open consent to disclose, distribute, rely on, reproduce or adapt company information. Any person receiving information from Brelcote must use it only for the authorised purpose and must maintain confidentiality and security appropriate to the character of the material.

The company reserves discretion in the administration of documentation. It may revise procedures, escalate matters, require additional approvals, correct records, suspend processing, reject incomplete requests, or preserve material while a question is being assessed. These controls are not procedural decoration; they are part of the company’s governance framework. Brelcote’s preference is for careful administration, stable records and low-noise communication rather than speed without authority, convenience without verification or disclosure without a defined purpose.

For documentation, Brelcote applies a controlled and conservative interpretation of data protection governance and operating controls. The company’s public website is intentionally limited, and the operational record is maintained separately from public-facing text. This distinction is important because a static website cannot capture the authority, facts, approvals, conditions, restrictions and timing that may apply to a particular administrative matter. Readers should not treat general language as a complete statement of any private file, transaction, mandate, ownership position, distribution event, instruction or legal relationship. The controlling documents remain the relevant contracts, corporate records, board materials, registers, confirmations, written instructions and applicable law.

Brelcote expects information connected with documentation to be handled on a need-to-know basis. The company may verify identity, capacity, authorisation, purpose, source, integrity and legitimacy before recognising any instruction or disclosure request. A communication that appears complete may still be insufficient if the underlying authority is unclear, if the requested action could compromise confidentiality, if the record is inconsistent, or if additional review is required under internal policy. The company is entitled to preserve the integrity of its files and to refuse actions that would weaken the administrative record or create avoidable risk.

19. Review cycle

The company reserves discretion in the administration of review cycle. It may revise procedures, escalate matters, require additional approvals, correct records, suspend processing, reject incomplete requests, or preserve material while a question is being assessed. These controls are not procedural decoration; they are part of the company’s governance framework. Brelcote’s preference is for careful administration, stable records and low-noise communication rather than speed without authority, convenience without verification or disclosure without a defined purpose.

For review cycle, Brelcote applies a controlled and conservative interpretation of data protection governance and operating controls. The company’s public website is intentionally limited, and the operational record is maintained separately from public-facing text. This distinction is important because a static website cannot capture the authority, facts, approvals, conditions, restrictions and timing that may apply to a particular administrative matter. Readers should not treat general language as a complete statement of any private file, transaction, mandate, ownership position, distribution event, instruction or legal relationship. The controlling documents remain the relevant contracts, corporate records, board materials, registers, confirmations, written instructions and applicable law.

Brelcote expects information connected with review cycle to be handled on a need-to-know basis. The company may verify identity, capacity, authorisation, purpose, source, integrity and legitimacy before recognising any instruction or disclosure request. A communication that appears complete may still be insufficient if the underlying authority is unclear, if the requested action could compromise confidentiality, if the record is inconsistent, or if additional review is required under internal policy. The company is entitled to preserve the integrity of its files and to refuse actions that would weaken the administrative record or create avoidable risk.

The operational standard for review cycle is documentation rather than assumption. Dates, names, capacities, approvals, notices, distribution references, account details, register entries and evidence materials should be recorded in a manner capable of later review. Brelcote may retain copies, metadata, correspondence trails, decision notes and control confirmations where necessary for governance, compliance, accounting, dispute management, audit readiness, legal preservation or business continuity. Retention does not imply public availability, and deletion is subject to legal, operational and evidentiary constraints.

20. Contact point

For contact point, Brelcote applies a controlled and conservative interpretation of data protection governance and operating controls. The company’s public website is intentionally limited, and the operational record is maintained separately from public-facing text. This distinction is important because a static website cannot capture the authority, facts, approvals, conditions, restrictions and timing that may apply to a particular administrative matter. Readers should not treat general language as a complete statement of any private file, transaction, mandate, ownership position, distribution event, instruction or legal relationship. The controlling documents remain the relevant contracts, corporate records, board materials, registers, confirmations, written instructions and applicable law.

Brelcote expects information connected with contact point to be handled on a need-to-know basis. The company may verify identity, capacity, authorisation, purpose, source, integrity and legitimacy before recognising any instruction or disclosure request. A communication that appears complete may still be insufficient if the underlying authority is unclear, if the requested action could compromise confidentiality, if the record is inconsistent, or if additional review is required under internal policy. The company is entitled to preserve the integrity of its files and to refuse actions that would weaken the administrative record or create avoidable risk.

The operational standard for contact point is documentation rather than assumption. Dates, names, capacities, approvals, notices, distribution references, account details, register entries and evidence materials should be recorded in a manner capable of later review. Brelcote may retain copies, metadata, correspondence trails, decision notes and control confirmations where necessary for governance, compliance, accounting, dispute management, audit readiness, legal preservation or business continuity. Retention does not imply public availability, and deletion is subject to legal, operational and evidentiary constraints.

Where contact point involves external parties, Brelcote may restrict disclosure to the minimum information required for the legitimate purpose. The company may require written authority, secure channels, verified signatories, updated reference documents and satisfactory counterparty information before proceeding. No public statement on the website should be read as an open consent to disclose, distribute, rely on, reproduce or adapt company information. Any person receiving information from Brelcote must use it only for the authorised purpose and must maintain confidentiality and security appropriate to the character of the material.

Questions about this document may be directed to [email protected]. The email address is provided as a correspondence point only and does not create any obligation to respond to unsolicited approaches, proposals, marketing messages, unsupported instructions or requests made without authority.

Brelcote may update this document to reflect changes in law, regulation, website operation, internal governance, risk appetite or administrative practice. The current version is the version made available on the website at the time of access, unless a separate written agreement expressly states otherwise.

To the maximum extent permitted by applicable law, Brelcote reserves all rights, remedies, privileges and defences available to it, whether arising under statute, contract, equity, tort, confidentiality, data protection, intellectual property, common law or any other applicable legal basis.