At MELLERSH & HARDING LLP, we are committed to maintaining the trust and confidence of our clients and visitors to our website. In particular, we want you to know that MELLERSH & HARDING is not in the business of selling, renting or trading email lists with other companies and businesses for marketing purposes. We just don’t do that sort of thing. In this Privacy Policy we’ve provided information on when and why we collect your personal information, how we use it, the limited conditions under which we may disclose it to others and how we keep it secure.


Any questions regarding this policy and our privacy practices should be sent to Alternatively, give us a call on 0207 522 8500.




We are MELLERSH & HARDING LLP, a leading independent commercial property consultancy providing bespoke advice to clients in acquiring and disposing of commercial property and providing professional, valuation and management services throughout the UK.  At Mellersh & Harding we are committed to maintaining the trust and confidence of our clients and visitors to our website.  Mellersh & Harding never sell, rent or trade email lists with other companies and businesses for marketing purposes.




The personal information we collect from you might include your name, email address, address, telephone numbers, social media handle, your job title or job description, website browsing behaviour and property preferences.




The MELLERSH & HARDING website ( uses cookies. Cookies are small data files on your computer or handheld device. The use of cookies is standard practice for all websites and allows our website to recognise you when you visit. The cookies are essential for helping us deliver a high quality website. Some cookies collect statistical information about your browsing behaviour. You can switch off cookies by setting your browser preferences – but this may result in a loss of functionality when using our website.


Google Analytics


When someone visits we use a third party service, Google Analytics to collect standard internet log information and details of visitor behaviour patterns. We do this to find out such things as the number of visitors to the various parts of our website. This information is only processed in a way that does not identify anyone.


Mailing lists


When we electronically send marketing material or a newsletter we will often use a third-party provider, MailChimp, to deliver the email. We gather statistics around email opening and clicks using industry standard technologies to help us monitor and improve our newsletter. MailChimp is fully GDPR compliant and for more information please review MailChimp’s privacy notice read here. You can unsubscribe to any of our general mailings by clicking the unsubscribe link at the bottom of the emails.




Third Parties


We will not sell or rent your information to third parties.


We will not share your information with third parties for marketing purposes.


We may pass your information to our third party service providers, agents, subcontractors and other associated organisations for the purposes of completing tasks and providing services to you on our behalf (for example, to send sales or letting brochures via email or post). However, when we use third party service providers, we disclose only the personal information that is necessary to deliver the service and we have a contract in place that requires them to keep your information secure and not to use it for their own direct marketing purposes. We would only release your information to a third party outside of this if required to do so legally, for example, to comply with a legal obligation or to enforce or apply our terms of use or to protect the rights, property or safety of our clients. However, we will take steps with the aim of ensuring that your privacy rights continue to be protected.


Anti money laundering


In order to comply with the requirements of the Anti-Money Laundering regulations in force, we will be required to obtain evidence to verify your identity. The required evidence may include sight of passport or other identification documents. We will retain this information for the duration of any negotiation and for 7 years post completion of the transaction.




We may use your information to:


  • Send you information regarding property lettings and sales
  • Provide property market research and thought leadership emails
  • Provide information about MELLERSH & HARDING LLP, our latest deals and information about the team.



The accuracy of your information is important to us. You are entitled to view, amend or delete the personal information that we hold. If you change email address, or any of the other information we hold is inaccurate or out of date, please email your request to or write to us at MELLERSH & HARDING LLP, 68 Pall Mall, London SW1Y 5ES. Alternatively, you can call us on 0207 522 8500.You have the right to ask for the information that we hold about you. Please use the contact details above to do so.




As part of the services offered to you through our website, the information which you provide to us may be transferred to countries outside the European Union. By way of example, this may happen if any of our servers are from time to time located in a country outside of the EU. These countries may not have similar data protection laws to the UK. By submitting your personal data, you’re agreeing to this transfer, storing or processing. If we transfer your information outside of the EU in this way, we will take steps to ensure that appropriate security measures are taken with the aim of ensuring that your privacy rights continue to be protected, as outlined in this policy.


If you use our services while you are outside the EU, your information may be transferred outside the EU in order to provide you with those services.




We keep this Policy under regular review. This Policy was last updated in September 2022.




Mellersh & Harding LLP




Important information about Data Protection.


This Policy applies to personal data collected by CCTV and or Electronic Access Control Systems (EACS) at sites managed by MELLERSH & HARDING LLP


This information forms part of our privacy policy available at



Closed Circuit Television (CCTV) & Electronic Access Control Systems are in operation at some of the sites managed by Mellersh & Harding LLP


Where these systems can process Data which by itself or with other Data available to us can be used to identify you, this is known as Personal Data.


This data protection policy sets out how we use that personal data, you can contact us at  if you have any questions Including site specific details of whether or not a particular site you are or are about to visit has a CCTV and or Electronic Access Control System installed, which does or could process your personal data and where and if data processors are operating for and on behalf of us at that site.


We take the security of your personal data very seriously and take a stringent approach to data protection including its secure storage and taking the appropriate technical, physical, and organisational steps to protect it. We regularly evaluate whether it is necessary and proportionate to use CCTV systems at each of the sites for which we are responsible as Data Controllers. Each site that uses CCTV has had a privacy impact assessment conducted and annual audits are undertaken to ensure that correct legal procedures are followed.


We also conduct regular Lawful Purpose Assessments (LPA) and document them.


Prior to disclosing any CCTV footage, we seek the advice of a specialist data protection advisory service to protect your personal data from inappropriate or wrongful disclosure.


Your data will not be processed or stored outside of the European Economic Area (EEA)


The types of personal data we collect and use


CCTV, ANPR and Body Worn Cameras, the lawful basis for processing personal data using those systems is:


For the legitimate interest of the Data Controller or that of other persons or organisations.









We will use the data obtained from CCTV images for the purposes set out below


For the purposes of,

  • Good property management,
  • Maintaining the security of the premises and the prevention and investigation of crime.
  • To monitor goods and services.
  • For health and safety.  
  • For Protecting the rights, property and for the personal safety of the occupiers of the buildings, including the staff and the tenants, visitors to the buildings including, the tenant’s staff, visitors to the building or premises including members of the public and those of Mellersh & Harding LLP.
  • When you exercise your rights under data protection law and make requests
  • Based on your consent. When you request us to disclose your personal data to other people or organisations such as a

        company handling a claim on your behalf, or otherwise agreed to disclosures:

  • For the security and wellbeing of equipment and vehicles




CCTV recorded images


Recorded images will be kept for a limited period only usually a maximum of 30 days and are then erased.


The exception being where images are required for evidential purposes or another legally valid reason including responses to your legal rights (subject rights).


The Data will be collected directly during any visits you make to the site in question.


Electronic Access Control System the Lawful Basis for Processing Personal Data via the use of an Electronic Access Control System is:

For the legitimate interest of the data controller or that of other persons or organisations.


We will use your data for the purposes set out below

The data will be collected directly and may include a combination of the following Personal Data dependant on the system itself and its objectives.

Your name

Your photographic image

The company you work for

Your position within that company

Your vehicle registration number

Your address and contact details


The Access Control System may record the days / times that you enter and leave the premises.

This information will not be given to any third parties including your employer without first obtaining your permission and will not be used to make any automated decisions concerning your employment.


Prior to any of your data being entered or processed by or into an access control system you will be advised of the exact content of the required data and the purposes for which your data will be used.


You will have the right to question why the data is required and to object to anything that you do not want to be processed.


Where you give your consent to your personal data being processed you will have the right to withdraw that consent at any time.




Retention Periods


Your data will only be kept within the access control system for the duration of time during which you asked to use the system to gain entry and to leave the premises where it is installed.

Following which your Data will be deleted from the system, for example when and if you are no longer employed in the building or are not intending to re-visit the building again.


We will process your personal data:


  As necessary to comply with a legal obligation, e.g.:

•When you exercise your rights under data protection law and make requests:

•For compliance with legal and regulatory requirements and related disclosures:

•For establishment and defence of legal rights:

•For activities relating to the prevention, detection, and investigation of crime:

•To verify your identity.

•For the security of the premises

•For Health and Safety

•For the safety and security of tenants, their employees, and members of the public

•For Good property/estate management



Sharing of my personal data


 Subject to applicable data protection law we may share your personal data with:

•Companies and other persons providing services to us:

•Courts and Law enforcement agencies to comply with legal requirements, and for the administration of justice:

•In an emergency or to otherwise protect our vital interests:

•To protect the security or integrity of our business operations and those of our tenants

•The tenants of the premises  

•For Health and Safety



Automated decision making and processing


•Your data will not be used to make any automated decisions which may or could significantly affect you



Your rights under applicable data protection law


Your rights are as follows:

•The right to be informed about the processing of your personal data:

•The right to have your personal data corrected if it’s inaccurate and to have incomplete personal data completed.

•The right to object to processing of your personal data:

•The right to have your personal data erased (the “right to be forgotten”)

•The right to request access to your personal data and information about how we process it (Subject Access requests)

•The right to move, copy, or transfer your personal data (data portability) and

•Rights in relation to automated decision-making including profiling


If you have any further questions, suggestions or requests not covered by this privacy policy please contact us or our specialist UK GDPR and data protection advisors Datpro Limited, Errwood House, 212 Moss Lane, Bramhall, Cheshire, SK7 1BD














You also have the right to complain to the Information Commissioner’s office. It has enforcement powers and can investigate compliance with data protection law:


The contact details are as follows





Scotland Information Commissioners Office 45 Melville Street, Edinburgh EH3 7HL Telephone 0131 244 9001 Email: Scotland
England The information Commissioners Office Wycliffe House, Water Lane, Wilmslow SK9 5AF Telephone 0303 123 1113 Email:

Northern Ireland Information Commissioners Office 3rd floor, 14 Cromac Place, Belfast BT7 2JB Telephone 02890278757 Email:
Wales Information Commissioners Office 2nd Floor, Churchill House, Churchill Way, Cardiff, CF10 2HH Telephone 0292678400 Email:

D2 Interactive