Blame Frank Catering Co. logo
Catering · Leighton Buzzard · 60 miles in every direction
Enquire
Est. 2015 Award-winning event catering Issue No. 01 · Spring 2026

Home  /  Privacy policy

Legal

Privacy policy

Last updated 31 July 2025. This policy explains what personal data Blame Frank collects, how and why we use it, who we share it with, and the rights you have over your information.

Who we are

Blame Frank is a trading name of 4SHR Ltd, a company registered in England and Wales under company number 09524711. We are an event catering company and we are the data controller for this website and the personal data described here.

Our business address is Unit 7, Firbank Court, Leighton Buzzard, Bedfordshire, LU7 4YJ. If you have any question about this notice or your data, contact our Data Protection Officer, Thomas Houghton, at [email protected].

What personal data we collect

We collect and process the following types of personal data, depending on how you interact with us:

  • Name, email address and phone number, for bookings, event planning and enquiries.
  • Event details, guest lists and dietary or allergy information, for event management.
  • Postal address, for contracts, invoices or event deliveries.
  • Payment information, for deposits, refunds or invoices, processed by bank transfer or secure payment platforms.
  • Marketing preferences and communications, if you subscribe to our emails or newsletters.
  • Employment data, for staff, freelancers and job applicants.
  • Photos and event images, if supplied for marketing, social media or website use, with consent.
  • Any other information you choose to provide through web forms, email, phone or in person.

We may also collect technical data from visitors to our website, such as IP address and cookies, for analytics and security.

How and why we use your data

We use your personal data to process bookings and enquiries, plan and deliver your event including any dietary or accessibility needs, and communicate with you about your event, feedback or future services. We also use it to manage payments, deposits and refunds, to meet legal or regulatory obligations such as tax and employment law, to send marketing if you have opted in, and to improve our website and services through analytics.

We only process your data where we have a lawful basis. This is usually contractual necessity to fulfil your booking, your consent for marketing or for things such as photos and special dietary needs, a legal obligation such as payroll or tax records, or our legitimate interests in managing the business, serving customers and keeping the site secure.

Who we share your data with

We may share your data with our event staff, chefs and contractors, limited to what they need to deliver your event. We also share data with third-party service providers that help us run the business, such as those used for secure document, payment and communication management, and with professional advisers such as accountants, legal and HR.

We may disclose data to law enforcement or regulators where required by law. We never sell your data, and we do not use it for any other purpose without your consent.

International transfers

Some of our service providers may transfer your data outside the UK or EEA. Where they do, we make sure the transfer is protected by appropriate legal safeguards, such as Standard Contractual Clauses or an adequacy decision.

How we keep your data safe

We take data security seriously. We use password protection and two-factor authentication, secure cloud storage with access restricted to authorised staff, and encryption for communications and sensitive data. We also provide regular staff training and securely dispose of paper records. For more detail on our security measures, contact [email protected].

How long we keep your data

We only keep your personal data for as long as we need it. Booking and event information is held for six years after your event, and payment and invoice records for six years, to meet tax and regulatory duties. CVs and job applications are held for six months unless you are hired, and marketing data is kept until you unsubscribe or ask us to delete it. When data is no longer needed, it is securely deleted or anonymised.

Your rights

Under UK GDPR you have rights over your personal data. You can request a copy of your data, ask us to correct it, or ask us to delete it where we have no ongoing legal basis to keep it. You can also ask us to restrict how we use it, object to processing in certain cases such as direct marketing, and request your data in a portable format.

To exercise any of these rights, email [email protected] and we will respond within one month.

How to complain

If you have a concern about how we use your personal data, please contact us first at [email protected] and we will do our best to resolve it. You can also contact the Information Commissioner’s Office at ico.org.uk/concerns.

Updates to this policy

We may update this notice from time to time, and the date above shows when it last changed. The latest version will always be available on this website. You can also read our terms and conditions.

Questions

Questions about your data?

Email us and a person who can help will reply.

Contact us

What we do

Weddings
Wedding breakfastEvening foodTastings
Corporate events
Office parties
Private events
Birthday cateringCelebration of lifeChristeningsAnniversary parties

Browse

MenusVenuesAreas we cover

About

Our storyReviewsSustainability

Practical

FAQContact

[email protected]

0208 1910789

Privacy·Terms