Privacy Policy

1.1 Information You Provide to Us

We collect information that you voluntarily provide when you:

• Fill out contact forms or request consultations
• Complete our AI Readiness Assessment
• Subscribe to our newsletter or resources
• Communicate with us via email, phone, or chat
• Engage our consulting services

This information may include: your name, email address, phone number, job title, company name, and any other details you choose to provide.

1.2 Information Automatically Collected

When you visit our website, we automatically collect certain technical information:

• IP address and location data
• Browser type and version
• Device information and operating system
• Pages visited and time spent on our site
• Referring website or source

We use your personal information for the following purposes:

Under GDPR, we process your personal data based on the following legal grounds:

• Consent: You have given clear consent for us to process your personal data for specific purposes (e.g., newsletter subscriptions).
• Contract Performance: Processing is necessary to fulfill our contractual obligations when providing consulting services.
• Legitimate Interests: Processing is necessary for our legitimate business interests, such as improving our services and communicating with potential clients.
• Legal Obligation: Processing is required to comply with legal or regulatory requirements.

We do not sell your personal information. We may share your data with:

We use cookies and similar tracking technologies to enhance your experience on our website:

You can control cookies through your browser settings. Note that disabling cookies may affect website functionality.

We implement appropriate technical and organizational measures to protect your personal data:

• SSL/TLS encryption for data transmission
• Secure hosting infrastructure with regular security audits
• Access controls and authentication protocols
• Regular data backups and disaster recovery procedures
• Staff training on data protection best practices

While we take reasonable precautions, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security of your data.

We retain your personal data only as long as necessary for the purposes outlined in this policy:

• Client data: Duration of engagement plus 7 years for tax and legal purposes
• Marketing data: Until you withdraw consent or request deletion
• Analytics data: Typically 24-36 months
• Inquiry data: 24 months from last contact

Under UK GDPR, you have the following rights regarding your personal data:

To exercise any of these rights, please contact us using the details provided at the end of this policy. We will respond within one month.

Your data may be transferred to and processed in countries outside the UK/EEA, including:

• Cloud hosting providers (with EU-standard contractual clauses)
• Analytics services (subject to data processing agreements)

We ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission, to protect your data during international transfers.

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have inadvertently collected data from a child, please contact us immediately, and we will delete it.

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of material changes by posting the updated policy on our website with a new "Last Updated" date. Your continued use of our services after changes are posted constitutes acceptance of the updated policy.

If you have questions about this Privacy Policy, wish to exercise your GDPR rights, or have concerns about how we handle your data, please contact us: