Privacy Policy
Company: Crownpath Consulting Ltd
Address: 46 Warwick Road, Beaconsfield, HP9 2PE, United Kingdom
Email:
[email protected]
1. Introduction
At Crownpath Consulting, your privacy
is a top priority. This Privacy Policy outlines how we collect, use, disclose, and safeguard your personal
data when you interact with our website, request our services, or communicate with us. We are committed to
protecting your personal information in accordance with the UK General Data Protection Regulation (UK
GDPR) and applicable international laws.
2. What Information We Collect
We may
collect and process the following categories of personal data:
Identity Data: Full name, job
title, company name.
Contact Data: Email address, phone number, business address.
Technical Data: IP address, browser type, device information, cookies, and usage patterns.
Communication Data: Information provided in forms, emails, phone calls, or consultations.
Marketing Preferences: Subscription details, opt-in preferences, response to promotional
campaigns.
We do not intentionally collect sensitive personal data (e.g., health data,
racial/ethnic origin, political opinions) unless explicitly required and consented to in a professional
context.
3. How We Use Your Data
We use your personal data only where there is a
lawful basis to do so. This may include:
To respond to enquiries or consultation requests.
To deliver our strategic advisory services.
To manage client relationships and
maintain internal records.
To improve our website, services, and client experience.
To send marketing communications (only with your consent).
To comply with legal
and regulatory obligations.
4. Legal Basis for Processing
Under data protection
law, we rely on the following lawful bases:
Consent: Where you have given clear permission for
us to process your data.
Contract: When processing is necessary to fulfill a contract or
pre-contractual request.
Legal Obligation: When required to comply with the law.
Legitimate Interests: For business interests not overridden by your data protection rights
(e.g., service improvement, fraud prevention).
5. How We Share Your Data
We do not
sell your data to third parties. However, we may share information with:
Trusted service
providers (e.g., cloud storage, CRM systems, email platforms).
Legal, accounting, or
regulatory authorities when legally required.
Subcontracted consultants or advisors, bound by
confidentiality agreements.
All third-party partners are required to comply with strict data
protection obligations.
6. International Transfers
Some of our service providers
may operate outside the United Kingdom or European Economic Area (EEA). In such cases, we ensure
appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) or equivalent measures.
7. Data Retention
We retain personal data only for as long as necessary:
To fulfil the purpose for which it was collected.
To meet legal, contractual, or
regulatory obligations.
To establish, exercise, or defend legal claims.
Typically,
this means data is retained for up to 7 years following the end of a client engagement, unless otherwise
required.
8. Your Rights
You have the following rights under UK GDPR:
Right to access your personal data.
Right to rectification if data is inaccurate
or incomplete.
Right to erasure ("right to be forgotten").
Right to restrict
processing in certain circumstances.
Right to data portability.
Right to object to
processing for marketing or based on legitimate interest.
Right to withdraw consent at any
time (where processing is based on consent).
Right to lodge a complaint with the Information
Commissioner’s Office (ICO).
To exercise any of these rights, contact us at:
[email protected]
9. Cookies and Analytics
We use cookies and
third-party analytics tools (e.g., Google Analytics) to monitor traffic and optimise website performance.
These tools may collect anonymised data such as your IP address, browser type, and usage patterns.
You may manage your cookie preferences directly in your browser settings.
10. Data
Security
We implement a range of organisational and technical measures to protect your data,
including:
Secure data encryption.
Limited access on a need-to-know basis.
Regular system monitoring and staff training.
Secure cloud-based storage compliant
with GDPR.
11. Changes to This Policy
We may update this Privacy Policy from time
to time. All changes will be posted on this page with a revised "Effective Date." Continued use of our
services after such changes constitutes your acceptance of the updated policy.
12. Contact Us
If you have questions about this Privacy Policy or our data practices, please contact:
Data Protection Officer
Crownpath Consulting Ltd
Email: [email protected]