Privacy Policy

Last updated: 18 June 2026

1. Information we collect

When you contact us or request a scope call, we collect the details you provide — such as your name, email address, phone number, organisation, and the message content. During engagements we process client systems data strictly under the agreed Rules of Engagement.

2. How we use it

We use the information you provide to respond to enquiries, scope and deliver engagements, send engagement-related notifications (such as report availability via the client portal), and meet legal and contractual obligations. We do not sell your personal information.

3. Engagement data and evidence

Findings, evidence, and reports are treated as confidential, encrypted in transit and at rest, access-controlled, and retained only for the period agreed with the client, after which they are securely destroyed.

4. Sharing

We share information only as needed to deliver the service (e.g. with the client's authorised contacts) or where required by law. We do not share client engagement data with third parties without authorisation.

5. Your rights

You may request access to, correction of, or deletion of the personal information we hold about you, subject to legal and contractual retention requirements. Contact us using the details below.

6. Contact

For privacy enquiries, contact [email protected].