Privacy policy

Effective Date: 22 April 2025

At BrightPath Consulting Ltd (“we”, “us”, or “our”), we value your privacy and are committed to protecting your personal data. This Privacy Policy outlines how we collect, use, store, and protect your information when you interact with our website or engage our consulting services. By accessing our website or providing your personal data to us, you acknowledge that you have read and understood this Privacy Policy.

1. Who We Are
BrightPath Consulting Ltd is a UK-based consultancy firm providing strategic, operational, and financial advisory services to businesses of all sizes.
Company Address:
BrightPath Consulting Ltd
42 Wexford Street, Suite 5B
London, SW1A 1AA
United Kingdom
Phone: +44 20 7946 1283
Email: [email protected] As the data controller, we are responsible for ensuring your personal data is handled in accordance with applicable data protection laws, including the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. What Information We Collect
We may collect personal data in a variety of ways, including when you visit our website, submit a form, communicate with us, or use our services. The types of data we collect include:
Identification and Contact Data: Your name, email address, phone number, job title, company name, and any other information you voluntarily provide.
Website Usage Data: Technical data such as your IP address, browser type and version, operating system, time zone setting, page interactions, and other diagnostic data.
Marketing and Communication Preferences: Information about your preferences in receiving communications from us, including email subscriptions.
Business Information: In some cases, we may collect limited company-related information for the purpose of delivering our services.
We do not collect any sensitive personal data (e.g. health or biometric data) unless it is explicitly required and provided with your informed consent.

3. How We Use Your Data
We process your personal data for the following purposes:
To respond to inquiries and provide information about our services.
To manage and deliver consulting projects or services you have requested.
To improve our website, content, and user experience.
To communicate with you regarding our services, updates, and business insights.
To send marketing communications, where you have opted in.
To comply with legal and regulatory obligations.
To protect our legal rights, prevent fraud, and maintain security.

4. Legal Basis for Processing
We only process your personal data when we have a valid legal basis to do so. These include:
Consent: When you have given us clear permission to process your data for a specific purpose.
Contractual necessity: When data processing is required to perform a contract with you.
Legal obligation: When we are legally required to process your data.
Legitimate interests: When it is in our interest to process your data in a way that is fair and does not override your rights (e.g., internal analysis or marketing communications to existing clients).

5. Data Sharing and Disclosure
We may share your personal information with trusted third parties, including: Professional service providers who support our operations (e.g. IT, email marketing, analytics).
Legal or regulatory authorities, where required by law.
Third-party platforms used to process payments or communications (with appropriate data protection agreements in place).
We will never sell, rent, or trade your personal data to third parties.

6. International Data Transfers
Your personal data may be transferred to and processed outside the United Kingdom. If we transfer your data internationally, we ensure that it is adequately protected in accordance with applicable legal requirements, for example, through the use of approved Standard Contractual Clauses (SCCs).

7. Data Retention
We retain personal data only as long as necessary for the purposes for which it was collected, including legal, accounting, or reporting requirements. When your data is no longer needed, we securely delete or anonymize it.
You can request more detailed information on our data retention policies by contacting us directly.

8. Your Rights
As a data subject under the UK GDPR, you have the following rights:
Right of access – to request copies of your personal data.
Right to rectification – to request that we correct inaccurate or incomplete data.
Right to erasure – to request deletion of your personal data in certain circumstances.
Right to restriction – to request limitation of data processing under certain conditions.
Right to data portability – to receive your data in a commonly used format and transfer it to another service provider.
Right to object – to object to processing based on legitimate interests or direct marketing.
Right to withdraw consent – where processing is based on consent, you may withdraw it at any time.
To exercise your rights, please contact us at: [email protected] You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO): www.ico.org.uk

9. Cookies and Tracking Technologies
We use cookies and similar tracking technologies to enhance your experience on our website, analyze traffic, and improve functionality. You can manage cookie preferences through your browser settings. For more details, please refer to our separate Cookie Policy.

10. Data Security
We take data security seriously. We implement appropriate technical and organizational measures to protect your data against unauthorized access, disclosure, loss, or misuse. These include secure servers, encrypted data transfers, and regular system monitoring.
Despite our efforts, no method of transmission over the Internet is completely secure. If you suspect a data breach involving your personal data, please contact us immediately.

11. Updates to This Policy
We may revise this Privacy Policy from time to time to reflect changes in law, technology, or our practices. The latest version will always be posted on this page, and we encourage you to review it periodically. Last updated: 22 April 2025

Contact Us
If you have any questions, requests, or concerns related to this Privacy Policy or our data practices, please get in touch:
BrightPath Consulting Ltd
42 Wexford Street, Suite 5B
London, SW1A 1AA
United Kingdom Phone: +44 20 7946 1283
Email: [email protected]
We will respond to your inquiry as promptly as possible.

Cookie

We use cookies to improve the performance of our website and provide a better user experience. By continuing to use our site, you agree to our Privacy Policy and terms of use. If you want to know more about how we use cookies, please read our Cookie Policy.