Privacy Policy

---

Privacy Policy for Embedded Consulting Group (ECG)

Introduction

At Embedded Consulting Group (“ECG”), we are committed to protecting the privacy of our clients, consultants, and website users. Trusting us with your information, you expect a secure and confidential experience, which we strive to provide. This Data Privacy Notice outlines how we handle information collected through our website or during interactions with our offices.

GDPR Compliance

Aligned with the GDPR (Regulation (EU) 2016/679), effective from 25 May 2018, our data protection practices are designed to ensure enhanced privacy rights, irrespective of the UK's EU membership status.

Data Controller

The Data Controller for ECG is Embedded Consulting Group, a company registered in the UK.

Company Number: 14541974

Address: 01/06 Tower Works, 2 Globe Road, Leeds, LS11 5QG

Contact: Dan Boneham (Dan@embeddedconsultinggroup.com)

What is Personal Data?

Personal data refers to information that can identify you as a living individual. This includes general data like your name and address, and sensitive personal data, which relates to your health, sexual orientation, racial or ethnic origin, religious beliefs, and more.

Who We Are and How We Get Your Data

As a consulting firm, ECG collects personal data from clients, potential clients, consultants, and other stakeholders to conduct our business effectively.

The Data We Collect and How We Use It

As a consulting firm, ECG gathers various types of personal data to facilitate our business operations and provide tailored services to our clients. The types of data we collect and the purposes for which we use them are outlined below:

Contact Information: We collect names, addresses, email addresses, and phone numbers. This information is used for communication purposes, to keep you informed about our services, and to respond to your inquiries.

Professional Details: For consultants and potential consultants, we gather professional information such as employment history, qualifications, skills, and areas of expertise. This data helps us in assessing suitability for consulting projects and matching consultants with client needs.

Client Information: For clients, we collect information about the company, including company name, industry sector, and specific requirements or interests. This enables us to tailor our consulting services to meet your business needs effectively.

Financial Information: We may collect financial details such as bank account numbers and billing information for the purposes of processing payments and fulfilling contractual obligations.

Website Usage Data: Through cookies and similar technologies on our website, we collect data regarding your interactions with our site. This includes browsing patterns and preferences, which helps us improve our website’s functionality and user experience.

Feedback and Surveys: Occasionally, we may ask for feedback on our services or conduct surveys. This information is used to improve our services and understand client and consultant satisfaction.

Job Applications: For individuals applying for a position with ECG, we collect personal data such as educational background, work experience, and references to assess suitability for the role.

Compliance and Legal Obligations: In compliance with legal obligations, we may collect and process data necessary for identity verification, due diligence, and adherence to regulatory requirements.

Marketing Preferences: We collect information about your preferences in receiving marketing from us. This helps us provide you with relevant and personalised communication.

How We Use Your Data:

To provide and improve our consulting services.

To maintain communication and manage our relationships with clients, consultants, and other business contacts.

For business development, including sending updates and promotional materials that may be of interest to you.

To comply with legal and regulatory obligations.

For internal record keeping and administrative purposes.

We process this data based on various legal grounds, including your consent, the necessity for the performance of a contract, and our legitimate business interests.

ECG is committed to processing your data securely and in accordance with applicable data protection laws.

Legal Basis for Processing Data

Our processing of personal data is grounded in the necessity for contract performance, legal obligations, and legitimate interests pertinent to our consulting services.

Who We Share Personal Data With

We share personal data only when necessary, with clients, regulatory authorities, and service providers like IT support, legal advisers, and insurers.

Transfer of Data to Other Jurisdictions

We handle data transfers outside the EEA with appropriate safeguards to ensure data protection.

Data Security and Confidentiality

ECG commits to securing your data using up-to-date practices and technologies.

Cookies Policy

ECG uses cookies on our website to enhance user experience, analyse website traffic, and improve our services. Cookies are small data files stored on your device. We use:

Essential Cookies for website functionality.

Performance Cookies to gather anonymous data on website usage.

Functionality Cookies to remember user preferences.

Targeting Cookies to provide relevant advertising based on user interests.

You can manage cookie preferences through your browser settings, but disabling cookies may affect website functionality.

Retaining Your Data

We retain personal data as necessary for legal, contractual, and legitimate business reasons, typically not exceeding 6 years.

Your Rights

You have the right to access, object to processing, request data erasure, and exercise other rights under GDPR.

Changes to This Privacy Notice

Our Privacy Notice is reviewed and updated as required, with significant changes communicated to you.

Contact

For any queries or concerns regarding your data, please contact Dan Boneham at Dan@embeddedconsultinggroup.com or our office address.