Privacy Policy

1. Who We Are

PatternKind Limited is a management consultancy registered in England and Wales (Company Number: [TBC]). Our registered office is located at [Address TBC], London, United Kingdom.

For the purposes of UK and EU data protection law, PatternKind Limited is the data controller responsible for your personal information.

Contact Details:
Email: privacy@patternkind.com
Phone: +44 7503 121326
Address: London, United Kingdom

2. Information We Collect

2.1 Information You Provide to Us

We collect information you voluntarily provide when you:

• Complete contact forms or request consultations
• Subscribe to our newsletter or marketing communications
• Engage our consultancy services
• Attend our events or webinars
• Communicate with us via email, phone, or other channels

This may include: full name, email address, phone number, company name, job title, company size/revenue, areas of interest, and any other information you choose to provide in messages or forms.

2.2 Information Collected Automatically

When you visit our website, we automatically collect certain information about your device and browsing behaviour, including:

• IP address and approximate geographic location
• Browser type and version
• Device type and operating system
• Pages visited and time spent on pages
• Referring website or source
• Date and time of visit

3. How We Use Your Information

We process your personal information for the following purposes, based on the legal grounds specified:

3.1 Service Delivery (Contractual Necessity)

• Responding to your enquiries and consultation requests
• Providing consultancy services you have engaged us for
• Managing client relationships and project delivery
• Processing payments and managing invoicing

3.2 Marketing and Business Development (Legitimate Interest)

• Sending newsletters, insights, and thought leadership content (with consent for email marketing)
• Conducting market research and understanding client needs
• Improving our services and developing new offerings
• Managing business relationships with prospective clients

Note: For B2B marketing to business contacts, we rely on legitimate interest as our legal basis. You can opt out of marketing communications at any time.

3.3 Legal and Regulatory Compliance (Legal Obligation)

• Complying with legal obligations (tax, accounting, professional standards)
• Maintaining professional indemnity insurance records
• Responding to lawful requests from authorities

3.4 Website Analytics (Legitimate Interest)

• Analysing website performance and user behaviour
• Improving website functionality and user experience
• Detecting and preventing fraud or security issues

4. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience on our website. Under the Privacy and Electronic Communications Regulations (PECR) as updated in 2025, we use the following types of cookies:

4.1 Strictly Necessary Cookies

These cookies are essential for the website to function and cannot be disabled. They include session management, security, and load balancing cookies.

4.2 Analytics Cookies (Consent Not Required Under PECR 2025)

We use analytics cookies to understand how visitors interact with our website. Under updated PECR regulations, these cookies do not require explicit consent if they are used solely for statistical purposes and do not track users across websites. We use privacy-friendly analytics that:

• Do not use third-party tracking or advertising networks
• Anonymise IP addresses
• Do not share data with other services
• Are used exclusively for improving our website performance

4.3 Marketing Cookies (Consent Required)

We may use marketing cookies with your consent to deliver personalised advertising and measure campaign effectiveness. You can manage cookie preferences through our cookie consent banner.

5. How We Share Your Information

We may share your personal information with the following third parties:

5.1 Service Providers

We use trusted third-party service providers to support our operations, including:

• Email marketing platforms (Mailchimp, SendGrid, etc.)
• Customer relationship management (CRM) systems
• Website hosting and infrastructure providers
• Analytics and performance monitoring tools
• Payment processors and accounting software

All service providers are bound by data processing agreements and must comply with UK GDPR requirements.

5.2 Professional Advisors

We may share information with lawyers, accountants, auditors, and professional indemnity insurers as required for business operations and legal compliance.

5.3 Legal Requirements

We may disclose your information if required by law, court order, or regulatory authority, or to protect our legal rights and the safety of others.

6. International Data Transfers

Your personal information is primarily stored and processed within the United Kingdom and European Economic Area (EEA). However, some of our service providers may be located outside the UK/EEA (for example, cloud infrastructure providers in the United States).

When we transfer personal data outside the UK/EEA, we ensure appropriate safeguards are in place, including:

• EU Standard Contractual Clauses (SCCs)
• UK International Data Transfer Agreement (IDTA)
• Transfers to countries with adequacy decisions from the UK/EU
• Vendor-specific data protection agreements

7. Data Retention

We retain your personal information only for as long as necessary to fulfil the purposes outlined in this policy, unless a longer retention period is required by law.

• Marketing enquiries: 3 years from last contact (unless you request deletion)
• Client engagement data: 7 years after project completion (for professional indemnity and legal purposes)
• Financial records: 7 years (UK tax and accounting requirements)
• Newsletter subscribers: Until you unsubscribe
• Website analytics: 26 months (automatically anonymised)

8. Your Rights Under UK GDPR

Under UK data protection law, you have the following rights regarding your personal information:

• Right of access: Request a copy of the personal data we hold about you
• Right to rectification: Request correction of inaccurate or incomplete data
• Right to erasure: Request deletion of your personal data (subject to legal obligations)
• Right to restrict processing: Request that we limit how we use your data
• Right to data portability: Request your data in a structured, commonly used format
• Right to object: Object to processing based on legitimate interest (including marketing)
• Right to withdraw consent: Withdraw consent for processing at any time (where consent is the legal basis)

To exercise any of these rights, please contact us at privacy@patternkind.com. We will respond to your request within 30 days.

9. Security of Your Information

We implement appropriate technical and organisational measures to protect your personal information against unauthorised access, alteration, disclosure, or destruction. These measures include:

• Encryption of data in transit and at rest (TLS/SSL)
• Regular security assessments and penetration testing
• Access controls and authentication requirements
• Employee training on data protection and confidentiality
• Secure backup and disaster recovery procedures

10. Children's Privacy

Our services are directed at businesses and professionals. We do not knowingly collect personal information from individuals under the age of 18. If you believe we have inadvertently collected such information, please contact us immediately.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or business operations. We will notify you of any material changes by:

• Updating the "Last updated" date at the top of this policy
• Sending an email notification to active clients and newsletter subscribers
• Displaying a prominent notice on our website

12. Complaints and Regulatory Authority

If you have concerns about how we handle your personal information, please contact us first at privacy@patternkind.com. We will investigate and respond to your complaint.

You also have the right to lodge a complaint with the UK Information Commissioner's Office (ICO):

Information Commissioner's Office (ICO)
Wycliffe House, Water Lane
Wilmslow, Cheshire SK9 5AF
Phone: 0303 123 1113
Website: ico.org.uk

13. Contact Us

If you have any questions about this Privacy Policy or how we handle your personal information, please contact us: