Privacy Policy

We are committed to safeguarding the privacy and confidentiality of individuals whose personal data we process, including website visitors, prospective and existing clients, suppliers, and other business contacts. This Privacy Policy explains in clear terms how we handle personal information when you browse our site, use interactive features such as inquiry forms, live chat, and booking options, or engage us to deliver strategic IT consultancy and related services.

By accessing our website or providing personal information to us, you acknowledge that you have read and understood this Privacy Policy. Where required under applicable data protection laws, we will seek your explicit consent before processing your data for specific purposes.

We collect personal information to operate our business, provide our consultancy services, and continuously improve your experience across our digital channels. The categories of data we may collect include:

• Identity and contact details — such as your name, job title, company name, business address, email address, and telephone number when you complete an inquiry form, request a consultation, or contact us via Contact Us.
• Professional and project information — including details about your organisation, technology stack, systems landscape, project requirements, and service interests (for example IT strategy, cloud migration, cybersecurity assessments, or systems integration).
• Usage and technical data — such as IP address, browser type and version, device identifiers, time zone setting, referring URLs, pages viewed, clickstream data, and other diagnostic information collected through analytics tools and server logs.
• Interaction data — records of communications and interactions with us, including emails, live chat transcripts, call notes, meeting records, and responses to surveys or feedback requests.
• Cookie and tracking data — information collected via cookies and similar technologies to support core site functionality, remember your preferences, and analyse how our website is used. For more detail, please see our dedicated Cookie Policy.

We will usually obtain personal data directly from you, but we may also receive information from publicly available sources (for example professional networking sites), referral partners, or third-party service providers where this is necessary and lawful for our business purposes.

We process personal data only where we have a valid legal basis under applicable data protection laws, including the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. We typically rely on consent, performance of a contract, compliance with legal obligations, and our legitimate business interests. We use your information for the following purposes:

• Service provision and delivery — to scope, plan, deliver, and manage our IT consultancy, digital transformation, systems integration, and related services, including account setup, project communication, and ongoing service management.
• Communication and support — to respond to inquiries you submit via our website, email, telephone, or live chat; to schedule consultations and workshops; and to provide technical or commercial support where requested.
• Marketing, insights, and engagement — to send you relevant information about our Services, Solutions, Expertise, and Insights (such as thought leadership articles or event invitations), where permitted by law and subject to your marketing preferences. You may opt out of marketing communications at any time.
• Analytics and website improvement — to monitor the performance, security, and usability of our website, understand how visitors interact with our content, and refine the user experience across navigation, booking flows, and interactive components.
• Security, risk management, and fraud prevention — to protect our systems, networks, data, and users from unauthorised access, cyber threats, and misuse of our services.
• Legal and regulatory compliance — to comply with applicable laws and regulations, respond to lawful requests from regulators or law enforcement, manage disputes, and enforce our Terms and Conditions.

We do not use personal data for automated decision-making that produces legal or similarly significant effects on you without appropriate safeguards and transparency.

We do not sell your personal data. We may share personal information with carefully selected third parties where necessary for the purposes described in this Privacy Policy and where appropriate contractual and security measures are in place. These parties include:

• Service providers and suppliers — including hosting providers, IT support and cloud infrastructure providers, communication platforms, analytics providers, and other vendors who process data on our behalf under written data processing agreements.
• Professional advisers — such as legal, accounting, and insurance advisers when necessary to obtain professional advice, manage risk, or handle legal claims.
• Business partners — for example technology vendors or implementation specialists we collaborate with to deliver end-to-end solutions, where such sharing is relevant to your engagement and undertaken under appropriate confidentiality and data protection obligations.
• Regulators and public authorities — where we are legally required to disclose information, such as to comply with applicable law, a court order, or a lawful request from a regulatory or law enforcement body.
• Corporate transactions — in the context of a potential or actual merger, acquisition, restructuring, or sale of all or part of our business, in which case personal data may be shared with prospective or actual buyers and their advisers, subject to confidentiality protections.

Whenever we share personal data with third parties, we require them to use the data only for specified purposes, to protect it in accordance with applicable data protection laws, and not to use it for their own independent purposes without your explicit consent or another lawful basis.

Protecting the confidentiality, integrity, and availability of your data is central to how we operate as an IT consultancy. We maintain appropriate technical and organisational measures designed to safeguard personal information against unauthorised access, accidental loss, disclosure, or misuse.

These measures include, where appropriate:

• Use of secure, access-controlled environments for hosting and processing data.
• Role-based access controls and the principle of least privilege for our personnel and suppliers.
• Encryption and secure transmission protocols to protect data in transit where feasible.
• Regular patching, monitoring, and maintenance of core infrastructure and systems.
• Staff training and awareness on information security and data protection responsibilities.
• Incident response processes to detect, investigate, and respond to potential security events.

While we take reasonable and proportionate steps to protect personal data, no system can be fully secure. If we identify a data breach that is likely to result in a risk to your rights and freedoms, we will notify you and relevant authorities in accordance with our legal obligations.

Under UK and, where applicable, international data protection laws, you have a number of rights in relation to the personal data we hold about you. Subject to certain conditions and exemptions, these may include:

• Right of access — to request confirmation of whether we process your personal data and, if so, to obtain a copy together with certain information about how it is used.
• Right to rectification — to request that inaccurate or incomplete personal data is corrected or updated.
• Right to erasure — to request that we delete your personal data where there is no compelling reason for us to continue processing it, for example where it is no longer needed for the purposes for which it was collected.
• Right to restriction of processing — to request that we limit the processing of your personal data in certain circumstances, such as while we verify its accuracy or assess an objection.
• Right to object — to object to processing based on our legitimate interests, including profiling based on those interests, and to object at any time to the use of your personal data for direct marketing.
• Right to data portability — to request that we provide you or, where technically feasible, a nominated third party with a copy of certain personal data in a structured, commonly used, machine-readable format.
• Right to withdraw consent — where we process personal data based on your consent, you may withdraw that consent at any time without affecting the lawfulness of processing carried out before withdrawal.

To exercise your rights or to make a complaint about how we handle your personal data, please contact us using the details provided in the Contact and Updates section below or via the Contact Us page. You also have the right to lodge a complaint with the UK Information Commissioner's Office (ICO) or your local supervisory authority if you believe your rights have been infringed.

Our website uses cookies and similar tracking technologies to provide key functionality, enhance your browsing experience, and generate aggregated analytics. Cookies are small text files placed on your device when you visit our site. They help us remember your preferences, understand how visitors engage with different areas of the site, and support secure, reliable operation of interactive features.

We may use the following categories of cookies:

• Strictly necessary cookies — required for the website to function correctly and to support features such as secure form submission and basic navigation.
• Performance and analytics cookies — to collect information about how visitors use our website, which pages are most frequently viewed, and how users move around the site, so we can improve content and usability.
• Functionality cookies — to remember your choices and preferences, such as language settings or previously selected options when using inquiry or booking forms.

Where required by law, we will ask for your consent before setting non-essential cookies on your device. You can manage your cookie preferences through your browser settings and, where implemented, via our on-site cookie controls. Please note that disabling certain cookies may affect website performance or limit the availability of some features.

For detailed information about the specific cookies we use, their purposes, and their retention periods, please refer to our dedicated Cookie Policy.

MMI CONSULTANTS LTD is headquartered in the United Kingdom, and your personal data will ordinarily be processed and stored within the UK or the European Economic Area (EEA). However, as part of providing our services — for example when using global cloud infrastructure, specialised technology vendors, or distributed support teams — your information may be transferred to and processed in countries outside the UK or EEA that may have different data protection laws.

Where we transfer personal data internationally, we take appropriate steps to ensure that your information remains protected and that such transfers comply with applicable data protection requirements. These safeguards may include:

• Transferring data to countries that have been formally recognised as providing an adequate level of data protection.
• Using standard contractual clauses or other approved contractual mechanisms with the relevant recipients.
• Conducting risk assessments and implementing additional technical and organisational measures where necessary.

You may contact us for more information about the safeguards applicable to a particular transfer of your personal data.

If you have any questions, concerns, or requests relating to this Privacy Policy or to how we handle your personal data, you can contact us using the details below:

MMI CONSULTANTS LTD
22 Sedgemere Road
Birmingham
England
B26 2AT
Phone: +447920439006
Email: [email protected]

You may also reach us via the Contact Us page on our website. When you contact us, we may ask for additional information to verify your identity and to help us respond to your request efficiently and securely.

We may update this Privacy Policy from time to time to reflect changes in our services, legal requirements, or data protection practices. Any changes will be posted on this page with an updated "Last updated" date. Where appropriate, and in particular where changes are material, we may also notify you through other channels, such as email or on-site notifications.

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information as you explore our Services, Solutions, Expertise, Clients work, and Insights.