Privacy Policy

1. Introduction
Frasco Consulting (“we”, “us”, “our”) is committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard your information in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Data Controller
Frasco Consulting Ltd is the data controller responsible for your personal data.

3. Personal Data We Collect
We may collect and process the following:

  • Identity data (name)

  • Contact data (email address, telephone number)

  • Professional data (job title, organisation, seniority)

  • Information provided through enquiries or correspondence

  • Technical data (IP address, browser type, usage data via analytics tools)

We do not intentionally collect special category data through this Website.

4. How We Collect Data

We collect personal data when you:

  • Submit an enquiry via the Website

  • Contact us directly

  • Engage with our services

  • Interact with the Website (via cookies and analytics tools)

5. Lawful Basis for Processing
We rely on:

  • Legitimate interests: responding to enquiries, managing professional relationships, developing our services

  • Contract: where we are providing consultancy or coaching services

  • Legal obligation: compliance with applicable laws

  • Consent: where required (e.g. marketing communications or non-essential cookies)

6. How We Use Your Data
We use personal data to:

  • Respond to enquiries and provide information about our services

  • Deliver leadership advisory, executive coaching, and consulting services

  • Manage client and business relationships

  • Improve our Website and service offering

  • Send relevant communications where permitted

7. Marketing
We may send you information about our services where permitted by law or where you have provided consent. You may opt out at any time via unsubscribe links or by contacting us.

8. Data Sharing
We do not sell personal data. We may share personal data with:

  • IT, hosting, and cloud service providers

  • Professional advisers

  • Service providers supporting business operations

  • Regulators or authorities where required

All third parties are required to respect the confidentiality and security of personal data.

9. International Transfers
Where personal data is transferred outside the UK, appropriate safeguards (such as Standard Contractual Clauses) will be implemented.

10. Data Retention
We retain personal data only for as long as necessary, including to meet legal, regulatory, and professional obligations.

11. Data Security
We implement appropriate technical and organisational measures to protect personal data against unauthorised access, loss, or misuse.

12. Your Rights
Under UK GDPR, you have the right to:

  • Access your personal data

  • Correct inaccurate data

  • Request erasure

  • Restrict processing

  • Object to processing

  • Request data portability

  • Withdraw consent (where applicable)

To exercise these rights, please contact us.

13. Cookies
We use cookies to improve functionality and analyse Website usage. Non-essential cookies will only be used with your consent. You can manage cookie preferences through your browser settings.

14. Complaints
You have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO).

15. Contact
For any questions about this Privacy Policy or your data, please contact us.

16. Updates
We may update this Privacy Policy periodically. Updates will be published on this page.