Privacy Policy

How we collect, use, and protect your personal information.

Last updated: December 2025

1. Introduction

Allen Consulting Group Limited ("ACG", "we", "us", "our", or "Company") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website acg.coach and use our services.

Please read this Privacy Policy carefully. If you do not agree with our policies and practices, please do not use our website or services. By accessing and using our website, you acknowledge that you have read and understood this Privacy Policy.

2. Information We Collect

We collect information in the following ways:

2.1 Information You Provide Directly

When you submit our contact form or inquire about our services, we collect:

  • Full name
  • Email address
  • Phone number
  • Organisation name
  • Job title or role
  • Program interest
  • Preferred delivery format
  • Any additional information you choose to provide

2.2 Automatically Collected Information

When you visit our website, we may automatically collect:

  • IP address
  • Browser type and version
  • Operating system
  • Pages visited and time spent on each page
  • Referrer information
  • Device type and identifiers
  • Approximate geographic location (country/region level)

2.3 Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience on our website. You can control cookie settings through your browser preferences. We use analytics tools to understand how visitors use our website, but we do not track individual users across websites.

3. How We Use Your Information

We use the information we collect for the following purposes:

  • To respond to your inquiries about our consulting programs and services
  • To send you information about our programs and services
  • To contact you regarding your inquiry or consultation request
  • To send confirmation emails when you submit forms
  • To improve our website and services based on user feedback
  • To comply with legal obligations and protect our rights
  • To prevent fraud and enhance security
  • To analyse website usage and trends
  • To personalise your experience on our website

4. Legal Basis for Processing (GDPR)

Under GDPR, we process your personal data based on the following legal grounds:

  • Consent: When you submit our contact form, you consent to us processing your information to respond to your inquiry
  • Legitimate Interest: We process information to improve our website, prevent fraud, and enhance security
  • Contract Performance: If you engage our services, we process data necessary to deliver those services
  • Legal Obligation: We process data when required by law

5. Data Sharing and Disclosure

We do not sell, rent, or lease your personal information to third parties. We may share your information only in the following circumstances:

  • Service Providers: We may share information with third parties who provide services on our behalf (e.g., email service providers, hosting providers) under strict data protection agreements
  • Legal Requirements: We may disclose information when required by law or to protect our legal rights
  • Business Transfers: If ACG is acquired or merged, your information may be transferred as part of that transaction
  • Your Consent: We may share information with your explicit consent for purposes you have approved

6. Data Retention

We retain your personal information for as long as necessary to fulfil the purposes for which it was collected, including to satisfy legal, accounting, or reporting requirements. Specifically:

  • Contact Form Data: Retained for 3 years to respond to inquiries and maintain business records
  • Website Analytics: Retained for up to 26 months
  • Email Communications: Retained as long as necessary to respond to your inquiry
  • Consulting Engagement Data: Retained for 7 years as required by UK business law

After the retention period expires, we securely delete or anonymise your information.

7. Your Rights Under GDPR

If you are located in the European Union, United Kingdom, or other jurisdictions with similar privacy laws, you have the following rights:

7.1 Right of Access

You have the right to request a copy of the personal information we hold about you.

7.2 Right to Rectification

You have the right to request correction of inaccurate or incomplete information.

7.3 Right to Erasure (Right to be Forgotten)

You have the right to request deletion of your personal information, subject to certain legal exceptions.

7.4 Right to Restrict Processing

You have the right to request that we limit how we use your information.

7.5 Right to Data Portability

You have the right to request your information in a structured, commonly used, and machine-readable format.

7.6 Right to Object

You have the right to object to processing of your information for marketing purposes.

7.7 Right to Withdraw Consent

You may withdraw your consent to data processing at any time by contacting us.

8. How to Exercise Your Rights

To exercise any of the rights listed above, please contact us at [email protected] with:

  • Your full name
  • Your email address
  • A clear description of your request
  • Any relevant reference numbers or dates

We will respond to your request within 30 days. If we need more information to process your request, we will contact you.

9. Data Security

We implement appropriate technical and organisational measures to protect your personal information against unauthorised access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit using SSL/TLS protocols
  • Secure storage of data with access controls
  • Regular security assessments and updates
  • Restricted access to personal information on a need-to-know basis
  • Employee training on data protection and privacy

However, no method of transmission over the internet or electronic storage is completely secure. While we strive to protect your information, we cannot guarantee absolute security.

10. International Data Transfers

ACG is based in the United Kingdom. Your information is processed and stored in the UK. If we transfer your information to countries outside the UK/EU, we ensure appropriate safeguards are in place, including standard contractual clauses approved by the relevant authorities.

11. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to review the privacy policies of any third-party websites before providing your information.

12. Children's Privacy

Our website and services are not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we become aware that a child has provided us with personal information, we will take steps to delete such information and terminate the child's account.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes by updating the "Last updated" date at the top of this policy.

Your continued use of our website following the posting of revised Privacy Policy means you accept and agree to the changes.

14. Data Protection Officer

For privacy-related questions or to exercise your data protection rights, please contact us at [email protected]. We take all privacy inquiries seriously and will respond promptly.

15. Contact Information

If you have questions about this Privacy Policy or our privacy practices, please contact us:

Allen Consulting Group Limited

Email: [email protected]

Website: acg.coach

United Kingdom

We will respond to all privacy inquiries within 30 days.