Privacy Policy

Last updated: 11 June 2026

1. Introduction

People Nexus Consultancy (“we”, “us” or “our”) respects your privacy and is committed to protecting your personal information.

This Privacy Policy explains how we collect, use, store and share personal information when you:

  • visit our website;

  • contact us or submit an enquiry;

  • engage us to provide HR or People Operations consultancy services;

  • subscribe to our communications; or

  • otherwise interact with us.

Data controller: [FULL LEGAL NAME OR SOLE TRADER NAME] trading as People Nexus Consultancy
Business address: [BUSINESS ADDRESS]
Email: [PRIVACY OR BUSINESS EMAIL ADDRESS]
Website: [WEBSITE ADDRESS]

2. Information We Collect

Depending on your relationship with us, we may collect:

  • your name, job title and employer;

  • business and personal contact details;

  • information provided through website forms, emails, calls and meetings;

  • details about your organisation, workforce and consultancy requirements;

  • contracts, invoices and payment records;

  • correspondence, feedback and survey responses;

  • marketing preferences;

  • website usage information, including IP address, browser, device and cookie data; and

  • information necessary to provide the services agreed with a client.

Please do not provide sensitive employee or candidate information through our general website contact form.

3. HR and Employee Information

Our consultancy services may require us to process information about a client’s employees, workers, contractors, applicants or former employees.

This may include employment details, compensation information, performance records, absence information and, where necessary, sensitive information such as health, disability, ethnicity or other legally protected information.

When we process this information solely on behalf of a client, the client normally determines why and how it is used. The client is the controller or responsible organisation, and we act as its processor or service provider in accordance with its instructions and our contract.

Questions about information held by one of our clients should normally be directed to that client first.

4. How We Use Information

We may use personal information to:

  • respond to enquiries;

  • prepare proposals and contracts;

  • deliver HR and People Operations consultancy services;

  • manage client relationships and projects;

  • process payments and maintain financial records;

  • operate, secure and improve our website;

  • communicate service updates;

  • send marketing where permitted;

  • comply with legal and regulatory obligations;

  • establish or defend legal claims; and

  • prevent fraud, misuse and security incidents.

We will not use personal information for materially different purposes without providing appropriate notice or obtaining consent where required.

5. Legal Grounds

Where UK data protection law applies, we rely on one or more of the following legal grounds:

  • Contract: processing is necessary to enter into or perform a contract.

  • Legitimate interests: processing is necessary to operate and develop our consultancy, communicate with business contacts, secure our systems or manage client relationships.

  • Consent: you have given permission, such as for certain marketing or non-essential cookies.

  • Legal obligation: processing is required to meet tax, accounting, employment or other legal duties.

  • Legal claims: processing is necessary to establish, exercise or defend legal claims.

Where we process special-category information, we will also identify an appropriate additional legal condition.

In Canada, we collect, use and disclose personal information with meaningful consent or as otherwise permitted by applicable law.

6. Marketing

We may send relevant business-to-business communications about our services where permitted by law.

You can unsubscribe at any time by using the link in an email or contacting us at [EMAIL ADDRESS]. We may retain limited information to ensure that we respect your request.

We do not sell personal information.

7. Cookies and Analytics

Our website may use essential cookies required for security and operation. With your permission, we may also use analytics, advertising or other non-essential cookies.

More information about the cookies used on our website and how to change your preferences is available through our cookie banner or [COOKIE POLICY/LINK].

Our website is hosted by Squarespace. Squarespace may process technical and usage information needed to provide and secure the website.

We currently use the following website services:

  • Squarespace;

  • [GOOGLE ANALYTICS OR OTHER ANALYTICS TOOL];

  • [EMAIL OR NEWSLETTER PLATFORM];

  • [CONTACT FORM OR BOOKING TOOL]; and

  • [OTHER RELEVANT SERVICES].

8. Sharing Information

We may share personal information with:

  • technology, hosting and cloud-storage providers;

  • HRIS, ATS and other People technology platforms used for client projects;

  • accountants, insurers, legal advisers and professional consultants;

  • payment and invoicing providers;

  • subcontractors supporting an agreed project;

  • government bodies, regulators or law-enforcement authorities where required; and

  • a purchaser or successor if our business is sold or reorganised.

Providers are given only the information reasonably necessary for their role and must protect it appropriately.

9. International Transfers

We operate and support clients in the United Kingdom, Canada and the United States. Personal information may therefore be accessed, stored or processed outside the country where it was collected.

Where required, we use appropriate safeguards for international transfers, which may include contractual protections, adequacy regulations or other legally recognised transfer mechanisms.

Information processed in another country may be subject to that country’s laws and may be accessible to its courts, regulators or public authorities.

10. Data Retention

We keep personal information only for as long as reasonably necessary for the purposes described in this policy, including legal, accounting, contractual and dispute-resolution requirements.

As a general guide:

  • general enquiries may be retained for up to 24 months;

  • client contracts and financial records may be retained for up to seven years after the relationship ends;

  • project information is retained according to the client contract and applicable legal requirements;

  • marketing information is retained until you unsubscribe or it is no longer needed; and

  • cookie information is retained for the periods described in our cookie settings.

We may retain information for longer where required by law or in connection with a dispute.

11. Security

We use reasonable administrative, technical and organisational safeguards appropriate to the nature and sensitivity of the information we process.

These may include access controls, password protection, multi-factor authentication, secure systems, confidentiality obligations and careful selection of service providers.

No method of transmission or storage is completely secure, but we take reasonable steps to prevent loss, misuse, unauthorised access, disclosure or alteration.

12. Your Rights

Depending on where you live and the applicable law, you may have the right to:

  • request access to your personal information;

  • ask us to correct inaccurate information;

  • request deletion of information;

  • restrict or object to certain processing;

  • withdraw consent;

  • request information in a portable format;

  • opt out of marketing;

  • complain to an appropriate privacy regulator; and

  • appeal a refusal of a request where applicable.

Additional rights may apply in certain US states, including rights relating to access, correction, deletion, portability, targeted advertising, profiling, and the sale or sharing of personal information.

We do not discriminate against individuals for exercising applicable privacy rights.

To make a request, contact [PRIVACY EMAIL]. We may need to verify your identity before responding. You may also use an authorised agent where permitted by law.

13. California Information

Where the California Consumer Privacy Act applies, California residents may request information about the categories and specific pieces of personal information collected, the purposes for which it is used, and the categories of parties to whom it is disclosed.

We do not sell personal information or share it for cross-context behavioural advertising as those terms are defined under California law.

14. Children

Our website and services are intended for businesses and adults. We do not knowingly collect personal information directly from children under 16 through this website.

15. External Links

Our website may contain links to third-party websites. We are not responsible for their privacy practices, security or content. Please review their privacy policies before providing personal information.

16. Complaints

Please contact us first at [PRIVACY EMAIL] if you have concerns about how we use your information.

UK individuals may also complain to the Information Commissioner’s Office.

Canadian individuals may contact the Office of the Privacy Commissioner of Canada or the relevant provincial privacy regulator.

US residents may contact the relevant state attorney general or privacy authority.

17. Changes to This Policy

We may update this Privacy Policy to reflect changes to our services, systems or legal obligations. The latest version will be published on this page with the revised date.

18. Contact Us

For privacy questions or requests, contact:

People Nexus Consultancy
[LEGAL NAME]
[BUSINESS ADDRESS]
[EMAIL ADDRESS]
[TELEPHONE NUMBER, IF USED]