This Privacy Policy explains how KDM Consulting ([legal entity name], "KDM," "we," "us") collects, uses, and protects information when you visit this website or engage us for consulting services. We try to collect as little as possible, and to be specific about what happens with anything we do hold.
01 — Who we are
KDM Consulting is operated by [legal entity name and registered address], registered in [jurisdiction] under [company number]. For the purposes of applicable data protection law (including the GDPR where relevant), KDM is the data controller for personal information collected through this website.
02 — Information we collect
We collect only the information needed to operate this site and provide our services:
- Contact details you provide directly — your name, email address, company, and any context you choose to share when you reach out to us.
- Engagement records for active and prospective client work — emails, proposals, project briefs, and meeting notes.
- Technical data from your browser — IP address, user agent, referring page, and pages viewed. This is collected in standard server logs and used for site reliability and abuse prevention.
- Cookie data as described in section 05.
We do not knowingly collect information from children, and we do not collect special category data unless a client engagement specifically requires it under a signed contract.
03 — How we use information
We use the information we collect to:
- Respond to enquiries you send us through email or contact forms.
- Deliver, manage, and improve the consulting services we have agreed with a client.
- Send occasional engagement updates to existing clients about their projects.
- Operate, debug, and secure this website and our internal tools.
- Comply with legal obligations applicable in [jurisdiction].
We do not sell personal information. We do not use it to build behavioural profiles for advertising.
04 — Sharing & third parties
We rely on a small number of vetted service providers to operate the business. These include, where applicable:
- Hosting and content delivery ([e.g. Vercel, Cloudflare]).
- Email and calendaring ([e.g. Google Workspace]).
- Accounting and invoicing ([provider name]).
- Analytics and error reporting, where used, as listed in section 05.
Each provider only receives information necessary to perform its function, and each operates under its own privacy commitments. We do not share client information with anyone else unless we are legally required to, or you have explicitly asked us to.
05 — Cookies & analytics
This website uses a minimal set of cookies and storage:
- Strictly necessary storage required for the site to function (preferences, session continuity). These cannot be disabled.
- Optional analytics, if enabled, using a privacy-respecting tool such as [e.g. Plausible, Fathom]. No third-party advertising cookies are set.
You can clear or block cookies in your browser settings at any time.
06 — Data retention
We hold contact information and engagement records for as long as needed to deliver active work and to meet our legal, accounting, and tax obligations under [jurisdiction] law. After that, records are either deleted or archived in a form that cannot identify you.
Standard server logs are retained for [e.g. 30–90 days], then rotated.
07 — Your rights
Where data protection law applies, you have the right to:
- Request a copy of the personal information we hold about you.
- Ask us to correct information that is inaccurate or out of date.
- Request that we delete information, subject to legal retention obligations.
- Object to certain processing, or request that it be restricted.
- Withdraw consent where processing is based on consent.
- Lodge a complaint with your local data protection authority.
To exercise any of these rights, email office@kdm.consulting. We will respond within a reasonable time and at most within the period required by applicable law.
08 — Security
We use commercially reasonable technical and organisational measures to protect the information we hold, including encrypted storage where appropriate, restricted access, and review of the services we depend on. No system is perfectly secure; if we ever become aware of a breach that affects you, we will notify you as required by law.
09 — Changes to this policy
We may update this policy from time to time. When we do, we will revise the "Last updated" date at the top of this page. Material changes will be communicated to active clients directly.
10 — Contact
Questions, requests, or concerns about this policy or our handling of personal information should be sent to office@kdm.consulting.
This Privacy Policy is provided as a structural template. Please review it with qualified counsel before relying on it for a live business.