Privacy Policy

Last updated: November 2025

This Privacy Policy explains how ACC CONS UK LTD, trading as Accomplish (“Accomplish”, “we”, “us”, “our”), collects, uses, stores, and protects personal data when you visit our website, contact us, download materials, take part in our services, or sign up for updates.

We are committed to protecting your privacy and handling all personal data transparently, lawfully, and securely.

1. Who We Are

We are ACC CONS UK LTD (trading as Accomplish), a company registered in Scotland under company number SC613805 at Hopetoun House, South Queensferry, West Lothian, EH30 9SL, UK and at info@accomplish.world. We act as the “data controller” for the personal data described in this policy.

2. Personal Data We Collect

We collect information you provide directly, information collected automatically during your visit, and information generated during our delivery of services.

2.1 Information you provide

1. Name, organisation, job title.
2. Contact details (email, phone, address).
3. Preferences (newsletter opt-ins, content interests).
4. Enquiry details.
5. Information submitted for downloads, webinars, or event registrations.
6. Information provided during assessments, surveys, or client engagement exercises.
7. CX Benchmark–related submissions (where applicable).

We do not ask for or require special category data. If you provide it voluntarily, we will minimise, anonymise, or delete it where possible. We process only what is necessary to deliver an optimal web experience.

2.2 Information collected automatically

1. IP address.
2. Device and browser type.
3. Pages visited and click-through behaviour.
4. Time spent on the site.
5. Cookie and tracking data (see Cookie Policy).

3. How We Use Your Data

We use personal data for the following purposes:

1. Responding to enquiries and providing requested information.
2. Managing client relationships and project communications.
3. Improving our services, website, and content.
4. Sending updates, newsletters, and relevant insights (with your consent).
5. Running surveys, audits, events, and research activities.
6. Understanding how our audience uses the site.
7. Maintaining security and preventing misuse.
8. Fulfilling legal or regulatory obligations.

We do not sell personal data.

4. Legal Bases for Processing

We process personal data only when a lawful basis applies:

1. Consent – newsletters, cookie tracking
2. Contract – responding to enquiries, delivering client services
3. Legitimate interests – marketing to business contacts, service improvement, analytics
4. Legal obligation – compliance with regulatory requests or record-keeping duties

Where we rely on legitimate interests, we balance them carefully against individual privacy rights.

5. Marketing Communications

We send marketing emails only when:

1. You have opted in, or
2. You are a business contact and our communications are relevant to your role.

6. Cookies and Tracking

We use cookies and similar technologies to:

1. Operate essential website features.
2. Analyse traffic and usage.
3. Improve performance.
4. Personalise content where consented.

Non-essential cookies are used only with your consent. Please refer to our Cookie Policy for full details.

7. Sharing Your Data

We share personal data only when necessary and with trusted third-party providers who act as “processors” under GDPR. These include:

1. Website hosting platforms.
2. Email marketing systems.
3. Cloud storage providers.
4. CRM and workflow systems.

All processors are bound by contracts that limit their use of personal data to our instructions only. We do not authorise any third party to sell or use your data for their own marketing.

8. International Transfers

Some of our service providers may store or process data outside the UK or EU. Where this occurs, we use recognised safeguards such as:

1. UK or EU Standard Contractual Clauses (SCCs).
2. Approved adequacy decisions.
3. Additional technical and organisational measures.

We regularly review our providers’ compliance.

9. Data Retention

We keep personal data only for as long as necessary:

1. Enquiries: up to 24 months.
2. Newsletter subscribers: until you unsubscribe or after 24 months of inactivity.
3. Client project materials: for the duration of the engagement plus up to 7 years for audit and contractual purposes.
4. Benchmark submissions: retained or anonymised according to client contractual terms.
5. Analytics data: as per provider defaults (e.g., 14 months).

We may retain some data longer if required for legal or regulatory reasons.

10. Data Security

We take appropriate technical and organisational steps to secure personal data. These include:

1. Encryption in transit and at rest.
2. Access controls and role-based permissions.
3. Cloud platform security controls.
4. Audit logs and monitoring.
5. Regular reviews of vendor security.
6. Incident-response processes.

While no system is entirely risk-free, we work continuously to minimise exposure.

11. Your Rights

Under UK GDPR and (where applicable) EU GDPR, you have the right to:

1. Access your data.
2. Rectify inaccurate or incomplete data.
3. Request deletion.
4. Restrict processing.
5. Object to certain processing.
6. Withdraw consent.
7. Request data portability.
8. Lodge a complaint.

To exercise your rights, email info@accomplish.world. If you are in the UK, you can also contact the Information Commissioner’s Office (ICO).

12. Links to Other Websites

Our site contains links to external websites. We are not responsible for their content, security, or privacy practices. Please review their privacy policies before providing personal information.

13. Changes to This Policy

We update this Privacy Policy from time to time. The “Last updated” date at the top shows when it was most recently revised. Significant changes will be highlighted on our website.