Privacy policy

Last updated: May 2026. Jiva Consultancy is UK-headquartered and may work with clients internationally.

1. Who we are

This policy describes how Jiva Consultancy (“we”, “us”) collects and uses personal data when you use the website at jivaconsultancy.co.uk (the “Site”) or contact us.

For privacy matters, contact hello@jivaconsultancy.co.uk.

We are the data controller in respect of personal data described in this policy (unless we state otherwise). If you access the Site or contact us from outside the United Kingdom, this policy still applies; you may also have rights under local law.

2. What personal data we collect

We may process the following categories of personal data:

  • Contact and enquiry data: when you email us or otherwise get in touch, we receive your email address, the contents of your message, and anything you choose to provide (for example name, telephone number, employer, or role).
  • Technical data: when you browse the Site, our hosting provider and infrastructure partners may process server logs and similar technical information (such as IP address, browser type, date/time of requests). We do not use this Site to knowingly profile individual visitors for marketing.
  • Third-party delivery: the Site loads fonts from Google (Google Fonts) and front-end libraries from jsDelivr. Those providers may process limited technical data under their own terms and privacy policies.

3. How and why we use your data (lawful bases)

Under UK GDPR and the Data Protection Act 2018, we rely on the following bases where applicable:

  • Legitimate interests — to respond to enquiries, manage our business relationship with you, improve the Site, and protect against misuse (balanced against your rights).
  • Contract — where you are negotiating or have agreed consultancy services with us, to take steps at your request or to perform the contract.
  • Legal obligation — where we must retain or disclose information to comply with law, regulation, or court order.

We do not sell your personal data.

4. Cookies and similar technologies

We do not set non-essential or advertising cookies through the Site as currently configured. Your browser may store standard session or security data as part of normal operation. Third parties that deliver fonts or code may use technologies described in their own policies. If we add analytics or marketing tools, we will update this policy and obtain consent where required for non-essential cookies or similar technologies.

5. International transfers

We are based in the United Kingdom. Personal data you send us may be processed in the UK and, depending on our hosting and professional advisers, in the European Economic Area or other countries. Where we transfer personal data outside the UK / EEA, we will ensure appropriate safeguards (such as standard contractual clauses or adequacy decisions) where required by applicable law.

6. Retention

We keep enquiry correspondence for as long as needed to deal with your message and any follow-up, and thereafter for ordinary legal, regulatory, insurance, or business purposes (including defence of claims). Technical logs are retained in line with our providers’ practices and our security needs.

7. Sharing your data

We may share personal data with:

  • Professional advisers (such as lawyers and accountants), insurers, and auditors where necessary;
  • Service providers who host the Site, transmit email, or support our IT systems, under contractual confidentiality and security obligations;
  • Law enforcement, regulators, or courts where we are legally required or permitted to do so.

8. Your rights

Subject to applicable law, you may have the right to:

  • Request access to the personal data we hold about you;
  • Request correction of inaccurate data;
  • Request erasure, restriction of processing, or object to certain processing;
  • Request portability of data you provided where processing is based on consent or contract and carried out by automated means;
  • Withdraw consent where we rely on consent (not usually the main basis for this Site);
  • Lodge a complaint with the UK Information Commissioner’s Office (ico.org.uk) or, in some circumstances, with another supervisory authority.

To exercise rights, contact hello@jivaconsultancy.co.uk. We may need to verify your identity.

9. Security

We implement appropriate technical and organisational measures to protect personal data. No transmission over the internet is completely secure; you should use secure channels when sending sensitive information and avoid including unnecessary personal data in initial enquiries.

10. Children

The Site is directed at businesses and adults. We do not knowingly collect personal data from children.

11. Changes to this policy

We may update this policy from time to time. The “Last updated” date at the top will change when we do. Material changes may also be highlighted on the Site where appropriate.

12. Contact

Questions about this policy: hello@jivaconsultancy.co.uk.