1. Who We Are
Oxara Consulting Ltd is the data controller for the personal data covered by this Privacy Policy.
Oxara Consulting Ltd is registered with the UK Information Commissioner's Office (ICO) as a data controller. ICO registration reference: ZC099679.
Company name: Oxara Consulting Ltd
Company number: 17060695
Registered office: 71–75 Shelton Street, Covent Garden, London WC2H 9JQ
Email: contact@oxaraconsulting.co.uk
Telephone: 07932 393239
Website: www.oxaraconsulting.co.uk
2. What Personal Data We May Collect
Depending on how you interact with us, we may collect and process the following categories of personal data, including information provided directly by you or shared with us by clients in the course of consultancy or regulatory engagements:
- name, job title, organisation name, and contact details;
- email correspondence, enquiry details, and records of communications with us;
- information you provide when requesting consultancy support, a call back, or further information about our services;
- website usage data that is generated through standard server logs, security monitoring, or essential website functionality; and
- any other information you choose to provide directly to us.
3. How We Collect Personal Data
We collect personal data directly from you when you contact us by email, telephone, website form, or any other direct means. We may also receive limited technical information automatically when you visit our website, such as server log data or security-related information.
4. Why We Use Personal Data
We use personal data to:
- respond to enquiries and requested communications;
- provide consultancy services and manage client relationships;
- prepare proposals, service information, and business correspondence;
- maintain website security, functionality, and performance; and
- meet legal, regulatory, and business record-keeping obligations.
5. Our Lawful Bases
Under the UK GDPR, our lawful bases for processing personal data may include:
- legitimate interests, where it is necessary for us to respond to business enquiries, manage our services, and operate our website responsibly;
- contract, where processing is necessary to take steps before entering into a contract or to perform a contract with you or your organisation;
- legal obligation, where we need to comply with applicable legal or regulatory requirements; and
- consent, where consent is specifically required and obtained.
6. How Long We Keep Personal Data
We keep personal data only for as long as necessary for the purpose for which it was collected, including to satisfy legal, regulatory, contractual, accounting, and record-keeping requirements. Retention periods may vary depending on the nature of the enquiry, service, or relationship involved.
7. Sharing Personal Data
We may share personal data where necessary with trusted service providers who support our business operations, such as website hosting, IT, communications, or professional advisers. We may also disclose information where required by law, regulation, court order, or other lawful authority.
Any third parties acting on our behalf are expected to process personal data only on appropriate instructions and with suitable safeguards in place.
8. International Transfers
Where personal data is transferred outside the United Kingdom, we will take appropriate steps to ensure that the data is protected in line with applicable data protection requirements.
9. Cookies and Website Technologies
Our website may use cookies or similar technologies where necessary for basic site operation, security, and performance. If we introduce any non-essential cookies or similar technologies, we will apply them in line with applicable legal requirements and any consent requirements that apply at that time.
10. Your Rights
Under the UK GDPR, you may have rights in relation to your personal data, including the right to:
- be informed about how your data is used;
- request access to your personal data;
- request correction of inaccurate or incomplete data;
- request erasure in certain circumstances;
- request restriction of processing in certain circumstances;
- object to processing in certain circumstances; and
- request data portability where applicable.
To exercise your rights, please contact us using the details on this page.
11. Complaints
If you have concerns about how we use personal data, please contact us first so that we can try to resolve the issue. You also have the right to complain to the Information Commissioner's Office.
12. Updates to This Privacy Policy
We may update this Privacy Policy from time to time to reflect legal, operational, or website changes. The latest version will always be published on this page.
Last updated: 6 March 2026
For any questions regarding this Privacy Policy contact us at Tel: 07932 393239 | contact@oxaraconsulting.co.uk | www.oxaraconsulting.co.uk