Privacy Policy

Effective Date: October 28, 2025

Last Updated: October 28, 2025

Introduction

Consultancy Company ("we," "our," or "us") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, engage our services, or interact with us through any channel.

By using our website or services, you consent to the data practices described in this policy. If you do not agree with this policy, please discontinue use of our services.

Information We Collect

Personal Information You Provide

We collect information that you voluntarily provide to us, including:

  • Contact Information: Name, email address, phone number, company name, job title, and mailing address
  • Professional Information: Resume/CV, work history, educational background, certifications, and professional references (for career applications)
  • Communication Data: Information contained in inquiries, feedback, support requests, or other communications with us
  • Service Engagement Data: Project requirements, business challenges, industry sector, and organizational information
  • Account Credentials: Username, password, and security questions (if you create an account)
  • Payment Information: Billing address and payment card details (processed securely through third-party payment processors)
Information Automatically Collected

When you visit our website, we automatically collect certain information:

  • Device Information: IP address, browser type, operating system, device identifiers
  • Usage Data: Pages viewed, time spent on pages, navigation paths, referring/exit pages
  • Location Data: General geographic location based on IP address
  • Cookies and Tracking Technologies: Information collected through cookies, web beacons, and similar technologies
Information from Third-Party Sources

We may receive information about you from:

  • Business Partners: Clients who engage us for consulting services on your behalf
  • Public Sources: Publicly available information from professional networks, company websites, and industry publications
  • Data Providers: Business contact information from legitimate data aggregators
  • Social Media: Information from professional networking platforms when you interact with our content

How We Use Your Information

We use collected information for the following purposes:

Service Delivery
  • Provide consulting services and deliver project outcomes
  • Communicate regarding engagements, deliverables, and project updates
  • Customize solutions to meet your specific business requirements
  • Conduct research, analysis, and assessments as part of consulting engagements
Business Operations
  • Process applications for career opportunities
  • Respond to inquiries and provide customer support
  • Send administrative information, updates, and notices
  • Maintain and improve our website functionality and user experience
  • Conduct internal quality assurance and training
Marketing and Communications
  • Send newsletters, insights, reports, and thought leadership content
  • Inform you about our services, events, and webinars
  • Personalize marketing communications based on your interests
  • Analyze marketing campaign effectiveness
Legal and Security
  • Comply with legal obligations and regulatory requirements
  • Protect against fraud, unauthorized access, and security threats
  • Enforce our Terms and Conditions and other policies
  • Resolve disputes and investigate complaints
Analytics and Improvement
  • Understand how visitors use our website
  • Identify trends and improve our services
  • Develop new offerings and capabilities
  • Conduct market research and competitive analysis

Legal Basis for Processing (GDPR)

For users in the European Economic Area (EEA), we process personal data based on:

  • Consent: You have given explicit consent for specific processing activities
  • Contractual Necessity: Processing is necessary to fulfill our contractual obligations
  • Legal Obligations: Processing is required to comply with applicable laws
  • Legitimate Interests: Processing serves our legitimate business interests while respecting your rights

How We Share Your Information

We do not sell your personal information. We may share your information in the following circumstances:

Service Providers and Partners

We engage trusted third-party service providers who assist with:

  • Cloud hosting and data storage
  • Email delivery and marketing automation
  • Payment processing
  • Analytics and performance monitoring
  • Customer relationship management (CRM)
  • Professional services (legal, accounting, auditing)

These providers are contractually obligated to protect your information and use it only for specified purposes.

Business Transfers

In connection with any merger, acquisition, asset sale, or restructuring, your information may be transferred as part of the business assets.

Legal Requirements

We may disclose information when required by law or in response to:

  • Court orders, subpoenas, or legal processes
  • Government or regulatory requests
  • Protection of our rights, property, or safety
  • Investigation of fraud or security incidents
  • Enforcement of our agreements and policies
With Your Consent

We may share information for purposes not described in this policy with your explicit consent.

Data Security

We implement robust security measures to protect your information:

  • Encryption: Data in transit is protected using SSL/TLS encryption
  • Access Controls: Strict authentication and authorization protocols
  • Network Security: Firewalls, intrusion detection, and monitoring systems
  • Physical Security: Secure data centers with controlled access
  • Employee Training: Regular security awareness and data protection training
  • Incident Response: Procedures for detecting, responding to, and reporting security incidents

Despite these measures, no system is completely secure. We cannot guarantee absolute security of your information.

Data Retention

We retain your information for as long as necessary to:

  • Fulfill the purposes described in this Privacy Policy
  • Comply with legal, accounting, or reporting requirements
  • Resolve disputes and enforce our agreements
  • Maintain business records and historical archives

Retention periods vary based on information type and applicable regulations. When information is no longer needed, we securely delete or anonymize it.

Your Rights and Choices

Access and Correction

You have the right to access and update your personal information. Contact us to review or correct your data.

Opt-Out of Marketing

You can unsubscribe from marketing emails using the link provided in each communication or by contacting us directly.

Cookie Management

You can control cookies through your browser settings. Note that disabling cookies may affect website functionality.

Data Portability

You may request a copy of your data in a structured, commonly used format.

Deletion Request

You can request deletion of your personal information, subject to legal retention requirements.

GDPR Rights (EEA Residents)
  • Right to object to processing
  • Right to restrict processing
  • Right to withdraw consent
  • Right to lodge a complaint with supervisory authorities
CCPA Rights (California Residents)
  • Right to know what information is collected
  • Right to know if information is sold or disclosed
  • Right to opt-out of sale (we do not sell personal information)
  • Right to non-discrimination for exercising privacy rights

To exercise these rights, contact us at hello@acheia.co or 1300 400 200.

Cookies and Tracking Technologies

We use cookies and similar technologies to:

  • Essential Cookies: Enable core website functionality
  • Performance Cookies: Analyze website usage and performance
  • Functional Cookies: Remember your preferences and settings
  • Targeting Cookies: Deliver relevant advertising and measure campaign effectiveness

You can manage cookie preferences through your browser settings or our cookie consent tool.

Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies.

Children's Privacy

Our services are not directed to individuals under 18. We do not knowingly collect information from children. If we discover we have collected such information, we will promptly delete it.

International Data Transfers

Your information may be transferred to and processed in countries outside your residence. We ensure appropriate safeguards are in place, including:

  • Standard Contractual Clauses approved by relevant authorities
  • Privacy Shield frameworks (where applicable)
  • Adequacy decisions by regulatory bodies

Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. We will notify you of material changes by:

  • Posting the updated policy on our website
  • Updating the "Last Updated" date
  • Sending email notifications for significant changes

Your continued use of our services after changes constitutes acceptance of the updated policy.

Contact Information

For questions, concerns, or requests regarding this Privacy Policy or your personal information:

Consultancy Company

Email: hello@acheia.co

Phone: 1300 400 200

Address: [Your Business Address]

Data Protection Officer: privacy@acheia.co

Join the Chilli Club

The “Join the Chilli Club” section will encourage users to become part of the chilli community.

Join