Privacy Policy

Last updated: 23 January 2026

1) Who we are

Axis Consulting Group Ltd  (“we”, “us”) is a UK consulting firm providing services such as finance advisory and business consulting.

We are committed to protecting the privacy and security of your personal information.

  • Address: 71-75 Shelton Street, London, England, WC2H 9JQ 
  • Email: info@axiscg.co.uk
  • Phone: +44 7708 774742

2) What this policy covers

This policy explains what personal data we collect, how we use it, our legal bases, who we share it with, how long we keep it, and your rights under UK data protection law. 

3) Personal data we collect

Depending on how you interact with us (client, client contact, supplier, job applicant, website user), we may collect:

  • Identity & contact details: name, job title, company, address, email, phone
  • Client service information: financial and business information needed to deliver services 
  • Verification information (where required): ID documents and proof of address
  • Website/communications data: emails/calls with us, and basic website analytics/cookie data (if applicable)
  • Special category data (limited): We typically do not collect sensitive or special categories of personal data about individuals. This is only where necessary and handled with additional safeguards. 

4) Where we get your data from

We collect data from:

  • you directly – for example – business cards, forms, emails, meetings and phone calls
  • your organisation – if you are a contact at a client/supplier
  • public/professional sources -e.g., Companies House, firm websites, professional networks, news articles, sanctions list, and internet searches.
  • third parties – e.g., software providers, payment providers, verification/AML screening providers where lawful and relevant.

5) How we use your data

We use personal data to:

  • deliver our services and manage our relationship with you (including billing and administration)
  • meet legal and regulatory obligations, including customer due diligence/AML checks where applicable 
  • communicate with you about our work, requests for information, deadlines, and updates
  • improve our services and maintain quality, risk, and compliance controls
  • recruitment (if you apply for a role)
  • marketing (where permitted): sending insights, updates or event invitations, with an easy opt-out. 

6) Our lawful bases (UK GDPR)

We process personal data using one or more of the following lawful bases:

  • Contract – to provide services or take steps at your request 
  • Legal obligation – to comply with laws/regulations (including AML/CFT requirements where relevant) 
  • Legitimate interests – to run our business, provide services effectively, and manage relationships (balanced against your rights)
  • Consent – typically for certain marketing and for some uses of special category data (you can withdraw consent at any time). 

7) Who we share your data with

We may share personal data with:

  • our representatives or contractors who need it to deliver services (under confidentiality)
  • service providers (e.g., IT hosting, document management, practice management, payroll software)
  • professional advisers (e.g., legal, insurers, auditors)
  • regulators, HMRC or law enforcement where legally required
  • verification/AML providers where applicable to meet legal obligations. 

We will not release your information to third parties to use for their own direct marketing purposes, unless you have requested us to do so, or we are required to do so by law, for example, by a court order or for the purposes of prevention of fraud or other crime.

We may transfer your personal information to a third party as part of a sale of some or all of our business and assets to any third party or as part of any business restructuring or reorganisation, or if we’re under a duty to disclose or share your personal data in order to comply with any legal obligation or to enforce or apply our terms of use or to protect the rights, property or safety of our supporters and customers. However, we will take steps with the aim of ensuring that your privacy rights continue to be protected.

We only share what is necessary and use appropriate contracts and safeguards.

8) How long we keep your data

We keep personal data only as long as needed for the purposes above, including legal, tax, audit, regulatory, and limitation period requirements. Where we cannot specify a fixed period, we use retention criteria recommended by regulators (e.g., nature of the service, legal obligations, and potential disputes). 

9) Your rights

Under UK data protection law, you have the following rights in relation to your personal data:

  1. Right to be informed
    You have the right to be given clear, transparent and easily understandable information about how we collect and use your personal data, and about your rights. 
  2. Right of access
    You have the right to ask for a copy of the personal data we hold about you and to receive certain supplementary information about how we use it. 
  3. Right to rectification
    You have the right to ask us to correct personal data we hold about you if it is inaccurate, or to complete it if it is incomplete. 
  4. Right to erasure
    You have the right to ask us to delete your personal data in certain circumstances (this is sometimes called the “right to be forgotten”). This right is not absolute and may not apply where we have a lawful reason to keep the data. 
  5. Right to restrict processing
    You have the right to ask us to restrict (limit) how we use your personal data in certain circumstances. Where processing is restricted, we may still store your data, but we will limit how we use it. 
  6. Right to data portability
    In certain circumstances, you have the right to receive personal data you have provided to us in a structured, commonly used and machine-readable format, and to ask us to transfer it to another organisation where technically feasible. 
  7. Right to object
    You have the right to object to our processing of your personal data in certain circumstances. You also have an absolute right to object to processing for direct marketing. 
  8. Rights related to automated decision-making and profiling
    You have rights in relation to decisions made solely by automated means (with no human involvement) that have legal or similarly significant effects, including certain rights connected to profiling. 
  9. Right to withdraw consent
    Where we rely on your consent to process your personal data, you have the right to withdraw that consent at any time. (Withdrawing consent does not affect the lawfulness of processing before it was withdrawn.) 
  10. Right to lodge a complaint
    You have the right to complain to the Information Commissioner’s Office (ICO), the UK data protection regulator, if you are unhappy with how we handle your personal data. 

How to exercise your rights

  • Requests are usually free of charge. However, we may charge a reasonable fee (or refuse a request) if it is manifestly unfounded or excessive, or if you request further copies of the same information. 
  • We will respond without undue delay and within one month. If your request is complex or you make multiple requests, we may extend this by up to two further months, but we will tell you and explain why. 
  • We may ask for information to confirm your identity before we respond. 

10) Marketing choices

You can opt out of marketing at any time (e.g., using an unsubscribe link or by emailing us). If you opt out, we will stop marketing to you, but we may still contact you about the services we provide. 

11) Complaints

If you have concerns, please contact us first (section 1). You also have the right to complain to the Information Commissioner’s Office (ICO). 

Book Consultation
Book Consultation