Privacy Policy
The Sixsess Consultancy
Effective date: April 29, 2025
1. Who We Are
This Privacy Policy explains how Sixsess Ltd (trading as The Sixsess Consultancy) collects, uses, shares, and protects your personal data when you interact with us, including through our website: https://sixsess.org.
- Company Name: Sixsess Ltd
- Trading Name: The Sixsess Consultancy
- Company Address: The Director General’s House, 15 Rockstone Place, Southampton, SO15 2EP, United Kingdom
- Email Contact: clientservices@sixsess.org
- ICO Registration Number: ZB495571.
2. Scope of This Policy
This policy applies to personal data collected through:
- Our website (https://sixsess.org)
- Email and other direct communications
- Contact forms, comment sections, and subscriptions
- Training and consultancy service enquiries and transactions.
3. What Personal Data We Collect
We may collect the following categories of data:
a) Information You Provide Directly:
- Name, job title, organisation
- Email address and telephone number
- Comments, messages, or form submissions
- Media uploads (images or documents).
b) Information We Collect Automatically:
- IP address and browser/device information
- Website usage data (pages visited, time spent, referral source)
- Cookie and tracking data (see Section 7).
4. Lawful Basis for Processing
We process personal data under the following lawful bases under UK and EU GDPR:
| Purpose | Lawful Basis |
|---|---|
| Responding to enquiries or client requests | Legitimate interests |
| Delivering training and consultancy | Contractual necessity |
| Sending updates or marketing emails | Consent |
| Website analytics and improvement | Consent |
| Compliance with legal obligations | Legal obligation |
You may withdraw consent at any time by emailing clientservices@sixsess.org or using opt-out links in communications.
5. Your Data Protection Rights
Under the UK and EU GDPR, you have the right to:
- Access – Request a copy of your personal data
- Rectification – Request corrections to inaccurate data
- Erasure – Request deletion of your data where legally permitted
- Restriction – Limit how your data is used
- Objection – Object to certain types of processing
- Data portability – Request your data in a usable format
- Withdraw consent – Withdraw any consent previously given
To exercise any of these rights, contact us at clientservices@sixsess.org. We aim to respond within one calendar month.
6. Data Retention
We retain your personal data only as long as necessary for the purposes set out in this policy:
| Data Type | Retention Period |
|---|---|
| Enquiry and contact form data | 12 months |
| Training and consultancy data | Up to 6 years (for legal/tax reasons) |
| Email marketing records | Until unsubscribed |
| Comments or posts | Indefinitely or until deletion is requested |
| Website analytics | 14 months (default for Google Analytics) |
7. Cookies and Tracking Technologies
We use cookies and similar technologies to:
- Enable site functionality
- Analyse traffic and usage trends
- Remember user preferences
- Improve performance
You can manage your cookie preferences via our Cookie Banner when you first visit the site or via your browser settings. Full details can be found in our Cookie Settings.
8. Sharing Your Personal Data
We may share your personal data with:
- Service providers (e.g. hosting, analytics, email platforms)
- Regulatory bodies or authorities, if legally required
- Professional advisers, for legal or compliance matters
- Successors, in case of business sale, merger or reorganisation
We do not sell your personal data to any third party.
9. International Transfers
If your data is transferred outside the UK or EU (e.g. to hosting or email platforms):
- We ensure an adequacy decision is in place; or
- We use Standard Contractual Clauses (SCCs) or other lawful safeguards.
These measures ensure that your data remains protected to GDPR standards.
10. Data Security
We implement appropriate technical and organisational measures in accordance with Article 32 of the GDPR, including:
- HTTPS and SSL encryption
- Firewalls and access controls
- Regular security updates and data minimisation practices
No system is 100% secure, but we take commercially reasonable steps to safeguard your information.
11. Children’s Data
Our services and website are not intended for children under 16. We do not knowingly collect personal data from children. If you believe your child has submitted data to us, please contact clientservices@sixsess.org and we will delete it promptly.
12. Changes to This Privacy Policy
We may update this Privacy Policy to reflect changes in legal requirements or our data practices. Any updates will be published on this page with a revised effective date.
For significant changes, we will provide notice on our website or via email if applicable.
13. Contact Us
If you have any questions or wish to exercise your data rights, please contact:
Data Protection Officer (DPO) Email: clientservices@sixsess.org Postal Address: The Director General’s House, 15 Rockstone Place, Southampton, SO15 2EP, United Kingdom.
This Privacy Policy complies with the UK GDPR, the EU General Data Protection Regulation (EU GDPR), and applicable UK and EU privacy legislation as of 29 April 2025.