Privacy Policy

McKenzie Thorpe AI Solutions

Last updated: 18th August 2025

1. Introduction

McKenzie Thorpe ("we," "our," or "us") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, process, and protect your information when you use our AI consultancy services or visit our website.

We are based in the United Kingdom and comply with applicable data protection laws, including the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

By using our services or website, you consent to the collection and use of information in accordance with this policy.

2. Information We Collect

Personal Information You Provide

We collect information you voluntarily provide to us, including:

  • Contact Information: Name, email address, phone number, company name
  • Business Information: Industry, company size, business challenges, project requirements
  • Communication Content: Messages, emails, and other correspondence
  • Project Data: Information provided for consultancy services, content creation, or AI implementation

Information Automatically Collected

When you visit our website, we may automatically collect:

  • Technical Information: IP address, browser type, device information, operating system
  • Usage Data: Pages visited, time spent on site, referral sources
  • Cookies and Tracking: Information stored by cookies and similar technologies

3. How We Use Your Information

We use your personal information for the following purposes:

Service Delivery

  • Providing AI consultancy and related services
  • Creating content and implementing solutions
  • Communicating about projects and deliverables
  • Managing client relationships and accounts

Business Operations

  • Processing payments and managing invoices
  • Responding to enquiries and providing support
  • Improving our services and website functionality
  • Complying with legal obligations

Marketing and Communication

  • Sending service updates and relevant information
  • Marketing our services (with your consent)
  • Creating anonymised case studies (with permission)

4. AI Platform Data Processing

Our services utilise various AI platforms including ChatGPT, Perplexity, GenSpark, Abacus, and Manus. When providing services:

  • Data Sharing: We may input client data into AI platforms to deliver requested services
  • Third-Party Policies: AI platforms have their own privacy policies and data processing practice
  • Data Minimisation: We only share necessary information required for service delivery
  • Anonymisation: Where possible, we anonymise or pseudonymise data before AI processing
  • Consent: We obtain explicit consent before processing sensitive business information through AI platforms

We recommend clients review the privacy policies of AI platforms we use on their behalf and inform us of any restrictions on data processing.

5. Legal Basis for Processing

Under UK GDPR, we process your personal data based on the following legal grounds:

  • Contract Performance: Processing necessary to perform our consultancy services
  • Legitimate Interests: Business operations, service improvement, and client relationship management
  • Consent: Marketing communications and optional data processing
  • Legal Obligation: Compliance with accounting, tax, and other legal requirements

6. Data Sharing and Disclosure

We may share your information in the following circumstances:

Service Providers

  • AI platforms necessary for service delivery
  • Email and communication service providers
  • Payment processors and financial institutions
  • Cloud storage and hosting providers

Legal Requirements

  • When required by law or legal process
  • To protect our rights and interests
  • To prevent fraud or security threats

We do not sell, rent, or trade your personal information to third parties for marketing purposes.

7. Data Security

We implement appropriate technical and organisational measures to protect your personal data:

  • Encryption: Data in transit and at rest is encrypted where technically feasible
  • Access Controls: Limited access to personal data on a need-to-know basis
  • Regular Updates: Security systems and software are regularly updated
  • Staff Training: Team members are trained on data protection requirements
  • Incident Response: Procedures in place for data breach notification and response

However, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security but strive to use commercially acceptable means to protect your data.

8. Data Retention

We retain your personal data only as long as necessary for the purposes outlined in this policy:

  • Active Clients: Throughout the duration of our business relationship
  • Project Data: Up to 7 years after project completion for business and legal purposes
  • Financial Records: 7 years as required by UK tax and accounting regulations
  • Marketing Data: Until consent is withdrawn or contact becomes inactive
  • Website Analytics: Typically 26 months for Google Analytics data

After the retention period, we securely delete or anonymise your personal data unless longer retention is required by law.

9. Your Rights

Under UK GDPR, you have the following rights regarding your personal data:

  • Right of Access: Request copies of your personal data
  • Right to Rectification: Request correction of inaccurate or incomplete data
  • Right to Erasure: Request deletion of your personal data in certain circumstances
  • Right to Restrict Processing: Request limitation of how we use your data
  • Right to Data Portability: Request transfer of your data in a structured format
  • Right to Object: Object to processing based on legitimate interests
  • Right to Withdraw Consent: Withdraw consent for consent-based processing

To exercise these rights, please contact us using the details provided in Section 13. We will respond within one month of receiving your request.

10. Cookies and Website Analytics

Our website uses cookies and similar technologies to improve functionality and user experience:

Essential Cookies

  • Necessary for website functionality
  • Remember your preferences and settings
  • Ensure security and prevent fraud

Analytics Cookies

  • Help us understand how visitors use our website
  • Provide insights for website improvements
  • Generate anonymised usage statistics

You can control cookies through your browser settings. However, disabling certain cookies may affect website functionality.

11. International Data Transfers

Some of our service providers, including AI platforms, may be located outside the UK/EU. When transferring data internationally:

  • We ensure appropriate safeguards are in place
  • We use providers with adequate data protection measures
  • We implement standard contractual clauses where required
  • We obtain consent for transfers where necessary

We take steps to ensure your data receives adequate protection regardless of where it is processed.

12. Children's Privacy

Our services are not directed at children under 16 years of age. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete such information promptly.

13. Contact Information and Complaints

If you have questions about this Privacy Policy or wish to exercise your data protection rights, please contact us:

McKenzie Thorpe
Email: hello@mckenziethorpe.co.uk
Phone: +44 (0) 7894 666 286
United Kingdom

If you are not satisfied with our response to your privacy concerns, you have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK's data protection supervisory authority:

Information Commissioner's Office
Website: ico.org.uk
Phone: 0303 123 1113
Postal Address: Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practice, services, or legal requirements. We will:

  • Post the updated policy on our website
  • Update the "Last updated" date at the top of this policy
  • Notify you of significant changes via email where appropriate
  • Obtain consent for material changes that affect your rights

We encourage you to review this Privacy Policy periodically to stay informed about our data practice.

15. Consent and Acceptance

By using our services or website, you acknowledge that you have read and understood this Privacy Policy and agree to the collection, use, and processing of your personal data as described herein.

If you do not agree with any aspect of this Privacy Policy, please do not use our services or website.

This privacy policy is effective as of 18th August 2025 and supersedes all previous privacy notices.

Back to Main Site