Privacy Policy

XRM Solutions UK ("we", "our", "us") is committed to protecting and respecting your privacy.

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, engage our services, contact us, or otherwise interact with us.

We are committed to handling personal data in accordance with:

  • the UK General Data Protection Regulation ("UK GDPR")
  • the EU General Data Protection Regulation ("EU GDPR"), where applicable
  • the Data Protection Act 2018
  • and other applicable privacy laws

Last updated: May 10, 2026

Who We Are

XRM Solutions UK
86-90 Paul Street, London, EC2A 4NE, United Kingdom
Email: info@xrmsolutionsuk.com
Website: https://www.xrmsolutionsuk.com

For the purposes of data protection law, XRM Solutions UK is the “data controller” for personal data collected through this website and our business operations.

Information We Collect

We may collect and process the following categories of personal data:

Information You Provide Directly
  • Name
  • Business email address
  • Telephone number
  • Company name
  • Job title
  • Project or enquiry details
  • Recruitment/CV information
  • Communication and correspondence

Information Collected AutomaticallyWhen you use our website, we may automatically collect:
  • IP address
  • Browser type and version
  • Device identifiers
  • Operating system
  • Referral source
  • Pages visited
  • Time and date of access
  • Usage and analytics data

Information Collected from Third PartiesWe may receive information from:
  • CRM platforms
  • Recruitment agencies
  • Analytics providers
  • Marketing platforms
  • Publicly available professional profiles (e.g. LinkedIn)

How We Use Your Information

We use personal data for the following purposes:
  • Responding to enquiries and requests
  • Providing consultancy and professional services
  • Managing client relationships
  • Improving our website, services, and user experience
  • Security monitoring and fraud prevention
  • Recruitment and hiring processes
  • Sending business communications and marketing materials (where permitted)
  • Compliance with legal and regulatory obligations

Legal Bases for Processing

We process personal data under one or more of the following lawful bases:

Legitimate Interests

Including:
  • Operating and improving our business
  • Responding to enquiries
  • Maintaining client relationships
  • Ensuring website and network security

Contractual Necessity

Where processing is necessary:
  • To enter into a contract
  • Or to perform our contractual obligations

Consent

Where required by law, including certain marketing communications and non-essential cookies.

Legal Obligation

Where we are required to comply with legal or regulatory requirements.

Cookies and Tracking Technologies

Our website may use cookies and similar technologies to:
  • Operate essential website functionality
  • Analyse website traffic
  • Improve user experience
  • And supporting marketing activities

Non-essential cookies will only be used where you have provided consent.

For more information, please see our Cookie Policy

Sharing Your Information

We may share personal data with trusted third parties where necessary, including:
  • Cloud hosting providers
  • IT and security service providers
  • CRM and communication platforms
  • Analytics providers
  • Professional advisers
  • Recruitment platforms
  • Regulatory authorities where legally required

We require all third parties to respect the security and confidentiality of personal data.

International Data Transfers

As a cloud-first consulancy serving international clients, some personal data may be transferred outside the United Kingdom or European Economic Area.

Where international transfers occur, we implement appropriate safeguards, including:
  • UK International Data Transfer Agreements
  • Standard Contractual Clauses (SCCs)
  • Adequacy decisions
  • Or equivalent lawful mechanisms

Data Security

We implement appropriate technical and organisational measured designed to protect personal data against:
  • Unauthorised access
  • Disclosure
  • Alteration
  • Loss
  • Or destruction

These measures may include:
  • Encryption
  • Access controls
  • Multi Factor Authentication (MFA)
  • Monitoring and logging
  • Secure cloud infrastructure
  • And staff confidentiality obligations

No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

Data Retention

We retain personal data only for as long as reasonably necessary to:
  • Fulfil the purposes described in this policy
  • Comply with legal obligations
  • Resolve disputes
  • And enforce agreements

Retention periods vary depending on the nature of the data and applicable legal requirements.

Your Rights

Depending on your location and applicable law, you may have the right to:
  • Access your personal data
  • Request correction of inaccurate data
  • Request deletion of your data
  • Object to processing
  • Restrict processing
  • Request data portability
  • Withdraw consent
  • Lodge a complaint with a supervisory authority

To exercise your rights, please contact us using the details below.

Marketing Communications

We may send business-related communications where permitted by law.

You may opt out of marketing communications at any time by:
  • Using the unsubscribe link in emails
  • Or contacting us directly

Recruitment Data

If you apply for a role with XRM Solutions UK, we may process:
  • CVs
  • Employment history
  • Qualifications
  • Interview notes
  • And recruitment-related communications

Recruitment information will only be used for recruitment and hiring purposes unless otherwise agreed.

Third-Party Websites

Our website may contain links to third-party websites or services.

We are not responsible for the privacy practices or content of third-party sites.

Changes to This Privacy Policy

We may update this privacy policy from time to time.

Any updates will be posted on this page with an updated revision date.