Acclaro Advisory is committed to maintaining the security of our clients and subscribers’ data as a matter of priority and to respecting privacy rights.  Personal data is always handled fairly and legally. Acclaro Advisory are dedicated to transparency of data, what data is collected & held and how it is utilised. Our privacy policy provides you with information about how we use your data, the specific personal data we collect, how we ensure your privacy is maintained; and your rights relating to your personal data.

How Data is Used

Acclaro Advisory uses your personal data:

  • With your consent, to contact you with electronic communications of our news, events and any suitable services which we think may be of interest.
  • Where we have a legal right or duty to use or disclose your information (for example in relation to an investigation by a public authority or in a legal dispute).

You have the right and ability to opt out of receiving our communications at any time, by updating or changing your profile and marketing preferences via the ‘Manage your preferences’ and ‘unsubscribe’ links provided in all newsletters. Contact can also be made directly with Acclaro Advisory by email or phone.

Sharing Data with Third Parties

Acclaro Advisory only holds your data on database or mailing lists where the software is compliant and applies appropriate data protection and security controls. We contract with IT service providers who comply with data protection and security regulations. We do not share personal data with any other service providers.

Third Parties

We will never sell or rent any of our customer data to other organisations for marketing purposes.

Your data may only be shared with:

  • our carefully selected partners who provide services (for example ESOS auditors), if we have your consent to do so;
  • credit reference agencies where necessary for payments;
  • governmental bodies, regulators, law enforcement agencies, courts/tribunals and insurers where we are required to do so:
    • to comply with our legal obligations;
    • to exercise our legal rights (for example in court cases);
    • for the prevention, detection, investigation of crime or prosecution of offenders; and
    • for the protection of our employees and customers.

Website visitors only

Information we receive when you visit our website, is only collected in aggregate so your details remain anonymous. This may be used:

To personalise your experience

Your information helps us to better respond to your individual needs within your visit.

To improve our website

We continually strive to improve our website offering, based on the information and feedback we receive from your visit.

Do we use cookies

Yes. Cookies are small files that a site or its service provider transfers to your computer’s hard drive through your web browser that (if you allow) enables the site’s or service provider’s systems to recognise your browser and capture and remember certain information. You can find more info on how to control cookies on your computer at

International Data Transfer

When delivering some of our services to you, it is sometimes necessary to share your data outside of the European Economic Area. This will occur when service providers are located outside the EEA or if you are based outside the EEA. These transfers are subject to particular rules under data protection laws. In these cases, Acclaro Advisory ensure that the transfer will be compliant with data protection law and all personal data will be secure. Our standard practice is to use ‘standard data protection clauses’ which have been approved by the European Commission for such transfers.

How long do we keep your data

We only hold data for as long as is necessary for the purposes set out in this Policy. Although there are differences in the retention periods applied for different types of data, the longest we will normally hold any personal data is 6 years.

Breach of data policy

A data breach needs to be reported to a Manager at Acclaro Advisory immediately. The breach must then be contained and assessed before determining whether it is necessary to notify the competent supervisory authority, and to communicate the breach to the individuals concerned.

Review of policy

This policy will be reviewed periodically to ensure relevance and effectiveness.

Sunil Shah
Managing Director, Acclaro Advisory
June 2024