Privacy Policy

Last Update :

Nov 6, 2025

Introduction

Welcome to www.acgl.uk.com (our global website) and www.acgl.ae (our regional website for the Middle East). Aureus Consulting Group Limited is committed to protecting the privacy and security of your personal information. This Privacy Policy outlines how we collect, use, and safeguard your data when you use our websites or our professional advisory services.

Last Updated: January 2025

Global Data Controller:
Aureus Consulting Group Limited
Suite no. 12, Dunraven Street
London, United Kingdom, W1K 7FQ
Company Registration: [UK Company Number]
Email: info@acgl.uk.com

Regional Office (Middle East):
Aureus Consulting Group Limited (DIFC)
Office 1502 A, Tower 2, Al Fattan Currency House, DIFC
Dubai, United Arab Emirates
Email: info@acgl.ae

Information We Collect

Personal Information

When you register an account, request a consultation, or use our M&A advisory services, we may collect personal information such as:

  • Full name and professional title

  • Company name and business information

  • Email address and phone number

  • Billing and payment information

  • Professional background and transaction requirements

  • Communication preferences

  • Geographic location and jurisdiction

Usage Data

We gather information about how you interact with our websites (www.acgl.uk.com and www.acgl.ae) or services, including:

  • IP address and geographic location

  • Browser type and version

  • Pages visited and time spent on site

  • Device information (desktop, mobile, tablet)

  • Referral source and navigation patterns

  • Date and time of access

  • Language preferences

Cookies and Tracking Technologies

We use cookies and similar tracking technologies to:

  • Enhance your browsing experience

  • Remember your preferences and settings

  • Analyze website performance and user behavior

  • Deliver personalized content and advertisements

  • Track conversion events from marketing campaigns (Google Ads, LinkedIn Ads)

  • Determine regional website routing (global vs. regional)

Cookie Types Used:

  • Essential Cookies: Required for website functionality

  • Analytics Cookies: Google Analytics, heatmap tracking

  • Marketing Cookies: Google Ads conversion tracking, LinkedIn Insight Tag

  • Preference Cookies: Language selection, session management, regional preferences

You can manage cookie preferences through your browser settings or our cookie consent banner.

How We Use Your Information

We use the information we collect for the following purposes:

Service Delivery

  • Providing M&A advisory, due diligence, and transaction services globally

  • Scheduling and managing confidential consultations

  • Communicating about ongoing mandates and engagements

  • Processing payments and managing client accounts

  • Routing inquiries to appropriate regional offices

Business Operations

  • Personalizing your experience on our websites

  • Improving our service offerings and client experience

  • Conducting internal research and analysis

  • Maintaining security and preventing fraud

  • Managing global and regional operations

Communications

  • Responding to inquiries and consultation requests

  • Sending service updates, transaction alerts, and important notices

  • Sharing relevant industry insights, market reports, and thought leadership

  • Providing information about our M&A advisory services (with your consent)

  • Regional market updates and jurisdiction-specific insights

Legal and Compliance

  • Complying with regulatory requirements (UK FCA, DIFC, GDPR, UAE laws)

  • Maintaining professional standards and fiduciary obligations

  • Responding to legal requests and court orders

  • Protecting our rights and enforcing our terms of service

Analytics and Optimization

  • Analyzing usage trends and website performance across global and regional sites

  • Optimizing user experience and navigation

  • Measuring marketing campaign effectiveness

  • Conducting A/B testing and conversion rate optimization

  • Understanding regional market preferences

Data Sharing and Disclosure

Aureus Consulting Group Limited maintains strict confidentiality standards. We may share your information with third parties only in the following circumstances:

Within Our Organization

  • Between our London headquarters and regional offices (including Dubai DIFC)

  • With authorized personnel on a need-to-know basis

  • For coordinated global service delivery and client support

With Your Consent

  • When you explicitly authorize us to share information

  • When you direct us to communicate with third parties on your behalf

  • For specific transaction-related purposes with your approval

Service Providers

We may share data with trusted third-party service providers who assist us in:

  • Website hosting and technical infrastructure (Framer, AWS)

  • Email communications and CRM systems

  • Payment processing and billing

  • Analytics and marketing platforms (Google Analytics, LinkedIn)

  • Legal, accounting, and professional services

All service providers are contractually obligated to maintain confidentiality and use data only for specified purposes.

Legal Obligations

  • To comply with applicable laws, regulations, and legal processes in the UK, UAE, or other jurisdictions

  • To respond to lawful requests from government authorities

  • To comply with UK FCA, DIFC, or other regulatory requirements

  • To respond to court orders, subpoenas, or legal proceedings

Protection of Rights

  • To protect our rights, property, or safety globally

  • To protect the rights, property, or safety of our clients

  • To prevent fraud, security breaches, or illegal activities

  • To enforce our Terms of Service and client agreements

Business Transactions

  • In connection with a merger, acquisition, or sale of assets

  • During due diligence processes for corporate transactions

  • To successor entities following business restructuring

Important: We will never sell your personal information to third parties for marketing purposes.

Data Security

We implement industry-standard security measures to protect your personal information from unauthorized access, alteration, disclosure, or destruction:

Technical Safeguards

  • SSL/TLS encryption for data transmission across all websites

  • Secure server infrastructure with firewall protection

  • Regular security audits and vulnerability assessments

  • Multi-factor authentication for client portals

  • Encrypted data storage and backup systems

  • Redundant systems across UK and UAE data centers

Organizational Safeguards

  • Strict access controls and need-to-know policies

  • Employee confidentiality agreements and training

  • Secure document management systems

  • Regular security awareness training

  • Incident response and breach notification procedures

  • Global security standards across all offices

Physical Safeguards

  • Secure office facilities with access controls in London and Dubai

  • Locked storage for physical documents

  • Secure disposal of confidential materials

Disclaimer: While we implement robust security measures, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security but commit to maintaining best-practice standards globally.

International Data Transfers

Aureus Consulting Group Limited operates globally with offices in multiple jurisdictions:

Global Headquarters:
London, United Kingdom (Primary Operations)

Regional Offices:

  • Dubai, UAE (DIFC) - Middle East & GCC

  • Additional offices as established

Your personal information may be transferred to, stored, and processed in the United Kingdom, United Arab Emirates, or other countries where we or our service providers operate. We ensure appropriate safeguards are in place for cross-border data transfers in compliance with:

  • UK GDPR and Data Protection Act 2018 (Primary Framework)

  • EU Standard Contractual Clauses (for EU data transfers)

  • UAE Federal Decree-Law No. 45 of 2021 on Personal Data Protection

  • DIFC Data Protection Law No. 5 of 2020

  • International data transfer mechanisms as required by law

Data Transfer Safeguards:

  • Standard Contractual Clauses (SCCs) approved by UK/EU authorities

  • Binding Corporate Rules for intra-group transfers

  • Adequacy decisions where applicable

  • Explicit consent for specific transfers when required

Your Rights and Choices

Depending on your jurisdiction, you may have the following rights regarding your personal information:

Access and Portability

  • Request access to your personal information

  • Obtain a copy of your data in a structured, machine-readable format

  • Request details about how we process your information

Correction and Update

  • Update or correct inaccurate personal information

  • Complete incomplete data records

  • Modify your communication preferences

  • Update regional preferences (global vs. regional communications)

Deletion and Erasure

  • Request deletion of your account and personal data

  • Exercise your "right to be forgotten" (subject to legal obligations)

  • Request removal from marketing communications

Restriction and Objection

  • Restrict processing of your personal information

  • Object to direct marketing communications

  • Opt-out of promotional emails and newsletters

  • Withdraw consent for specific data processing activities

Marketing Communications

You can opt-out of promotional communications by:

  • Clicking "unsubscribe" in any marketing email

  • Contacting us at info@acgl.uk.com (global) or info@acgl.ae (regional)

  • Updating your preferences in your account settings

  • Specifying regional communication preferences

Note: You will continue to receive essential service-related communications even after opting out of marketing.

How to Exercise Your Rights

For Global Inquiries:
Email: privacy@acgl.uk.com or info@acgl.uk.com
Phone: +44-20-XXXX-XXXX
Mail: Suite no. 12, Dunraven Street, London, United Kingdom, W1K 7FQ

For Middle East Regional Inquiries:
Email: info@acgl.ae
Phone: +971-4-XXX-XXXX
Mail: Office 1502 A, Tower 2, Al Fattan Currency House, DIFC, Dubai, UAE

We will respond to your request within 30 days (or as required by applicable law in your jurisdiction).

Data Retention

We retain your personal information for as long as necessary to:

  • Fulfill the purposes outlined in this Privacy Policy

  • Comply with legal, regulatory, and professional obligations globally

  • Maintain records for potential legal claims

  • Provide ongoing services and support

Retention Periods:

  • Client Transaction Records: 7 years (UK regulatory requirement; may be longer in specific jurisdictions)

  • Marketing Communications: Until opt-out or 2 years of inactivity

  • Website Analytics: 26 months (Google Analytics default)

  • Consultation Requests: 3 years or until engagement begins

  • Regional-specific records: As required by local regulations

After the retention period expires, we will securely delete or anonymize your personal information in accordance with our global data retention policy.

Children's Privacy

Our M&A advisory services are intended for business professionals and are not directed to individuals under the age of 18. We do not knowingly collect or solicit personal information from minors.

If you believe that a child under 18 has provided us with personal information, please contact us immediately at info@acgl.uk.com (global) or info@acgl.ae (regional), and we will promptly delete such information from our systems.

Third-Party Links and Services

Our websites (www.acgl.uk.com and www.acgl.ae) may contain links to third-party websites, services, or resources that are not operated by Aureus Consulting Group Limited:

  • Industry publications and news sources

  • Professional associations and regulatory bodies

  • Partner organizations and service providers

  • Social media platforms (LinkedIn, Facebook)

Disclaimer: We are not responsible for the privacy practices or content of third-party websites. We encourage you to review the privacy policies of any external sites you visit.

Regional Website Routing

We operate two websites to serve our global and regional clients:

www.acgl.uk.com (Global Website - Primary)

  • Purpose: Global operations, international clients, UK/European markets

  • Language: English (primary), additional languages as available

  • Content: Global service offerings, international case studies, worldwide contact information

  • Audience: International clients, UK/European prospects, global partners

www.acgl.ae (Regional Website - Middle East)

  • Purpose: Middle East & GCC-specific services and content

  • Language: English (primary), Arabic (as available)

  • Content: Regional market insights, UAE/GCC-specific services, local contact information

  • Audience: Middle East clients, GCC prospects, regional partners

Automatic Routing:
We may use your IP address and browser settings to suggest the most appropriate website for your location. You can always manually select your preferred website.

Data Sharing Between Websites:
Information collected on either website may be shared within our organization to provide seamless global service delivery.

Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in:

  • Our business practices and service offerings

  • Legal or regulatory requirements in the UK, UAE, or other jurisdictions

  • Technology and security standards

  • Industry best practices

  • Global or regional operational changes

Notification of Changes:

  • We will post the updated policy on both www.acgl.uk.com and www.acgl.ae with a revised "Last Updated" date

  • For material changes, we will provide prominent notice on our websites

  • We may send email notifications to registered users

  • Continued use of our services after changes constitutes acceptance

We encourage you to review this Privacy Policy regularly to stay informed about how we protect your information.

Regulatory Compliance

Aureus Consulting Group Limited complies with:

Global Standards (Primary)

  • UK GDPR and Data Protection Act 2018

  • EU General Data Protection Regulation (GDPR) (where applicable)

  • UK Financial Conduct Authority (FCA) requirements

  • International data protection standards

Regional Standards (Middle East)

  • DIFC Data Protection Law No. 5 of 2020

  • UAE Federal Decree-Law No. 45 of 2021 on Personal Data Protection

  • GCC data protection regulations

Professional Standards

  • Professional confidentiality standards for M&A advisory services

  • Fiduciary obligations to clients

  • Industry codes of conduct

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Global Headquarters (Primary Contact)

Aureus Consulting Group Limited
Suite no. 12
Dunraven Street
London, United Kingdom, W1K 7FQ
Email: info@acgl.uk.com | privacy@acgl.uk.com
Phone: +44-20-XXXX-XXXX
Website: www.acgl.uk.com

Middle East Regional Office

Aureus Consulting Group Limited (DIFC)
Office 1502 A, Tower 2
Al Fattan Currency House, DIFC
Dubai, United Arab Emirates
Email: info@acgl.ae
Phone: +971-4-XXX-XXXX
Website: www.acgl.ae

Data Protection Officer

For specific data protection inquiries, you may contact our Data Protection Officer at:
Email: dpo@acgl.uk.com (Global)
Email: dpo@acgl.ae (Regional - Middle East)

Response Time: We aim to respond to all privacy inquiries within 5 business days.

Complaints and Disputes

If you believe your privacy rights have been violated, you have the right to lodge a complaint with:

United Kingdom (Primary Jurisdiction)

Information Commissioner's Office (ICO)
Website: www.ico.org.uk
Email: casework@ico.org.uk

UAE/DIFC (Regional)

DIFC Commissioner of Data Protection
Website: www.difc.ae

European Union (if applicable)

Your local data protection supervisory authority

© 2025 Aureus Consulting Group Limited. All Rights Reserved.

Global Website: www.acgl.uk.com
Regional Website (Middle East): www.acgl.ae

Summary of Key Points

www.acgl.uk.com is our global website (primary)
www.acgl.ae is our regional website for Middle East & GCC
✅ We collect personal and usage data to provide M&A advisory services globally
✅ Your information is protected with industry-standard security measures
✅ Data may be transferred between UK and UAE offices for service delivery
✅ We share data only with your consent or as legally required
✅ You have rights to access, correct, delete, and port your data
✅ We comply with UK GDPR (primary), DIFC, and UAE data protection regulations
✅ Contact info@acgl.uk.com (global) or info@acgl.ae (regional) for privacy questions

Website Structure Clarification

Primary Operations & Global Reach:
www.acgl.uk.com (London headquarters)

Regional Operations:
www.acgl.ae (Dubai DIFC office - Middle East & GCC focus)

Both websites are operated by Aureus Consulting Group Limited, with the UK entity serving as the primary data controller for global operations.

Home

About

About

Services

Services

Resources

Resources

Career

Career

Book Consultation

Book Consultation

Book Consultation

Book Consultation

Book Consultation

Book Consultation