+49 (0) 151 226 38696 info@hamishmackenzie.com

WWW.HAMISHMACKENZIE.COM is a website that is managed and maintained by Mr. Hamish Mackenzie, whose primary address is Richard-Wagner-Strasse 26B, 85540 Haar, Germany.

Hamish Mackenzie Consulting (“We”, “Us”, “Our”) respects your privacy and is committed to protecting your Personal Data. This Privacy Policy explains how we look after your Personal Data when you visit our website and outlines your privacy rights and how the law protects you.

WHAT’S INCLUDED IN OUR PRIVACY POLICY?

  • Introduction
  • Controller
  • The Data We Collect About You
  • How Your Personal Data Is Collected
  • Third Party Links
  • How We Use Your Personal Data
  • Purposes for Which We Will Use Your Personal Data
  • Change of Purpose
  • Disclosures of Your Personal Data
  • Marketing and Promotional Offers From Us
  • Our Use of Cookies
  • Data Security
  • Data Retention
  • Your Legal Rights
  • Requesting Access to Your Personal Data
  • Glossary

1. INTRODUCTION

1.1 It is important that you read this Privacy Policy together with any other privacy or fair processing notice we may provide on specific occasions when we are collecting or processing Personal Data about you.

1.2 We keep our Privacy Policy under regular review. This version was last updated on 31st October 2025.

2. CONTROLLER

2.1 Hamish Mackenzie Consulting is the controller responsible for your Personal Data.

2.2 We have appointed a Data Protection Officer (DPO). Their details are:

  • The DPO: Mr. Hamish Mackenzie
  • Email: info@hamishmackenzie.com
  • Postal address: Richard-Wagner-Strasse 26B, 85540 Haar, Germany

2.3 It is important that the Personal Data we hold about you is accurate and current. Please inform us of any changes.

3. THE DATA WE COLLECT ABOUT YOU

3.1 We may process your Personal Data without your knowledge or consent where required or permitted by law.

3.2 Types of Personal Data we may collect include:

  • 3.2.1 Identity Data – first name, last name, title, date of birth, gender.
  • 3.2.2 Contact Data – billing address, delivery address, email address, telephone numbers.
  • 3.2.3 Financial Data – bank account and card details.
  • 3.2.4 Transaction Data – payments to/from you, product/service details.
  • 3.2.5 Technical Data – IP address, login data, browser info, time zone, OS, platform.
  • 3.2.6 Profile Data – username, password, purchases, preferences, feedback.
  • 3.2.7 Usage Data – how you use our website and services.
  • 3.2.8 Marketing Data – your marketing preferences.
  • 3.2.9 Aggregated Data – statistical or demographic data not identifying you directly.

3.3 We do not collect Special Categories of Personal Data such as race, religion, health data, or criminal records.

3.4 Our website is not intended for children.

4. HOW YOUR PERSONAL DATA IS COLLECTED

4.1 We collect data in several ways:

4.1.1 Direct interactions. You may provide data by:

  • Applying for products or services
  • Creating an account
  • Subscribing to newsletters
  • Requesting marketing communications
  • Entering competitions/surveys
  • Providing feedback

4.1.2 Automated technologies. We collect Technical Data via cookies, server logs, and tracking.

4.1.3 Third-party sources.

  • Analytics providers
  • Advertising networks
  • Search information providers
  • Payment/delivery service providers
  • Data brokers
  • Public records

5. THIRD-PARTY LINKS

5.1 Our website may include links to third-party sites.

5.2 We are not responsible for third-party privacy practices.

6. HOW WE USE YOUR PERSONAL DATA

6.1 We use your data under the following legal bases:

  • 6.1.1 Contract performance
  • 6.1.2 Legitimate interests
  • 6.1.3 Legal obligations

6.2 If required data is not provided, we may be unable to deliver services.

6.3 Consent is used only for third-party marketing.

7. PURPOSES FOR WHICH WE WILL USE YOUR PERSONAL DATA

7.1 A table outlining all processing purposes is included above.

Purpose/Activity Type(s) of Data Lawful Basis for Processing (Including Basis of Legitimate Interest)
To register you as a new customer. (a) Identity Data
(b) Contact Data		 1. Performance of a contract with you.
To process and deliver your order including:
• Manage payments, fees, and charges.
• Collect and recover money owed to us.		 (a) Identity Data
(b) Contact Data
(c) Financial Data
(d) Transaction Data
(e) Marketing and Communications Data		 1. Performance of a contract with you.
2. Necessary for our legitimate interests (to recover debts due to us).
To manage our relationship with you, which will include:
• Notifying you about changes to our terms or website policies.
• Asking you to leave a review or take a survey.		 (a) Identity Data
(b) Contact Data
(c) Profile Data
(d) Marketing and Communications Data		 1. Performance of a contract with you.
2. Necessary to comply with a legal obligation.
3. Necessary for our legitimate interests (to keep our records updated and to study how customers use our products/services).
To enable you to partake in a prize draw, competition, or complete a survey. (a) Identity Data
(b) Contact Data
(c) Profile Data
(d) Usage Data
(e) Marketing and Communications Data		 1. Performance of a contract with you.
2. Necessary for our legitimate interests (to study how customers use our products/services, to develop them, and grow our business).
To administer and protect our business and this website (including troubleshooting, data analysis, testing, system maintenance, support, reporting, and hosting of data). (a) Identity Data
(b) Contact Data
(c) Technical Data		 1. Necessary for our legitimate interests (for running our business, provision of administration and IT services, network security, to prevent fraud, and in the context of a business reorganisation or group restructuring exercise).
2. Necessary to comply with a legal obligation.
To deliver relevant website content and advertisements to you, and measure or understand the effectiveness of the advertising we serve to you. (a) Identity Data
(b) Contact Data
(c) Profile Data
(d) Usage Data
(e) Marketing and Communications Data
(f) Technical Data		 1. Necessary for our legitimate interests (to study how customers use our products/services, to develop them, to grow our business, and to inform our marketing strategy).
To use data analytics to improve our website, products/services, marketing, customer relationships, and experiences. (a) Technical Data
(b) Usage Data		 1. Necessary for our legitimate interests (to define types of customers for our products and services, to keep our website updated and relevant, to develop our business, and to inform our marketing strategy).
To make suggestions and recommendations to you about goods or services that may be of interest to you. (a) Identity Data
(b) Contact Data
(c) Technical Data
(d) Usage Data
(e) Profile Data
(f) Marketing and Communications Data		 1. Necessary for our legitimate interests (to develop our products/services and grow our business).

8. CHANGE OF PURPOSE

8.1 We will only use your Personal Data for the purpose for which it was collected.

8.2 If we need to use your data for another purpose, we will notify you.

9. DISCLOSURES OF YOUR PERSONAL DATA

9.1 We may share your Personal Data if parts of our business are sold, merged, or transferred.

9.2 Third parties must protect your data and act only on our instructions.

9.3 We do not transfer Personal Data outside the EEA.

10. Marketing and Promotional Offers

10.1 You have choices regarding marketing use of your data.

10.2 We require opt-in consent before sharing your data with third-party marketers.

10.3 We analyse your preferences to send relevant offers.

10.4 You will receive marketing unless you opt-out.

10.5 You can stop marketing at any time.

10.6 Opt-out does not affect service messages.

11. Our Use of Cookies

11.1 You may refuse cookies, but some website features may not function.
See our Cookies Policy.

12. Data Security

12.1 We use security measures to protect your data.

12.2 Access is limited to authorised individuals.

12.3 We will notify you of any data breaches as legally required.

13. Data Retention

13.1 We retain data only as long as needed.

13.2 Longer retention may apply for legal claims.

13.3 Retention depends on data sensitivity and purpose.

13.4 We keep tax-related data for 6 years.

13.5 You may request deletion.

13.6 We may anonymise data for research.

14. Your Legal Rights

14.1 Your rights include:

  • 14.1.1 Access
  • 14.1.2 Correction
  • 14.1.3 Erasure
  • 14.1.4 Object to processing
  • 14.1.5 Restrict processing
  • 14.1.6 Data transfer
  • 14.1.7 Withdraw consent

14.2 Contact us to exercise these rights.

15. Requesting Access to Your Personal Data

15.1 No fee is required unless your request is excessive.

15.2 We may request ID verification.

15.3 We respond within 1 month.

16. Glossary

  • 16.1 Comply with a legal obligation
  • 16.2 Legitimate Interest
  • 16.3 Performance of Contract
  • 16.4 Personal Data definition
  • 16.5 External Third Parties:
    • Service providers
    • Professional advisers
    • Regulators

Copyright Hamish Mackenzie, 2025