Cookies & Privacy

General note

Our Cookie and Privacy Policies were last updated on Tuesday, 04 September 2018 . Should a professional relation between us and yourself (already) exist, it will, without exception, be governed by specifically drafted, reviewed, and mutually approved and signed agreements. An example of one of such agreements is a Non Disclosure Agreement (NDA). This is why our Cookie Policy and Privacy Policy only apply to the general use of our website, the establishment of (first) contact between GR Consulting and yourself, and all other situations where no personalised agreements are available.


What are cookies?

Cookies are small files with information that are generated by some websites you visit. They are stored on the hard drive of your computer, tablet, or mobile device. Cookies can do many useful things; some make sure that the site you visit works best for your particular browser, while others store information for when you revisit the same site. Other cookies can store information on you specifically, which the site owner can pass on to a third party. These third party (tracking) cookies, and similar technologies such as "tags" and "web beacons" which are collected through embedded images, can be used to track you on your journey across the web.
Some web site operators choose to limit access to their content with the use of a "cookie wall". This means that they want you to accept cookies. If you don't you will not get access to the web site (content). Although forced cookie consent is still a hot topic of discussion and legislation, it is safe to conclude that forced cookie acceptance is demanded almost exclusively for extensive user data gathering, user data exploitation, advertisement, and tracking.
A more extensive, multi-language description about what cookies are, and what they do can be found here.

What type of cookies do we use?

The GR Consulting website is designed to not use any cookies, tags, or web beacons. Should you however notice that, despite our regular checks, this original design objective has been compromised, we would appreciate it very much if you let us know.

How can you manage cookies?
(even if we don't use any ourselves)

For all websites, you have the option to disable and/or disallow the use of cookies by setting the preferences of your browser. Many browsers also hold the option to allow or disallow cookies on a per website basis (White Paging), and to clear all cookies and your cache at the moment you shut down your browser. Some even feature the option to let websites know specifically that you do not wish to be tracked. If this holds your preference, please refer to the Preferences settings of your web browser.
Maybe now is also a good time to remind you that some browsers support the use of specific, free for use, "anti-cookie" plug-ins, like for example the excellent uBlock Origin, uMatrix, NoScript Security Suite, and Ghostery. The latter has been criticised for conflict of interest however, since it is produced and distributed by Cliqz GmbH, which monetises user behavioural analysis, web advertising, and tracking.
Finally, specific programs, like for example the open source, free for use BleachBit, can help you to clean your computer after surfing the web. Bleachbit is particularly helpful if you try to remove the more resistant, so-called super cookies, ever cookies, and flash cookies, which have been reported to resist simple cleaning procedures.


GR Consulting strongly believes in respecting individuals' right to privacy. We will never use your personal data for any use beyond that stated, the permissions you give us, or as required by law. This Privacy Policy aims to give you information on how GR Consulting collects and processes your personal data when you use our website.
Our privacy policy should be read in conjunction within our cookie policy.
The GR Consulting web site is not intended for children (those aged 13 and under) and we do not knowingly collect data relating to children.

What is personal data?

Personal data is data about you (or other living people) from which you could be identified, e.g. your name, your address or telephone number, or even your IP address. By law, organisations are obliged to process your personal data in certain ways and make sure that you are given an appropriate amount of information about how it is used. You also have various rights to seek information from organisations about how they are using your data, and to prevent them from processing it unlawfully. For more information about these rights, please see our "Your Rights" section.

Data we collect from you

Data can be collected in various ways:

How we use your personal data

If you send us your personal data through our contact page, we use this data to get in contact with you. After all, when you send us your contact details, we can assume you want to have a conversation with us. After we have had this conversation, your contact details will be deleted, unless continued interaction is deemed appropriate, agreed on, and documented, by both us and yourself.
GR Consulting does not share your personal data with any third party without your explicit written consent.

Change of purpose

We will only use your personal data for purposes for which we collected it, unless we reasonably consider that we need to use it for another reason, and this reason is compatible with the original purpose. If you wish an explanation as to how processing for a new purpose is compatible with the original purpose, please contact us.
If we need to use your personal data for an unrelated purpose, we will notify you, and explain the legal basis which allows us to do so. Please also note that we may process your personal data without your knowledge or consent, in compliance with the rules above, where this is required, or permitted by law.

Disclosure of your personal data

Depending on how and why you provide us with your personal data, we may need to share it in the following ways:

International transfer

We may transfer your personal data outside the European Economic Area (EEA).
Whenever we do, we ensure that a similar degree of protection is afforded to it by ensuring the implementation of at least one of the following safeguards:

Links to third party sites

Please note that if we provide links to third party websites that are not affiliated with GR Consulting, such sites are out of our control, and not covered by this Privacy Policy, regardless whether they use our branding or logo on their websites. If you access third party sites using the links provided, the operators of these sites may collect information from, and on you that can be used by them in accordance with their own privacy policies. Please check these policies before you submit any personal data to these websites.

How long do we keep your information for?

Your Rights

As a data subject you have a number of rights in relation to your personal data. Below, we have described the various rights that you have, as well as how you can exercise them.

Right of Access

You may, at any time, request access to the personal data that we hold which relates to you. You may have heard of this right being described as a "Subject Access Request". Please note that this right entitles you to receive a copy of the personal data that we hold about you in order to enable you to check that it is correct, and to ensure that we are processing that personal data lawfully. It is not a right that allows you to request personal data about other people, or a right to request specific documents from us that do not relate to your personal data. You can exercise this right at any time by writing to us, and telling us that you are making a Subject Access Request. You do not have to fill in a specific form to make this kind of request.

Your Right to Rectification and Erasure

You may, at any time, request that we correct personal data that we hold about you, and which you believe to be incorrect or inaccurate. You may also ask us to erase personal data if you do not believe that we need to continue retaining it. You may have heard of this right described as the "Right To Be Forgotten". Please note that we may ask you to verify any new data that you provide to us, and may take our own steps to check whether the new data you have supplied us with is correct. Further, we are not always obliged to erase personal data when asked to do so; if, for any reason, we believe that we have a good legal reason to continue processing personal data that you ask us to erase, we will tell you what that reason is at the time we respond to your request. You can exercise this right at any time by writing to us, using the contact details already in your possession, telling us that you are making a request to have your personal data rectified or erased. You do have to clarify on what basis you are making the request. If you want us to replace inaccurate data with new data, you should tell us what that new data is. You do not have to fill in a specific form to make this kind of request.

Your Right to Restrict Processing

Where we process your personal data on the basis of a legitimate interest (see the section of our Privacy Policy which explains why we use your personal data), you are entitled to ask us to stop processing it in that way, if you feel that our continuing to do so impacts on your fundamental rights and freedoms, or if you feel that those legitimate interests are not valid. You may also ask us to stop processing your personal data if

  1. you dispute the accuracy of your personal data and want us verify it;
  2. where it has been established that our use of your data is unlawful, but you do not want us to erase it;
  3. where we no longer need to process your personal data, would otherwise dispose of it, but you wish us to continue storing it in order to enable you to establish, exercise, or defend legal claims.
Please note that, if for any reason, we believe that we have a good legal reason to continue processing personal data that you ask us to stop processing, we will tell you what that reason is, either at the time we first respond to your request, or after we have had the opportunity to consider and investigate it.
You can exercise this right at any time by writing to us using the contact details already in your possession, and telling us that you are making a request to have us stop processing the relevant aspect of your personal data. You will need to describe which of the above conditions you believe is relevant to your request. You do not have to fill in a specific form to make this kind of request.

Your Right to Portability

If you wish to transfer certain personal data that we hold about you to a third party, you may write us and ask us to provide it to you in a commonly used machine-readable format. Because of the kind of work that we do and the systems that we use, we do not envisage this right being relevant to the majority of individuals with whom we interact. However, if you wish to transfer your data from us to a third party, we will consider such requests.

Your Right to stop receiving communications

For details on your rights to ask us to stop sending you various kinds of communications, please contact us. However, if you do, please consider that there can be other legally binding, personally signed and authorised agreements between us that might prevent us from doing so.

Your Right to object to automated decision making and profiling

GR Consulting does not execute automated decision making and profiling. The nature of the services GR Consulting provides neither call for, nor require such processes.

Exercising your rights

When you write to us making a request to exercise your rights, we are entitled to ask you to prove that you are who you say you are. We may ask you to provide copies of relevant ID documents to help us to verify your identity.
It will help us to process your request if you state clearly which right you wish to exercise and, where relevant, why you are exercising it. The clearer and more specific you can be, the faster and more efficient we can deal with your request. If you do not provide us with sufficient information, we may delay resolving your request until you have provided us with additional information. Of course we let you know when this is the case.

Contacting us

If you wish to contact GR Consulting regarding any aspect of our Privacy Policy, you can:

If you do not have specific contact details (e.g. postal address, personal email address), it is credible to assume that you have had no previous personalised contact with GR Consultancy. As a consequence, GR Consultancy will almost certainly have no personal data on you, since we, as described earlier, do not gather actively any specific personal data on the visitors of our website. An exception of course is when you yourself sent it to us actively through our contact page, or when we both exchanged contact details through other means (e.g. in writing, by telephone, in person).