Privacy Policy

1. Who We Are

Meridion Group Ltd (“Meridion”, “we”, “our”, “us”) is a company registered in England and Wales.

Company number: 16978498
Email: mark@meridiongroup.co.uk
Website: meridiongroup.co.uk

Meridion is the data controller for personal data collected through this website. We are responsible for deciding how we hold and use personal information about you.

2. What This Policy Covers

This privacy policy explains how we collect, use, store, and protect your personal data when you:

• Visit our website at meridiongroup.co.uk
• Contact us by email
• Enquire about or participate in the Meridion AXIS founding pilot

If you engage with us as a founding pilot client, the processing of your business data is covered by a separate Data Processing Agreement provided alongside the Founding Pilot Agreement.

3. What Data We Collect

Information you provide directly

When you contact us via email to enquire about the founding pilot, we may collect:

• Your name
• Your company name
• Your email address
• Your phone number
• Your job title or role
• Any other information you choose to include in your message

Information collected automatically

Our website does not currently use cookies, analytics tools, or tracking technologies. We do not collect any data automatically when you visit the site.

If we add analytics or cookies in the future, we will update this policy and provide appropriate notice.

4. How We Use Your Data

We use the personal data you provide for the following purposes:

• To respond to your enquiry about the founding pilot
• To communicate with you about the pilot process, including sending the pilot agreement, intake checklist, and related documents
• To deliver the founding pilot if you proceed
• To request feedback as part of the founding cohort
• To contact you about future Meridion products or services, only if you have given consent

We do not use your data for automated decision-making or profiling.

5. Lawful Basis for Processing

Under UK GDPR, we rely on the following lawful bases for processing your personal data:

Contractual necessity

Where processing is necessary to perform the Founding Pilot Agreement or to take steps at your request before entering into the agreement.

Legitimate interests

Where processing is necessary for our legitimate business interests, such as responding to enquiries and improving our services, provided those interests are not overridden by your rights.

Consent

Where you have given specific consent, for example to receive marketing communications about future Meridion products. You may withdraw consent at any time by contacting us.

6. Who We Share Your Data With

We do not sell, rent, or trade your personal data to any third party.

We may share your data in the following limited circumstances:

• With service providers who assist with essential business functions (such as email hosting), subject to appropriate contractual protections
• Where required by law, regulation, or legal process
• Where necessary to protect our legal rights

As of the date of this policy, we do not use any sub-processors for handling pilot client data. If this changes, we will update this policy.

7. Data Storage and Security

We take appropriate technical and organisational measures to protect your personal data, including:

• Enquiry emails are stored in our email system and are not shared with third parties
• Founding pilot data is processed locally and is not uploaded to third-party cloud services during the founding pilot
• Access to personal data is restricted to the company founder during the founding pilot cohort

We review our security measures regularly and will update them as the business grows.

8. Data Retention

Enquiry data

If you enquire about the founding pilot but do not proceed, we will retain your contact details for up to 12 months and then delete them, unless you ask us to delete them sooner.

Pilot client data

If you proceed with the founding pilot, retention and deletion of your submitted business data is governed by the Data Processing Agreement. Submitted data files are deleted within 30 days of the end of the pilot.

Business records

We may retain basic records of the engagement (such as invoices, the signed agreement, and the delivered report) for up to 6 years for legal and accounting purposes, in line with HMRC requirements.

9. Your Rights

Under UK GDPR, you have the following rights in relation to your personal data:

• Right of access — you can request a copy of the personal data we hold about you
• Right to rectification — you can ask us to correct inaccurate or incomplete data
• Right to erasure — you can ask us to delete your data in certain circumstances
• Right to restrict processing — you can ask us to limit how we use your data
• Right to data portability — you can request your data in a structured, commonly used format
• Right to object — you can object to processing based on legitimate interests
• Right to withdraw consent — where processing is based on consent, you can withdraw it at any time

To exercise any of these rights, contact us at mark@meridiongroup.co.uk. We will respond within one month.

10. International Data Transfers

We do not transfer personal data outside the United Kingdom as part of our current operations.

If this changes in the future, we will ensure appropriate safeguards are in place and update this policy accordingly.

11. Children

Our website and services are not directed at individuals under the age of 18. We do not knowingly collect personal data from children.

12. Changes to This Policy

We may update this privacy policy from time to time. Any changes will be posted on our website. Where changes are significant, we will make reasonable efforts to notify you.

13. Complaints

If you are unhappy with how we have handled your personal data, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO):

Information Commissioner’s Office
Website: ico.org.uk
Telephone: 0303 123 1113

We would appreciate the opportunity to address your concerns before you contact the ICO. Please contact us at mark@meridiongroup.co.uk in the first instance.

14. Contact

If you have any questions about this privacy policy or how we handle your personal data, please contact:

Mark Wesson
Founder, Meridion Group Ltd
Email: mark@meridiongroup.co.uk