1. Who we are

Quinexis Primary Care Consulting Limited (“we”, “us”, “our”) is a UK-based service provider.

Data Controller: Quinexis Primary Care Consulting Limited
Contact email: enquiries@quinexis.co.uk
Registered address: No 1 Business Centre, 1 Alvin Street, Gloucester GL1 3EJ

We are responsible for how your personal data is collected, used and protected.

2. The personal data we collect

We only collect personal data that is necessary to operate our business and respond to enquiries.

a) Enquiries (via website or email)

• Name 
• Email address 
• Telephone number 
• Message content 

b) Client and business relationship data

• Contact details (name, email, phone) 
• Organisation details 
• Client Terms of Reference 
• Engagement Letters 
• Invoices and payment information 

c) Associate data

• Contact details 
• Associate Terms of Reference 

3. How we collect your data

We collect data when you:

• Submit a contact form on our website 
• Contact us by email or phone 
• Engage us to provide services 
• Enter into an agreement as a client or associate 

4. How we use your data

We use your data to:

• Respond to enquiries 
• Communicate with you about services 
• Deliver and manage client engagements 
• Maintain records of agreements and services 
• Issue invoices and process payments 
• Manage associate relationships 

We do not use your data for unsolicited marketing.

5. Lawful basis for processing

Under the UK GDPR, we rely on the following lawful bases:

• Legitimate interests – responding to enquiries and managing business relationships 
• Contract – where processing is necessary to fulfil an agreement 
• Legal obligation – for financial records and compliance requirements 

We ensure our use of your data is proportionate and does not override your rights.

6. Data sharing

We do not sell or share your personal data for marketing purposes.

We may share data with:

• Professional advisers (e.g. accountants) 
• IT and hosting providers 
• Payment providers 

All third parties are required to respect the security of your data.

7. Data retention

We only retain personal data for as long as necessary:

• Enquiries: typically up to 12 months 
• Client records: up to 6 years (for legal and financial compliance) 
• Associate records: as required for contractual and audit purposes 

8. Data security

We take appropriate technical and organisational measures to protect your data, including:

• Secure email and storage systems 
• Access controls 
• Data minimisation 

We follow recognised information governance standards appropriate to the nature of the data handled

9. Your rights

Under UK GDPR, you have the right to:

• Access your personal data 
• Request correction of inaccurate data 
• Request deletion of your data 
• Object to or restrict processing 
• Request transfer of your data 

To exercise your rights, contact us at: enquiries@quinexis.co.uk

You also have the right to lodge a complaint with the Information Commissioner's Office.

10. Cookies

Our website may use cookies to ensure it functions properly and to understand how it is used.

Where cookies are not strictly necessary, we will obtain your consent before placing them on your device, in line with UK regulations. 

You can manage your cookie preferences through your browser settings.

11. Changes to this policy

We may update this Privacy Policy from time to time. The latest version will always be available on our website.