AI GOVERNANCE & COMPLIANCE · SERVICENOW AI CONTROL TOWER · IRM / GRC · ENTERPRISE SERVICE MANAGEMENT · PROCESS RE-ENGINEERING · EU AI ACT · ISO/IEC 42001 · UK GDPR & DPIAs · AI GOVERNANCE & COMPLIANCE · SERVICENOW AI CONTROL TOWER · IRM / GRC · ENTERPRISE SERVICE MANAGEMENT · PROCESS RE-ENGINEERING · EU AI ACT · ISO/IEC 42001 · UK GDPR & DPIAs ·

Privacy Policy

Last updated: 1 June 2026

Nimble AI Solutions (“we”, “us”, “our”) helps East Midlands SMEs use AI confidently and stay compliant. We practise the plain-English approach to governance we preach, including with your data. This policy explains what we collect, why, and what rights you have under UK GDPR and the Data (Use and Access) Act 2025.

Who we are

Nimble AI Solutions is an AI governance consultancy based in the East Midlands, United Kingdom. For any privacy question or request, contact us at hello@nimbai.co.uk.

What we collect and why

When you use our contact form, we collect your name, company, job title, email, and (optionally) phone number, the service and sector you select, and any message you send. We use this solely to respond to your enquiry and arrange a consultation. Legal basis: your consent (the tick box) and our legitimate interest in responding to business enquiries.

When you take the AI Readiness Scorecard, we collect your email address and your answers to the assessment questions, in order to generate and send your RAG-rated readiness report. We do not pass your responses to any third party, and we will not follow up unless you ask us to. Legal basis: your consent.

Automatically, our hosting provider (Cloudflare) records standard server logs (IP address, browser type, pages visited) for security and to keep the site running.

Cookies

We keep cookies to a minimum and ask before setting anything non-essential:

  • Necessary: a single first-party cookie (cc_cookie) that remembers your cookie choice. Always set; no consent needed.
  • Analytics (HubSpot), optional: only if you opt in, we load HubSpot's visitor analytics, which set hubspotutk, __hstc, __hssc and __hssrc. They help us see how the site is used and link an enquiry you send to your visit. Off by default; never loaded until you accept.

You can change or withdraw your choice at any time via Cookie preferences in the footer.

Who we share data with

We don't sell your data. We share it only with the service providers that make the site work:

  • HubSpot: stores your enquiry or scorecard submission as a contact in our CRM, and (only with your consent) provides the site analytics described above.
  • Our email provider: so we can read and reply to your enquiry.
  • Where the law requires us to.

How long we keep it

We keep enquiry and scorecard data only as long as needed to respond to you and for our legitimate business records, then delete it. You can ask us to delete it sooner at any time.

Your rights

Under UK GDPR you have the right to access, correct, delete, restrict, or object to our use of your personal data, and to data portability. To exercise any of these, email hello@nimbai.co.uk and we’ll respond within one month. You also have the right to complain to the Information Commissioner’s Office (ICO) at ico.org.uk.