Privacy Policy

 

Effective Date: June 2, 2025

1. Introduction

Meridian Thinking LLC ("we," "us," or "our") respects your privacy and is committed to protecting any personal information you provide through our website (meridianthinking.com), as well as through other means such as email, phone, or in person. This Privacy Policy explains how we collect, use, and safeguard your information.

Meridian Thinking LLC is the data controller of the personal data collected through our website and research activities. As a data controller, we are responsible for determining the purpose and means of processing your personal information in accordance with applicable data protection laws.

2. Information We Collect

We may collect personal information in the following ways:

  • Directly from you when you contact us via our website, email, phone, or in person
  • Through our contact forms, where you may provide: name, email address, company & job title, phone number, and any other information you choose to share
  • Through research activities such as surveys, interviews, and studies, where you may provide demographic information, behavioral insights, opinions, or preferences, and photos, videos, or audio clips (if applicable)
  • Through select third-party services such as LinkedIn, ZoomInfo, or similar

In the course of certain research studies, you may be asked to provide information considered "special category data" under the GDPR. This may include details about your health, racial or ethnic origin, political opinions, religious beliefs, or sexual orientation. We will only collect this data with your explicit consent, and you are free to decline or withdraw consent at any time.

3. Legal Basis for Processing (GDPR)

Under the GDPR, we process your personal data based on:

  • Consent – When you submit a contact form or share information voluntarily
  • Legitimate Interests – To improve our services, conduct research, or promote our offerings, provided it does not override your rights
  • Contract – Where necessary for the performance of a contract or pre-contractual steps
  • Legal Obligation – To comply with legal and regulatory requirements

4. How We Use and Store Your Information

We use the information you provide to respond to inquiries, conduct consumer research and market analysis, communicate about our services, and improve our offerings through analytics. Where we rely on legitimate interests, these include understanding user behaviour, conducting market research, maintaining system security, and managing business operations.

Survey and study responses may be aggregated and anonymised for analysis. We may also use anonymised responses, quotes, or visuals as part of case studies, whitepapers, or client examples. We will never publish identifying details without your explicit permission.

5. Third-Party Service Providers

We use trusted third-party providers including Microsoft 365, QuickBooks Online, Productive.io, HubSpot, and survey platforms such as SurveySparrow or Typeform. These providers may process your data outside your home country. We ensure all transfers comply with applicable laws, such as GDPR-approved Standard Contractual Clauses (SCCs).

6. Cookies and Tracking Technologies

We use cookies to enhance your browsing experience, analyse site performance, and support marketing efforts. You can control preferences through your browser settings or our cookie consent banner.

7. Data Retention

  • Contact form submissions and general correspondence: retained for 12 months
  • Research data: retained for up to 24 months unless deleted upon request
  • Data may be retained longer if required by law

8. Your Rights Under GDPR & CCPA

Depending on your location, you may have the right to access, correct, delete, restrict, or port your personal data, and to withdraw consent at any time. California residents can also request disclosures under the CCPA. We do not sell personal data.

To exercise any of these rights, contact us at hi@meridianthinking.com. We will respond within the timeframes required by law.

9. International Data Transfers

Your data may be processed outside your home country, including in the United States. When transferring from the EEA or UK, we rely on Standard Contractual Clauses (SCCs) and Data Processing Agreements (DPAs) with our service providers.

10. Data Security

We take reasonable precautions including secure servers, access controls, and encryption. However, no method of transmission over the internet is 100% secure.

11. Third-Party Links

Our website may include links to external sites. We are not responsible for their privacy practices and encourage you to review their policies separately.

12. Updates to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with a revised effective date.

13. Contact Us

Meridian Thinking LLC
Email: hi@meridianthinking.com
Website: meridianthinking.com