Downloads Privacy Policy

1. Introduction

This Privacy Notice explains how AI Organisational Design Consultancy (“we”, “us”, “our”) processes personal data collected through this website and associated services. We are committed to ensuring that all processing complies with the GDPR, UK GDPR and other applicable data protection laws.

2. Data Controller

AI Organisational Design Consultancy is the data controller responsible for determining the purposes and means of processing personal data. Contact details for exercising data rights are provided in Section 11.

3. Personal Data We Collect

We collect only the personal data necessary for the operation of our services, including:

  • Account information: name, email address, password and related identifiers
  • Download access information: data required to provide requested materials
  • Technical data: IP address, browser type, device information and security‑related metadata
  • User‑submitted content: information provided through forms, comments or uploads
  • Communication preferences: where you choose to opt in to updates

We do not collect special category data unless explicitly required and lawfully justified.

4. How We Collect Personal Data

Personal data is collected through:

  • account creation
  • download requests
  • website forms
  • cookies and similar technologies
  • security and access logs
  • optional communications you choose to receive

Embedded content from third‑party websites may collect additional data in accordance with their own privacy policies.

5. Purposes of Processing

We process personal data for the following purposes:

  • Account creation and management
  • Provision of access to whitepapers and other materials
  • Security, fraud prevention and service integrity
  • Website functionality and performance
  • Compliance with legal obligations
  • Optional updates or communications, where explicit consent is provided

We do not process personal data for purposes incompatible with those stated.

6. Legal Bases for Processing

Processing is carried out under the following lawful bases:

  • Contract: where processing is necessary to provide access to materials or manage an account
  • Consent: for optional communications or marketing
  • Legitimate Interests: for security, service operation and prevention of misuse
  • Legal Obligation: where required by applicable law

Consent may be withdrawn at any time.

7. Cookies and Tracking Technologies

We use cookies necessary for website functionality, account login and security.
Optional cookies (e.g., analytics) are used only where consent is provided.

You may manage cookie preferences through your browser or our cookie settings.

8. Data Sharing and Transfers

We share personal data only where necessary for:

  • secure hosting and infrastructure
  • account and authentication services
  • email delivery
  • regulatory or legal compliance

Where data is transferred outside the UK/EU, appropriate safeguards are applied, including adequacy decisions or standard contractual clauses.

We do not sell personal data.

9. Data Retention

Personal data is retained only for as long as necessary to fulfil the purposes for which it was collected or to meet legal, regulatory or security obligations.
Retention periods are defined in accordance with the principles of data minimisation and storage limitation.

10. Your Rights

Under the GDPR and UK GDPR, you have the following rights:

  • Right of access
  • Right to rectification
  • Right to erasure
  • Right to restrict processing
  • Right to data portability
  • Right to object
  • Right to withdraw consent

You may exercise these rights at any time. Identity verification may be required.

11. How to Contact Us

To exercise your rights or raise a concern about data processing, please contact us using the details provided on our website.

If you believe your rights have been infringed, you may lodge a complaint with your local supervisory authority.

12. Security Measures

We implement appropriate technical and organisational measures to protect personal data against unauthorised access, alteration, disclosure or loss. These measures are reviewed regularly to ensure ongoing confidentiality, integrity and availability.

13. Automated Decision‑Making

We do not use personal data for automated decision‑making that produces legal or similarly significant effects without appropriate safeguards.

14. Updates to This Notice

This Privacy Notice may be updated to reflect changes in legal requirements or service operations. The most recent version will always be available on this website.

Customer Agility Framework ™ 

Visit the Customer Agility Framework ™. Explore how AI, LLMs, and real-time work definition reshape organisational design, governance, and operating models.

Customer Agility ™ Explained

Customer Agility ™ model explained as a real‑time, AI‑enabled organisational system that connects insights to outcomes through Customer, Business, and Technical North Stars. 
Karl A L Smith Blog started in 2001

Thought‑leadership site showcasing Karl A. L. Smith’s work across AI, organisational design, digital transformation, zero-trust, and socio‑technical innovation.

©  2026 AI Organisational Design Consultancy. Built using WordPress and OnePage Express Theme.