Privacy Policy

Last reviewed

This Privacy Policy was last reviewed in May 2026.

Who we are

Meridian Consultants is a UK-based Industrial Control Systems and OT cybersecurity consultancy supporting industrial and critical infrastructure teams.

For the purposes of UK data protection law, the data controller is Jon Wilson trading as Meridian Consultants.

Information we may collect

If you contact Meridian Consultants through the website, request a resource, or book a call, you may provide your name, organisation, role, email address, telephone number, industry, enquiry type, project stage, and general enquiry information.

Basic technical information may also be collected through normal website operation, including browser type, approximate location, IP address, pages visited, and device information.

Information you should not submit

Website forms and general enquiry channels should not be used to submit sensitive or security-critical information.

• client names where the matter is confidential
• site names or operational asset identifiers
• network architectures or firewall configurations
• drawings, panel schedules, or engineering documents
• passwords, credentials, keys, or access details
• vulnerability information or incident details
• commercially sensitive project information
• personal information relating to third parties without authority

How information may be used

• to respond to enquiries
• to arrange technical discovery calls
• to provide requested resources or capability information
• to assess whether Meridian Consultants may be able to support a requirement
• to manage business correspondence and proposal activities
• to improve website usability and performance
• to protect website and business systems from misuse or malicious activity
• to comply with legal or regulatory obligations

Lawful basis for processing

Meridian Consultants generally processes enquiry and business contact information under legitimate interests, pre-contract business activities, legal obligations, or consent where applicable.

Where consent is relied upon, it may be withdrawn at any time.

Marketing and resource requests

If you request a resource, guide, checklist, or capability information, Meridian Consultants may use your contact details to provide the requested material and respond to related enquiries.

Meridian Consultants should not add individuals to general marketing communications unless they have requested or agreed to receive them.

Cookies and analytics

The website may use cookies or similar technologies for essential functionality, analytics, performance monitoring, and security.

Non-essential cookies or analytics technologies should only be used where appropriate notice or consent mechanisms are in place.

Further information may be provided within a separate Cookie Policy.

Sharing information

Meridian Consultants does not sell personal information.

Information may be shared only where reasonably necessary to operate the website, respond to enquiries, manage business operations, obtain professional advice, comply with legal obligations, or work with trusted service providers supporting the business.

International transfers

Some website, hosting, analytics, booking, or email providers may process information outside the United Kingdom.

Where this occurs, reasonable steps should be taken to ensure appropriate safeguards are in place.

Retention of information

Enquiry information should only be retained for as long as reasonably necessary for business follow-up, project discussions, legal obligations, dispute resolution, or operational record keeping.

Retention periods may vary depending on the nature of the enquiry, engagement status, legal obligations, and business requirements.

Security

Meridian Consultants takes reasonable technical and organisational steps to protect personal information against unauthorised access, misuse, disclosure, loss, or alteration.

No internet transmission or website submission process can be guaranteed as fully secure. Sensitive OT, cybersecurity, operational, or confidential project information should not be transmitted through general website forms.

Your rights

Depending on applicable law and circumstances, you may have rights relating to access, correction, deletion, restriction, objection, portability, or withdrawal of consent relating to your personal information.

You may also have the right to complain to the UK Information Commissioner’s Office (ICO).

Third-party links

The Meridian Consultants website may contain links to third-party websites, standards bodies, regulators, software vendors, or external resources.

Meridian Consultants is not responsible for the privacy practices or content of external websites.

Changes to this policy

This Privacy Policy may be updated periodically to reflect changes to the website, services, legal requirements, or business operations.

The latest version will always be published on this page.

Contact

For privacy-related enquiries or data protection requests, please contact Meridian Consultants using the details provided on the website.