top of page



  • SECTION 1: Purpose

  • SECTION 2: Data Protection Principles

  • SECTION 3: The kind of information we hold about you

  • SECTION 4: How is your Personal Data collected?

  • SECTION 5: How Is This Information Used?

  • SECTION 6: Special Category Personal Data

  • SECTION 7: More specific details of how we may use your Personal Data

  • SECTION 8: Change of purpose

  • SECTION 9: Data Sharing

    • 9.1 How secure is your information with third-party service providers? 

    • 9.2 Transferring information outside the EU

    • 9.2 Bank Transactions

    • 9.3 Reviews

    • 9.4 Advertisements 

    • 9.5 Acquisitions, Sales & Mergers

  • SECTION 10: Security

  • SECTION 11: Cookies

    • 11.1 Use of cookies by Eohma Ltd

    • 11.2 Disabling/Enabling all cookies

    • 11.3 More information about cookies

      • Strictly Necessary Cookies

      • Performance Cookies

      • Functionality Cookies

      • Targeting/Advertising Cookies

  • SECTION 12: Web Beacons and Monitoring Tracking Pixels

  • SECTION 13: Links

  • SECTION 14: Discussion Boards

  • SECTION 15: Children’s Privacy

  • SECTION 16: Accuracy

  • SECTION 17: Retention

  • SECTION 18: Your rights in connection with Personal Data

    • 18.1 No fee usually required

    • 18.2 What we may need from you

    • 18.3 Right to withdraw consent

  • SECTION 19: Changes to this Privacy Notice

  • SECTION 20: Contact information


SECTION 1: Purpose

Eohma Limited is committed to protecting the privacy and security of any Personal Data (defined in Section 3 below) it handles.

Eohma Limited means Eohma Limited, its subsidiaries or any of our affiliates, so when we mention “Eohma Limited”, “we”, “us” or “our” in this Privacy Notice, we are referring to the relevant company in the Eohma Limited  which you have had dealings with. We are committed to protecting the privacy of your personally identifiable information as you use this website. This Privacy Policy tells you how we protect and use information that we gather from you. By using this website, you consent to the terms described in the most recent version of this Privacy Policy. You should also read our Terms and Conditions to understand the general rules about your use of this website, and any additional terms that may apply when you access particular services or materials on certain areas of this website. 


This Privacy Notice describes how we collect and use Personal Data about visitors to our website, clients and potential clients, third party consultants and any other individuals whom we may collect Personal Data on in accordance with the General Data Protection Regulation (GDPR). Past, present and prospective employees, workers, and contractors should refer to our Privacy Notice for Employees and our Privacy Policy (found on our intranet and our recruitment webpage).


Eohma Limited is a “data controller”. This means that we are responsible for deciding how we hold and use Personal Data. We are required under data protection legislation to notify you of the information contained in this Privacy Notice. We may update this Notice at any time.

SECTION 2: Data Protection Principles 

We comply with the GDPR. This says that the Personal Data we hold must be:


1. Used lawfully, fairly and in a transparent way.

2. Collected only for valid purposes that we have clearly explained to you and not used in any way that is incompatible with those purposes.

3. Relevant to the purposes we have told you about and limited only to those purposes.

4. Accurate and kept up to date.

5. Kept only as long as necessary for the purposes we have told you about.

6. Kept securely.


SECTION 3: The kind of information we hold about you 

Personal Data means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data).

We may collect, use, store and transfer different kinds of Personal Data about you which we have grouped together as follows:

  •     Identity Data includes first name, last name, country of residence, company, and job title.

  •     Contact Data includes address, email address and telephone numbers.

  •     Professional Data includes CVs, and documents related to your qualifications, experience, and role, current salary, eligibility to work in the UK.

  •     Usage Data includes information about how you use our website.

  •     Technical Data includes internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform and other technology on the devices you use to access this website.

  •     Marketing and Communications Data includes your preferences in receiving marketing from us and our third parties and your communication preferences.


In limited circumstances, we may also collect, store and use documents to prove your identification such as a copy of your passport or address, and/or the following “special categories” of more sensitive Personal Data:

  • Information about your race or ethnicity, and religious beliefs.

  • Information about your health, including any medical condition.

  • Information about criminal convictions and offences.

The Personal Data we may collect varies depending upon how it is collected and for what purpose. More specific details are set out below. 


SECTION 4: How is your Personal Data collected? 

Personal Data may be collected in the following ways: 


1. Through information collected by cookies when you use our website.

When you visit we may send a ‘cookie’ to your computer. This is a small data file stored by your computer to help improve functionality or tailor information to provide visitors with more relevant pages. For details of the cookies employed by us see Section 12 below.

; or

2. Through information automatically recorded when you use our IT systems, so that the systems can run effectively and we can ensure they are not being misused.


3. Direct interactions – where you provide information by filling in forms or corresponding with us by post, phone, email or otherwise. This includes Personal Data you provide when you:

  • Complete an online form to subscribe to our mailing list;

  • Make business enquiries via email or telephone; and

  • Enter into a working relationship with us.

; or

4. Third parties or publicly available sources. For example, consultants working with us whose CVs might be sent by their employer for bid documents or so we can assess their suitability for a project.


SECTION 5: How we will use information about you 

We will only use your Personal Data when the law allows us to, such as:

1. Where it is necessary to perform a contract with you or in order to take steps at your request prior to entering into a contract.

2. Where we need to for compliance with a legal obligation.

3. Where it is necessary for the purposes of our legitimate business interests to run a successful design studio, and your interests and fundamental rights do not override those interests.

4. When we collect information about in you in support of a transaction, such as credit card information.

5. To provide you with access to this web site or other products or services.

6. In some places on this web site you have the opportunity to send us personal information about yourself, to elect to receive particular information, to purchase access to one of our products or services, or to participate in an activity to respond to your requests and to provide ongoing service and support.

7.  To contact you with information that might be of interest to you, including information about products and services of ours and of others, or ask for your opinion about our products or the products of others, for record keeping and analytical purposes and to research, develop and improve programs, products, services and content.


We may also use your Personal Data in the following situations, which are likely to be rare:

1. Where we need to protect your interests (or someone else’s interests).

2. Where it is needed in the public interest.


SECTION 6: Special Category Personal Data 

Special Categories of sensitive Personal Data require higher levels of protection and we will need to have further justification for collecting, storing and using this type of Personal Data, such as:

1. In limited circumstances, with your explicit written consent.

2. Where it is necessary for us to meet legal obligations.

3. Where it is necessary for reasons of public interest.

4. Where it is needed on health grounds, subject to appropriate confidentiality safeguards. 

5. Where it is needed for legal claims.

6. Where it is needed to protect your interests (or someone else’s interests) and you are not capable of giving your consent, or where you have already made the information public.


It is unlikely that we will need to collect or process Special Categories of sensitive Personal Data. Where we do need to, we will notify you and (where required) obtain your consent to the processing.


SECTION 7: More specific details of how we may use your Personal Data 

We have set out in the table below details of the type of data we may collect (by reference to the groups described in Section 3 above), the ways we may use your Personal Data, and which of the legal bases we rely on to do so. We have also identified what our legitimate interests are where appropriate.



SECTION 8: Change of purpose

We will only use your Personal Data for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose.


Occasionally we may use Personal Data to send you updates about our business or invites to events. If you prefer not to receive promotional material from Eohma email us at and put “unsubscribe” in the subject line together with the name of the publication you wish to unsubscribe from. 


Please note that we may process your Personal Data without your knowledge or consent where this is required or permitted by law.

SECTION 9: Data Sharing 

We may share your Personal Data with third parties, including third-party service providers and other entities in the Eohma Limited where required by law, where it is necessary to administer the working relationship with you or where we have another legitimate interest for the purpose of running a successful design practice in doing so. 


For example, we may share your Personal Data with:

  • professional advisors such as lawyers and accountants;

  • processors such as providers of cloud hosting solutions or translation companies;

  • to an auditor, regulator or to otherwise comply with the law.

We may share Personal Data, such as CVs of collaborating design consultants, to clients, potential clients or collaborating designers where this was the purpose of collection. 


As we are a design practice, we may share your Personal Data with other entities in our group. In particular, we share your Personal Data for the following purposes:

  •     Where required to facilitate your travel to meetings in one of our offices or in respect of a project;

  •     Where we are inviting you to an event held in one of our offices or at another location. 

We will not share your personal information collected from this web site with an unrelated third party without your permission, except as otherwise provided in this Privacy Policy. 


In the ordinary course of business, we may share some personal information with companies that we hire to perform services or functions on our behalf.

    • 9.1 How secure is your information with third-party service providers and other entities in our group? 
      All our third-party service providers and other entities in the group are required to take appropriate security measures to protect your Personal Data in line with our policies and the law. We do not allow our third-party service providers to use your Personal Data for their own purposes. We only permit them to process your Personal Data for specified purposes and in accordance with our instructions.  In all cases in which we share your personal information with a third party for the purpose of providing a service to us, we will not authorise them to keep, disclose or use your information with others except for the purpose of providing the services we asked them to provide.


    • 9.2 Transferring information outside the EU 
      We are a design practice who collaborate internationally and as such may transfer the Personal Data we collect about you to countries outside Europe. Where we do so, we will ensure that those transfers take place in accordance with the data protection laws, including by entering into data transfer agreements with recipients or obtaining your explicit consent.


    • 9.3 Bank Transactions 

    • For some sorts of transactions, in addition to our direct collection of information, our third party service vendors (such as credit card companies, clearinghouses and banks) who may provide such services as credit, insurance, and escrow services may collect personal information directly from you to assist you with your transaction. We do not control how these third parties use such information, but we do ask them to disclose how they use your personal information before they collect it.

    • 9.4 Reviews

    • If you submit a review for a third party (person or business) using our Facebook Fan Review Application, during the submission process we ask your permission to gather your basic information (such as name and email address) which we then share with the third party for whom you are submitting the review. 

    • 9.5 Advertisement

    • As discussed in the section on cookies and other technologies, from time to time we may allow a third party to serve advertisements on this web site.  If you share information with the advertiser, including by clicking on their ads, this Privacy Policy does not control the advertisers use of your personal information, and you should check the privacy policies of those advertisers and/or ad services to learn about their use of cookies and other technology before linking to an ad.

    • 9.6 Acquisitions, Sales & Mergers 

    •  We will not sell, exchange or publish your personal information, except in conjunction with a corporate sale, merger, dissolution, or acquisition.


SECTION 10: Security 


We have implemented generally accepted standards of technology and operational security in order to protect personally-identifiable information from loss, misuse, alteration, or destruction. Only authorised personnel and third party vendors have access to your personal information, and these employees and vendors are required to treat this information as confidential. Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your Personal Data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. 



SECTION 11: Cookies 

Cookies are text files containing small amounts of information which are downloaded to your device when you visit a website. Cookies are then sent back to the originating website on each subsequent visit, or to another website that recognises that cookie. Cookies are useful because they allow a website to recognise a user’s device. You can find more information about cookies at:


Cookies do lots of different jobs, like letting you navigate between pages efficiently, remembering your preferences, and generally improve the user experience. They can also help to ensure that adverts you see online are more relevant to you and your interests.



11.1 Use of cookies by Eohma Limited

Within this website cookies are used to facilitate features and functions 

which improve your browsing experience. They are also used to measure the performance of the site and the ways in which visitors navigate their way around. The below information details the cookies we use, how to prevent these being written and the impact of doing so on your browsing experience. 


Third party vendors also may use cookies on our web site. For instance, we may contract with third parties who will use cookies on our web site to track and analyse anonymous usage and volume statistical information from our visitors and members. Such information is shared externally only on an anonymous, aggregated basis. These third parties use persistent cookies to help us to improve the visitor experience, to manage our site content, and to track visitor behaviour. We may also contract with a third party to send e-mail to our registered [users/members].


To help measure and improve the effectiveness of our e-mail communications, the third party sets cookies. All data collected by this third party on behalf of Eohma Ltd  is used solely by or on behalf of Eohma Ltd and is shared externally only on an anonymous, aggregated basis. From time to time we may allow third parties to post advertisements on our web site, and those third-party advertisements may include a cookie or web beacon served by the third party. This Privacy Policy does not cover the use of information collected from you by third party ad servers. We do not control cookies in such third party ads, and you should check the privacy policies of those advertisers and/or ad services to learn about their use of cookies and other technology before linking to an ad. We will not share your personal information with these companies, but these companies may use information about your visits to this and other web sites in order to provide advertisements on this site and other sites about goods and services that may be of interest to you, and they may share your personal information that you provide to them with others.


11.2 Disabling/Enabling all cookies 

You can accept or decline cookies by modifying the settings in your browser. However, you will not be able to use all the interactive features of the site if cookies are disabled. 

Most recent web browsers allow control over the cookies saved through 

the browser settings. To find out more about cookies, including how to see 

what cookies have been set and how to manage and delete them, visit

11.3 More information about cookies 

There are four main types of cookies used by websites. These categories are described below, based on the information published in the International Chamber of Commerce Cookie Guide.


Strictly Necessary Cookies – Enable services you have specifically asked for.

These cookies are essential in order to enable you to move around the website and use its features, such as accessing secure areas of the website. Without these cookies the services you have asked for, like shopping baskets or e-billing, cannot be provided.


Performance Cookies – Collect anonymous information on the pages visited.

These cookies collect information about how visitors use a website, for instance which pages visitors go to most often, and if they get error messages from web pages.One of the primary purposes of cookies is to provide a convenience feature to save you time.  These cookies don’t collect information that identifies a visitor. All information these cookies collect is aggregated and therefore anonymous. Cookies cannot be used to run programs or deliver viruses to your computer. It is only used to improve how a website works.


Functionality Cookies – Remember choices you make to improve your experience.

These cookies allow the website to remember choices you make (such as your user name, language or the region you are in) and provide enhanced, more personal features. For instance, a website may be able to provide you with local weather reports or traffic news by storing in a cookie the region in which you are currently located. These cookies can also be used to remember changes you have made to text size, fonts and other parts of web pages that you can customise. They may also be used to provide services you have asked for such as watching a video or commenting on a blog. The information these cookies collect may be anonymised and they cannot track your browsing activity on other websites.


Targeting/Advertising Cookies – Collect information about your browsing habits in order to make advertising relevant to you and your interests.

These cookies are used to deliver adverts more relevant to you and your interests. They are also used to limit the number of times you see an advertisement as well as help measure the effectiveness of the advertising campaign. They are usually placed by advertising networks with the website operator’s permission. They remember that you have visited a website and this information is shared with other organisations such as advertisers. Quite often targeting or advertising cookies will be linked to site functionality provided by the other organisation.


SECTION 12: Web Beacons (Monitoring Tracking Pixels) 


Eohma Limited may monitor your online behaviour through the use of web beacons (embedded tracking pixels) for the purpose of analysing data and advertising.


A web beacon is a small graphic image that allows the party that set the web beacon to monitor and collect certain information about the viewer of the web page, web-based document or e-mail message, such as the type of browser requesting the web beacon, the IP address of the computer that the web beacon is sent to and the time the web beacon was viewed. 


Web beacons can be very small and invisible to the user, but, in general, any electronic image viewed as part of a web page or e-mail, including HTML based content, can act as a web beacon. 


We may use web beacons to count visitors to the web pages on the web site or to monitor how our users navigate the web site.


With a tracking pixel, advertisers can acquire data for online marketing, web analysis or email marketing. With log file analysis, long data evaluation or using appropriate analytical tools, this data can be used for different purposes, for example retargeting.


We may include web beacons in e-mail messages in order to count how many messages sent were actually opened, acted upon or forwarded.


SECTION 13: Links

This site contains links to other sites that provide information that we consider to be interesting. Eohma Ltd  is not responsible for the privacy practices or the content of such web sites.


SECTION 14: Discussion Boards

This site may provide public discussions on various business valuation topics. Please note that any information you post in these discussions will become public, so please do not post sensitive information in the public discussions. Whenever you publicly disclose information online, that information could be collected and used by others. We are not responsible for any action or policies of any third parties who collect information that users disclose in any such forums on the web site. Eohma Ltd does not agree or disagree with anything posted on the discussion board. Also remember that you must comply with our other published policies regarding postings on our public forums.


SECTION 15: Children’s Privacy

Eohma Ltd will not intentionally collect any personal information (such as a child’s name or email address) from children under the age of 13. If you think that we have collected personal information from a child under the age of 13, please contact us.

SECTION 16: Accuracy
We want to make sure that your Personal Data is accurate and up to date. Please contact us if any information we are using is not accurate or up to date.


SECTION 17: Retention 

We will only retain your Personal Data for as long as necessary to fulfil the purposes for which we collected it or for the purposes of satisfying any legal, accounting, or reporting requirements. 

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the Personal Data, the potential risk of harm from unauthorised use or disclosure of your Personal Data, the purposes for which we process your Personal Data and whether we can achieve those purposes through other means, and the applicable legal requirements. 

In some circumstances, we may anonymise your Personal Data so that it can no longer be associated with you, in which case we may use such information without further notice to you.


SECTION 18: Your Rights in Connection with Personal Data 

Under certain circumstances, by law you have the right to:

  • Request access to your Personal Data (commonly known as a “data subject access request”). This enables you to receive a copy of the Personal Data we hold about you and to check that we are lawfully processing it.

  • Request correction of the Personal Data that we hold about you. This enables you to have any incomplete or inaccurate information we hold about you corrected.

  • Request the erasure of your Personal Data. This enables you to ask us to delete or remove Personal Data where there is no good reason for us continuing to process it. You also have the right to ask us to stop processing Personal Data where we are relying on a legitimate interest and there is something about your particular situation which makes you want to object to processing on this ground.

  • Request the restriction of processing of your Personal Data. This enables you to ask us to suspend the processing of Personal Data about you, for example if you want us to establish its accuracy or the reason for processing it.

  • Request the transfer of your Personal Data to another party.

If you want to review, verify, correct or request erasure of your Personal Data, object to the processing of your Personal Data, or request that we transfer a copy of your Personal Data to another party, please contact

18.1 No fee usually required 

You will not have to pay a fee to access your Personal Data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request for access is clearly unfounded or excessive. Alternatively, we may refuse to comply with the request in such circumstances.

18.2 What we may need from you 

We may need to request specific information from you to help us confirm your identity and ensure your right to access the information (or to exercise any of your other rights). This is another appropriate security measure to ensure that Personal Data is not disclosed to any person who has no right to receive it.

18.3 Right to withdraw consent 

In the limited circumstances where you may have provided your consent to the collection, processing and transfer of your Personal Data for a specific purpose, you have the right to withdraw your consent for that specific processing at any time. To withdraw your consent, please contact or use any unsubscribe link in any email newsletter that you receive. Once we have received notification that you have withdrawn your consent, we will no longer process your information for the purpose or purposes you originally agreed to, unless we have another legitimate basis for doing so in law.


SECTION 19: Changes to this Privacy Notice 

We reserve the right to update this Privacy Notice at any time, and we will provide you with a new Privacy Notice when we make any substantial updates. We may also notify you in other ways from time to time about the processing of your Personal Data. 

If you have any questions about this Privacy Notice, please contact


SECTION 20: Contact Information

Requests for further information about this Privacy Notice or about how we process Personal Data can be sent by email to:

bottom of page