Millwright

Privacy Policy

Last updated: 30 June 2026

This Privacy Policy explains how ABIQ Limited, trading as Millwright ("Millwright", "we", "us", "our"), collects, uses, discloses, and protects information when you visit millwright.uk (the "Site") or otherwise interact with us, including through our diagnostic scorecard, contact forms, and call-booking tools.

If you do not agree with this policy, please do not use the Site. By using the Site, you consent to the practices described below.

1. Who we are

Millwright is an operational architecture and AI strategy consultancy operated by ABIQ Limited, a company based in the United Kingdom. For any privacy-related query, see the Contact section at the end of this policy.

2. Information we collect

We collect information in the following ways:

CategoryExamplesHow it's collected
Information you provide directly Name, email address, business name, role, responses to scorecard/diagnostic questions, and any details you share when booking a call or contacting us Forms on the Site, the Operational Readiness Scorecard, call-booking tool, email correspondence
Usage and device information IP address, browser type, device type, pages visited, referring URLs, time and date of visit, approximate location derived from IP Automatically, via standard server logs and analytics tools when you browse the Site
Cookies and similar technologies Session identifiers, preference settings, analytics identifiers Cookies and local storage set by the Site and any third-party tools we use (see Section 5)
Communications Content of emails, messages, or call notes you send us or that arise from a booked consultation Directly from you, or generated during the course of our engagement

We do not knowingly collect payment card numbers, bank details, or other financial account credentials through the Site. Where payment is required for our services, this is handled by a third-party payment processor (see Section 5), and we do not store your full card details ourselves.

3. How we use your information

We use the information we collect to:

We do not sell your personal information, and we do not use it for automated decision-making that produces legal or similarly significant effects on you.

4. Legal basis for processing (UK/EU visitors)

Where UK GDPR or EU GDPR applies, we rely on the following legal bases:

5. How and with whom information is disclosed

We do not sell, rent, or trade your personal information. We disclose information only in the following circumstances, and only to the extent necessary:

a) Service providers

We share information with trusted third-party providers who perform services on our behalf, under contractual obligations to protect your data and use it only for the purposes we specify. These may include:

b) Legal and safety disclosures

We may disclose information where required by law, regulation, legal process, or governmental request, or where we believe disclosure is necessary to protect our rights, your safety or the safety of others, investigate fraud, or respond to a legal claim.

c) Business transfers

If Airbase IQ is involved in a merger, acquisition, financing, or sale of assets, your information may be disclosed or transferred as part of that transaction. We will take reasonable steps to ensure the receiving party honours the commitments made in this policy.

Method of disclosure

Disclosures to service providers are made electronically through secure, access-controlled integrations (such as encrypted API connections or authenticated dashboard access), limited to the minimum information each provider needs to perform its function. We do not disclose personal information by public posting, and any electronic transfer is made over encrypted connections (HTTPS/TLS) wherever technically supported.

6. International transfers

Some of our service providers may process information outside the UK or European Economic Area, including in the United States. Where this occurs, we take steps intended to ensure an adequate level of protection, such as relying on providers certified under recognised data protection frameworks or incorporating standard contractual clauses into our agreements with them.

7. Your choices and rights

Depending on your location, you may have rights to access, correct, delete, restrict, or object to our processing of your personal information, and to request a portable copy of it. You may also withdraw consent at any time where processing is based on consent, without affecting the lawfulness of processing before withdrawal.

You can exercise these rights, opt out of marketing communications, or ask us a question about your data by contacting us using the details in Section 11. UK and EU residents also have the right to lodge a complaint with their local data protection authority — in the UK, this is the Information Commissioner's Office (ICO).

8. Cookies

The Site uses cookies and similar technologies to operate core functionality, remember preferences, and understand aggregate usage. You can control or disable cookies through your browser settings; doing so may affect some functionality of the Site.

9. Data retention

We retain personal information for as long as is necessary to fulfil the purposes described in this policy, including to provide our services, maintain business records, and comply with legal, accounting, or reporting obligations. When information is no longer needed, we delete or anonymise it, or, where that isn't immediately possible, securely isolate it from further use.

10. Security practices

We take the security of your information seriously and apply reasonable technical and organisational measures designed to protect it against unauthorised access, alteration, disclosure, or destruction. These measures include:

No method of transmission or storage is completely secure, and we cannot guarantee absolute security. If we become aware of a breach affecting your personal information, we will notify affected individuals and relevant authorities where required by law.

11. Children's privacy

The Site is intended for business owners and professionals and is not directed at children. We do not knowingly collect personal information from anyone under the age of 16.

12. Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in our practices, services, or legal requirements. The "Last updated" date at the top of this page indicates when it was last revised. Material changes will be reflected here, and we encourage you to review this page periodically.

13. Contact us

ABIQ Limited (trading as Millwright)

United Kingdom

Email: privacy@millwright.uk