Privacy Policy

Last updated: 27/10/2025

Critical Minerals Tomorrow is committed to protecting your privacy and ensuring compliance with GDPR, CCPA, and other international data protection regulations.

1. Data Controller

2. Information We Collect

We collect information you voluntarily provide when contacting us:

• Name and contact details (email, phone)
• Company name and professional information
• Communication preferences
• Any information you provide in messages or inquiries

3. Legal Basis for Processing (GDPR)

We process your personal data based on:

• Consent: When you contact us voluntarily
• Legitimate Interest: To respond to inquiries and provide services
• Contractual Necessity: To fulfill service agreements

4. How We Use Your Information

• Respond to your inquiries and provide requested services
• Communicate about our advisory services
• Improve website functionality and user experience
• Comply with legal and regulatory obligations
• Prevent fraud and ensure security

5. Data Retention

We retain personal data only as long as necessary for the purposes outlined or as required by law. Typically, inquiry data is retained for 3 years unless you request earlier deletion.

6. Your Rights (GDPR)

You have the right to:

• Access: Request a copy of your personal data
• Rectification: Correct inaccurate data
• Erasure: Request deletion of your data
• Restriction: Limit how we process your data
• Data Portability: Receive your data in a portable format
• Object: Object to processing of your data
• Withdraw Consent: At any time

7. International Data Transfers

If data is transferred outside the EEA, we ensure adequate safeguards through Standard Contractual Clauses (SCCs) or other approved mechanisms in compliance with GDPR Article 46.

8. Data Security

We implement industry-standard security measures including:

• Encryption of data in transit and at rest
• Regular security assessments and updates
• Access controls and authentication
• Staff training on data protection

9. Information Sharing

We do not sell your personal data. We may share data with:

• Service providers bound by confidentiality agreements
• Legal authorities when required by law
• Professional advisors under confidentiality obligations

10. Cookies and Tracking

Our website uses cookies to enhance your browsing experience. We categorize cookies as follows:

• Strictly Necessary Cookies: Essential for website functionality (always active)
• Functional Cookies: Remember your preferences and settings (requires consent)
• Analytics Cookies: Help us understand how visitors use our site (requires consent)
• Marketing Cookies: Track your activity for advertising purposes (requires consent)

You can manage your cookie preferences at any time using our cookie consent banner. We will not use non-essential cookies without your explicit consent. Your preferences are stored locally in your browser.

Current Cookie Usage: We currently only use essential cookies for website functionality and store your cookie preferences. When analytics or marketing cookies are added in the future, they will only activate with your consent.

11. Children's Privacy

Our services are not directed at individuals under 18. We do not knowingly collect data from children.

12. Changes to This Policy

We may update this policy periodically. Material changes will be communicated via email or website notice.

13. Contact & Complaints

To Exercise Your Data Rights:

Right to Complain:
If you have concerns about how we handle your personal data, you have the right to lodge a complaint with the UK Information Commissioner's Office (ICO):

For users outside the UK, you may also contact your local data protection authority or supervisory authority.