Privacy Policy
Our comprehensive privacy policy explaining how we collect, use, and protect your personal data globally across all jurisdictions.
Effective Date: November 12, 2025
Introduction
At StellarStart Global Ltd ("we," "us," or "our"), we place the highest priority on protecting your privacy and handling your personal data responsibly. This Privacy Policy explains how we collect, use, store, disclose, and safeguard personal data when you visit or register on our website, https://stellarstart.global, or associated portals (the "Site"), engage our consultancy and professional services (the "Services"), or interact with us in other contexts (including recruitment and job applications).
We are a consultancy registered in London, United Kingdom, but we operate globally. Accordingly, this Policy is designed to comply with the UK GDPR, EU GDPR, CCPA/CPRA (California, USA), PIPEDA (Canada), the Australian Privacy Act, Singapore PDPA, Hong Kong PDPO, and Dubai DIFC DP Law 2020, as well as other applicable data protection laws in the jurisdictions where we provide Services.
This Policy applies only to personal data we collect and process directly. It does not extend to third-party websites, services, or applications that may be linked from our Site.
Purpose of This Policy
This Privacy Policy describes our approach to the collection, use, and protection of personal data, whether obtained directly from you or indirectly through third parties. It outlines:
- What personal data we collect
- The purposes and legal bases for using it
- How long we retain it
- The rights available to you under applicable law
- How you can contact us regarding your data
Our aim is transparency, enabling you to make informed decisions when using our Site, Services, or engaging with us.
Our Services
StellarStart Global Ltd is a consultancy headquartered in London, United Kingdom, providing consultancy and professional services in the legal, regulatory, tax, brand protection, and business strategy domains to clients globally.
For purposes of applicable data protection laws, StellarStart Global Ltd acts primarily as a data controller when collecting and processing personal data through our Site, Platform, and Services. In limited cases, when we process personal data on behalf of a client (e.g., employee or contractor data provided for trademark filings, compliance checks, or regulatory submissions), we may act as a data processor, and the client remains the data controller.
We implement technical and organizational measures to comply with the UK GDPR, EU GDPR, CCPA/CPRA, PIPEDA (Canada), Australian Privacy Act, Singapore PDPA, Hong Kong PDPO, Dubai DIFC DP Law 2020, and other applicable frameworks.
What Personal Information We Collect
Data from Site Visitors
- Identifying Information: Name, job designation, and company name provided during registration or inquiries
- Contact Details: Email address, phone number, and social media accounts (where applicable)
- Demographic Information: Address, preferences, and interests relevant to our Services
- Technical Data: IP address, browser type, device information, operating system, access times, pages viewed, referral links, and usage patterns
Data from Clients or Prospective Clients
- Identifying Information: Name, job designation, and company details
- Contact Details: Email address, phone number, and mailing address
- Payment Information: Limited financial details required for billing, processed securely through third-party payment providers
- Service-Related Data: Materials necessary to deliver our Services, such as trademark names, corporate documents, or other submissions
- Compliance Data: Information provided for Know Your Client (KYC) and Anti-Money Laundering (AML) checks
- Communications Records: Correspondence via email, chat, or other platforms
Data from Job Applicants
- Identifying Information: Name and contact details
- Professional Information: Curriculum vitae, including education, employment history, qualifications, and professional affiliations
- Additional Data: Information provided during recruitment (e.g., references, interview notes, or assessment results)
Children's Privacy: Our Site and Services are intended for use by individuals aged 18 and above. We do not knowingly collect or process personal data from anyone under 18 years of age.
How We Use Your Personal Information
Service Delivery
We use your data to provide consultancy and professional services, including trademark registration, compliance, and business consulting.
Client Support
We use your data to respond to inquiries, provide consultations, and address requests submitted via online forms, email, chat, or phone.
Business Administration & Compliance
We process data to comply with KYC/AML or other regulatory obligations, maintain tax, financial, and corporate records, and enforce legal rights or resolve disputes.
Recruitment
We use applicant data to assess suitability for roles, conduct interviews, evaluations, and ensure compliance with equal opportunity laws.
Marketing Communications
We may send newsletters, updates, promotional offers, and invitations to webinars, seminars, or networking events based on your preferences.
Important: We do not sell or share personal data for monetary value as defined under the California Consumer Privacy Act (CCPA/CPRA).
Legal Basis for Processing Personal Information
- Contract performance – to fulfill obligations under agreements with you, including delivering our Services, managing client relationships, and processing job applications
- Legitimate interests – to support our business operations, enhance Services, maintain security, prevent fraud, and manage client relationships
- Legal obligation – to comply with applicable laws, regulations, or court orders, including Know Your Client (KYC), Anti-Money Laundering (AML) checks, tax reporting, and record-keeping duties
- Consent – for optional activities such as marketing communications, non-essential cookies, or certain recruitment processes
We do not intentionally collect or process special category data (such as information on racial or ethnic origin, political opinions, religion, health data, or biometrics) unless strictly required by law or provided voluntarily with your explicit consent.
Who We Share Your Personal Information With
We may share personal data with trusted third parties to support our operations. We do not sell or share personal data for cross-context behavioral advertising as defined under the California Consumer Privacy Act (CCPA/CPRA).
Third-Party Service Providers (Processors)
- Payment processors for secure billing
- Cloud hosting and IT infrastructure providers
- Email and CRM platforms for client communications
- Analytics providers (e.g., Google Analytics)
- Identity verification services for KYC/AML compliance
Legal and Consultancy Partners (Independent Controllers)
Independent advisors (e.g., trademark attorneys, compliance experts) who support Service delivery. They are bound by confidentiality and professional obligations.
Regulatory and Legal Authorities
Government bodies, courts, or regulators where disclosure is required to comply with applicable laws, respond to legal processes, or protect rights, safety, and property.
Where We Transfer Your Data
To deliver Services, we may transfer personal data to jurisdictions outside the United Kingdom (UK) or the European Economic Area (EEA), including the United States, Singapore, Dubai, Canada, Australia, and other regions where our service providers are located.
We ensure these transfers comply with the UK GDPR, EU GDPR, and other applicable data protection laws through one or more of the following safeguards:
- Adequacy Decisions: Transfers to countries formally recognized by the UK or EU as providing adequate protection
- Standard Contractual Clauses (SCCs): Approved contractual safeguards issued by the European Commission
- International Data Transfer Agreement (IDTA): UK-approved contractual mechanism for transfers outside the UK
- Data Privacy Framework (DPF): Transfers to U.S. entities certified under the EU–U.S. DPF and/or UK Extension to DPF
How Long We Keep Your Personal Information
We retain personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy or to meet legal, regulatory, or professional obligations. Typical periods are as follows:
Confidentiality and Security of Your Personal Information
We are committed to protecting your personal data through appropriate technical and organizational measures, including:
- Encryption: Personal data is encrypted in transit (TLS/SSL) and at rest
- Access Controls: Role-based restrictions, strong authentication measures, and regular reviews
- Data Minimization: Where possible, personal data is limited to what is necessary for processing
- Security Audits: Regular vulnerability assessments, penetration testing, and monitoring
- Staff Training: All employees and contractors undergo ongoing data protection and security awareness training
- Third-Party Oversight: Service providers and processors handling personal data are subject to due diligence
Your Rights Regarding Your Personal Information
Under the UK GDPR, EU GDPR, and other applicable data protection laws, you have the following rights regarding your personal data:
- Right of Access: Request confirmation of whether we process your personal data and obtain a copy
- Right to Rectification: Request correction of inaccurate or incomplete personal data
- Right to Erasure: Request deletion of your personal data when it is no longer needed
- Right to Restrict Processing: Request limitation of processing in specific circumstances
- Right to Data Portability: Receive your personal data in a structured, machine-readable format
- Right to Object: Object to processing carried out on the basis of legitimate interests
- Right to Withdraw Consent: Withdraw consent at any time, without affecting the lawfulness of processing before withdrawal
- Right to Complain: Lodge a complaint with the UK Information Commissioner's Office (ICO) or another competent supervisory authority
We will respond to your request without undue delay and in any event within one (1) month of receipt.
Contact Us
If you have questions about this Privacy Policy, wish to exercise your data protection rights, or have concerns about our data practices:
Email: support@stellartstart.global
Address: 85 First Floor, Great Portland Street, London, United Kingdom, W1W 7LT
UK Supervisory Authority: Information Commissioner's Office (ICO) - https://ico.org.uk
Quick Links
Last Updated: 12/1/2025