Privacy Policy | Nicole Brooke Global

Tel: +44 (0) 207 871 1485. © Copyright Nicole Brooke Global. Registered in England & Wales No. 07761973. Nicole Brooke Limited (“we”, “us”, “our”) provides executive search and intelligence services to clients internationally. This Privacy Policy explains how we collect, use and protect your personal data and outlines your rights.

About Us We are Nicole Brooke Limited (company number 07761973), the data controller of the personal information we collect and process. We are committed to protecting your personal data. Contact: FAO Nicole Brooke, Data Protection Officer, 80–83 Long Lane, London EC1A 9ET. Email: info@nicolebrookelimited.com. Phone: +44 (0) 207 871 1485.

How We Collect Personal Data We collect information when you make an enquiry, provide feedback or make a complaint by phone, email, SMS or other electronic messaging services; submit correspondence by post or electronically; are or may be a candidate in the context of our executive search services; register for or attend events; submit a CV or application or attend interviews or meetings (speculative or role-specific); or interact with our social media accounts including LinkedIn and X.

Information from Third Parties We may receive personal information from clients (such as feedback regarding applications or interviews), from employers, colleagues or referees, and from publicly available sources including company websites, LinkedIn, BoardEx, Bloomberg and professional publications in order to assess professional background in connection with executive search mandates.

What Personal Data We Collect The information may include identity and contact data (name, title, address, email address, phone number, age, gender, nationality), employment and professional background data (employment history, educational qualifications, compensation details, contact history and references), and information contained in correspondence between you and us.

Special Category Data We do not generally seek to collect special category data (such as race, religion, health, political opinions, sexual orientation or trade union membership). Where required for a specific search, we will obtain explicit consent and process such data in accordance with applicable law.

Lawful Basis for Processing We process personal data on the basis of consent, compliance with legal obligations, or our legitimate business interests in conducting executive search activities within financial services and high-performance sectors, and we consider that such processing does not override your rights and freedoms.

How We Use Your Data We use your data to match candidates with client mandates, manage professional relationships, communicate via professional platforms and comply with legal and regulatory obligations. At initial stages of a search, limited profile information (such as name and brief career summary) may be shared with a client; fuller disclosure will occur only with your agreement.

Your Rights You have the right to be informed, access your personal data, rectify inaccurate data, request erasure where applicable, restrict processing, request data portability where applicable, object to processing, withdraw consent and lodge a complaint with the Information Commissioner’s Office (ICO) at https://ico.org.uk. To exercise your rights, contact Nicole Brooke, Data Protection Officer, using the details above. We will respond within 30 days unless an extension is legally required.

Data Security Personal data is stored securely within controlled systems accessible only to authorised personnel. We apply appropriate physical, technical and organisational measures including password protection, encryption, restricted access and staff training. Where data is shared with clients or advisers, appropriate confidentiality safeguards are in place.

International Transfers Where suppliers process data outside the UK or EEA, we ensure appropriate safeguards such as adequacy decisions or standard contractual clauses are implemented.

Data Sharing We may share personal data with clients in connection with search mandates, with IT and hosting providers, professional advisers, regulatory authorities where required and prospective buyers in the event of business restructuring. We do not sell personal data.

Data Retention Personal data is retained only as long as reasonably necessary for lawful business purposes. We operate a retention policy including a maximum review or deletion period of seven years.

Website Information Our website uses Google Analytics to understand usage patterns; no personally identifying information is accessible to us. The website is securely hosted via Webflow and all traffic is encrypted via HTTPS and SSL certification.

Data Breaches While no method of transmission is completely secure, we apply commercially appropriate safeguards and will notify affected individuals of any reportable personal data breach within 72 hours where legally required.

Contact Preferences We may contact you by telephone, email, SMS, electronic messaging or professional social platforms. Please inform us of your preferred communication method.

Changes to This Policy We keep this Privacy Policy under regular review and will publish material changes on this page. Last updated: 19 February 2026.