Last updated: 2 July 2026
1. Who we are
Northhold Advisory (“we”, “us”) is an AML/CFT and financial-crime compliance advisory practice registered in Astana, Republic of Kazakhstan. We act as the data controller for personal data collected through this website. Full registered details are available on request at hello@northholdadvisory.com.
2. What data we collect
- Contact form data: name, work email, company, role, jurisdiction and the content of your message.
- Correspondence data: information you share with us by email after your initial enquiry.
- Technical data: standard server logs (IP address, browser type, pages visited) collected by our hosting provider for security and reliability.
- Preferences: your language choice (EN/RU), stored locally in your browser (localStorage). It never leaves your device.
We do not use advertising cookies or cross-site tracking.
3. Why we process it
We process your data to respond to your enquiry, prepare and perform an engagement, and comply with our own legal and professional obligations. The legal bases under the EU/UK GDPR are: taking steps at your request prior to entering into a contract (Art. 6(1)(b)), our legitimate interest in operating and securing this website (Art. 6(1)(f)), and compliance with legal obligations (Art. 6(1)(c)).
4. Sharing and third parties
We do not sell or rent personal data. We share it only with service providers necessary to run this website and our practice (hosting, email), each bound by confidentiality, or where required by law. This site loads fonts from Google Fonts; your browser contacts that service directly and its own privacy policy applies.
5. International transfers
As we operate across the EU, UK and Central Asia, your data may be processed outside your home jurisdiction. Where required, we rely on appropriate safeguards such as standard contractual clauses.
6. Retention
Enquiry data is kept for up to 24 months after our last contact, unless an engagement follows (in which case engagement records are retained as required by law and professional standards) or you ask us to delete it earlier.
7. Your rights
Depending on your jurisdiction, you may have the right to access, rectify, erase, restrict or object to the processing of your personal data, the right to data portability, and the right to lodge a complaint with your supervisory authority. To exercise any right, contact hello@northholdadvisory.com. We respond within one month.
8. Security
We apply proportionate technical and organisational measures — encrypted transport (HTTPS), access controls and data minimisation — and treat all client communications as confidential. We are happy to sign an NDA before any substantive discussion.
9. Changes
We may update this policy from time to time; the date above reflects the latest version. Material changes will be highlighted on this page.