Cookie Notice
Home Page
Last updated: June 2026
Privacy Notice
This Privacy Notice explains how ForbesBerry AI Research and Consulting Limited collects, uses, shares and protects personal data when you visit our website, complete our forms, use our assessments, contact us, engage with our services, or receive communications from us.
ForbesBerry AI Research and Consulting Limited is the controller of the personal data described in this Privacy Notice.
1. Who We Are
Controller: ForbesBerry AI Research and Consulting Limited
Website: www.forbesberry.com
Address: Level 3, Dubai AI Campus, DIFC, Dubai, United Arab Emirates
Privacy Contact: [email protected]
In this Privacy Notice, "ForbesBerry", "we", "us" and "our" refer to ForbesBerry AI Research and Consulting Limited. This notice covers how we handle your personal data across all touchpoints, including website visits, form submissions, assessments and tools, direct contact and enquiries, service engagements, and marketing communications.
For any questions about how your personal data is handled, please reach out to our privacy team at [email protected].
2. Personal Data We Collect
We may collect and process the following categories of personal data:
  • Contact and identity details — This may include your name, email address, phone number, job title, organisation, country, business address and LinkedIn or professional profile details where you choose to provide them.
  • Enquiry and relationship information — This may include details of your enquiry, service interests, consultation requests, proposal requests, partnership enquiries, research collaboration interests, speaker requests, event information and related correspondence.
  • AI maturity assessment information — This may include your answers to assessment questions, organisational AI maturity indicators, AI adoption status, business priorities, governance practices, technology and operating model information, free-text responses and any information you choose to provide as part of the assessment.
  • Marketing and communication preferences — This may include your preferences for receiving updates from us, consent records, unsubscribe records, opt-out records and suppression-list records.
  • Website and technical information — This may include IP address, device type, browser type, operating system, pages visited, links clicked, referral source, approximate location derived from technical data, cookie identifiers, analytics events and information about how you interact with our website.
  • Information from third-party platforms — If you interact with us through third-party platforms, such as LinkedIn, online forms, event platforms or scheduling tools, we may receive information that you submit through those platforms or that the platform makes available to us in accordance with its settings and privacy terms.
Please do not include confidential information, sensitive personal data, personal data about other people, or commercially sensitive material in assessment responses unless it is necessary and you have authority to provide it.
3. How We Collect Personal Data
We collect personal data when you:
  • visit or interact with our website;
  • complete a contact, enquiry, assessment, partnership, research or speaker request form;
  • request a consultation, proposal, meeting or follow-up;
  • subscribe or opt in to receive updates from us;
  • communicate with us by email, phone, messaging platform, LinkedIn or other channels;
  • attend or enquire about our events, research, workshops or speaking engagements;
  • interact with our digital communications, cookies, analytics tools or website tracking technologies;
  • provide information to us through a third-party service provider or platform.
We may also receive personal data from referrals, business contacts, professional networks, event organisers, publicly available business sources, client organisations and service providers.
We do not intend to build marketing lists using scraped personal data from websites or digital interfaces. We also do not intend to rely on bought, brokered, stale or indirect marketing lists unless we have verified an appropriate lawful basis, notice trail and opt-out mechanism.
4. Why We Use Personal Data
We use personal data for the purposes set out below.
To respond to enquiries — We use your personal data to respond to enquiries, arrange meetings, provide information, understand your requirements and manage follow-up communications.
To provide assessments and recommendations — We use AI maturity assessment responses to evaluate organisational AI maturity, generate indicative results, identify potential gaps and provide relevant recommendations or follow-up.
To provide services — We use personal data to provide consulting, research, advisory, implementation, training, workshop, speaking and related services.
To manage business relationships — We use personal data to manage client, partner, supplier, research, event and professional relationships.
To improve our website and services — We may use website usage data, analytics data, assessment data and feedback to improve our website, content, frameworks, research, services and user experience. Where practical, we use aggregated or anonymised information for research, benchmarking and service improvement.
To send marketing communications — Where permitted, we may send updates about our services, research, events, assessments, insights and advisory offerings. We will only send direct marketing where we have a lawful basis to do so. Where consent is required, we will ask for a clear, specific and affirmative opt-in. You can unsubscribe or opt out at any time.
To manage cookies and digital communications — We use cookies and similar technologies to operate the website, remember preferences, understand site usage, measure engagement and manage digital communications. Non-essential analytics, functional or marketing cookies are used in accordance with your cookie preferences, where consent is required.
To comply with law and protect our rights — We may use personal data to comply with legal, regulatory, accounting and reporting obligations, protect our systems, prevent misuse, enforce our terms, resolve disputes and protect our legal rights.
5. Lawful Bases for Processing
Depending on the purpose, we may rely on one or more of the following lawful bases:
Consent — where you have given a clear affirmative indication that we may process your personal data for a specific purpose.
Contract — where processing is necessary to take steps at your request before entering into a contract or to perform a contract with you or your organisation.
Legitimate interests — where processing is necessary for our legitimate business interests and those interests are not overridden by your rights and interests.
Legal obligation — where processing is necessary to comply with applicable law or regulatory requirements.
Legal claims — where processing is necessary to establish, exercise or defend legal claims.
Examples of our legitimate interests include responding to business enquiries, managing client and partner relationships, improving our services, protecting our systems, developing business opportunities, conducting appropriate B2B communications, and maintaining accurate records.
6. AI Maturity Assessments
If you complete an AI maturity assessment, we may use your responses to generate an indicative maturity profile, score, classification, recommendation or follow-up discussion.
The assessment is intended to support business discussion and advisory engagement. It is not intended to produce legal effects or similarly significant effects about any individual.
We may use aggregated or anonymised assessment information for benchmarking, research, service development and thought leadership. We will not intentionally publish information that identifies you or your organisation without appropriate permission.
7. Direct Marketing and Electronic Communications
We may send direct marketing communications about ForbesBerry services, research, events, insights, assessments and advisory offerings where permitted by applicable law.
Where we rely on consent, we will ask you to opt in through a clear affirmative action, such as ticking an unticked checkbox. We will not treat silence, inactivity or a pre-ticked box as valid consent.
We may use separate opt-ins for different channels, such as email, phone, SMS or messaging apps, where appropriate.
Every marketing email will include an unsubscribe method or other clear way to opt out. You can also opt out by contacting us at [email protected].
If you opt out, we may keep limited information on a suppression list to make sure we do not send you further marketing communications. We will not use that suppression list to contact you later asking you to opt back in.
8. Social Media and CRM Contacts
If we connect with you on LinkedIn or another professional platform, we may use your business contact information to maintain a professional relationship and communicate with you in a way that is consistent with your reasonable expectations.
We do not treat a social media connection alone as automatic permission to add you to marketing campaigns. Where contact information is added to our CRM or marketing systems, we consider the source of the information, the purpose of the contact, the applicable privacy notice, the lawful basis for processing and your right to object or opt out.
9. Cookies and Similar Technologies
Our website may use cookies, pixels, tags, scripts, local storage and similar technologies.
We use the following categories of cookies:
Essential cookies — These are necessary for the website to function, provide security, load pages and enable requested services.
Analytics cookies — These help us understand how visitors use the website, which pages are viewed, how visitors arrive at the site and how the website performs.
Functional cookies — These help remember preferences and improve the user experience.
Marketing cookies — These may help measure campaigns, understand engagement and support relevant marketing communications.
Where required, non-essential cookies are only used in accordance with your cookie preferences. You can change your cookie preferences at any time using the Cookie Settings link on our website.
For more information, please see our Cookie Notice.
10. Who We Share Personal Data With
We may share personal data with the following categories of recipients where necessary:
  • website hosting and website platform providers;
  • online form, assessment and survey providers;
  • CRM, email marketing and communication providers;
  • analytics and tag management providers;
  • scheduling, event and project management platforms;
  • professional advisers, consultants and service providers;
  • technology, security and IT support providers;
  • regulators, public authorities, courts or law enforcement bodies where required by law;
  • potential buyers, investors, advisers or counterparties in connection with a business transaction, restructuring or transfer, subject to appropriate safeguards.
Our service providers may include Gamma, Jotform, Monday.com, Google Analytics, Google Tag Manager, LinkedIn and other providers that support our website, forms, communications and business operations.
11. International Transfers
Some of our systems, service providers, partners or recipients may be located outside the DIFC, the UAE or the country where you are located.
Where personal data is transferred internationally, we take steps designed to protect the data in accordance with applicable data protection requirements. These steps may include transfer assessments, contractual safeguards, recognised adequacy mechanisms, intra-group arrangements or other lawful transfer mechanisms.
You may contact us for more information about the safeguards we use for international transfers.
12. How Long We Keep Personal Data
We keep personal data only for as long as necessary for the purposes for which it was collected, including legal, regulatory, accounting, reporting, security and dispute-resolution purposes.
As a general guide:
  • Website enquiry records are usually kept for up to 3 years after the last meaningful interaction;
  • AI maturity assessment responses are usually kept for up to 3 years, unless a longer period is required for client service, research, legal or compliance purposes;
  • Marketing contact records are kept until you unsubscribe, withdraw consent, object, or become inactive under our retention practices;
  • Suppression-list records may be kept for as long as necessary to respect your opt-out request;
  • Cookie and analytics data are kept according to our cookie configuration and the settings of the relevant analytics provider;
  • Client, contract, finance and legal records may be kept for up to 6 years or longer where required by law or necessary for legal claims.
When personal data is no longer required, we delete it, anonymise it, securely archive it or put it beyond further active use.
13. Your Rights
Subject to applicable conditions and exemptions, you may have the right to:
  • request access to your personal data;
  • request correction of inaccurate or incomplete personal data;
  • request deletion of your personal data;
  • request restriction of processing;
  • object to processing, including processing for direct marketing;
  • request portability of your personal data, where applicable;
  • withdraw consent at any time where processing is based on consent;
  • complain to the DIFC Commissioner of Data Protection.
To exercise your rights, contact us at [email protected]. We may need to verify your identity before responding to a request.
14. Security
We use appropriate technical and organisational measures designed to protect personal data against unauthorised access, loss, misuse, alteration or disclosure.
No website, transmission or storage system can be guaranteed to be completely secure, but we take reasonable steps to protect personal data having regard to the nature of the data and the risks involved.
15. Third-Party Websites and Platforms
Our website may link to third-party websites, forms, platforms or social media pages. Those third parties may process personal data under their own privacy notices and terms.
We recommend reviewing the privacy notices of any third-party platform before submitting personal data to it.
16. Children
Our website and services are intended for business users and are not directed at children. We do not knowingly collect personal data from children through the website.
17. Changes to This Privacy Notice
We may update this Privacy Notice from time to time. The latest version will be published on our website with the "Last updated" date shown above.
18. Contact Us
For privacy questions, data protection requests, cookie preference questions or marketing opt-outs, contact:
ForbesBerry AI Research and Consulting Limited
Address: Level 3, Dubai AI Campus, DIFC, Dubai, United Arab Emirates
© 2026 ForbesBerry AI Research and Consulting Limited. All rights reserved. | www.forbesberry.com