Privacy & Cookie Policy

The Tsunami Axis Group of companies includes Tsunami Axis Ltd, Tsunami Operations Ltd, Tsunami Axis GmbH, and Flourish Healthcare. We are committed to upholding our responsibilities under General Data Protection Regulation (GDPR) EU 2016/679. GDPR requires that this Privacy Policy that is jargon-free, and in plain language.

1. What GDPR-applicable Data We Hold

Our employees collect and hold the following categories of personal data, in the following formats:

1.1. Customer Data, comprising names, roles, organisation, contact details. This information is held on our: Customer Relationship Management system, Business Management System, Financial Management System, Personal Information Management and Email System.

1.2. Supplier Data: We hold supplier data comprising names, roles, organisation, contact details. This information is held on our: Business Management System, Financial Management System, Personal Information Management and Email System.

Sub-contractors: In addition, we hold personal data for individual sub-contractor employees, to confirm they are safe and eligible to work on our sites.

1.3. Employee Data, comprising names, roles, contact details, personal details. This information is held:
• In hard-copy format, held in secure filing and accessed only by the Tsunami Axis HR Manager
• Payroll Management System
• Contact details are help in our Email and Contact System, Microsoft Office 365 Exchange system.

1.4. Office and Site Visitors: Visitor’s information is recorded for health and safety purposes. (I.e. ensuring safe evacuation.)

1.5. Back Up Data, held by our IT support company, i-Dash.

2. Lawful Basis

There are six lawful bases that can be applied for processing your data: Consent; Contract; Legal Obligation; Vital Interests; Public Task; Legitimate Interests. The data we hold complies with this requirement:

2.1. Customer Data:
• Legitimate interest
• For quotation, tendering, and project purposes: Contractual

2.2. Supplier and Subcontractor Data:
• For quotation or tendering purposes: Contractual
• For project management purposes: Contractual

2.3. Employee Data:
• Legal Obligation

3. Data Processors

We use third parties to process legitimate personal data. The third parties fall into the following categories
3.1. Our IT service providers, who develop, maintain, and back up our systems
3.2. CRM service provides: Data processors who provide or process within our CRM software
3.3. Our website provider
3.4. Personal Information Manager/Email service provider
3.5. Financial Management System

4. Keeping Your Data Secure

We commit to ensuring the data we keep is secure. Our premises are secured, and our IT systems are secured with relevant protection suites. Our systems are proactively managed by our By our in-house IT department supported by out IT Consultants. The data processors we use have demonstrated their safe handling of data.

5. Keeping Your Data Relevant

We will only keep data that is relevant. We will delete any data that is redundant, and we will not keep data without good reason. Our CRM database is managed to ensure it is current, and staff access is limited.

6. Analytics and Advertising

Google Analytics

This website uses Google Analytics, a web analytics service. It is operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

Google Analytics uses so-called “cookies”. These are text files that are stored on your computer and that allow an analysis of the use of the website by you. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there.

Google Analytics cookies are stored based on Art. 6 (1) (f) GDPR. The website operator has a legitimate interest in analyzing user behavior to optimize both its website and its advertising.

IP Anonymization

We have activated the IP anonymization feature on this website. Your IP address will be shortened by Google within the European Union or other parties to the Agreement on the European Economic Area prior to transmission to the United States. Only in exceptional cases is the full IP address sent to a Google server in the US and shortened there. Google will use this information on behalf of the operator of this website to evaluate your use of the website, to compile reports on website activity, and to provide other services regarding website activity and Internet usage for the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with any other data held by Google.

Browser Plugin

You can prevent these cookies being stored by selecting the appropriate settings in your browser. However, we wish to point out that doing so may mean you will not be able to enjoy the full functionality of this website. You can also prevent the data generated by cookies about your use of the website (incl. your IP address) from being passed to Google, and the processing of these data by Google, by downloading and installing the browser plugin available at the following link:

Objecting to the Collection of Data

You can prevent the collection of your data by Google Analytics by clicking on the following link. An opt-out cookie will be set to prevent your data from being collected on future visits to this site: Disable Google Analytics. For more information about how Google Analytics handles user data, see Google’s privacy policy:

Outsourced Data Processing

We have entered into an agreement with Google for the outsourcing of our data processing and fully implement the strict requirements of the German data protection authorities when using Google Analytics.

Google AdWords and Google Conversion Tracking

This website uses Google AdWords. AdWords is an online advertising program from Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, United States (“Google”).

As part of Google AdWords, we use so-called conversion tracking. When you click on an ad served by Google, a conversion tracking cookie is set. Cookies are small text files that your internet browser stores on your computer. These cookies expire after 30 days and are not used for personal identification of the user. Should the user visit certain pages of the website and the cookie has not yet expired, Google and the website can tell that the user clicked on the ad and proceeded to that page.

Each Google AdWords advertiser has a different cookie. Thus, cookies cannot be tracked using the website of an AdWords advertiser. The information obtained using the conversion cookie is used to create conversion statistics for the AdWords advertisers who have opted for conversion tracking. Customers are told the total number of users who clicked on their ad and were redirected to a conversion tracking tag page. However, advertisers do not obtain any information that can be used to personally identify users. If you do not want to participate in tracking, you can opt-out of this by easily disabling the Google Conversion Tracking cookie by changing your browser settings. In doing so, you will not be included in the conversion tracking statistics.

Conversion cookies are stored based on Art. 6 (1) (f) GDPR. The website operator has a legitimate interest in analyzing user behavior to optimize both its website and its advertising.

For more information about Google AdWords and Google Conversion Tracking, see the Google Privacy Policy:

You can configure your browser to inform you about the use of cookies so that you can decide on a case-by-case basis whether to accept or reject a cookie. Alternatively, your browser can be configured to automatically accept cookies under certain conditions or to always reject them, or to automatically delete cookies when closing your browser. Disabling cookies may limit the functionality of this website.

Lead Forensics

This website uses Lead Forensics, a B2B sales and marketing enablement tool. It is operated by Lead Forensics, UK Headquarters, Communication House, 26 York Street, London, W1U 6PZ, UK.

The Lead Forensics tool uses a tracking code for identifying businesses visiting our websites based on their business IP addresses. This is not the same as cookies. The Lead Forensics tracking code only provides information that is readily available in the public domain. It does not, and cannot, provide individual, personal or sensitive data regarding who has visited our website. Under no circumstances will the data be used for the personal identification of an individual visitor. If IP addresses are collected, they will be anonymised immediately after collection. The information generated by the Lead Forensics tracking code is transmitted to the Lead Forensics tool and processed and stored in the UK within a secure environment.

The Lead Forensics tool does not provide us with the IP addresses. It provides us information on what companies have visited our website, the date and duration of their visit, and the web pages that they visit. This information allow us to analyze the use of our website and eventually contact those companies about their experience or for sales purposes. As an international company, to be able to guaranty you the best service, we transmit this data to our subsidiaries and distributors as far as necessary. Beyond this purpose, there is no transmission of personal information to third parties.

More information can be found at If you would like to opt-out of this tracking, please do so using the link provided:

LinkedIn Conversion Tracking and Insight Tag

The LinkedIn Insight Tag is a piece of lightweight JavaScript code that we have added to our websites to enable in-depth campaign reporting and to help us unlock valuable insights about our website visitors. We use the LinkedIn Insight Tag to track conversions, retarget website visitors, and unlock additional insights about members interacting with our LinkedIn adverts.

The LinkedIn Insight Tag enables the collection of metadata such as IP address information, timestamp, and events such as page views. All data is encrypted. The LinkedIn browser cookie is stored in a visitor’s browser until they delete the cookie or the cookie expires (there’s a rolling six-month expiration from the last time the visitor’s browser loaded the Insight Tag).

You can opt out of cookies from LinkedIn on your LinkedIn settings page and recommend you read their Cookie Policy for more information.

Marketing automation

We take advantage of marketing automation software that uses a tracking code to record your browsing activity across our websites. The data collected allows us recognise you when you visit our websites again and tailor content to your interests with the aim of improving user experience. You can opt out by switching off cookies in your browser settings but by doing so our websites might not work as you would expect.

7. Data Requests

You can ask us what personal data you hold, and we must give you that information free of charge, within one month of your request.

8. Deleting Data

If you ask us to delete your data, we must do so immediately.

9. Data Breaches

We have standard operating procedures in place to ensure data breaches are identified and remedied.

10. Buying or Selling Data

If we choose to buy personal data, we will ensure that the seller is GDPR compliant, and that all persons whose data is sold, has explicitly consented to their use of that data.We will not sell your data.
Should our organisation be sold to another person or business in the future, your data may also be transferred to the new organisation. However that data may only be used for it’s original lawful basis. You can still opt out, request information, or request the deletion of your data.

11. Cookies

Cookies are text files placed on your computer to collect standard internet log information and visitor behavior information. This information is used to track visitor use of the website and to compile statistical reports on website activity.

For further information visit or

You can set your browser not to accept cookies and the above websites tell you how to remove cookies from your browser. However, in a few cases some of our website features may not function as a result.

Cookies used on this site

The following are names of the cookies we currently use on this website. Each cookie includes a short description of what the cookie does and its expiry time.

Cookie Name: gadwp_wg_default_dimension, gadwp_wg_default_metric, gadwp_wg_default_swmetric, mp_a36067b00a263cce0299cfd960e26ecf_mixpanel, ga, gat, gid
Description: These cookies are used to collect information about how visitors use our website and WordPress blog. We use the information to compile reports and to help us improve the website. The cookies collect information in an anonymous form, including the number of visitors to the website and blog, where visitors have come to the website from and the pages they visited.
Read Google’s overview of privacy and safeguarding data
Expiry: Various

Cookie Name: CookieControl
Description: This cookie is used to remember a user’s choice about cookies on  Where users have previously indicated a preference, that user’s preference will be stored in this cookie.
Expiry: 180 Days

Cookie Name: wordfence_verifiedHuman
Description: This cookie is used by Wordfence – this manages site security preventing hacking and blocking access from suspicious IP addresses.
Expiry: 24 hours

Cookie Name: wfvt_469931293
Description: This cookie is used by Wordfence – this manages site security preventing hacking and blocking access from suspicious IP addresses.
Expiry: 30 mins

If you would like to update your cookie preferences, click the button below

12. Data Manager

Our appointed Data Manager is Rob Olding. If you have a question relating to this policy, please contact him via Tsunami Axis Ltd.