top of page
  • White Facebook Icon
  • White Twitter Icon

Privacy Policy

Mount Kisco Consulting, LLC

Effective Date: December 1, 2025

Mount Kisco Consulting, LLC (“Mount Kisco Consulting,” “we,” “us,” or “our”) is committed to protecting the privacy and confidentiality of personal information entrusted to us in the course of providing professional services. This Privacy Policy explains how we collect, use, disclose, safeguard, and retain personal information.

Scope of This Policy

This Privacy Policy applies to:

  • Visitors to our website

  • Clients and prospective clients

  • Business partners, vendors, and contractors

  • Individuals whose personal information is provided to us in the course of delivering professional services (including client employees or third parties)

 

This policy applies to personal information collected through our website, email communications, engagement activities, and other business interactions.

Information We Collect

We may collect the following categories of information:

 

a. Personal Information You Provide Directly

  • Name

  • Business contact information (email address, phone number, mailing address)

  • Job title and employer

  • Professional credentials

  • Information submitted through contact forms, proposals, contracts, or communications

 

b. Client-Related Information

In the course of providing professional services, we may process information relating to our clients’ operations, including:

  • Business, financial, and operational data

  • IT and security documentation

  • Internal control, audit, and compliance artifacts

  • Limited personal information of client personnel (e.g., names, roles, business contact details)

 

c. Website and Technical Information

When you visit our website, we may automatically collect:

  • IP address

  • Browser type and version

  • Device information

  • Pages visited and referring URLs

  • Date and time of access

 

We use this information for security, analytics, and website performance purposes.

How We Use Information

We use personal information for legitimate business purposes, including:

 

  • Providing professional services related to internal controls, SOX, IT audit, and compliance

  • Responding to inquiries and requests

  • Managing client engagements and contractual relationships

  • Communicating with clients, vendors, and partners

  • Improving our services and website functionality

  • Complying with legal, regulatory, and professional obligations

  • Protecting the security and integrity of our systems and information

 

We do not sell personal information.

Legal Basis for Processing

Where required by applicable law, we process personal information based on one or more of the following:

  • Performance of a contract or engagement

  • Legitimate business interests (e.g., delivering professional services, ensuring security)

  • Compliance with legal or regulatory obligations

  • Consent, where explicitly obtained

Information Sharing and Disclosure

We may share personal information only as necessary and appropriate, including:

  • With trusted service providers (e.g., IT hosting, document management, professional tools) who are contractually obligated to protect confidentiality

  • With clients, as required to deliver agreed-upon services

  • With legal, regulatory, or professional authorities when required by law

  • In connection with a business transaction (e.g., merger, acquisition), subject to confidentiality protections

 

We do not disclose personal information for marketing or advertising purposes unrelated to our services.

Data Security

We implement reasonable administrative, technical, and physical safeguards designed to protect personal information against unauthorized access, disclosure, alteration, or destruction. These measures are aligned with industry standards and the nature of the professional services we provide.

 

Despite these safeguards, no system can be guaranteed to be 100% secure.

Data Retention

We retain personal information only for as long as necessary to:

  • Fulfill the purposes outlined in this Privacy Policy

  • Meet contractual obligations

  • Comply with legal, regulatory, and professional requirements

  • Resolve disputes and enforce agreements

 

Client engagement records are retained in accordance with contractual terms and applicable professional standards.

Confidentiality and Professional Obligations

As a professional services firm specializing in internal controls, SOX, and compliance, Mount Kisco Consulting treats client information as confidential and uses it solely for the purpose of providing agreed-upon services, subject to applicable law and professional obligations.

Your Privacy Rights

Depending on your jurisdiction, you may have rights regarding your personal information, including the right to:

  • Request access to personal information we hold about you

  • Request correction of inaccurate information

  • Request deletion of personal information, subject to legal and contractual limitations

  • Object to or restrict certain processing activities

 

Requests may be submitted using the contact information below.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Updates will be reflected by revising the “Effective Date” above. Continued use of our website or services after changes constitutes acceptance of the updated policy.

Contact Information

If you have questions about this Privacy Policy or our privacy practices, please contact:

Mount Kisco Consulting, LLC
1396 Stellaria Cir.
Bountiful, UT 84010
Phone: 619-265-6690
Email: dave@mountkconsulting.com

© 2025 by Mount Kisco Consulting.

bottom of page