Last updated: January 2026
KHELIFI CONSULTING LLC ("we," "our," or "us") is committed to protecting the privacy and confidentiality of personal information entrusted to us by our clients, website visitors, and other stakeholders. This Privacy Policy explains how we collect, use, protect, and disclose personal data in accordance with applicable data protection principles and regulations. As a U.S.-registered management consulting firm serving institutional and governmental clients across the MENA region, we recognize the critical importance of data security and privacy in maintaining the trust essential to our professional relationships.
1. Information we collect
We collect personal information you voluntarily provide when you contact us through our website, subscribe to our communications, request consulting services, or apply for career opportunities. Categories typically collected include name, email address, phone number, organization, role, and the substance of your inquiry; communication preferences and credentials; engagement-specific information about your organization and strategic challenges; and résumé and professional history.
When you visit our website, we also automatically collect certain technical information for operational and security purposes: device and browser information (IP address, browser type, operating system, device identifiers); usage data (pages visited, time on page, links clicked, referring website); and cookies and similar technologies (session, analytics, and preference cookies).
During consulting engagements, we may collect sensitive institutional information, strategic documents, financial data, and other confidential materials necessary to deliver our services. This information is subject to strict confidentiality agreements and enhanced security protocols.
2. How we use information
We use information to deliver services and communicate with you about engagements, deliverables, and recommendations; to respond to inquiries and provide requested information; to fulfill contractual obligations and process payments; to send newsletters, insights, and thought leadership content where you have consented; to conduct internal market research and improve our service offerings; to analyze website usage and maintain security and integrity of our infrastructure; and to comply with legal, regulatory, accounting, or reporting obligations.
We do not sell, rent, or trade personal information.
3. Data protection and security
We implement comprehensive technical and organizational safeguards to protect personal information from unauthorized access, disclosure, alteration, or destruction.
Technical safeguards include encryption of data in transit and at rest using industry-standard protocols, secure servers with firewall protection and intrusion detection, regular security audits and vulnerability assessments, and multi-factor authentication for sensitive systems.
Organizational safeguards include strict access controls limiting data to authorized personnel on a need-to-know basis, written confidentiality agreements with all employees and contractors, regular privacy and security training, and a documented incident response procedure for potential data breaches.
While we employ robust security measures, no method of electronic transmission or storage is completely secure. We continuously update our practices to address emerging threats and maintain the highest standards of data protection.
4. Third-party disclosure
We do not sell, trade, or rent personal information to third parties. We may share information only in the following limited circumstances: with trusted service providers (e.g., website hosting, email, analytics) who are contractually obligated to protect your information and use it only for specified purposes; where required by law, court order, or government regulation, or to protect our legal rights, prevent fraud, or ensure public safety; in the event of a merger, acquisition, or sale of assets, where personal information may be transferred subject to the same protections; and where you have provided explicit consent.
5. Cookies and tracking technologies
Our website uses cookies and similar technologies to enhance user experience and analyze website performance. Essential cookies are required for functionality, security, and session management and cannot be disabled. Analytics cookies help us understand visitor behavior to improve content. Preference cookies remember your settings. Marketing cookies (where used) measure campaign effectiveness.
You can control cookie preferences through your browser settings. Disabling certain cookies may limit website functionality.
6. Your rights
You have the following rights regarding your personal information, subject to applicable law and our legal and contractual obligations: the right to access information we hold about you and receive a copy; the right to request correction of inaccurate or incomplete information; the right to request deletion of your information; the right to opt out of marketing communications at any time using the unsubscribe link in our emails; and the right to data portability — receiving a copy in a structured, commonly used format.
To exercise any of these rights, please contact us at h.khelifi@khelificonsulting.com. We will respond to substantiated requests within a reasonable timeframe in accordance with applicable law.
7. Data retention
We retain personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. Retention periods vary based on the nature and purpose of the information; legal, regulatory, and contractual obligations; and legitimate business interests and dispute resolution needs.
When personal information is no longer needed, we securely delete or anonymize it in accordance with our data retention and destruction policies.
8. International data transfers
As a U.S.-based firm serving clients across the MENA region, personal information may be transferred to, stored, and processed in the United States or other jurisdictions where we or our service providers operate. We ensure that such transfers comply with applicable data protection laws through standard contractual clauses approved by relevant authorities, adequate data protection safeguards and security measures, and compliance with applicable cross-border data transfer regulations.
9. Children's privacy
Our services are directed to institutional and professional audiences. We do not knowingly collect personal information from individuals under the age of 18. If we become aware that we have inadvertently collected information from a minor, we will take prompt steps to delete such information.
10. Changes to this Privacy Policy
We may update this Privacy Policy periodically to reflect changes in our practices, technologies, legal requirements, or business operations. We will notify you of material changes by posting the updated policy on our website with a revised "Last Updated" date and, where appropriate, by sending email notifications to registered users.
Your continued use of our website and services after such changes constitutes acceptance of the updated Privacy Policy.
11. Contact
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact KHELIFI CONSULTING LLC, Delaware, United States, by email at h.khelifi@khelificonsulting.com or by phone at +971 4 388 5540. We will respond to all inquiries within 30 days of receipt.