Privacy Policy

Personal Data We Collect

We may collect and process the following types of personal data:

• Identity & Contact Information: Name, business or organization name, job title, email address, phone number, and postal address.
• Professional Details: Information about your business or profession — such as industry, company size, or professional interests — that you provide when enrolling in programs or using our services.
• Account & Enrollment Information: Login credentials, preferences, and any details you provide during program registration.
• Payment & Transaction Data: Billing address and payment details processed by our payment processor solely to complete transactions. We do not store full card details.
• Communications: Emails, support requests, feedback, and any other information you share when you contact us.
• Website Usage Data: Technical data collected automatically via cookies and tracking technologies, including IP address, browser type, device identifiers, pages viewed, and access timestamps.

We do not intentionally collect sensitive personal data (such as government ID numbers, financial passwords, or health information) unless it is necessary for a specific service and provided by you with consent.

How We Collect Your Data

Directly from you — when you:

• Fill out forms on our website (contact, newsletter sign-up, program registration)
• Register for an account or enroll in a training program
• Request services, proposals, or quotes
• Communicate with us via email, phone, or in person
• Provide feedback or complete surveys during our training sessions

Automatically — as you interact with our website, we use cookies and tracking technologies to collect device and browsing data (see Section 04).

From third parties — in limited situations, including:

• When an employer or colleague registers you for a training program
• From partner organizations for jointly hosted events or webinars (we will inform you when this occurs)
• From publicly available professional sources such as LinkedIn or company websites, where permitted by law

How We Use Your Data

We use your personal data only for clear, legitimate purposes and always with a valid legal basis under applicable law:

• Providing & Improving Services: To deliver our consulting services and training programs — including processing registration, managing your account, providing course materials, and customizing our services to your needs. (Legal basis: contract performance; legitimate interest in service delivery.)
• Communication & Customer Support: To respond to inquiries, provide support, and send important service or policy updates. (Legal basis: contract performance; legitimate interest in effective communication.)
• Marketing & Newsletters: To send promotional materials, newsletters, and updates about new programs or events — only if you have opted in. You can unsubscribe at any time using the link in any email. (Legal basis: consent for electronic marketing; legitimate interest in promoting services to existing customers.)
• Business Development & Personalization: To analyze usage and feedback, improve our offerings, and personalize your experience — such as recommending relevant courses. (Legal basis: legitimate interest in improving our services.)
• Legal Compliance & Protection: To meet legal obligations, maintain accounting records, prevent fraud, enforce our contracts, and respond to lawful authority requests. (Legal basis: legal obligation; legitimate interest in protecting our business.)

We will only use your data for the purposes it was collected for. If we need to use it for a materially different purpose, we will notify you and obtain any required consent.

Cookies & Tracking Technologies

Our website uses cookies and similar tracking technologies to operate our site, understand how it's used, and improve your experience. A cookie is a small text file stored on your device when you visit a site, allowing it to recognize your device and remember certain preferences.

Types of cookies we use:

• Necessary Cookies: Essential for site operation — security, session management, and basic functionality. These cannot be disabled.
• Analytics & Performance Cookies: Collect information on how visitors use our site (pages visited, error pages, etc.) to help us improve functionality. We use tools like Google Analytics and configure them to anonymize IP addresses where feasible.
• Functional Cookies: Remember your preferences (such as language or region) for a more personalized experience.
• Advertising/Marketing Cookies: We do not currently use third-party advertising cookies. If that changes, we will update this policy and obtain consent where required by law.

Your choices: When you first visit, you'll see a cookie notice requesting consent for non-essential cookies (where required by law). You can manage cookies by:

• Adjusting your browser settings to block or delete cookies
• Using opt-out tools from specific third parties (e.g., the Google Analytics Opt-out Browser Add-on)
• Using our cookie preference tool if available on the site

Data Sharing & Disclosure

We do not sell your personal information to third parties. We may share your data in the following limited circumstances:

• Service Providers: Trusted third-party vendors who perform services on our behalf — including hosting and IT infrastructure, payment processors, analytics tools, CRM and email platforms, webinar platforms, and customer support tools. All service providers are bound by confidentiality and data protection obligations and may only process your data as directed by us.
• Business Partners: In cases where we co-host events or collaborative programs, we may share relevant contact information with the specific partner involved. We will inform you at the time of data collection and obtain consent where required.
• Legal Requirements: When required by law, court order, or governmental authority — or to enforce our agreements, prevent fraud, protect safety, or defend our legal rights.
• Business Transfers: In the event of a merger, acquisition, or sale of assets, personal data may be transferred as part of that transaction. We will require any acquiring organization to honor this Privacy Policy or inform you of any material changes.

For data transfers outside the EEA, we rely on approved mechanisms such as the European Commission's Standard Contractual Clauses to ensure an adequate level of protection.

Data Storage, Security & Retention

Personal data is stored on secure servers in the United States and/or other jurisdictions where we or our service providers operate. Where data is transferred internationally, we ensure appropriate legal safeguards are in place.

Security measures include:

• Encryption: Data transmitted via our website is protected using HTTPS/TLS. Sensitive data is encrypted at rest where applicable.
• Access Controls: Access to personal data is limited to team members and vendors who need it to perform their duties and who are bound by confidentiality obligations.
• Monitoring & Testing: We regularly monitor our systems for vulnerabilities and periodically evaluate the effectiveness of our security measures.
• Staff Training: Our team is trained on privacy and security best practices.
• Incident Response: We have a response plan for data breaches and will notify affected individuals and relevant authorities as required by law.

No method of internet transmission or electronic storage is 100% secure. We take reasonable measures to protect your data but cannot guarantee absolute security.

Retention: We retain personal data only as long as necessary for the purpose it was collected, or as required by law. In general:

• Client and program records are kept for the duration of the business relationship and a reasonable period thereafter, plus any legally required retention periods (e.g., for tax or audit purposes).
• Marketing contacts are retained until you unsubscribe or request deletion, or until we determine the contact is no longer active.
• Website logs and analytics are retained for 12–24 months or as specified by our analytics tools, after which they may be aggregated and de-identified.

Once the retention period expires, data is deleted or anonymized so it can no longer be associated with you.

Your Rights — EEA Residents (GDPR)

If you are in the European Economic Area (or a jurisdiction with equivalent data protection laws), you have the following rights under the GDPR:

To exercise any of these rights, contact us using the details in Section 11. We may ask you to verify your identity to protect your data. We will respond within one month of receiving your request (with a possible two-month extension for complex cases, with notice).

Your Rights — California Residents (CCPA/CPRA)

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA):

To exercise your California rights, contact us as described in Section 11. Please specify which right you are invoking and provide enough information for us to verify your identity. We will confirm receipt within 10 business days and respond within 45 calendar days (with a possible 45-day extension with notice).

Only you or an authorized agent may make a verifiable consumer request. If using an authorized agent, we may require written proof of their authorization.

Other Choices & Disclosures

Marketing Communications: You can unsubscribe from marketing emails at any time by clicking the unsubscribe link in any email or by contacting us directly. You may still receive transactional or service-related communications even after opting out of marketing.

Third-Party Websites: Our website may contain links to third-party sites or services. This Privacy Policy does not apply to those sites. We encourage you to read their privacy policies. We are not responsible for the content or data practices of sites we do not operate.

Children's Privacy: Our services are not directed to individuals under 16. We do not knowingly collect personal data from children. If we learn that a child has provided us with personal data, we will delete it promptly. If you believe a minor has submitted information to us, please contact us immediately.

Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, legal requirements, or for other operational reasons. When we do, we will revise the "Last Updated" date at the top of this page.

If we make material changes, we will notify you via a notice on our website or by email, and obtain any required consents. We encourage you to review this policy periodically to stay informed about how we protect your data.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, we're here to help.