Get Started

Privacy Policy

Last updated: March 12, 2026

1. Introduction

Veigdab Advisory ("we," "us," or "our") is a consulting business registered in the State of Florida, United States. We respect your privacy and are committed to protecting the personal information you share with us. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website veigdab.com (the "Site") and use our services.

For the purposes of the EU General Data Protection Regulation (GDPR) and the UK GDPR, Veigdab Advisory is the data controller of the personal data collected through this Site.

2. Information We Collect

Information you provide directly

  • Contact form submissions: name, email address, company name, job title, area of interest, and description of your inquiry
  • Meeting bookings: name, email, and scheduling preferences when you book a call through our scheduling tool (powered by HubSpot)
  • Email correspondence: any information you voluntarily share via email

Information collected automatically

  • Usage data: pages visited, time spent, referring URL, browser type, device type, operating system, and IP address
  • Cookies and tracking technologies: we use cookies and similar technologies for analytics, advertising measurement, and to improve your experience (see Section 6 below)
  • Session recordings: we use Microsoft Clarity to record how visitors interact with the Site, including mouse movements, clicks, scrolling, and page navigation. Clarity may capture text typed into form fields (except passwords, which are automatically masked). Session recordings are used solely for improving user experience and are not used to identify individual users. See Section 5 for details.

Categories of personal information (for California residents)

In the preceding 12 months, we have collected the following categories of personal information as defined under the California Consumer Privacy Act:

  • Identifiers: name, email address, IP address
  • Professional information: company name, job title
  • Internet activity: browsing history on our Site, interactions with our Site, search history on our Site
  • Geolocation data: approximate location derived from IP address

3. Legal Basis for Processing (EEA/UK Visitors)

If you are located in the European Economic Area or the United Kingdom, we process your personal data on the following legal bases under GDPR Article 6:

  • Consent (Art. 6(1)(a)): for non-essential cookies, analytics tracking (including session recordings), and advertising-related processing. You provide consent through our cookie consent banner. You may withdraw consent at any time.
  • Legitimate interest (Art. 6(1)(f)): for responding to your inquiries, analyzing Site usage to improve our services, and ensuring Site security. Our legitimate interests do not override your fundamental rights and freedoms.
  • Performance of a contract (Art. 6(1)(b)): when processing is necessary to fulfill a consulting engagement or respond to a pre-contractual request you have made.
  • Legal obligation (Art. 6(1)(c)): when we are required to process data to comply with applicable law.

4. How We Use Your Information

  • To respond to your inquiries and provide our consulting services
  • To schedule and manage meetings
  • To analyze website usage and improve our content and services
  • To measure the effectiveness of our advertising campaigns
  • To send relevant follow-up communications (only if you have contacted us first). Any non-transactional communication will include a clear option to unsubscribe, and we will honor opt-out requests promptly in accordance with the CAN-SPAM Act.
  • To detect and prevent misuse, fraud, or security incidents
  • To comply with legal obligations

5. Third-Party Services

We use the following third-party services that may collect or process data:

  • Google Analytics 4 — website analytics and usage tracking. Collects anonymized usage data, page views, and user interactions. Google Privacy Policy
  • Google Tag Manager — tag management platform that coordinates the loading of analytics and advertising scripts. Google Privacy Policy
  • Google Ads — advertising platform. We use Google Ads conversion tracking to measure the effectiveness of our advertising campaigns. This involves cookies that track whether a visitor who clicked on our ad subsequently submits our contact form. Google Privacy Policy
  • HubSpot — CRM platform used for form processing, meeting scheduling, and contact management. When you submit a form or book a meeting, your information is stored in HubSpot. HubSpot also places tracking cookies to understand how visitors navigate our Site. HubSpot Privacy Policy
  • Microsoft Clarity — behavioral analytics tool that captures session recordings (visual replays of user interactions including mouse movements, clicks, and scrolling) and generates heatmaps. Clarity may capture text entered into non-password form fields; passwords are automatically masked. Recordings are used solely for UX analysis and are not used to identify or re-identify individuals. Microsoft Privacy Statement
  • Netlify — website hosting and deployment platform. Netlify Privacy Policy

6. Cookies

Our website uses the following categories of cookies:

  • Essential cookies: required for the website to function properly (e.g., cookie consent preferences). These cannot be disabled.
  • Analytics cookies: help us understand how visitors interact with our website (Google Analytics, Microsoft Clarity). These are loaded via Google Tag Manager.
  • Advertising cookies: used by Google Ads to measure ad conversions and attribution.
  • Functional cookies: remember your preferences and enable features such as HubSpot form and meeting functionality.

When you first visit our Site, a cookie consent banner allows you to accept or decline non-essential cookies. You can change your preferences at any time by clearing your browser cookies and revisiting the Site, or by adjusting cookie settings in your browser.

Do Not Track Signals

Some browsers transmit "Do Not Track" (DNT) signals. There is currently no industry standard for how websites should respond to DNT signals. At this time, our Site does not alter its data collection or use practices in response to DNT signals. If a uniform standard is adopted, we will update this policy accordingly.

7. Data Sharing

We do not sell, rent, or trade your personal information to third parties. We may share information only:

  • With the service providers listed in Section 5, who process data on our behalf to operate the Site and deliver services
  • When required by law, regulation, subpoena, or legal process
  • To protect the rights, safety, or property of Veigdab Advisory, our users, or others
  • In connection with a merger, acquisition, or sale of all or a portion of our assets, in which case you would be notified via a prominent notice on the Site

8. International Data Transfers

Veigdab Advisory is based in the United States. Your personal data may be transferred to and processed in the United States, where our third-party service providers (Google, HubSpot, Microsoft, Netlify) also maintain servers.

If you are located in the EEA or UK, these transfers are made pursuant to appropriate safeguards as required by GDPR Chapter V, including:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • The EU-U.S. Data Privacy Framework (DPF), where the receiving service provider is certified
  • Other lawful transfer mechanisms as applicable

You may request information about the specific safeguards applied to a particular transfer by contacting us at hello@veigdab.com.

9. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this policy:

  • Contact form submissions and CRM data: retained for up to 24 months after your last interaction, unless an active engagement extends that period
  • Analytics data: retained in accordance with each provider's retention policy (Google Analytics default: 14 months; Microsoft Clarity: 30 days for session recordings)
  • Advertising data: retained in accordance with Google Ads data retention policies

If you request deletion of your data, we will process the request within 30 days (or 45 days for requests under the California Consumer Privacy Act), subject to any legal retention requirements.

10. Your Rights

All users

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Withdraw consent for non-essential cookies and tracking at any time
  • Unsubscribe from any non-transactional communications at any time

EEA/UK residents (GDPR)

You additionally have the right to:

  • Object to or restrict processing of your data
  • Request data portability in a machine-readable format
  • Not be subject to automated decision-making, including profiling, that produces legal or similarly significant effects (we do not engage in such processing)
  • Lodge a complaint with your local data protection supervisory authority (e.g., the Information Commissioner's Office in the UK, or the relevant Data Protection Authority in your EU member state)

California residents (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act and the California Privacy Rights Act:

  • The right to know what personal information we collect, use, and disclose (see Section 2 for categories)
  • The right to delete personal information we hold about you
  • The right to correct inaccurate personal information
  • The right to opt out of the "sale" or "sharing" of personal information. We do not sell your personal information. We share data with advertising partners (Google Ads) for conversion measurement, which may constitute "sharing" under CPRA. You can opt out by declining advertising cookies via our cookie consent banner.
  • The right to limit use of sensitive personal information (we do not collect sensitive personal information as defined under CPRA)
  • The right to non-discrimination for exercising your privacy rights

We will respond to verifiable consumer requests within 45 days as required by the CCPA. If additional time is needed, we will notify you of the extension and the reason.

To exercise any of these rights, contact us at hello@veigdab.com.

11. Data Breach Notification

In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will:

  • Notify the relevant supervisory authority within 72 hours of becoming aware of the breach, as required by GDPR Article 33
  • Notify affected individuals without undue delay if the breach is likely to result in a high risk to their rights and freedoms, as required by GDPR Article 34
  • Comply with the Florida Information Protection Act of 2014 (Fla. Stat. § 501.171), which requires notification to affected Florida residents within 30 days of determining a breach has occurred
  • Comply with any other applicable state or federal breach notification laws

12. Children's Privacy

Our Site and services are directed to business professionals and are not intended for individuals under the age of 16. We do not knowingly collect personal information from children under 16. If we learn that we have collected data from a child under 16, we will delete that information promptly. If you believe a child has provided us with personal data, please contact us at hello@veigdab.com.

13. Security

We implement reasonable technical and organizational measures to protect your personal information, including encryption in transit (TLS/SSL), access controls, and secure hosting. However, no method of transmission over the Internet or electronic storage is completely secure, and we cannot guarantee absolute security. Please do not submit highly sensitive, classified, or regulated information (such as financial account numbers, social security numbers, or protected health information) through the Site's contact forms.

14. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last updated" date. If we make material changes that affect how we process your personal data, we will provide prominent notice through the Site before the changes take effect. Your continued use of the website after any changes constitutes acceptance of the updated policy.

15. Contact Us

If you have any questions about this Privacy Policy, wish to exercise your data rights, or need to report a data concern, please contact us at:

Veigdab Advisory
State of Florida, United States
Email: hello@veigdab.com