Privacy Policy

Last Updated: September 2, 2025

This Privacy Policy explains how Acerta Consulting ("Acerta," "we," "us," or "our") collects, uses, shares, and protects personal information in connection with our website https://www.acertaglobal.com (the "Site"), our marketing activities, and any online forms, scheduling tools, or communications that reference this Policy (collectively, the "Services").

By accessing or using the Site, you agree to this Privacy Policy. If you do not agree, please do not use the Site.

Note: If you engage Acerta for professional services, your data will also be processed under the applicable Master Services Agreement (MSA), Statement of Work (SOW), and (where applicable) a Data Processing Addendum (DPA), which will govern in the event of a conflict.

1) Information We Collect

We collect information from three main sources: (a) information you provide directly; (b) information collected automatically; and (c) information from third parties.

A. Information You Provide
  • Contact details (name, company, job title, email, phone)
  • Inquiry details (message content, project scope, interests)
  • Scheduling data (meeting date/time preferences, time zone)
  • Event/training registration data (if applicable)
  • Communications (emails, calls, or messages with our team)
B. Information Collected Automatically
  • Usage data (pages viewed, referring/exit pages, time on page, clicks)
  • Device & network data (IP address, device identifiers, browser type, operating system, screen resolution, language settings)
  • Approximate location (derived from IP address)
  • Cookies & similar technologies (pixels, tags, SDKs, local storage)
C. Information from Third Parties
  • Analytics & marketing platforms (e.g., Google Analytics 4, Google Ads/YouTube, Meta, LinkedIn)
  • Scheduling & conferencing tools (e.g., Calendly, Zoom or equivalents)
  • CRM & email platforms (e.g., marketing automation or newsletter tools)
  • Public sources (business websites, LinkedIn, industry databases)

We do not intentionally collect sensitive information via the Site. If you submit sensitive information unprompted, you consent to our processing solely to address your inquiry and we will delete or minimize such data where feasible.

2) How We Use Your Information

We use personal information for the following purposes:

  • Operate and improve the Site (including troubleshooting, analytics, and security)
  • Respond to inquiries and provide requested information about our services
  • Schedule and conduct meetings and related communications
  • Send marketing communications with your consent or as otherwise permitted by law (e.g., newsletters, event invites, content updates)
  • Personalize content and measure engagement (e.g., through cookies)
  • Detect, prevent, and investigate security incidents or fraud
  • Comply with legal obligations and enforce our Terms & Conditions

Where required by law, we rely on one or more of the following legal bases: consent, contract performance, legitimate interests (e.g., improving services, securing the Site, B2B marketing), and legal obligation.

3) Cookies & Tracking Technologies

We use cookies and similar technologies to operate the Site, measure performance, and improve user experience. These may include Google Analytics 4, Google Ads/YouTube, Meta Pixel, and LinkedIn Insight Tag.

  • You can manage cookies through your browser settings. Some features may not function properly if certain cookies are disabled.
  • If we present a cookie banner or preference manager, your choices there will control non-essential cookies on the Site.
  • Do Not Track (DNT) signals are not yet standardized; we do not respond to DNT at this time.

For more details, see our Cookie Notice (if available) or contact us using the information below.

4) How We Share Information

We may share personal information with:

  • Service providers/Processors supporting our operations (e.g., hosting, analytics, email and CRM platforms, scheduling and conferencing tools, security and performance monitoring)
  • Professional advisors (e.g., legal, accounting, insurance) under confidentiality
  • Business transfers (e.g., mergers, acquisitions, financing, sale of assets)
  • Legal compliance and protection (to comply with law, respond to lawful requests, or protect rights, safety, and property)

We do not sell personal information for monetary consideration. We may "share" personal information for cross-context behavioral advertising as defined under certain U.S. privacy laws when we use advertising pixels. You can opt out as described below.

5) International Data Transfers

We operate primarily from Puerto Rico and the United States. If you access the Site from outside these locations, your information may be transferred to, stored in, and processed in the U.S. and other countries that may have data protection laws different from those in your jurisdiction. Where required, we use appropriate safeguards for international transfers, such as Standard Contractual Clauses (SCCs).

6) Data Retention

We retain personal information for as long as reasonably necessary to fulfill the purposes outlined in this Policy, to comply with legal and accounting obligations, and to resolve disputes. Typical retention periods include:

  • Inquiry & contact form data: up to 24 months after last interaction
  • Marketing/subscription data: until you unsubscribe or after 24 months of inactivity
  • Web analytics logs: typically 14–26 months depending on platform settings
  • Contractual & billing records (if applicable): 7 years or as required by law

We may adjust retention periods if we have legal obligations or legitimate business needs (e.g., security investigations, dispute resolution).

7) Your Privacy Rights

Your rights depend on your location and applicable law. Subject to verification, you may have the right to:

  • Access the personal information we hold about you
  • Correct inaccurate or incomplete information
  • Delete your personal information
  • Object to or restrict certain processing
  • Withdraw consent where processing is based on consent
  • Data portability (receive a copy in a portable format)

A. U.S. State Privacy Rights (e.g., CA/VA/CO/CT/UT)

Residents of certain U.S. states have additional rights, including the right to opt out of sale or sharing of personal information and targeted advertising. We do not sell personal information for money. Where our use of advertising pixels constitutes "sharing" or "targeted advertising," you can opt out by:

  1. Adjusting your cookie preferences in our banner (if available)
  2. Using Global Privacy Control (GPC) signals if supported by your browser
  3. Contacting us at info@acertaglobal.com with the subject line “U.S. Privacy Request”

We will not discriminate against you for exercising your rights.

B. EEA/UK/Swiss Rights (GDPR/UK GDPR)

If you are located in the EEA/UK/Switzerland, Acerta acts as the data controller for Site interactions. You may contact info@acertaglobal.com to exercise GDPR rights. If we rely on legitimate interests, you have the right to object where applicable. You also have the right to lodge a complaint with your local supervisory authority (e.g., ICO in the UK).

If Acerta appoints an EU/UK representative, we will update this Policy to include their contact details.

8) Verification & Authorized Agents (U.S.)

For certain requests, we may need to verify your identity (e.g., by matching information you provide with our records). You may authorize an agent to submit requests on your behalf where permitted by law, subject to proof of authorization.

9) Security

We use reasonable administrative, technical, and physical safeguards designed to protect personal information, including encryption in transit (HTTPS), access controls and least-privilege principles, and periodic reviews of systems and vendors. However, no method of transmission or storage is completely secure.

10) Children’s Privacy

The Site is not directed to children under 13. We do not knowingly collect personal information from children. If you believe a child has provided information, contact us and we will take appropriate steps to delete it. Where GDPR applies, we do not knowingly process data of children under the age of 16 without appropriate consent.

11) Communications & Marketing Preferences

You can opt out of marketing emails at any time by clicking “unsubscribe” in our emails or contacting us. Transactional or service messages related to meetings or security may still be sent.

SMS Terms (if you opt in): Message frequency varies. Message and data rates may apply. Reply STOP to opt out and HELP for help. For assistance, contact us using the details below.

12) Third-Party Links & Social Media

The Site may link to third-party websites or social platforms. We are not responsible for their privacy practices. Your interactions with those services are governed by their policies and terms.

13) Changes to This Policy

We may update this Privacy Policy from time to time. The "Last Updated" date at the top indicates the effective date of the most recent version. Material changes will be communicated by posting an updated Policy on this page and, where appropriate, by additional notice.

14) Contact Us

If you have questions about this Policy or wish to exercise your privacy rights, contact us:

15) Supplemental Disclosures — California (CPRA)

Categories of Personal Information Collected (last 12 months):

  • Identifiers (e.g., name, email, phone, IP address)
  • Internet/Network Activity (e.g., browsing history on our Site)
  • Geolocation data (approximate, from IP)
  • Professional/Employment information (e.g., job title, company)
  • Inferences (e.g., interests derived from interactions)

Sources: You, your devices, analytics/advertising partners, public sources.

Business/Commercial Purposes: As described in Sections 2 and 3.

Sharing: We do not sell personal information for money. We may share Identifiers, Internet/Network Activity, and Inferences with advertising and analytics partners for cross-context behavioral advertising. You may opt out as described in Section 7(A).

Sensitive Personal Information: We do not use or disclose sensitive personal information for purposes that require a right to limit under CPRA.

Retention: See Section 6.

Non-Discrimination: We will not discriminate for exercising CPRA rights.

16) Data Processing Addendum (for Clients)

If Acerta processes personal information on your behalf in connection with professional services, we will do so in accordance with the governing MSA/SOW and, where required, a Data Processing Addendum (DPA) that includes appropriate transfer mechanisms and security measures. Please contact info@acertaglobal.com to request a DPA.