Privacy Policy

Last updated: April 2026

1. Introduction

The Advisory Collective ("Company", "we", "our", "us", or "TAC") is committed to protecting your privacy and ensuring you have a positive experience on our website and when interacting with our services. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website www.theadvisorycollective.com (the "Website") and use our services.

Please read this Privacy Policy carefully. If you do not agree with our policies and practices, please do not use our Website or services. By accessing and using our Website, you acknowledge that you have read, understood, and agree to be bound by all the terms of this Privacy Policy.

This Privacy Policy applies in addition to any terms, conditions, and notices contained elsewhere on our Website or in our terms of service. If there are any conflicts between this Privacy Policy and other terms or notices, this Privacy Policy will govern.

2. Information We Collect

2.1 Information You Provide Directly

We collect information that you voluntarily provide to us when you:

Create an Account: Name, email address, phone number, password, company name, job title, and professional background
Complete Forms: Information submitted through contact forms, subscription forms, or feedback forms
Subscribe to Services: Email address and preferences for newsletters, webinars, or advisory services
Make Inquiries: Details about your inquiry, including business needs, industry, and specific challenges
Engage with Support: Communications with our customer support team, including tickets, emails, or chat messages
Provide Feedback: Comments, reviews, testimonials, or suggestions about our services
Payment Information: Billing address, payment method details (processed securely through third-party payment providers)

2.2 Information Collected Automatically

When you use our Website, we automatically collect certain information:

Device Information: Device type, browser type, operating system, device identifiers, and mobile network information
Usage Information: Pages visited, time spent on pages, links clicked, search queries, and scrolling behavior
Location Information: General geographic location based on IP address (country, city, region level)
Log Data: Access logs, error logs, server logs, and other system-generated information
Cookies and Tracking Technologies: As described in our Cookies Policy, we use cookies, web beacons, and similar technologies
Performance Data: Website performance metrics, load times, and technical information
Referral Information: How you accessed our Website (referral source, search terms, etc.)

2.3 Information from Third Parties

We may receive information about you from third-party sources:

Service Providers: Payment processors, email service providers, analytics platforms
Business Partners: Partners who refer you to our services or with whom we collaborate
Social Media Platforms: If you connect your social media account or if information is shared via social platforms
Public Sources: Publicly available business information, company registries, or professional networks
Other Users: Information provided by other users when they reference you or share information with us

3. How We Use Your Information

We use the information we collect for various purposes:

3.1 Service Delivery and Account Management

• Creating and managing your account
• Providing access to our Website and services
• Processing transactions and sending related information
• Delivering advisory services, reports, and customized content
• Responding to your inquiries and requests
• Providing customer support and technical assistance

3.2 Communications and Marketing

• Sending newsletters, updates, and promotional content (with your consent where required)
• Notifying you about changes to our services or policies
• Inviting you to webinars, events, or advisory sessions
• Conducting surveys or collecting feedback
• Personalizing marketing messages based on your interests

3.3 Analytics and Website Improvement

• Analyzing how users interact with our Website
• Improving Website functionality and user experience
• Identifying usage trends and patterns
• Measuring marketing campaign effectiveness
• Conducting research and statistical analysis

3.4 Security and Compliance

• Detecting and preventing fraud, abuse, and security incidents
• Protecting against malicious, deceptive, or illegal activity
• Enforcing our terms of service and other agreements
• Complying with legal obligations and requests from authorities
• Maintaining the security and integrity of our systems

3.5 Business Development

• Identifying business opportunities and partnerships
• Developing new services and features
• Creating aggregated and anonymized insights
• Conducting market research

3.6 Legal and Regulatory Compliance

• Complying with Swiss, EU, and international laws and regulations
• Responding to legal process and government requests
• Protecting the rights, property, and safety of TAC, our users, and the public

4. Legal Basis for Processing

Under GDPR and other data protection laws, we only process your personal data when we have a valid legal basis:

Consent: When you explicitly consent to specific processing activities (e.g., marketing communications)
Contractual Performance: When processing is necessary to provide you with our services
Legal Obligation: When required by law to process your data (e.g., tax records, regulatory compliance)
Legitimate Interests: When we have a legitimate business interest that is not overridden by your rights (e.g., fraud prevention, Website improvement)
Vital Interests: When processing is necessary to protect vital interests (e.g., emergency situations)
Public Task: When processing is necessary to fulfill a task in the public interest

5. Disclosure and Sharing of Information

5.1 Service Providers

We share information with third-party service providers who assist us in operating our Website and conducting our business, including:

• Cloud hosting providers (AWS, Google Cloud, Azure)
• Email service providers (Mailchimp, SendGrid, etc.)
• Payment processors and financial institutions
• Analytics platforms (Google Analytics, Mixpanel, etc.)
• Customer relationship management (CRM) systems
• Website security and fraud prevention services
• Marketing and advertising platforms
• Support and ticketing systems

These providers are contractually obligated to use your information only to the extent necessary to provide services to us and are required to maintain the confidentiality and security of your data.

5.2 Business Partners

With your consent, we may share information with business partners for joint offerings, co-marketing initiatives, or referral programs.

5.3 Legal Requirements and Protection

We may disclose your information when required by law or when we believe in good faith that disclosure is necessary to:

• Comply with legal obligations, court orders, or government requests
• Enforce our terms of service and other agreements
• Protect the security or integrity of our Website
• Protect the rights, privacy, safety, or property of TAC, our users, or the public

5.4 Business Transfers

In the event of a merger, acquisition, bankruptcy, or sale of assets, your information may be transferred as part of that transaction. We will provide notice before your information becomes subject to a different privacy policy.

5.5 Aggregated and Anonymized Information

We may share aggregated, de-identified, or anonymized information with third parties for research, marketing, analytics, and other purposes without restriction.

6. Data Security

We are committed to protecting your personal data and maintaining appropriate technical and organizational security measures:

Encryption: Sensitive data is encrypted in transit (SSL/TLS) and at rest using industry-standard encryption protocols
Access Controls: Access to personal data is restricted to authorized employees and contractors who need access to perform their duties
Authentication: We use multi-factor authentication and secure password policies
Network Security: We maintain firewalls, intrusion detection systems, and regular security monitoring
Regular Audits: We conduct regular security assessments and penetration testing
Data Minimization: We collect only the information necessary for our stated purposes
Employee Training: Our staff receive regular data protection and privacy training

While we implement appropriate security measures, no system is completely secure. We cannot guarantee absolute security of your information. If you become aware of a security breach, please contact us immediately.

7. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy:

Account Data: Retained during your account lifetime and for a reasonable period thereafter for backup and legal purposes
Transaction Records: Retained for at least 5 years to comply with financial and tax regulations
Marketing Communications: Retained until you unsubscribe; opt-out requests are processed within 30 days
Analytics Data: Aggregated analytics may be retained indefinitely; individual tracking data typically retained for 12-24 months
Support Communications: Retained for 3 years or as required by applicable law
Legal and Compliance Records: Retained as required by law or relevant regulations

When data is no longer needed, we securely delete or anonymize it. Some data may be retained longer if required by law or for legitimate business purposes.

8. International Data Transfers

Our Website and services are based in Switzerland and Europe. If you are located outside this region, your information may be transferred to, stored in, and processed in Switzerland and other countries where we operate. These countries may have data protection laws that differ from your home country.

When we transfer personal data internationally, we implement appropriate safeguards:

Standard Contractual Clauses: We use EU-approved standard contractual clauses for transfers to non-EU/EEA countries
Adequacy Decisions: We rely on EU Commission adequacy decisions where applicable
Binding Corporate Rules: We maintain binding corporate rules for group transfers
Your Consent: Where required, we obtain your explicit consent for transfers

By using our Website and services, you consent to the transfer of your information to countries outside your country of residence, which may have different data protection rules.

9. Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal data:

9.1 Right of Access

You have the right to request access to your personal data that we hold and to receive information about how we use it.

9.2 Right to Rectification

You have the right to correct inaccurate or incomplete personal data.

9.3 Right to Erasure

Under certain circumstances, you have the right to request deletion of your personal data (the "right to be forgotten").

9.4 Right to Restrict Processing

You have the right to request that we restrict the processing of your personal data in certain circumstances.

9.5 Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller.

9.6 Right to Object

You have the right to object to processing of your personal data for marketing purposes or on grounds relating to your particular situation.

9.7 Right to Withdraw Consent

Where we rely on your consent to process personal data, you have the right to withdraw that consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

9.8 Right to Lodge a Complaint

You have the right to lodge a complaint with your local data protection authority if you believe we have violated your privacy rights.

To exercise any of these rights, please contact us using the information in Section 11. We will respond to your request within 30 days (or the timeframe required by applicable law).

10. Cookies and Tracking Technologies

Our Website uses cookies and similar tracking technologies as described in our Cookies Policy. For detailed information about:

• What cookies we use
• Why we use them
• How to control your cookie preferences
• Third-party tracking services

Please refer to our Cookies Policy. You can access cookie settings in your browser to block or delete cookies, though this may affect Website functionality.

11. Third-Party Links and Services

Our Website may contain links to third-party websites, applications, and services that are not operated by us. This Privacy Policy does not apply to these third-party services, and we are not responsible for their privacy practices.

We encourage you to review the privacy policies of any third-party services before providing your information or using their services. Your access to and use of third-party services is governed by their terms and policies.

12. Children's Privacy

Our Website and services are not directed to children under the age of 13 (or the applicable age of digital consent in your jurisdiction), and we do not knowingly collect personal data from children.

If we become aware that we have collected personal data from a child without parental consent, we will promptly delete such information.

If you are a parent or guardian and believe your child has provided us with personal data, please contact us immediately using the information in Section 13.

13. California Consumer Privacy Act (CCPA)

If you are a California resident, you have additional privacy rights under the California Consumer Privacy Act (CCPA):

Right to Know: You can request what personal information we collect, use, share, and sell about you
Right to Delete: You can request deletion of personal information we have collected
Right to Opt-Out: You can opt out of the sale or sharing of your personal information
Right to Correct: You can request correction of inaccurate personal information
Right to Limit: You can limit our use of sensitive personal information
Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA rights

To submit a CCPA request, please contact us at contact@the-advisory-collective.com. We will verify your identity and respond within 45 days.

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

The Advisory Collective

Email: contact@the-advisory-collective.com

Website: www.the-advisory-collective.com

Data Protection Officer (DPO): contact@the-advisory-collective.com

Address: Geneva - Switzerland

Response Time: We aim to respond to all inquiries within 30 days. If you are not satisfied with our response, you have the right to lodge a complaint with your local data protection authority.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. The date of the last update is shown at the top of this policy.

Material Changes: If we make material changes to this Privacy Policy, we will notify you by:

• Posting the updated policy on our Website
• Sending you an email notification
• Displaying a prominent notice on our Website

Your continued use of our Website following the posting of changes means you accept those changes. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your privacy.

16. Glossary of Terms

Personal Data: Any information that relates to an identified or identifiable natural person

Processing: Any operation performed on personal data, including collection, recording, use, storage, adaptation, retrieval, or disclosure

Anonymized Data: Data that has been irreversibly modified so that a person can no longer be identified

Pseudonymized Data: Data that has been processed so that it cannot be attributed to a specific person without additional information

Data Controller: The entity that determines the purposes and means of processing personal data (in this case, The Advisory Collective)

Data Processor: An entity that processes personal data on behalf of the controller (such as our service providers)

Data Subject: The individual to whom personal data relates (you)

GDPR: General Data Protection Regulation - the primary data protection law in the European Union