Who We Are & Contact Information
- Human-Centered Strategy, LLC
- 534 Burge Mountain Rd., Hendersonville, NC 28792
- Phone 828-200-1291
- Our Website is human-centeredstrategy.com
At Human-Centered Strategy, LLC we care about your privacy and believe in transparency. That’s why we are committed to being upfront about our privacy practices. We only collect personal information necessary to deliver our product and we handle it carefully and sensibly.
What personal data we collect & why we collect it
We collect personal data from users (if applicable) and site visitors. This may include personal data, such as name, email address, personal account preferences; and technical data, such as information about cookies. We collect data submitted on contact forms and information required for company downloads to site visitors (if applicable). This data is vital in improving the usefulness of our website to visitors and learning who our potential customers are.
We require consent on the contact form to having this website store the person’s information so we can respond to their inquiry. We keep this information for up to one year.
If you leave a comment on our site (if applicable) you may opt-in to saving your name, email address, and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you have an account and you log in to this site (if applicable), we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser. When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
Embedded content from other websites
Who we share your data with:
Programs are in place to provide anonymous aggregated data into a website viewer profile. We aggregate data using Google Analytics, and are GDPR compliant with the data we collect and it’s use. Data collected is used to analyze general trends of site visitors and how they interact with the site while visiting. We use this data to improve the website experience for the viewers. Users can opt out of our analytics tracking at any time upon request.
How long we retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
We keep contact form entries and analytics records for a year.
What rights you have over your data
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Where we send your data
Visitor comments may be checked through an automated spam detection service. We collect information about visitors who comment on Sites that use our Akismet anti-spam service. The information we collect depends on how the User sets up Akismet for the Site, but typically includes the commentor’s IP address, user agent, referrer, and Site URL (along with other information directly provided by the commentor such as their name, username, email address, and the comment itself).
How we protect your data
We work with secure partners only. Our hosting provider, Siteground is also GDPR compliant.
What data breach procedures we have in place
Our hosting company, SiteGround, has a (Data Protection Authority) DPA and will take immediate action should a data breach occur. The DPA responsibilities include timely disclosure by SiteGround, if a personal data breach is detected by them to have happened on the servers used by BEP. They are obliged to notify us within 72 hours from the time of the breach, at which point we will notify you if any data is compromised.
Minimum Access Principle
The SiteGround DPA puts in writing their obligation to access any data that Human-Centered Strategy, LLC stores on their servers only to the extent needed to provide their services and to make sure only employees that are directly involved with the provision of the service have access to it. Human-Centered Strategy, LLC restricts data access to the Owner, Heather Gates.
If we make material changes to this Policy, we will notify you here, by email, or by means of a notice via our website.
Further questions & contacts