Privacy Policy

Who We Are & Contact Information

  • Human-Centered Strategy, LLC
  • 534 Burge Mountain Rd., Hendersonville, NC  28792
  • Phone 828-200-1291
  • Our Website is

At Human-Centered Strategy, LLC we care about your privacy and believe in transparency. That’s why we are committed to being upfront about our privacy practices. We only collect personal information necessary to deliver our product and we handle it carefully and sensibly.

In compliance with the General Data Protection Regulation (GDPR), legislation recently enacted by the European Union, our New Privacy Policy explains in detail what information we receive from you and why. It also outlines how we share your personal information and with whom we share it with. Customer information is an important part of any business. We, however, are not in the business of selling this information to others.

What personal data we collect & why we collect it

We collect personal data from users (if applicable) and site visitors. This may include personal data, such as name, email address, personal account preferences; and technical data, such as information about cookies. We collect data submitted on contact forms and information required for company downloads to site visitors (if applicable). This data is vital in improving the usefulness of our website to visitors and learning who our potential customers are.

Contact forms

We require consent on the contact form to having this website store the person’s information so we can respond to their inquiry. We keep this information for up to one year.


If you leave a comment on our site (if applicable) you may opt-in to saving your name, email address, and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you have an account and you log in to this site (if applicable), we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser. When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

Embedded content from other websites

Parts of this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if you have visited the other website. These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracing your interaction with the embedded content if you have an account and are logged in to that website.

Who we share your data with:


Programs are in place to provide anonymous aggregated data into a website viewer profile. We aggregate data using Google Analytics, and are GDPR compliant with the data we collect and it’s use. Data collected is used to analyze general trends of site visitors and how they interact with the site while visiting. We use this data to improve the website experience for the viewers. Users can opt out of our analytics tracking at any time upon request.

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

We keep contact form entries and analytics records for a year.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

Visitor comments may be checked through an automated spam detection service. We collect information about visitors who comment on Sites that use our Akismet anti-spam service. The information we collect depends on how the User sets up Akismet for the Site, but typically includes the commentor’s IP address, user agent, referrer, and Site URL (along with other information directly provided by the commentor such as their name, username, email address, and the comment itself).

How we protect your data

We work with secure partners only. Our hosting provider, Siteground is also GDPR compliant.

What data breach procedures we have in place

Our hosting company, SiteGround, has a (Data Protection Authority) DPA and will take immediate action should a data breach occur. The DPA responsibilities include timely disclosure by SiteGround, if a personal data breach is detected by them to have happened on the servers used by BEP. They are obliged to notify us within 72 hours from the time of the breach, at which point we will notify you if any data is compromised.

Minimum Access Principle

The SiteGround DPA puts in writing their obligation to access any data that Human-Centered Strategy, LLC stores on their servers only to the extent needed to provide their services and to make sure only employees that are directly involved with the provision of the service have access to it. Human-Centered Strategy, LLC restricts data access to the Owner, Heather Gates.

Changes to the Privacy Policy

We reserve the right to modify this Privacy Policy at any time. If we decide to change our Privacy Policy, we will post the updates to this Privacy Policy here and on any other place we deem appropriate, so that you are aware of what information we collect, how we use it, and under what circumstances, if any, we disclose it.

If we make material changes to this Policy, we will notify you here, by email, or by means of a notice via our website.

Further questions & contacts

If you have any questions regarding this Privacy Policy, if you wish to exercise any of your rights in relation to your personal information, or if you want to object to the collection or processing of your data by Human-Centered Strategy LLC, whether entirely or partially, please contact our Owner, Heather Gates, who also leads data protection for our organization.


human-centered strategyso everyone can flourish