Privacy Policy
Last updated: 9 July 2026
This Privacy Policy explains how Versatile Training & Coaching S.L. collects, uses, stores and protects personal data when you visit our website, contact us, book a call, complete a form, subscribe to our communications, participate in our diagnostics, or engage with us in relation to our consulting, training and advisory services.
1. Who we are
The data controller is:
Versatile Training & Coaching S.L.
CIF: B66380916
Registered office: Calle Ali Bei, 25, Atico 1, Barcelona, 08010, Spain
Registered with the Registro Mercantil of Barcelona, Tomo 44539, Folio 22, Hoja B-459185, Inscripción 1.
For privacy-related requests, please contact us at:
When linking this email address from the website, please use the subject line: Privacy request from versatile.consulting privacy policy.
2. Scope of this Privacy Policy
This Privacy Policy applies to personal data processed through:
-
Our websites, versatile.consulting, versatile.academy and versatileleadership.net
-
Contact forms and enquiry forms.
-
HubSpot forms and CRM workflows.
-
Divi website forms.
-
Microsoft Outlook or Microsoft Bookings pages used to schedule calls.
-
Jotform forms, including diagnostics and assessment forms.
-
Newsletter, event and marketing communications.
-
Website analytics and behavioural analytics tools.
-
Consulting, workshop, diagnostic and advisory interactions where personal data is collected by us.
This website does not provide user accounts, public comments, file upload areas or image upload areas for website visitors.
3. Personal data we collect
Depending on how you interact with us, we may process the following categories of personal data:
Contact and identity data
This may include your name, email address, phone number, organisation, job title and any contact details you choose to provide.
Communication data
This may include the content of messages, enquiries, emails, form submissions, meeting requests and other communications with us.
Professional and business data
This may include information about your organisation, role, business needs, transformation priorities, leadership development needs, consulting requirements, event participation or diagnostic responses.
Marketing preference data
This may include whether you have subscribed to our communications, opened or interacted with emails, registered for events, or opted out of marketing communications.
Booking and meeting data
When you book a call with us through Microsoft Outlook or Microsoft Bookings, we may process your name, email address, meeting time, meeting notes and any information you include in the booking form.
Diagnostic, workshop and consulting data
When you complete a diagnostic, assessment, workshop form, questionnaire or consulting input, we may process your responses and related business information. We do not intentionally collect special-category personal data through these tools.
Technical, analytics and usage data
When you visit our website, we may collect technical and usage data such as IP address, browser type, device type, pages visited, approximate location, referral source, interaction data, session information and cookie identifiers.
Cookie consent data
We may process information about your cookie choices, consent status and consent history through our consent management tool.
Client, billing and contractual data
If your organisation becomes a client, supplier or commercial partner, we may process contact details, contract records, invoices, payment details, business correspondence and other records necessary to manage the relationship.
4. Special-category data
We do not intentionally collect special categories of personal data through our website, contact forms, diagnostics or consulting forms. Special-category data includes information such as health data, ethnicity, political opinions, religious beliefs, trade union membership, biometric data, genetic data or data concerning sexual orientation.
Please do not include special-category data in free-text fields or form submissions unless we have specifically requested it and provided an appropriate lawful basis and notice.
5. How we collect personal data
We collect personal data in the following ways:
-
Directly from you when you complete a form, contact us, book a call, subscribe to communications or participate in a diagnostic or workshop.
-
Through our website and cookies when you browse or interact with our website.
-
Through third-party tools we use to operate our website, forms, bookings, analytics and CRM.
-
From your organisation when we work with your organisation in relation to consulting, training or advisory services.
-
From public business sources, professional networks or referrals where relevant to B2B relationship development.
6. Why we process personal data and our legal bases
| Purpose | Examples | Legal basis |
|---|---|---|
| Responding to enquiries | Replying to contact forms, emails or meeting requests | Legitimate interests or steps prior to entering into a contract |
| Providing consulting, training or advisory services | Managing projects, workshops, diagnostics and client communications | Performance of a contract or legitimate interests |
| Managing prospects and client relationships | CRM records, proposal follow-ups, business development and relationship management | Legitimate interests |
| Sending newsletters, event invitations and marketing communications | HubSpot marketing emails, event updates and content follow-ups | Consent or legitimate interests, depending on the context and applicable law |
| Managing marketing preferences | Unsubscribe requests, suppression lists and consent records | Legal obligation and legitimate interests |
| Website measurement | Google Analytics 4 measurement and reporting | Consent, where required |
| Behavioural website analytics | Microsoft Clarity heatmaps and session recordings | Consent, where required |
| Website security and operation | Hosting, fraud prevention, technical troubleshooting and website administration | Legitimate interests |
| Legal, accounting and compliance | Invoices, accounting records, tax records and legal claims | Legal obligation and legitimate interests |
7. Marketing communications
We may send you newsletters, event invitations, insights, service updates or other B2B marketing communications where we have a lawful basis to do so.
We use HubSpot to manage some forms, CRM records and marketing communications.
You can unsubscribe from marketing communications at any time by using the unsubscribe link in the relevant email or by contacting us at connect@versatile.consulting.
If you unsubscribe, we may retain limited information in a suppression list to ensure that we do not send you further marketing communications.
8. Cookies and analytics
We use cookies and similar technologies on our website. Some cookies are necessary for the website to function. Others are used for analytics, measurement, performance improvement and understanding how visitors interact with the website.
We use:
-
Google Analytics 4 for website measurement.
-
Microsoft Clarity for behavioural analytics, heatmaps and session recordings.
-
HubSpot for forms, CRM and marketing-related interactions.
-
Compliance by Hu-manity.co to manage cookie consent preferences.
Analytics and non-essential cookies should only be used where the required consent has been obtained.
For more information, please see our Cookie Policy.
9. Google Analytics 4
We use Google Analytics 4 to understand how visitors use our website, measure traffic and improve website performance and content.
Google Analytics may collect information such as device data, browser data, pages visited, approximate location, referral source, session information and interaction data.
We use Google Analytics for measurement only. We do not use Google Analytics for advertising, remarketing, Google Ads audiences, Google Signals or demographic and interest advertising features unless this Privacy Policy and our Cookie Policy are updated.
10. Microsoft Clarity
We use Microsoft Clarity to understand how visitors interact with our website through heatmaps, session recordings and usage analytics.
Microsoft Clarity may collect interaction data such as clicks, scrolls, mouse movements, page rendering information, device and browser information, approximate location and other technical usage data.
Microsoft Clarity should not be used to capture confidential information or personal information entered into forms. We aim to configure masking and suppression settings so that form fields, free-text fields, email addresses, phone numbers and other confidential information are not recorded.
Microsoft Clarity should only be activated for users in the European Economic Area, United Kingdom or Switzerland where the required consent has been obtained.
11. Third-party service providers
We use third-party providers to operate our website, forms, analytics, bookings, hosting, CRM, communications and business operations. These may include:
-
GoDaddy, for website hosting.
-
Google, for Google Analytics 4.
-
Microsoft, for Microsoft Clarity, Outlook and Bookings.
-
HubSpot, for forms, CRM and marketing communications.
-
Jotform, for diagnostics, forms and assessments.
-
Professional advisers, accountants, legal advisers or public authorities where required.
These providers may process personal data on our behalf or as independent controllers, depending on the service and the processing activity.
12. International transfers
Some of our providers may process personal data outside the European Economic Area.
Where personal data is transferred outside the European Economic Area, we rely on appropriate transfer mechanisms where required. These may include adequacy decisions, the EU-US Data Privacy Framework where applicable, Standard Contractual Clauses, or other safeguards permitted under applicable data protection law.
13. How long we keep personal data
We keep personal data only for as long as necessary for the purposes described in this Privacy Policy, unless a longer retention period is required by law or needed to establish, exercise or defend legal claims.
| Data category | Retention period |
|---|---|
| Website contact enquiries | Up to 24 months, unless the enquiry becomes part of a client, supplier or prospect relationship |
| CRM and prospect records | Up to 5 years from the last meaningful business interaction, unless deletion is requested and no overriding lawful basis applies |
| Marketing subscription records | Until you unsubscribe or withdraw consent, plus limited suppression data as needed to respect your opt-out |
| Consulting, workshop and diagnostic responses | Up to 5 years after the relevant project, diagnostic, workshop or client relationship ends, unless a shorter or longer period is agreed |
| Client project records and commercial correspondence | Up to 5 years after the end of the client relationship, unless legal claims or contractual obligations require longer retention |
| Invoices, accounting and business records | 6 years, or longer where required by applicable tax, accounting or legal obligations |
| Cookie consent records | Normally up to 24 months, unless a longer period is needed to evidence consent or comply with legal obligations |
| Microsoft Clarity session data | According to Microsoft Clarity’s retention settings and availability periods |
| Google Analytics data | According to the retention settings configured in Google Analytics |
14. Your rights
Subject to the conditions and limitations set out in applicable law, you may have the following rights:
-
Right of access.
-
Right to rectification.
-
Right to erasure.
-
Right to restriction of processing.
-
Right to object.
-
Right to data portability.
-
Right to withdraw consent at any time where processing is based on consent.
-
Right not to be subject to decisions based solely on automated processing that produce legal or similarly significant effects.
To exercise your rights, contact us at connect@versatile.consulting with the subject line: Privacy request from versatile.consulting privacy policy.
We may need to verify your identity before responding to your request.
You also have the right to lodge a complaint with the Spanish data protection authority, the Agencia Española de Protección de Datos, if you believe your data protection rights have been infringed.
15. Security
We use appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse, alteration or disclosure.
However, no website, email system or internet transmission is completely secure. You should avoid sending confidential or highly sensitive information through general website forms unless specifically requested.
16. Children and minors
Our website and services are intended for business and professional users. They are not directed at children or individuals under the age of 18.
We do not knowingly collect personal data from children through this website.
17. Client project data
Where we process personal data in the context of a client project, the applicable client agreement, statement of work or data processing agreement may contain additional provisions.
Where we process personal data on behalf of a client as a processor, the client remains responsible for providing any necessary notices to its employees, stakeholders or participants, unless otherwise agreed.
18. Changes to this Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our website, tools, services, legal obligations or data processing practices.
The latest version will always be published on this page with the relevant “Last updated” date.