HEA Consulting Logo
HEA Consulting

Privacy Policy

Your privacy is important to us

Last Updated: January 9, 2026

1. Introduction

HEA Consulting ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website consultinghea.com, use our services, or interact with our platform.

By accessing or using our services, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our services.

This Privacy Policy complies with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable privacy laws.

2. Information We Collect

2.1 Personal Information

We may collect the following types of personal information:

  • Contact Information: Name, email address, phone number, mailing address
  • Business Information: Company name, job title, industry, business size
  • Account Information: Username, password, account preferences (for platform users)
  • Payment Information: Billing address, payment method details (processed securely through Stripe)
  • Communication Data: Messages, inquiries, feedback, and correspondence
  • Project Data: Information about your projects, requirements, and business objectives

2.2 Automatically Collected Information

When you visit our website, we automatically collect certain information:

  • Device Information: IP address, browser type and version, operating system
  • Usage Data: Pages visited, time spent on pages, click patterns, referring URLs
  • Cookies and Tracking: Information collected through cookies, web beacons, and similar technologies
  • Location Data: General geographic location based on IP address

2.3 Information from Third Parties

We may receive information about you from:

  • Social media platforms when you interact with our social media pages
  • Business partners and service providers
  • Public databases and business information services

2.4 AI and Automation Data

When using our AI services, we may process:

  • Conversation history and chat interactions
  • Query patterns and usage analytics
  • Business data you provide for analysis and automation
  • Dashboard and reporting data

3. How We Collect Information

We collect information through various methods:

  • Directly from you: Contact forms, registration forms, service inquiries, consultations, email communications
  • Through our platform: Account creation, service usage, dashboard interactions, AI assistant conversations
  • Automatically: Cookies, web analytics, server logs, tracking technologies
  • From third parties: Payment processors, analytics providers, social media platforms

4. How We Use Your Information

We use the collected information for the following purposes:

Service Delivery

  • Provide AI consulting services, automation solutions, and dashboards
  • Process and manage your service requests
  • Deliver customized AI training and implementation
  • Maintain and improve our platform and services

Communication

  • Respond to inquiries and provide customer support
  • Send service updates, newsletters, and marketing communications (with your consent)
  • Notify you about changes to our services or policies

Business Operations

  • Process payments and manage billing
  • Analyze usage patterns and improve our services
  • Conduct research and analytics
  • Prevent fraud and ensure security

Legal Compliance

  • Comply with legal obligations and regulatory requirements
  • Respond to legal processes and enforce our agreements
  • Protect our rights and the rights of our users

5. Sharing Your Information

We may share your information in the following circumstances:

5.1 Service Providers

We work with trusted third-party service providers who assist us in operating our business:

  • Supabase: Database and backend infrastructure
  • Anthropic (Claude AI): AI and machine learning services
  • Stripe: Payment processing
  • Cloudinary: Media storage and management
  • Resend: Email delivery services
  • Analytics Providers: Website and service analytics

These providers are contractually obligated to protect your information and use it only for specified purposes.

5.2 Legal Requirements

We may disclose information if required by law, court order, or government regulation, or to protect our rights, property, or safety.

5.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the new entity.

5.4 With Your Consent

We may share information with third parties when you explicitly consent to such sharing.

6. Data Security

We implement appropriate technical and organizational measures to protect your personal information:

  • Encryption: Data transmitted over the internet is encrypted using SSL/TLS protocols
  • Secure Storage: Information is stored in secure databases with access controls
  • Access Controls: Limited access to personal information on a need-to-know basis
  • Regular Audits: Security assessments and vulnerability testing
  • Staff Training: Regular training on data protection and privacy

Note: While we strive to protect your information, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security, but we take reasonable steps to protect your data.

7. Your Privacy Rights

Depending on your location, you may have the following rights:

Right to Access

Request a copy of the personal information we hold about you

Right to Rectification

Request correction of inaccurate or incomplete information

Right to Erasure

Request deletion of your personal information (subject to legal requirements)

Right to Restrict Processing

Request limitation of how we process your information

Right to Data Portability

Request transfer of your data to another service provider

Right to Object

Object to processing of your information for marketing purposes

Right to Withdraw Consent

Withdraw consent at any time where processing is based on consent

Right to Complain

Lodge a complaint with your local data protection authority

To exercise any of these rights, please contact us at consulting.hea@gmail.com. We will respond to your request within 30 days.

8. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect and use personal information about you. For detailed information about our cookie practices, please see our Cookie Policy.

You can control cookies through your browser settings. However, disabling cookies may affect the functionality of our website.

9. Data Retention

We retain your personal information only for as long as necessary to:

  • Fulfill the purposes for which it was collected
  • Comply with legal, accounting, or reporting requirements
  • Resolve disputes and enforce our agreements

Typically, we retain:

  • Account Information: For the duration of your account plus 3 years after closure
  • Service Records: 7 years for legal and accounting purposes
  • Marketing Data: Until you opt out or request deletion
  • Analytics Data: Aggregated and anonymized data may be retained longer

10. International Data Transfers

HEA Consulting operates globally, and your information may be transferred to and processed in countries outside your country of residence, including the United States and Mexico.

We ensure that appropriate safeguards are in place to protect your information, including:

  • Standard contractual clauses approved by data protection authorities
  • Adequacy decisions by the European Commission
  • Other appropriate safeguards as required by applicable law

11. Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately, and we will take steps to delete such information.

12. Updates to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will:

  • Post the updated policy on this page with a new "Last Updated" date
  • Notify you of significant changes via email or through our platform
  • Obtain your consent where required by law

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

HEA Consulting

Email: consulting.hea@gmail.com

Phone (US): +1 (628) 488-2201

Phone (MX): +52 56 3876 7147

Location: Mexico City, Mexico

For data protection inquiries, please include "Privacy Request" in the subject line of your email.

Terms of ServiceCookie PolicyContact Us