Introduction
This Privacy Policy describes how THE BOARD (“we”, “us”, “our”, or the “Firm”) collects, uses, stores, and discloses personal information when you visit theboard.consulting (the “Site”), interact with our forms, or engage with our advisory services.
By using the Site or contacting us, you acknowledge that you have read and understood this Policy. If you do not agree with any part of it, please do not use the Site or submit any information to us.
Data controller
THE BOARD is the data controller responsible for the personal information collected through this Site. Our principal place of operation is Dubai, United Arab Emirates.
For any privacy-related queries, contact us at advisory@theboard.consulting.
Information we collect
We collect the following categories of personal information, depending on how you interact with the Site:
From contact and enquiry forms
- Full name
- Email address
- Phone number (with country code)
- Company name and role
- Enquiry type and message content
From the Strategic Audit qualification form
- Contact details (as above)
- Business revenue range and team size
- Primary strategic goal and a free-text description of your principal business challenge
- Investment commitment confirmation
From the Strategic Audit intake brief
- Business overview details (industry, years operating, revenue, employee count)
- Description of your strategic challenge, desired outcomes, and operational context
- Optional financial documents or KPI summaries you choose to upload
From the Boardroom Q&A subscription
- Name, email, phone, optional company and role
Automatically collected
- Approximate geographic location (derived from your IP address) used only to set the default country code in our phone fields
- Standard technical information from your browser and device during page loads — including browser type and version, operating system, screen size, referring page, and time zone
- Pages you visit, links you click, time spent on each page, scroll depth, and similar engagement signals captured by our analytics tools (see “Cookies, analytics, and tracking technologies” below for details and how to opt out)
- Anonymised session insights captured by Microsoft Clarity, including mouse movement and click patterns. Clarity is configured to mask form fields and personal identifiers in its recordings.
How we use your information
We process personal information for the following purposes:
- Responding to enquiries. Routing your contact request to the appropriate founding partner and replying.
- Assessing engagement fit. Reviewing Strategic Audit applications against our published qualification criteria.
- Delivering paid services. Reading intake briefs, preparing for sessions, and producing the deliverables described in our engagement terms.
- Sending session invites and updates for the Boardroom Q&A, if you subscribed.
- Operating the Site securely and improving its usability.
- Complying with legal obligations applicable to the Firm.
Legal bases for processing
Where applicable data protection law (including the EU and UK GDPR for visitors from those regions) requires a legal basis, we rely on:
- Your consent — when you submit a form, subscribe to Q&A invites, or upload documents to us.
- Contract performance — when we are preparing to enter, or are performing, an advisory engagement with you.
- Legitimate interests — for routing enquiries, operating the Site, and maintaining the security and integrity of our services.
- Legal obligation — when we must retain or disclose information to comply with the law.
International data transfers
Because we use cloud services and third-party tools (notably Google Workspace, Microsoft Clarity, Meta, and cal.id), your information may be processed on servers located outside the United Arab Emirates, including in the European Union, the United States, India, and other jurisdictions where our providers operate. We take reasonable steps to ensure such transfers are subject to appropriate contractual and technical safeguards.
Data retention
We retain personal information only as long as necessary:
- Active client and engagement records are kept for the duration of our relationship and for a reasonable period after, to satisfy legal, accounting, or reporting requirements.
- General enquiry records are retained for up to twenty-four (24) months from the date of last contact, unless a longer period is required by law.
- Boardroom Q&A subscriber lists are retained until you unsubscribe. You can unsubscribe at any time by replying to any session invite or writing to advisory@theboard.consulting.
Your rights
Subject to applicable law, you have the right to ask us to:
- Access the personal information we hold about you
- Correct inaccurate or incomplete information
- Delete information we no longer need
- Restrict certain processing
- Receive a portable copy of information you provided to us
- Object to processing based on our legitimate interests
- Withdraw any consent you previously gave, without affecting the lawfulness of processing before withdrawal
To exercise any of these rights, contact advisory@theboard.consulting. We will respond within a reasonable period and may need to verify your identity before acting on the request.
Security
We use reasonable administrative, technical, and physical safeguards to protect personal information against loss, misuse, unauthorised access, disclosure, alteration, and destruction. No method of transmission over the internet is fully secure; we cannot guarantee absolute security but commit to acting promptly on any incident we become aware of.
Children
The Site and our services are not directed to individuals under the age of 18. We do not knowingly collect information from children. If you believe we have inadvertently collected information from a minor, please contact us so we can delete it.
Changes to this Policy
We may update this Policy from time to time. When we do, we will revise the “Last updated” date at the top of this page. Material changes will be communicated through the Site or via direct notice to active clients where practicable.
Contact us
Questions about this Privacy Policy or how we handle your information should be sent to advisory@theboard.consulting.
Jump to section
- 01Introduction
- 02Data controller
- 03Information we collect
- 04How we use your information
- 05Legal bases for processing
- 06Sharing your information
- 07International data transfers
- 08Data retention
- 09Your rights
- 10Security
- 11Cookies, analytics, and tracking technologies
- 12Children
- 13Changes to this Policy
- 14Contact us