Privacy Policy • AHConsulting.ai

Privacy Policy

Last updated: 1 September 2025 • Applies to AHConsulting.ai and related properties

1. Who we are

AHConsulting.ai is a trading name of [Your legal entity name]. Registered office: [Address]. We act as the data controller for personal data processed via our websites, funnels, courses and client services.

Primary contact: [email protected]EU/EEA

If you operate from Spain (Tenerife), your lead supervisory authority is likely the AEPD (Spain). If you operate from the Netherlands, it may be the AP. Update this section accordingly.

2. Scope

This Policy covers data collected through ahconsulting.ai, associated subdomains, GoHighLevel funnels, checkout pages, forms, course portals, and community tools we operate. It does not cover third‑party sites we link to.

3. Data we collect

Directly from you

  • Identity & contact: name, email, company, role, phone.
  • Account data: login, preferences, course progress.
  • Transaction data: products, invoices, VAT, shipping/billing details (handled by our payment providers).
  • Communications: messages via email, chat, support, forms.
  • UGC: testimonials, survey answers, media you upload.

Automatically

  • Usage & device: IP address, device type, OS, browser, pages viewed, events.
  • Cookies & similar: analytics, A/B testing, conversion tracking, advertising (if enabled).
  • Meta from emails/campaigns: opens, clicks, bounces.

We do not intentionally collect special categories of data (e.g., health, beliefs). Do not submit such data to us.

4. Purposes & legal bases

PurposeExamplesLegal basis
Provide our services & website Account creation, course access, downloads, client delivery Contract performance (Art. 6(1)(b)); Legitimate interests (Art. 6(1)(f))
Payments & billing Stripe/PayPal processing, VAT, invoices, fraud prevention Contract performance; Legal obligation (tax); Legitimate interests
Customer support & communications Email replies, chat, updates Contract performance; Legitimate interests
Marketing (with consent) Newsletters, launches, webinars, remarketing Consent (Art. 6(1)(a)); Legitimate interests for B2B soft opt‑in where applicable
Analytics & product improvement GA4, GHL analytics, conversion tracking Consent (for non‑essential cookies); Legitimate interests for aggregated insights
Legal & security Access logs, backups, abuse prevention Legal obligation; Legitimate interests

5. Retention

Data typeTypical retentionNotes
Account & course dataActive account + 24 months after last activityDelete earlier on request unless needed for legal claims
Marketing consent & logsUntil you withdraw consent + 24 monthsWe store proof of consent/opt‑out
Billing & tax records7–10 yearsPer applicable tax law
Support tickets24 monthsFor quality and dispute resolution
Server & security logs90–180 daysShort‑cycle for security

6. Sharing & processors

We share data with trusted processors to operate our services. Processors act on our instructions and are bound by data processing agreements.

Core infrastructure

  • Hosting/CDN: Hostinger (web), Cloudflare (DNS/CDN) [configure as applicable].
  • CRM & funnels: GoHighLevel (GHL).
  • Email: [Proton/Google Workspace] (transactional & support).

Business operations

  • Payments: Stripe, PayPal (PCI‑DSS compliant).
  • Analytics: Google Analytics 4 (consent‑based); Search Console.
  • Support & comms: [Intercom/HelpScout/Slack] as applicable.

We only disclose personal data to third parties when necessary, lawful, and proportionate—for example to comply with law, enforce agreements, or protect rights.

7. International transfers

Where data is transferred outside the EEA/UK (e.g., to the US), we rely on lawful safeguards such as the EU–US Data Privacy Framework participation of the recipient, Standard Contractual Clauses (SCCs), and supplementary measures.

8. Your rights

You can exercise the following rights under GDPR (subject to conditions):

  • Access your data
  • Rectification
  • Erasure (“right to be forgotten”)
  • Restriction of processing
  • Data portability
  • Object to processing (including direct marketing)
  • Withdraw consent at any time (affects future processing)
How to submit a request: Email [email protected] from the address you used with us and describe your request. We will respond within 30 days.

You also have the right to lodge a complaint with a supervisory authority (e.g., AEPD in Spain or AP in the Netherlands).

9. Cookies

We use cookies and similar technologies to run the site, measure performance, and (optionally) personalize marketing.

CategoryExamplesConsent
Strictly necessarySession ID, load balancing, securityNot required
AnalyticsGA4 (_ga, _gid), GHL page trackingConsent required in EEA/UK
MarketingMeta/Google Ads tags, remarketingConsent required

Managing preferences: Use the cookie banner to accept, reject, or adjust settings. You can also clear cookies via your browser.

Implement a CMP in GHL or via Google Tag Manager to block non‑essential tags until consent is given.

10. Security

We apply reasonable technical and organisational measures, including encryption in transit (HTTPS), access controls, least‑privilege practices, regular updates, and vendor due diligence. No online system is 100% secure.

11. Changes

We may update this Policy from time to time. Material changes will be highlighted here and, where appropriate, notified to you by email or on‑site notice.

12. Contact

Questions or requests? Contact our privacy team at [email protected].

Replace placeholders (legal entity name, address, tools actually used) before publishing.

© AHConsulting.ai • All rights reserved

Unleash Your Business Brilliance.

© 2025 AH Consulting - All Rights Reserved

NIF Z2593402-L

616 85 09 33

Calle de Corujera de San Juan 24