Privacy Policy

Information we collect

We collect information necessary to provide our services and communicate with clients. This includes:

• Contact and identity data: names, business email addresses, phone numbers, job titles, and company names provided when contacting or contracting with us.
• Engagement data: project details, role descriptions, pilot metrics, and feedback. This may include non-sensitive performance indicators shared by organizations as part of a pilot or engagement.
• Usage and technical data: IP addresses, browser and device information, pages visited on our site, and analytics data collected through cookies and similar technologies.
• Communications: records of emails, meeting notes, and messages you exchange with our team when you request information or support.

How we use information

We use personal data for limited, legitimate purposes, including to respond to inquiries, provide and improve our services, handle contractual obligations, analyze site usage, send transactional communications, and comply with legal obligations. We do not sell personal data. When we process engagement data or performance-related information provided by a client, we do so under the terms of a contract and as a data processor or processor-assistant depending on the arrangement. We take steps to ensure that any operational reporting we produce for a client is scoped to their needs and access-controlled to authorized personnel only.

Cookies and tracking

Our website uses cookies and similar technologies to provide basic site functionality, measure traffic, and improve user experience. Essential cookies enable the site to operate; non-essential cookies are used for analytics. We respect your choices. The cookie banner on the site allows you to accept or reject non-essential cookies. You can also manage or block cookies through your browser settings. Note that blocking certain cookies may affect the functionality of features on our site. For details on cookies we use, please contact [email protected].

Third-party services and sharing

We use trusted third-party providers to host our website, process email, manage analytics, and support client engagements (for example, meeting platforms or lightweight dashboards). When we share data with vendors, we limit transfers to data necessary to deliver the service, require contractual safeguards, and evaluate vendor security practices. We only disclose personal data when required by law or to protect our legal rights. We do not share personal data for third-party marketing without explicit consent.

Data retention and deletion

We retain personal data only for as long as necessary to fulfill the purposes described in this policy, to meet contractual obligations, or to comply with legal requirements. For clients, retention periods are typically defined in the contract and our data-handling procedures. If you request deletion of your personal data where retention is not legally required, we will take reasonable steps to remove your information from our active systems and backups within a commercially reasonable timeframe, while preserving any records we must keep to meet legal or contractual obligations.

Security

We implement technical and organizational measures to protect personal data against unauthorized access, disclosure, alteration, and destruction, including access controls, encryption for data in transit, and standard operational security practices. While we aim to protect information, no network or system can be guaranteed secure. If we become aware of a security incident affecting personal data we control, we will take steps to contain and remediate the incident and, when required, notify affected parties and authorities as required by applicable law.

International transfers

Quietgrovenest is headquartered in the United States. Data we collect may be processed and stored in the U.S. or other countries where our service providers operate. When personal data is transferred across borders, we ensure appropriate safeguards are in place, such as standard contractual clauses or other lawful mechanisms, to provide an adequate level of protection.

Your rights

Depending on your jurisdiction, you may have rights regarding your personal data, including access, correction, deletion, restriction of processing, objection to processing, and portability. To exercise your rights, contact us at [email protected]. We may ask for information to verify your identity before responding to requests. If you are a resident of the European Economic Area or another region with a supervisory authority, you may also lodge a complaint with the applicable data protection authority.

Children

Our services are intended for business use and not for children under 16. We do not knowingly collect personal data from children. If you believe we have unintentionally collected data about a child, please contact us to request removal.

Changes to this policy

We may update this policy to reflect changes in our practices, legal requirements, or service offerings. When we make material changes, we will post the new effective date at the top of this page and, where appropriate, provide additional notice. Continued use of our services after changes are posted constitutes acceptance of the updated policy.

Contact information

For privacy inquiries specific to client engagements, please include your organization name and the project name or contract reference to help us respond promptly.