Privacy Policy

We collect personal information that you voluntarily provide to us when you: • Use our AI Readiness Assessment — name, email address, business name, and your quiz responses (industry, team size, and scored answers). • Request an AI Audit — name, email address, business name, and the website URL you submit. • Book a call or enquire via our contact forms — name, email address, and any details you include in your message. • Use our on-site chat assistant — the content of your conversation. We do not collect sensitive personal information such as financial details, government identifiers, or health data.

We use the information we collect to: • Deliver personalised assessment results and audit reports. • Create a prospect profile so we can follow up with relevant recommendations. • Respond to your enquiries and provide the services you request. • Send you your results or report via email. • Notify our team of new leads so we can provide timely support. • Improve our website, tools, and services. We do not sell, rent, or trade your personal information to third parties.

We use cookies and similar technologies to understand how visitors interact with our website. This includes: • Essential cookies — required for the website to function (e.g. session management). • Analytics cookies — we use privacy-focused analytics to understand page views and user flows. No personally identifiable information is collected through analytics. • Meta Pixel (Facebook Pixel) — we use the Meta Pixel to measure the effectiveness of our advertising on Meta platforms (Facebook and Instagram). The Meta Pixel may collect information such as your IP address, browser type, pages visited, and actions taken on our site (e.g. completing an assessment or submitting a form). This data is used to serve relevant ads, create custom audiences, and measure ad performance. You can manage your Meta ad preferences at facebook.com/adpreferences. • Google Analytics — we may use Google Analytics to understand website traffic patterns. This data is aggregated and does not personally identify you. You can control cookies through your browser settings. Disabling cookies may affect some site functionality.

We use the following third-party services to operate our business: • Supabase — database hosting and authentication (data stored securely in cloud infrastructure). • Vercel — website hosting and deployment. • Resend — transactional email delivery (for sending your reports and results). • Meta (Facebook/Instagram) — advertising and conversion tracking via Meta Pixel. • Google — analytics and advertising services. • OpenAI / Anthropic — AI services that power our chat assistant and audit tools. Conversation data may be processed by these providers in accordance with their privacy policies. Each third-party service has its own privacy policy governing how they handle data. We only share the minimum information necessary for each service to function.

We retain your personal information for as long as necessary to provide our services and fulfil the purposes described in this policy. Specifically: • Assessment and audit data — retained indefinitely to maintain your profile and allow us to provide ongoing recommendations. • Contact form submissions — retained for the duration of any business relationship, plus a reasonable period afterward. • Chat conversations — retained for service improvement and may be deleted periodically. You may request deletion of your data at any time by contacting us (see Section 8).

We take reasonable measures to protect your personal information from unauthorised access, alteration, disclosure, or destruction. This includes: • Encrypted data transmission (HTTPS/TLS) across our entire website. • Secure database access restricted to authorised personnel. • Service-role authentication for all server-side database operations (no client-side database access). While we strive to protect your information, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security.

Depending on your jurisdiction, you may have the following rights regarding your personal information: • Access — request a copy of the personal data we hold about you. • Correction — request correction of inaccurate or incomplete data. • Deletion — request deletion of your personal data. • Objection — object to the processing of your data for marketing purposes. • Data portability — request your data in a structured, machine-readable format. Australian Privacy Act: If you are located in Australia, your rights are governed by the Australian Privacy Act 1988 and the Australian Privacy Principles (APPs). You have the right to access and correct your personal information, and to make a complaint to the Office of the Australian Information Commissioner (OAIC) if you believe your privacy has been breached. GDPR: If you are located in the European Economic Area, you have additional rights under the General Data Protection Regulation including the right to withdraw consent and lodge a complaint with your local supervisory authority. To exercise any of these rights, contact us using the details in Section 8.

If you have any questions about this privacy policy, wish to exercise your data rights, or have a complaint about how we handle your personal information, please contact us: pdconsults. Email: hello@pdconsults.com Location: Sydney, Australia We aim to respond to all privacy-related enquiries within 14 business days.

We may update this privacy policy from time to time to reflect changes in our practices, services, or legal requirements. When we make material changes, we will update the "Last updated" date at the top of this page. We encourage you to review this policy periodically to stay informed about how we protect your information.