Do you need access to our systems?

No. We only need your numbers—Google Sheet, CSV, or email.

We propose 6–10 board-ready KPIs by model; you can swap any.

Restricted Google Drive sharing; we can remove raw files on request. We do not train on your data.

What if our board date moves?

Tell us; we’ll align the draft window.

How many revisions are included?

Lite: 1 round; Core: 2 rounds within 24h each.

Do you need access to our systems?

No. Send KPIs via Google Sheet, CSV, or email.

We propose 6–10 board-ready KPIs by business model; you can swap any.

Restricted Google Drive sharing; raw files removed on request. We do not train on your data.

Draft in 48–72 hours after form submission; revisions within 24 hours each.

Privacy Policy

Privacy Policy

Last updated: 04-NOV-2025

Controller for the Site: [DeltaDeck Ltd.], deltadeck@deltadeck.io.

For Services provided to clients, the Client is the Controller, and we act as Processor under the DPA.

1) What this covers

This policy explains how we collect, use, share, retain, secure, and transfer personal data from Site visitors, prospects, and users of our Services.

2) Data we collect

Provided by you: contact details, company info, form submissions, support messages, and billing info.
From your use: log data (IP, device, pages), product telemetry (events, timestamps), cookies/SDKs (see Cookie Policy).
Client Data (Services): KPIs may incidentally include personal data (e.g., names/emails of team members). Processed only under Client instructions.

3) Purposes & legal bases (GDPR Art. 6)

Provide and improve the Site/Services (contract, legitimate interests).
Sales & customer support (legitimate interests, contract).
Analytics & product metrics (consent where required; otherwise legitimate interests).
Security, fraud prevention, compliance (legitimate interests, legal obligation).
Marketing with your consent (or soft opt-in where permitted).

4) Sharing & sub-processors

We use vetted providers for hosting, email, analytics, and (optionally) AI inference. The up-to-date list, purposes, regions, and DPAs are in our Trust Center. We do not sell personal data.

5) International transfers

Where data leaves the EEA/UK, we use appropriate safeguards (e.g., EU Standard Contractual Clauses and UK Addendum) plus transfer assessments and supplementary measures where needed.

6) Retention

We keep personal data only as long as necessary for the stated purposes, then delete or anonymize. Typical periods:

Sales & support records: 24 months after last interaction.
Account metadata: for the subscription term + 12 months.
Backups: rolling 30–35 days.

7) Your rights

Depending on your region, you may have rights to access, correct, delete, restrict, port, or object to processing. To exercise rights, email [privacy@domain]. You can complain to your local authority (e.g., NL: Autoriteit Persoonsgegevens; UK: ICO; EU: your DPA).

8) Cookies & similar tech

See our Cookie Policy for details and consent choices. You can withdraw consent anytime via Cookie Settings.

9) Security

We use encryption in transit and at rest, MFA, least-privilege access, logging/monitoring, and regular reviews. Details live in the Trust Center.

10) Children

Our Services are B2B and not directed at children under 16. We do not knowingly collect such data.

11) AI & model training

We do not train foundation AI models on Client Data or personal data. Where we use third-party AI for inference, we disable training/retention where supported.

12) Changes

We may update this policy; material changes will be posted with a new effective date.

13) Contact

deltadeck@deltadeck.io.

DELTADECK