Privacy Policy
Microsoft Negotiations ("we", "our", "us") respects your privacy. This Privacy Policy explains what personal information we collect from visitors and clients of microsoftnegotiations.com (the "Site") and how we use, share, and protect it. This policy is designed to comply with the EU General Data Protection Regulation (GDPR), the UK GDPR, and the California Consumer Privacy Act as amended by the CPRA (together, "CCPA").
1. Who we are
Microsoft Negotiations is an independent Microsoft licensing advisory firm. We are not affiliated with Microsoft Corporation. Controller of personal data submitted through this Site: Microsoft Negotiations, 228 Park Ave S, PMB 77993, New York, NY 10003, United States. For privacy inquiries email [email protected].
2. Personal data we collect
Information you provide
- Contact details you submit via forms: name, work email, company, role, phone number (optional), and the content of your message.
- Engagement data: if you become a client, information you provide during an engagement (contract documents, Microsoft proposals, licensing positions).
- Newsletter signup: your email address and optional preferences.
Information collected automatically
- Device and usage data: IP address (truncated to /24 before storage), browser, operating system, pages viewed, referrer, time on page.
- Cookies and similar technologies — see our Cookie Policy for a full list.
3. Legal bases for processing (GDPR/UK GDPR)
- Consent — for marketing emails, non-essential cookies, and newsletter subscriptions.
- Contract — to respond to your inquiries and to deliver advisory services you have engaged us for.
- Legitimate interests — to operate, secure, and improve the Site, including fraud prevention and analytics on anonymized data.
- Legal obligation — to comply with tax, accounting, and regulatory requirements.
4. How we use personal data
- Respond to inquiries and deliver requested materials (white papers, methodology briefs).
- Provide advisory services under executed engagement agreements.
- Send our newsletter (The EA Buyer Brief) when you have opted in. You can unsubscribe at any time via the link in every email.
- Analyze aggregated, anonymized usage to improve the Site.
- Comply with legal obligations.
5. Who we share data with
We do not sell personal data. We share personal data only with:
- Service providers (data processors) acting on our behalf: Formspree (form submissions), Google Analytics 4 (anonymized analytics), LinkedIn (Insight tag for remarketing), our CRM and email provider. Each is bound by data-processing agreements and may only use data to provide services to us.
- Professional advisors (accountants, lawyers) under confidentiality obligations.
- Government authorities where required by law.
6. International transfers
We are based in the United States. Personal data you provide is transferred to and processed in the United States. For transfers of personal data from the European Economic Area or the United Kingdom, we rely on Standard Contractual Clauses and supplementary measures as appropriate.
7. Data retention
- Inquiry data: up to 24 months from last contact.
- Client engagement data: for the duration of the engagement plus 7 years for records-retention purposes.
- Newsletter data: until you unsubscribe, plus 30 days to process suppression.
- Website analytics: 14 months (GA4 default), truncated IP.
8. Your rights
Subject to local law, you have the right to: access your personal data; correct inaccurate data; erase your data ("right to be forgotten"); restrict or object to processing; withdraw consent; data portability; and, for California residents, opt out of the "sale" or "sharing" of personal information (we do not sell or share your personal information for cross-context behavioral advertising as those terms are defined under CCPA). Submit requests to [email protected]. We respond within 30 days.
9. Security
We implement appropriate technical and organizational measures: encrypted transport (TLS 1.2+), encrypted storage of sensitive client documents, least-privilege access, documented incident response. No method of transmission over the internet is 100% secure.
10. Children
This Site is not directed to children under 16. We do not knowingly collect personal information from children.
11. Changes to this policy
We may update this policy from time to time. Material changes will be posted here with a new "Last updated" date. Continued use of the Site after changes constitutes acceptance.
12. Contact
Microsoft Negotiations · 228 Park Ave S, PMB 77993, New York, NY 10003, USA · [email protected]