Privacy Policy

Your information, handled like regulated data.

We advise regulated companies on data integrity for a living, so this policy is short on legalese and long on plain answers: we collect only what you choose to share, we use it only to respond to you, and we never sell it or track you across the web.

Effective July 11, 2026 No advertising trackers · No data sales · Analytics only if you opt in

What we collect

Only what you choose to give us — your name, company, contact details, and whatever you write in a form or an email. Plus routine server logs from our host.

How we use it

To answer your inquiry, scope a potential engagement, or consider your application. That’s the whole list.

What we never do

We don’t sell your information, rent it, or hand it to advertising networks. There are no cross-site tracking pixels here.

Cookies

None until you say yes. Google Analytics cookies are set only if you accept the banner; decline and the site works identically. No advertising cookies, ever.

Who processes it

Netlify hosts the site and receives form submissions on our behalf. Google serves one webfont, and runs our analytics if you consent. That’s the full roster.

Your rights

Ask what we hold about you, ask us to correct it, or ask us to delete it — one email to hello@regulatoryleadership.com.

The cards are the summary. The full policy below is the binding version — and it says the same thing.

Effective date: July 11, 2026 · Applies to regulatoryleadership.com

Scope of this policy

This Privacy Policy explains how Regulatory Leadership Partners (“we,” “us,” or “the firm”) collects, uses, and protects personal information when you visit regulatoryleadership.com, submit an inquiry or application through the site, or correspond with us directly. It applies to the public website; information exchanged during a consulting engagement is additionally governed by the engagement agreement and any confidentiality terms between us and the client.

We work with regulated companies for a living. We hold ourselves to the same standard we ask of our clients: collect the minimum, use it for the stated purpose, and be able to explain every step.

Information you provide to us

Everything in this category exists because you typed it and pressed send. Depending on how you interact with us, that may include:

  • Inquiries — when you use our contact form or book a call, we receive your name, company, email address, phone number (if provided), the engagement type and service area you select, and the description of your project.
  • Career applications — when you apply through our careers page, we receive your contact details, the professional background you describe, and your resume or CV, including any personal information it contains.
  • Direct correspondence — if you email or call us, we receive whatever you choose to share, and we keep the correspondence as a business record.

Please don’t send us confidential or proprietary information — technical files, unpublished data, trade secrets — through the public website. As our Terms of Use explain, confidential exchanges belong under a signed confidentiality agreement.

Information collected automatically

Our hosting provider, Netlify, maintains standard server logs for security and operations — the kind every professionally run website has. These may record your IP address, browser type, the pages requested, and timestamps.

Analytics, only with your consent. If you accept the cookie banner, we use Google Analytics 4 to see which pages visitors read, where they arrive from, and what devices they use: aggregate usage patterns, not dossiers. Google processes this data on our behalf and sets two cookies, named with their lifetimes in our cookies policy. We have enabled no advertising features, no Google signals, and no demographics, and Consent Mode keeps every advertising flag denied. Decline the banner (or send a Do Not Track or Global Privacy Control signal) and the analytics script never loads.

What you still won’t find here: advertising pixels, cross-site trackers, data sales, or any cookie set without your consent. We don’t build profiles of visitors, and we can’t follow you around the internet.

How we use your information

We use the information you provide for exactly what you’d expect:

  • To respond to your inquiry and, where there’s a fit, to scope and propose an engagement.
  • To evaluate your application and communicate with you about consulting opportunities.
  • To operate, secure, and improve the website.
  • To meet legal, accounting, and professional obligations.

We do not use your information for automated decision-making, and we do not send marketing email lists — if you hear from us, it’s a person writing to you about something you asked about.

When we share information

We never sell personal information, and we never share it with advertisers. Information leaves our hands in only a few narrow cases:

  • Service providers — Netlify hosts the site and processes form submissions on our behalf; our email provider carries our correspondence; Google processes analytics data for us when you have consented to it. These providers act under their own contractual and security obligations.
  • Professional advisers — accountants, insurers, or counsel, where necessary and under confidentiality.
  • Legal requirements — if a law, regulation, or valid legal process requires disclosure, we comply, and where lawful we’ll tell you.
  • Business transitions — if the firm is ever acquired or reorganized, business records may transfer with it, under the same protections described here.

Third-party services

Three third parties can be involved in serving this site, and you should know what each one sees:

  • Netlify (hosting and forms) — receives the server-log data described above and the contents of any form you submit. See the Netlify Privacy Policy.
  • Google Fonts — your browser requests one typeface file from Google’s servers, which receive your IP address as part of that request. See the Google Privacy Policy.
  • Google Analytics (only with your consent) — receives the usage data described under information collected automatically. It is loaded for no visitor who has not opted in. Our cookies policy names its two cookies and their lifetimes, and its consent panel lets you withdraw at any time.

Our pages also link out to third-party sites — regulators, publications, LinkedIn. Once you leave regulatoryleadership.com, their privacy practices apply, not ours.

The client portal

Active clients and consultants may be given accounts on our client portal at portal.regulatoryleadership.com. Portal accounts involve credentials and engagement-related information that are governed by the applicable engagement agreement and confidentiality terms in addition to this policy. Portal access is limited to authorized users, and engagement data is never used for any purpose outside the engagement.

How long we keep information

We keep personal information only as long as it serves the purpose you gave it to us for:

  • Inquiries — for as long as needed to respond and, if a relationship develops, for the life of that relationship plus any period required for legal and accounting records.
  • Career applications — long enough to evaluate current and reasonably foreseeable opportunities, unless you ask us to delete your materials sooner.

When information is no longer needed, we delete it. You can shortcut the schedule at any time — see your rights below.

How we protect it

The site is served entirely over TLS (HTTPS), form submissions are encrypted in transit, and access to submitted information is limited to the people who need it to respond to you. We host on reputable, professionally managed infrastructure rather than servers in a closet.

No method of transmission or storage is perfectly secure, and we won’t pretend otherwise — but we apply the same seriousness to protecting your information that we bring to our clients’ regulated data.

Your rights and choices

Depending on where you live — including the EEA, the United Kingdom, and certain U.S. states such as California — you may have legal rights to access, correct, delete, or restrict the use of your personal information, to object to its processing, or to receive a copy in portable form.

Our practice is simpler than the statutes: we honor reasonable requests from anyone, regardless of jurisdiction. Email hello@regulatoryleadership.com and tell us what you’d like — a copy of what we hold, a correction, or deletion — and we’ll act on it promptly and confirm when it’s done. We will never treat you differently for exercising a privacy right. If you’re in the EEA or UK and believe we haven’t resolved a concern, you also have the right to lodge a complaint with your local supervisory authority.

International visitors

We are a United States firm, and this site is operated from and hosted in the United States. If you visit or submit information from outside the U.S., your information will be transferred to, stored, and processed in the United States, where privacy laws may differ from those in your jurisdiction. We protect it as described in this policy wherever it is processed.

Children’s privacy

This site is a professional services site directed at life science companies and experienced consultants. It is not directed to children, and we do not knowingly collect personal information from anyone under 16. If you believe a child has provided us information, contact us and we will delete it.

Changes to this policy

When our practices change, this policy changes with them — the effective date at the top of the page always reflects the current version. If we ever make a change that materially affects information you’ve already given us, we’ll say so prominently here rather than bury it.

How to reach us

Questions, requests, or concerns about privacy all go to the same place — and a person, not a queue, reads them:

Regulatory Leadership Partners
hello@regulatoryleadership.com