PRIVACY POLICY

PRIVACY POLICY

Privacy Policy

Last updated: December 2025

VC Consulting LTD
Sinanishko ezero 9A, office 3, Sofia, Bulgaria
Company Number: 207784343

Email: nik@nikyanev.com

VC Consulting LTD (“we”, “us”, “our”) respects your privacy and is committed to protecting your personal data.
This Privacy Policy explains how we collect, use, and protect personal data when you visit nikyanev.com or contact us about potential consulting services.

This policy applies only to data collected through the website.
Any personal data exchanged after we enter into a consulting engagement is governed by a separate client agreement, not this Privacy Policy.

1. Who We Are (Data Controller)

The data controller for website-related personal data is:

VC Consulting LTD
Email: nik@nikyanev.com

2. What Personal Data We Collect

We collect two categories of data when you use the website:

2.1. Website Analytics Data (Google Analytics 4 & Framer Analytics)

When you visit the website, we automatically collect technical and usage data such as:

  • IP address (anonymized by GA4 by default)

  • Browser, device, and operating system information

  • Pages viewed and time spent on the site

  • Referrer information

  • General location (city/country)

This is processed through:

  • Google Analytics 4 (Google Signals not enabled)

  • Framer Analytics

  • Google Tag Manager (manages tags but does not collect personal data itself)

This data is aggregated and does not identify you personally.

2.2. Contact Form Data (Google Forms)

If you submit the contact form, you provide:

  • Name

  • Email address

  • LinkedIn profile

  • Country

  • Company website

  • Description of your company

  • Fundraising goals

  • Amount raised so far

  • Your biggest fundraising challenge

  • A link to your pitch deck

We use this information solely to review your inquiry and respond.

2.3. Client Data (Handled Separately)

If we begin working together, any personal data processed during the consulting engagement (e.g., pitch decks, investor lists, emails, documents) is not covered by this Privacy Policy.

Such data is handled under the confidentiality, privacy, and data protection terms in the separate client agreement.

This distinction ensures GDPR compliance by applying the correct legal framework to each processing context.

2.4. Embedded Content (YouTube)

The website may include standard YouTube embeds, which may collect usage data and set cookies, even without direct interaction.

3. Why We Process Personal Data (Purposes)

We process personal data for the following purposes:

  • To respond to your inquiry submitted through the contact form

  • To schedule introductory or exploratory calls

  • To assess whether we are a good fit to work together

  • To perform website analytics and understand site usage

  • To improve the performance, structure, and content of the website

  • To analyze demand for services and improve marketing efforts (aggregated data)

  • To meet legal, accounting, and business compliance requirements

4. Our Legal Bases for Processing (Art. 6 GDPR)

We rely on the following legal bases for processing personal data:

  • Legitimate Interest (Art. 6(1)(f))
     For processing inquiries submitted through the contact form, as individuals request to be contacted.

  • Consent (Art. 6(1)(a))
     For analytics cookies (Google Analytics 4, Framer Analytics) and YouTube embeds, collected via the cookie banner.

  • Legal Obligation (Art. 6(1)(c))
     For retaining records and fulfilling statutory obligations (e.g., accounting, compliance).

5. Who We Share Personal Data With

We use third-party providers who process data on our behalf:

Analytics & Website Tools

  • Framer (hosting & analytics)

  • Google Analytics 4

  • Google Tag Manager

Communication & Storage

  • Google Forms

  • Gmail (Google Workspace)

  • Google Drive

  • Notion (internal note-keeping; no external sharing)

Domain Services

  • Superhosting.bg & GoDaddy (domain registration only)

We do not sell, rent, or trade your personal data.

6. International Data Transfers

Some providers (e.g., Google, Notion, Framer) may process data in the United States.

Transfers are protected by:

  • The EU–US Data Privacy Framework, where applicable

  • Standard Contractual Clauses (SCCs) approved by the European Commission

  • Additional safeguards implemented by the respective providers

7. Data Retention

We retain personal data only as long as necessary.

Inquiry emails & contact form submissions

Up to 5 years after our last communication, for business records and compliance.

Analytics data

Stored according to Google Analytics & Framer default retention settings (typically 14 months unless configured otherwise).

Client engagement data

Handled exclusively under the client agreement, not this policy.

You may request deletion earlier (where legally permitted) by contacting us.

8. Security Measures

We implement appropriate technical and organizational measures, such as:

  • Two-factor authentication on all relevant accounts

  • Secure hosting via Framer

  • Encrypted data storage by third-party processors (Google, Notion, etc.)

  • Limited access to authorized personnel.

  • Secure transmission via HTTPS.

However, no online system is entirely risk-free. You use the Website at your own discretion.

9. Cookies & Tracking Technologies

We use cookies for:

  • Website analytics

  • Performance tracking

  • Embedded YouTube videos

A cookie banner will appear on your first visit, allowing you to accept or reject non-essential cookies.

You can change your preferences at any time.

10. Children

We do not target or knowingly collect personal data from individuals under 18 years old.
If such information is identified, we will delete it promptly.

11. Your GDPR Rights

You have the right to:

  • Access your personal data

  • Correct inaccurate information

  • Request deletion (“right to be forgotten”)

  • Restrict processing

  • Object to processing

  • Withdraw cookie consent

  • Receive a copy of your data (data portability)

  • Lodge a complaint with a supervisory authority

In Bulgaria, this is the:
Commission for Personal Data Protection (CPDP) — https://www.cpdp.bg/

To exercise your rights, contact: nik@nikyanev.com

12. Newsletter (Future Feature)

We may introduce a newsletter later.
If we do, we will update this policy and request explicit opt-in consent before sending marketing emails.

13. Updates to This Policy

We may update this Privacy Policy occasionally.The latest version will always be available at nikyanev.com/privacy-policy.

Follow me on

Home
My Process
About Me
Privacy Policy
Cookie Policy
Book a call

Follow me on

Home
My Process
About Me
Privacy Policy
Cookie Policy
Book a call

Follow me on

Home
My Process
About Me
Privacy Policy
Cookie Policy
Book a call

Follow me on

Home
My Process
About Me
Privacy Policy
Cookie Policy
Book a call

Follow me on

Home
My Process
About Me
Privacy Policy
Cookie Policy
Book a call