evolve on c_

Privacy Policy

This Privacy Policy explains how Evolve On C collects, uses, and protects personal data when you visit evolveonc.com, contact us, or book time with us. We are based in Barcelona, Spain and operate internationally, so this notice is written primarily with the EU General Data Protection Regulation (GDPR) in mind.

This policy covers personal data processed through this website and related business development communications. It does not replace any separate client contract, data processing agreement, or project-specific privacy terms.

Last updated: March 22, 2026

1. Data Controller

For the purposes of GDPR, the controller of personal data collected through this website is Evolve On C.

Email: info@evolveonc.com
Location: Barcelona, Spain

2. Personal Data We Collect

Depending on how you interact with us, we may collect:

  • Identity and contact data, such as your name, email address, company name, role, and any information you include when contacting us.
  • Meeting and enquiry data, such as call booking details, availability, and the content of messages sent by email or through third-party scheduling tools.
  • Technical and usage data, such as IP address, browser type, device information, pages visited, referral source, timestamps, and interactions with the site.
  • Consent records, including your cookie preferences and related proof of consent or refusal.

3. How We Collect Data

We collect personal data directly from you when you email us, book a call, or otherwise choose to engage with us. We also collect limited technical information automatically through cookies, consent tools, and analytics or tag management technologies, subject to your preferences where consent is required.

4. Why We Use Personal Data

We use personal data to:

  • Respond to enquiries and discuss potential work.
  • Arrange meetings, discovery calls, and follow-up communications.
  • Operate, secure, and improve our website.
  • Measure site performance and understand commercial interest, where permitted by your consent choices.
  • Maintain records, protect our business, and comply with legal or regulatory obligations.

5. Legal Bases Under GDPR

We rely on one or more of the following legal bases, depending on the context:

  • Consent, for non-essential cookies and similar technologies, and for related measurement or marketing where required.
  • Steps prior to entering into a contract, when you contact us about a potential engagement or request a meeting.
  • Legitimate interests, for reasonable B2B communications, site security, service administration, and limited business analytics that do not require consent.
  • Legal obligation, where we need to retain or disclose information to comply with applicable law.

6. Cookies, Tracking, and Consent

We use a consent management platform and may use cookies or similar technologies to remember preferences, support website functionality, and measure engagement.

Our website uses tools including Clickio for consent management and Google Tag Manager to manage website tags. Where required by law, non-essential technologies are activated only on the basis of your consent choices.

More detail is available in our Cookie Policy.

7. Scheduling and Third-Party Tools

If you book a call with us through a scheduling link, your personal data may also be processed by the scheduling provider in accordance with its own privacy terms. The same applies to other service providers we use to operate the website, manage consent, host content, or support communications.

8. Sharing Personal Data

We do not sell your personal data. We may share it with trusted third parties only where necessary, including:

  • Hosting, website, analytics, consent management, and scheduling providers.
  • Professional advisers, such as legal, accounting, or compliance advisers.
  • Public authorities or regulators where disclosure is legally required.

9. International Transfers

Because we work internationally and use service providers that may operate outside Spain or the European Economic Area, personal data may be transferred internationally. Where this happens, we aim to ensure that appropriate safeguards are in place, such as adequacy decisions, contractual safeguards, or equivalent protections required by applicable law.

10. Data Retention

We keep personal data only for as long as necessary for the purpose for which it was collected, including to respond to enquiries, manage commercial discussions, keep compliance records, and meet legal obligations.

  • General enquiry and business development correspondence is usually retained for up to 24 months after the last meaningful contact, unless a longer period is justified.
  • Contractual, invoicing, and compliance records may be retained for longer where required by law or needed to establish, exercise, or defend legal claims.
  • Cookie consent records and similar compliance logs may be retained for as long as needed to demonstrate consent choices and compliance.

11. Your Rights

If GDPR or equivalent law applies to you, you may have the right to request access, rectification, erasure, restriction, objection, and data portability, and to withdraw consent at any time where processing is based on consent.

You can exercise these rights by contacting info@evolveonc.com. We may need to verify your identity before fulfilling a request.

12. Complaints

If you believe your personal data has been handled unlawfully, you have the right to lodge a complaint with the supervisory authority in your place of residence, work, or alleged infringement. If you are in Spain, you can contact the Spanish Data Protection Agency (Agencia Espanola de Proteccion de Datos, AEPD).

13. Children

This website and our services are directed at business audiences. We do not knowingly collect personal data from children.

14. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in law, our services, or the way we process personal data. The latest version will always be published on this page with the updated effective date.