Privacy policy.

Effective date: April 30, 2026 · Last reviewed: April 30, 2026

This policy describes how TISSA Consulting LLC ("TISSA," "we," "us") collects, uses, and protects the information you share when you visit tissaconsulting.com, contact us, request a resource, or engage us for a service. We keep this short on purpose. We do not run advertising networks, we do not sell data, and we collect only what we need to do our work.

What we collect.

Information you give us directly. Your name, email address, company, phone number, and any details you include when you fill in a contact form, request a free resource, subscribe to the newsletter, or book a Diagnostic. We collect only what the form asks for — nothing else.

Information we collect automatically. Basic technical data about your visit — browser type, device, IP address, the pages you viewed, the date and time. This is the standard server-side data any website logs. We use it to keep the site working and to understand which essays are being read.

Cookies and similar technologies. We use a small number of cookies for essential site function (remembering whether you have dismissed a banner, for example) and for privacy-respecting analytics. We do not use advertising cookies, retargeting pixels, or session-recording tools.

How we use it.

We use the information you share for four purposes, and no others.

01 · To respond to you. If you fill out a contact form or request a Diagnostic, we read what you wrote and reply. That is the entire transaction.

02 · To send what you requested. If you submit your email to download a PDF — the Brand Audit Checklist, the Template Spec, the 4C Self-Assessment — we email it to that address. One email, one PDF. No drip sequence.

03 · To send the newsletter, if you subscribed. If you opted into Field Notes, you get one essay per month. You can unsubscribe at the bottom of any issue. We do not sell the list and we do not share it.

04 · To run an engagement. If you become a client, we use the information you share with us in interviews, audits, and working sessions to do the work we agreed to do. That information stays inside TISSA and is destroyed or returned at the end of the engagement, on your request.

We do not sell data. We do not rent data. We do not feed data into advertising networks. The information you share lives inside the relationship.

Who we share it with.

We share information only with a small set of vendors who help us run the practice, and only the minimum information each one needs.

Email delivery — the service we use to send newsletter issues and resource emails. It receives email addresses and the body of the emails we send.

Hosting — the platform that serves this website. It processes standard server logs.

Analytics — a privacy-respecting analytics provider that does not set advertising cookies and does not enable cross-site tracking.

Legal — we may disclose information when required by law (subpoena, court order, regulatory investigation), and only the minimum required.

We do not share information with advertisers, data brokers, social-media platforms, or any third party for marketing purposes.

Your rights.

You have the following rights with respect to the information we hold about you, regardless of where you live.

Access. Ask us what we have on file. We will send it back to you within 30 days.

Correction. Tell us what is wrong. We will fix it.

Deletion. Tell us to delete the information. We will, except where we are required to retain it (e.g. accounting records, signed engagement letters).

Portability. Ask for your information in a readable format. We will provide it.

Opt-out. Unsubscribe from the newsletter at any time using the link at the bottom of every issue, or by emailing us directly.

If you are a California resident, the rights above include the rights described in the CCPA. If you are in the EU, EEA, or UK, they include the rights described in the GDPR. You also have the right to lodge a complaint with your local data protection authority — though we would prefer the chance to address it directly first.

Children's privacy.

TISSA services are for business contexts. We do not knowingly collect information from anyone under 16. If you believe a minor has shared information with us, contact us and we will delete it.

International transfers.

TISSA is based in New York, United States. The vendors we use are primarily US-based. If you contact us from outside the United States, your information is being transferred to the US. By using the site or contacting us, you accept that transfer.

Security.

We use standard security practices to protect the information you share — encrypted connections (HTTPS), access controls on internal systems, and a small team that handles your information directly. No internet-facing system is perfectly secure, but we take the obligation seriously.

Changes to this policy.

If we change this policy materially, we will update the "Effective date" at the top and, where appropriate, notify newsletter subscribers. The most recent version always lives at tissaconsulting.com/privacy.

Contact.

Questions, access requests, deletion requests, or anything else related to your information:

TISSA Consulting LLC
2419 7th Ave
New York, NY 10030
info@tissaconsulting.com
+1 (347) 379-3599

---

For the terms governing fees, deliverables, and refunds, see the Refund Policy.