Who we are and Scope of This Policy

Our website address is: https://asmconsulting.org.

ASMC is a professional organization offering (among other services) professional certification programs, management consulting, coaching, corporate training, and leadership/career development services through its website and related programs.

This Privacy Policy explains how ASMC collects, uses, stores, protects, and retains information about:

• website visitors;
• members and prospective members;
• certification candidates and learners (including course purchasers/enrollees);
• consulting/coaching clients and prospective clients; and
• people who communicate with ASMC (for example, via web forms or email).

Definitions. In this Privacy Policy:

• “Personal Information” includes information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked to an individual (wording aligned with the California Consumer Privacy Act/Privacy Rights Act framework). 
• “Personal Data” has the meaning used under the EU General Data Protection Regulation (GDPR) (and, where relevant, similar concepts in other privacy laws). 
• “Process/Processing” means any operation performed on Personal Information/Personal Data, including collecting, using, storing, disclosing, or deleting it.

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

ASMC does not sell your Personal Information. ASMC does not share your Personal Information with third parties for their own marketing, advertising, or cross-context behavioral advertising purposes.

Information We Collect and How We Collect It

ASMC collects information in three main ways: (a) information you provide to us, (b) information collected automatically when you use the website, and (c) information received in a professional services context (e.g., consulting engagements), where applicable.

Information you provide directly

Contact and inquiry information. When you contact ASMC or submit a message through the website, ASMC may collect identifiers and contact details (e.g., name, phone number, email address) and the content of your message.

Account and profile information. If you create an account, sign in, or otherwise use account-enabled features, ASMC may collect account identifiers (such as email/username) and authentication-related information. The website indicates account functionality (Sign In / Sign Up) and an application/approval workflow.

Membership information. If you enroll in or manage a membership plan, ASMC may collect information needed to administer membership tiers, status, eligibility, and billing (where applicable).

Certification, course, and learning records. If you purchase, enroll in, or complete certification courses, ASMC may collect information necessary to deliver the course, assess completion, and issue/verify credentials (e.g., coursework progress, completion status, and related communications). ASMC’s website publicly describes certification courses and credential outcomes.

Client intake information (consulting/coaching). If you engage ASMC for consulting or coaching services, ASMC may collect professional and organizational information you choose to provide to scope, deliver, and document services (e.g., role/title, organization name, project requirements, stakeholder contact information). ASMC publicly markets consulting and coaching services. 

Sensitive information (generally not required for standard services)

ASMC does not intend to request or require sensitive personal information for ordinary membership, course enrollment, or general consulting inquiries. If special circumstances arise (for example, accessibility accommodations), ASMC will limit collection and use to what is necessary and proportionate for the specific purpose and as permitted by applicable law. (California law defines certain data elements as “sensitive personal information.”) 

How We Use Personal Information

ASMC uses Personal Information to operate and improve its services, administer accounts and memberships, deliver certifications and professional development, provide consulting/coaching, communicate with you, and comply with legal obligations. 

Core purposes

ASMC may use Personal Information for the following business purposes:

Providing and administering services you request. This includes processing memberships, delivering certification programs/courses, maintaining learner records needed to deliver the program, and providing consulting and coaching services.

Account access, authentication, and support. This includes enabling sign-in/sign-up, processing account applications/approvals (where applicable), managing password resets, and responding to support inquiries. 

Transactions and service fulfillment. This includes enabling shopping cart and checkout functionality, processing orders, providing receipts/confirmations, and handling refunds or disputes when applicable. 

Communications. This includes responding to your messages and sending administrative emails related to your account, membership, course enrollment, credential status, or service engagement.

Security, fraud prevention, and platform integrity. This includes protecting accounts, securing transactions, preventing abuse, and maintaining system reliability. These security-oriented purposes are consistent with privacy frameworks that recognize security and integrity needs.

GDPR lawful bases (where GDPR applies)

Where GDPR applies, ASMC processes Personal Data only when there is a valid legal basis, such as:

• Consent (for example, where you opt in to certain optional communications or non-essential cookies); 
• Contract necessity (for example, to provide a course you purchase or a service you request);
• Legal obligation (for example, compliance with applicable laws); and /or
• Legitimate interests (for example, operating and securing services, preventing fraud, and improving service quality), balanced against your rights and interests.

GDPR expects organizations to inform individuals about processing purposes, legal bases, retention, rights, recipients, international transfers, and related information in a privacy notice.

Sharing, Disclosure, and “No Sale/No Share” Commitment

We do not share Personal Information for cross-context behavioral advertising

We do not sell Personal Information

Regional contact handling (India and the Far East, North Africa & Middle East)

ASMC’s website lists an India and the Far East Contact as Dr. Yogesh Kumar Upadhyay, a North Africa and Middle East contact as Arab Trainers Union, including email and phone contact details

If you choose to contact ASMC through that listed contact point, your inquiry information will necessarily be processed by that contact channel to respond to you and/or route your request appropriately. ASMC does not authorize use of your information for unrelated marketing or resale.

Legal and safety disclosures

ASMC may disclose information when it reasonably believes disclosure is necessary to:

• comply with applicable law, lawful requests, and legal process;
• protect rights, safety, and security of ASMC, users, and others; or
• support corporate transactions (e.g., merger, acquisition), where permitted.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Cookies and Similar Technologies

What cookies are and why they matter

Cookies are small text files stored on your device that allow a site to recognize the user’s device and store information about preferences or past actions. 

ASMC cookie practices (high level)

ASMC may use cookies and similar technologies for:

• Essential operations (e.g., enabling sign-in, maintaining session state, supporting shopping cart/checkout flows, and supporting security);
• Preferences and functionality (e.g., remembering settings); and
• Analytics to understand how visitors use the site and to improve site performance (where enabled).

Consent for non-essential cookies (where required)

Where applicable, ASMC will implement a cookie preference mechanism that distinguishes essential cookies from non-essential cookies.

Third-party links and social sharing

ASMC course pages include “Share” links that allow a user to share content via Facebook, LinkedIn, Telegram, and WhatsApp, and the site also references X and Instagram. 

If you click those links, you will be interacting with third-party sites governed by their own privacy policies. ASMC does not control those third parties’ practices.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Data Retention and Security

Data retention

ASMC retains Personal Information only for as long as necessary for the purposes described in this Privacy Policy, unless a longer period is required or permitted by law.

This approach aligns with:

• GDPR’s storage limitation principle (keep data no longer than necessary for the purposes);
• GDPR notice expectations to provide a retention period or the criteria used to determine that period; and

Practical retention framework (ASMC operational schedule). Unless required otherwise by law or contractual commitments, ASMC intends to use the following retention approach:

• Contact inquiries and messages: retain up to 24 months after last interaction, to support follow-up and continuity;
• Account records: retain while the account is active; after closure, retain up to 24 months for account recovery, fraud prevention, and recordkeeping;
• Membership records: retain during membership plus up to 7 years after expiration (for audit, accounting, and reinstatement history);
• Certification and credential verification records: retain for as long as reasonably necessary to validate the authenticity of credentials and maintain program integrity (often longer than other categories); 
• Transaction records: retain for the period required by applicable tax/accounting rules; and
• Security logs: retain for a limited period appropriate to security monitoring and incident investigation.

If you request deletion under applicable law, ASMC will honor valid requests subject to legally permitted exceptions (for example, where retention is required to comply with a legal obligation or to complete a transaction you requested). 

Security measures

ASMC maintains administrative, technical, and physical safeguards designed to protect Personal Information against unauthorized access, disclosure, alteration, and destruction.

GDPR contemplates “appropriate technical and organisational measures” tailored to risk, including (as appropriate) encryption, confidentiality/integrity/availability safeguards, resilience, restoration capabilities, and regular testing/evaluation. 
ASMC’s safeguards may include:

• access controls and least-privilege permissions;
• encryption in transit (and, where appropriate, at rest);
• secure credential handling (e.g., password hashing);
• logging/monitoring for suspicious activity; and
• vendor due diligence for service providers.

Data breach response. In the event of a suspected or confirmed breach, ASMC will investigate, mitigate, and provide notifications as required by applicable law. GDPR includes a 72-hour notification framework to supervisory authorities in certain circumstances. 

Who we share your data with

If you request a password reset, your IP address will be included in the reset email.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Your rights depend on where you live and which laws apply. ASMC provides the following rights descriptions to support transparency and compliance.

GDPR rights (EEA/UK and other GDPR-covered individuals)

Under GDPR, individuals may have rights including:

• Right of access (confirmation and access to Personal Data and related information); 
• Right to rectification (correct inaccurate Personal Data); 
• Right to erasure (“right to be forgotten,” in certain circumstances); 
• Right to restriction of processing (in certain circumstances); 
• Right to data portability (for data you provided in certain contexts); 
• Right to object (including objection to direct marketing where applicable); 
• Right to withdraw consent (where processing is based on consent); 
• Right to lodge a complaint with a supervisory authority;  and
• Rights related to automated decision-making, including profiling (where applicable). 

How to exercise your rights

To submit a privacy request, email ASMC at info@asmconsulting.org with the subject line “Privacy Request,” and include enough information to allow ASMC to verify your identity and locate your records. 
If you maintain an account, ASMC may ask you to submit the request through the account context or to confirm control of the email address on file, consistent with verification principles. 

Contact Us and Policy Updates

Contact Us and Policy Updates

Contact information for privacy inquiries

ASMC contact:
Address: 17331 Highwood Dr, Orland Park 60467 
Email: info@asmconsulting.org 
Phone: +1 (131) 267-14787 

If you are contacting ASMC through the India and Far East, North Africa and Middle East contact details listed on ASMC’s site, those details are provided there for your convenience. 

Updates to this Privacy Policy

ASMC may update this Privacy Policy from time to time to reflect changes in practices, services, or legal requirements. Where required, ASMC will update its online privacy disclosures at least annually. 

If ASMC makes material changes, ASMC will post the updated Privacy Policy on its website and update the “Last updated” date at the top of this document.