Privacy Policy

Last updated: October 24, 2025

Dark Horse Strategic ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website dhstrat.com (the "Site").

Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the site. For detailed information about cookies, see our Cookie Policy.

1. Information We Collect

1.1 Information You Provide to Us

We collect information that you voluntarily provide to us when you:

Fill out a contact form
Schedule a meeting through our calendar booking system
Subscribe to our newsletter or communications
Request information about our services
Otherwise communicate with us

This information may include: name, email address, phone number, company name, job title, and any other information you choose to provide in your messages to us.

1.2 Automatically Collected Information

When you visit our Site, we automatically collect certain information about your device and browsing actions:

Analytics Data: We use Google Analytics 4 to collect information about how you use our Site, including pages visited, time spent on pages, links clicked, and navigation patterns
Performance Metrics: We use Vercel Analytics to measure website performance and user experience metrics (Web Vitals)
Technical Information: IP address, browser type and version, device type, operating system, referring website, and time zone
Usage Information: Clickstream data, page views, scroll depth, and interaction with specific features

1.3 Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect information about your browsing activities. For detailed information about the cookies we use and your choices, please see our Cookie Policy.

2. How We Use Your Information

We use the information we collect to:

Provide Services: Respond to your inquiries, process meeting requests, and deliver the services you request
Improve Our Site: Analyze how visitors use our Site to improve functionality, content, and user experience
Marketing: Send you information about our services, insights, and updates (with your consent where required)
Analytics: Understand visitor behavior, track customer journeys, and measure marketing effectiveness
Security: Detect, prevent, and address technical issues and security threats
Legal Compliance: Comply with legal obligations and enforce our terms and policies

3. How We Share Your Information

We do not sell, trade, or rent your personal information to third parties. We may share your information with:

3.1 Service Providers

We share information with third-party service providers who perform services on our behalf:

Google LLC: Analytics and measurement services (Google Analytics 4)
Vercel Inc: Website hosting and performance analytics
Resend: Email delivery services for contact form submissions
Cal.com: Meeting scheduling and calendar integration

These service providers are contractually obligated to use your information only for the services they provide to us and in accordance with applicable data protection laws.

3.2 Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., court orders, subpoenas, or government agencies).

3.3 Business Transfers

In the event of a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred to the acquiring entity.

4. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence, including the United States, where our service providers (Google, Vercel) operate data centers. These countries may have data protection laws that are different from the laws of your country.

When we transfer information internationally, we ensure appropriate safeguards are in place, such as:

Standard Contractual Clauses approved by the European Commission
Data Processing Agreements with service providers
Compliance with applicable data transfer regulations

5. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

Contact Form Data: 3 years from last contact
Analytics Data: 26 months (Google Analytics default retention period)
Cookie Consent Records: 2 years from last visit
Marketing Communications: Until you unsubscribe or request deletion

6. Data Security

We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:

SSL/TLS encryption for data transmission
Secure hosting with Vercel (SOC 2 certified)
Access controls and authentication
Regular security assessments

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

7. Your Rights and Choices

7.1 General Rights (All Users)

You have the right to:

Access: Request a copy of the personal information we hold about you
Correction: Request correction of inaccurate or incomplete information
Deletion: Request deletion of your personal information
Cookie Control: Manage your cookie preferences through our cookie banner or browser settings
Opt-Out: Unsubscribe from marketing communications at any time

7.2 GDPR Rights (EU/EEA Residents)

If you are located in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR):

Right to Restriction: Request restriction of processing in certain circumstances
Right to Data Portability: Receive your data in a structured, machine-readable format
Right to Object: Object to processing based on legitimate interests or for direct marketing
Right to Lodge a Complaint: File a complaint with your local data protection authority
Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent

7.3 CCPA Rights (California Residents)

If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA):

Right to Know: Request disclosure of personal information we collect, use, and share
Right to Delete: Request deletion of your personal information
Right to Opt-Out: Opt-out of the sale of personal information (we do not sell personal information)
Right to Non-Discrimination: Not be discriminated against for exercising your CCPA rights

To exercise any of these rights, please contact us at info@dhstrat.com or through our contact form. We will respond to your request within 30 days (or as required by applicable law).

8. Do Not Track Signals

We respect Do Not Track (DNT) and Global Privacy Control (GPC) browser signals. When we detect these signals, we automatically set analytics cookies to denied and honor your preference not to be tracked.

9. Children's Privacy

Our Site is not intended for children under the age of 16. We do not knowingly collect personal information from children under 16. If you become aware that a child has provided us with personal information, please contact us immediately.

10. Third-Party Links

Our Site may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to read the privacy policies of any third-party sites you visit.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by:

Posting the updated policy on this page
Updating the "Last updated" date
Sending notification via email (for material changes that affect your rights)

Your continued use of the Site after changes become effective constitutes acceptance of the revised Privacy Policy.

12. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

Dark Horse Strategic

Email: info@dhstrat.com

Contact Form: dhstrat.com/contact

For EU/EEA Data Protection Authority: If you are located in the EEA and believe we have not addressed your concern adequately, you have the right to lodge a complaint with your local supervisory authority.