Privacy and Personal Data Protection Policy

Date of Publication: May 25, 2026

Website Administration / Data Controller: Individual Entrepreneur "Bridge Consulting" (IE "Bridge Consulting")

IIN (Tax ID): 811207400471

This Privacy and Personal Data Protection Policy governs the collection, storage, protection, and processing of personal data of users (hereinafter referred to as the "User") on the website bridge2.asia (hereinafter referred to as the "Website"), conducted by IE "Bridge Consulting" (hereinafter referred to as the "Website Administration").

Protecting your personal data and ensuring confidentiality is our core priority. By using the Website and submitting your data through our feedback forms, you fully agree to the terms of this Policy.

---

1. What Data We Collect

We collect only the personal data that the User voluntarily provides when filling out forms on the Website:

• First name and last name;
• Company name and job title;
• Email address;
• Telegram messenger username;
• Phone number;
• Company ARR range (for initial scaling assessment).

---

2. Purpose of Data Processing

The User's personal data is processed solely for the following purposes:

• Contacting the User to arrange the 30-minute strategy session;
• Analyzing company profile to prepare a customized B2B proposal;
• Responding to inquiries and providing customer support;
• Sending informative updates (only with explicit User consent).

---

3. Methods and Means of User Data Protection

3.1. The Website Administration takes all necessary technical, organizational, and administrative security measures to protect personal data from unauthorized access, modification, disclosure, loss, or destruction.

3.2. Data Transmission Security:

• All personal information transmitted via the feedback forms on the Website is encrypted and securely sent using the HTTPS protocol.
• Access to database servers is strictly restricted and granted solely to authorized personnel of the Contractor with modern access controls and verification protocols.

3.3. We do not sell, rent, or disclose personal data to third parties, unless strictly required by the active legislation of the Republic of Kazakhstan or necessary to prevent fraud.

3.4. When delivering service results (reports, presentations, analytical materials) to the Client, the Contractor may use the following third-party cloud services:

• Google Drive (Google LLC, USA) — file delivery of service deliverables;
• Microsoft OneDrive (Microsoft Corporation, USA) — file delivery of service deliverables.

These services are granted access exclusively to files containing service deliverables. Personal data collected via the Website form is not shared with these services.

---

4. User Rights

4.1. The User has the right to request information about what personal data is stored in our database at any time.

4.2. The User has the right to request modification or complete deletion of their personal data from our database. To do this, please send a written email request to: info@bridge2.asia. The Website Administration agrees to remove the data within the legally prescribed timelines.

---

5. Policy Updates

The Website Administration reserves the right to modify this Privacy Policy unilaterally. The updated version takes effect immediately upon publication on this page.