Legal

Privacy Policy

Last updated: May 2026  ·  Effective date: May 2026

This Privacy Policy explains how No Loss Leads collects, uses, stores, and protects your personal data. It applies to all visitors and contacts of nolossleads.agency. We are committed to full compliance with the EU General Data Protection Regulation (GDPR) and Spain's Organic Law 3/2018 on Personal Data Protection and Guarantee of Digital Rights (LOPDGDD).

Contents
  1. Data Controller
  2. Data We Collect
  3. How We Collect Data
  4. Purpose and Legal Basis
  5. HubSpot CRM
  6. Tracking Technologies and Pixels
  7. Email and SMS Communications
  8. Data Retention
  9. Data Sharing and Third Parties
  10. International Data Transfers
  11. Your Rights
  12. Security
  13. Changes to This Policy
  14. Contact Us

1. Data Controller

The data controller responsible for your personal data is:

  • Business name: No Loss Leads
  • Trading as: No Loss Leads
  • Website: nolossleads.agency
  • Country of establishment: Spain
  • Contact email: privacy@nolossleads.agency

As data controller, No Loss Leads determines the purposes and means of processing your personal data and is responsible for ensuring that processing is carried out lawfully.

2. Data We Collect

Depending on how you interact with our website, we may collect the following categories of personal data:

Contact and identity data

  • First name and last name
  • Work email address
  • Company name
  • Industry or business vertical
  • Phone number (where voluntarily provided for SMS communications)

Enquiry and qualification data

  • Description of your pipeline or funnel situation (submitted via the Pipeline Audit form)
  • Service interest (Build a Pipeline / Fix a Pipeline)
  • Notes from discovery or consultation calls

Technical and usage data

  • IP address
  • Browser type and version
  • Device type and operating system
  • Pages visited, time on page, and referring URL
  • Cookie identifiers and pixel event data

3. How We Collect Data

We collect personal data through the following means:

Pipeline Audit form — When you submit a request for a free pipeline audit on our website, we collect your name, email, company, industry, and an optional description of your pipeline situation. This data is transmitted to and stored in HubSpot CRM.

Book a Consultation form — When you book a call through our HubSpot Meetings embed, HubSpot collects your name, email address, and the date and time of your booking directly on their platform.

Tracking technologies — We use tracking pixels (including the Meta Pixel) and cookies on our website to understand visitor behaviour, measure the performance of our marketing campaigns, and serve relevant advertising. See Section 6 for full details.

Direct communications — If you contact us by email or phone, we retain records of that correspondence.

4. Purpose and Legal Basis for Processing

We process your personal data only where we have a lawful basis to do so under Article 6 of the GDPR.

  • To respond to your pipeline audit or consultation request — Legal basis: performance of a pre-contractual step at your request (Article 6(1)(b) GDPR). We use your contact and enquiry data to review your funnel, prepare a diagnosis, and follow up with you.
  • To send you marketing communications by email or SMS — Legal basis: your consent (Article 6(1)(a) GDPR), given at the point of form submission. You may withdraw consent at any time. See Section 7.
  • To measure and improve our marketing — Legal basis: our legitimate interests (Article 6(1)(f) GDPR) in understanding how visitors engage with our website and which marketing activities generate qualified enquiries. This includes the use of tracking pixels and analytics tools.
  • To comply with legal obligations — Legal basis: compliance with a legal obligation (Article 6(1)(c) GDPR), such as retaining records for tax or regulatory purposes.

5. HubSpot CRM

We use HubSpot (HubSpot, Inc., 25 First Street, Cambridge, MA 02141, USA) as our customer relationship management platform. When you submit the Pipeline Audit form or book a consultation, your personal data is transferred to and stored in HubSpot.

HubSpot processes data on our behalf as a data processor under a Data Processing Agreement (DPA) consistent with GDPR requirements. HubSpot is certified under the EU-U.S. Data Privacy Framework and relies on Standard Contractual Clauses for transfers of data outside the European Economic Area.

Data stored in HubSpot may include your name, email address, company, industry, lead status, source attribution, and any notes from our communications. We use HubSpot to manage contact records, track enquiry status, and operate follow-up workflows.

For more information, see HubSpot's Privacy Policy.

Google reCAPTCHA

Our Pipeline Audit form uses Google reCAPTCHA (Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA) to protect against spam and abuse. reCAPTCHA collects hardware and software information and sends it to Google for analysis. This processing is subject to Google's Privacy Policy. The legal basis for this processing is our legitimate interest in protecting our website from automated abuse (Article 6(1)(f) GDPR).

6. Tracking Technologies and Pixels

Our website uses cookies and third-party tracking pixels to measure visitor behaviour and advertising performance.

Meta Pixel (Facebook Pixel)

We use the Meta Pixel, provided by Meta Platforms Ireland Limited (4 Grand Canal Square, Dublin 2, Ireland). The pixel records events such as page views and form submissions and sends this data to Meta to help us measure the effectiveness of our advertising and build audiences for our campaigns. The data transmitted may include your IP address, browser information, and page interaction data. Meta may use this data in accordance with its own data policy. You can review and manage Meta's use of your data at Meta's Privacy Policy.

Cookies

We use both first-party and third-party cookies. Essential cookies are necessary for the website to function and are placed without consent. Analytics and advertising cookies are placed only with your consent, where required by applicable law. You can manage your cookie preferences at any time via your browser settings.

The legal basis for placing non-essential tracking technologies is your consent (Article 6(1)(a) GDPR), or our legitimate interests in measuring and improving our marketing where consent is not required.

7. Email and SMS Communications

By submitting the Pipeline Audit form, you consent to No Loss Leads contacting you by email and SMS in connection with your enquiry and for follow-up marketing communications about our services.

What we may send

  • A response to your pipeline audit request and any follow-up related to it
  • Information about our services, methodology, and case studies
  • Invitations to book a consultation or review call
  • Relevant content related to pipeline performance and revenue operations

Frequency — We do not send unsolicited bulk messages. Follow-up communications are purposeful and relevant to your enquiry.

Withdrawing consent — You may opt out of email communications at any time by clicking the unsubscribe link in any email we send, or by emailing privacy@nolossleads.agency. To opt out of SMS communications, reply STOP to any SMS message we send. Withdrawal of consent does not affect the lawfulness of processing carried out prior to withdrawal.

SMS communications are sent only where you have provided a phone number and consented to receive them. We do not sell or share your phone number with third parties for their own marketing purposes.

8. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by law.

  • Pipeline audit and consultation enquiries — retained for up to 3 years from the date of last contact, or until you request deletion.
  • Active client records — retained for the duration of the engagement plus 5 years, to comply with commercial and tax record-keeping obligations under Spanish law.
  • Marketing consent records — retained for as long as you remain an active contact, or until consent is withdrawn.
  • Website analytics and pixel data — retained in accordance with the retention periods set by the relevant third-party platform (e.g. Meta).

When data is no longer required, it is securely deleted or anonymised.

9. Data Sharing and Third Parties

We do not sell your personal data. We share personal data with third parties only in the following circumstances:

  • Service providers acting as data processors — including HubSpot (CRM and meeting scheduling), Meta (advertising pixel), and any hosting or infrastructure providers used to operate the website. These parties process data solely on our instructions and under appropriate data processing agreements.
  • Legal obligations — where we are required to disclose data to comply with a legal obligation, court order, or lawful request from a public authority.
  • Business transfers — in the event of a merger, acquisition, or sale of business assets, personal data may be transferred to the new entity, subject to the same privacy protections set out in this policy.

10. International Data Transfers

Some of our third-party service providers are based outside the European Economic Area (EEA), including HubSpot and Meta, which are headquartered in the United States. Where data is transferred outside the EEA, we ensure appropriate safeguards are in place, including:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Adherence to the EU-U.S. Data Privacy Framework, where applicable

You may request a copy of the relevant safeguards by contacting us at privacy@nolossleads.agency.

11. Your Rights

Under the GDPR and LOPDGDD, you have the following rights in relation to your personal data:

  • Right of access — to obtain a copy of the personal data we hold about you.
  • Right to rectification — to have inaccurate or incomplete data corrected.
  • Right to erasure — to request deletion of your personal data, subject to any legal obligation to retain it.
  • Right to restriction of processing — to request that we limit how we use your data in certain circumstances.
  • Right to data portability — to receive your data in a structured, machine-readable format.
  • Right to object — to object to processing based on legitimate interests, including for direct marketing purposes.
  • Right to withdraw consent — where processing is based on consent, to withdraw it at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, contact us at privacy@nolossleads.agency. We will respond within 30 days. You also have the right to lodge a complaint with Spain's data protection authority, the Agencia Española de Protección de Datos (AEPD), at www.aepd.es.

12. Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, destruction, or alteration. These measures include encrypted data transmission (HTTPS), access controls, and use of reputable third-party infrastructure providers with their own security certifications.

No method of transmission over the internet is 100% secure. In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify the AEPD within 72 hours as required by Article 33 GDPR, and you directly where required by Article 34 GDPR.

13. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or the services we use. When we make material changes, we will update the "Last updated" date at the top of this page. We encourage you to review this policy periodically. Continued use of our website after changes are posted constitutes acceptance of the updated policy.

14. Contact Us

For any questions, requests, or complaints relating to this Privacy Policy or our processing of your personal data, please contact us:

We aim to respond to all legitimate requests within 30 calendar days. In complex cases, this period may be extended by a further two months, in which case we will inform you.