Privacy Policy
A single email, and nothing more.
Last updated · 17 July 2026
This Privacy Policy explains, in plain language, what personal information this website collects, why it collects it, and how it is protected. It applies to corporategovernancegravity.com and any subpages under this domain.
Who is responsible
Bruno Horta Soares, independent creator of the Corporate Governance Gravity® project, is the data controller for this website.
Contact: bruno.h.doares@gmail.com
What data is collected
Currently, this website collects only one personal data item: your email address, and only if you voluntarily submit it through the notification form on the homepage or the launch notification pop-up.
No name, no phone number, no address, no company, no IP-based profiling, no account is created.
Purpose
Your email address is used for a single purpose: to notify you when the book The Boardroom After AI becomes available.
This website currently does not:
- send newsletters,
- send marketing campaigns,
- sell products,
- provide paid services,
- create user accounts,
- profile users.
You will receive only one notification regarding the launch of the book unless you explicitly choose to receive future communications.
Legal basis
The legal basis for processing your email address is your consent (Article 6(1)(a) of the GDPR), given freely when you submit the notification form. You may withdraw your consent at any time by writing to bruno.h.doares@gmail.com.
Data retention
Your email address is retained only as long as reasonably necessary for the stated purpose — that is, until the launch notification has been sent, or until you request its deletion, whichever occurs first.
Third-party services
To operate this website, we rely on a small number of specialised service providers acting as data processors:
- Hosting & delivery: Lovable (lovable.dev) and Cloudflare (edge delivery) — for serving the website.
- Database: Supabase — used exclusively to securely store submitted email addresses.
- Fonts: Google Fonts — used to render typography; font files are requested from Google servers when the page loads.
These providers process data on our behalf under standard data processing terms. Personal data is not sold, rented or shared with third parties for advertising or marketing purposes.
International transfers
Some of the providers listed above may process data outside the European Economic Area. When that is the case, transfers are covered by adequate safeguards recognised under GDPR (for example, Standard Contractual Clauses).
Security
Reasonable technical and organisational measures — including encryption in transit (HTTPS), access controls and row-level security rules on the database — are in place to protect your email address against unauthorised access, alteration, disclosure or destruction.
Your rights under GDPR
You have the following rights regarding your personal data:
- Right of access — to know whether we hold your data.
- Right to rectification — to correct inaccurate data.
- Right to erasure — to ask us to delete your data.
- Right to restriction — to limit how we use your data.
- Right to object — to object to the processing.
- Right to data portability — to receive your data in a portable format.
- Right to withdraw consent — at any time, without affecting prior processing.
- Right to lodge a complaint with your national data protection authority.
To exercise any of these rights, contact bruno.h.doares@gmail.com. Requests are answered within a reasonable time and, in any case, within one month.
Cookies
This website uses only a minimal amount of local storage strictly necessary for it to function. Details are set out in the Cookie Policy.
Changes to this policy
If this policy is updated, the new version will be published on this page with a revised date at the top.