Legal
Privacy Policy
Effective: 1 January 2026
This Privacy Policy explains what information The Decided Org collects when you visit our website, take the Self Assessment, book a Fit Conversation, or otherwise engage with the practice — and how that information is used, stored, and shared. The practice is operated by Niji Labs LLC, a Delaware-organised limited liability company with its principal place of business in Scottsdale, Arizona, United States.
Contents
1. Who we are
For the purposes of US state privacy law (including the California Consumer Privacy Act / CPRA, where applicable) and equivalent regulations in other jurisdictions, the data controller for personal information collected through thedecidedorg.com is Niji Labs LLC, doing business as The Decided Org, with its registered address at Scottsdale, Arizona, United States.
2. What we collect
We collect only what we need to operate the practice. Specifically:
- Information you provide directly — name, email, organization, role, and any context you share when taking the Self Assessment, completing a Team Assessment, booking a Fit Conversation, or signing up for Drift.
- Assessment responses— the answers you submit to the Self Assessment or Team Assessment. These are tied to the email address you provide.
- Usage data— basic technical information about your visit (browser type, device, approximate location derived from IP, pages viewed, referrer). We use this in aggregated form to understand which pages are useful.
- Communications— emails you exchange with us; meeting notes and proposals; contractual records during the course of an engagement.
We do not knowingly collect sensitive categories of personal information (health data, biometric data, precise geolocation, government identifiers). Please do not include sensitive personal information in messages to us.
3. How we use it
- To deliver the services you’ve asked for — your assessment result, a Fit Conversation, a Workshop, ongoing advisory.
- To respond to enquiries and prepare proposals.
- To send the one publication-notification email if you’ve signed up for Drift. We will not subscribe you to anything else.
- To operate, secure, and improve the website.
- To comply with legal and contractual obligations and to defend our legal interests.
4. Legal basis
Where US state privacy law applies, we process personal information for the business purposes set out above. Where GDPR or UK GDPR applies (because the data subject is in the EEA or UK), we rely on: contract (to deliver the service you’ve requested); legitimate interest (to operate and secure the website, respond to enquiries, run the practice); and consent (for the optional Drift notification). You can withdraw consent at any time.
5. Sharing & third parties
We do not sell personal information. We do not share it for advertising. We share it only with the small number of service providers that operate parts of our infrastructure under written contracts, including:
- Email and calendar providers (for scheduling Fit Conversations and sending receipts).
- Website hosting and analytics providers (in aggregated, non-identifying form where possible).
- Payment processors (for paid engagements).
- Professional advisors (accountants, lawyers) where legally required.
Where a service provider is located outside the country in which you reside, we ensure appropriate safeguards (Standard Contractual Clauses for EU/UK transfers, equivalent measures elsewhere).
6. Retention
We keep your information for as long as it is necessary to deliver the engagement and to meet our legal, accounting, and contractual obligations. Assessment responses tied to a paid engagement are retained for the duration of the engagement and for seven years thereafter (US tax recordkeeping). Free Self Assessment responses are retained for up to twenty-four months from submission and then deleted or anonymised. Mailing list entries are kept until you unsubscribe or the relevant publication has shipped.
7. Your rights
Depending on where you live, you may have the right to access, correct, delete, or port your personal information; to opt out of certain processing; and to lodge a complaint with a supervisory authority. In particular:
- California residents(CCPA / CPRA): the right to know what personal information we collect, to delete it, to correct it, to limit the use of sensitive personal information, and to opt out of “sale” or “sharing” (we do neither).
- EEA / UK residents (GDPR / UK GDPR): rights of access, rectification, erasure, restriction, portability, and objection.
- Other US states (Colorado, Connecticut, Virginia, Utah, and others with similar laws): equivalent rights to those above.
To exercise any of these rights, write to privacy@thedecidedorg.com. We will respond within 30 days (or the period required by your applicable law, whichever is shorter).
8. Cookies & analytics
We use a small number of cookies to operate the site and to understand which pages people find useful. See our Cookie Policy for the full list and how to manage them.
9. Children
The practice is not directed to children under 16. We do not knowingly collect personal information from children. If you believe we have, write to us and we will delete it.
10. International transfers
Niji Labs LLC is based in the United States. If you are in the EEA, UK, or another jurisdiction with data-localisation requirements, your information will be transferred to and processed in the United States, subject to appropriate safeguards (including Standard Contractual Clauses where applicable).
11. Changes
We may update this Policy from time to time. When we do, we will revise the “Effective” date at the top and, where the change is material, we will notify you by email or by a prominent notice on the website.
12. Contact
Questions, requests, or complaints:
Niji Labs LLC
Attention: Privacy
Scottsdale, Arizona, United States
privacy@thedecidedorg.com