Take the assessment
Legal

Privacy Policy

This policy explains how Futurebraining collects, uses, stores, and protects personal data when you use our website, contact us, or complete one of our assessments.

Last updated: April 25, 2026

Who we are

Futurebraining is a trading name operated by its founders as registered self-employed individuals (autónomos) under Spanish law. We provide AI readiness diagnostics, reports, workshops, and related advisory services for individuals, students, and organisations.

For the purposes of the General Data Protection Regulation (GDPR), the data controllers are the individuals operating under the Futurebraining brand. If you have questions about this policy or your data, contact us at info@futurebraining.com.

What data we collect

Depending on how you use the site, we may collect:

  • contact details such as your name, email address, phone number, and organisation
  • survey and assessment responses, including role, education, and readiness-related answers you provide
  • report and payment metadata needed to deliver reports, manage access, and support the service
  • basic technical information needed to secure and operate the website

How we use your data

We use personal data to deliver reports, send assessment links and report emails, respond to enquiries, operate and improve the platform, prevent misuse, and meet legal or contractual obligations. We do not sell your personal data.

Legal basis

Where GDPR applies, we process data on the basis of consent, contract, legitimate interests in operating and improving the service, and legal obligations where relevant.

AI and automated processing

Assessment outputs — including your AI readiness scores, job exposure analysis, and narrative report — are generated using AI-assisted analysis of your survey responses. This means an AI model (Claude, provided by Anthropic) processes the data you submit to produce your results.

This processing is automated, but it does not constitute an automated decision with legal effect. No decision about your employment, eligibility, or rights is made by Futurebraining on the basis of your results. Outputs are indicative only and are intended to support reflection and discussion, not to determine capability or employability. You are always free to disregard, contest, or seek human review of any output.

We also use Firebase (Google) to look up curated role information that is used to improve the relevance of your report. This lookup uses anonymised role-title data from your survey and does not transmit identifiable personal data to Firebase beyond what is technically necessary to authenticate the session.

How long we keep data

We apply the following retention periods:

  • Survey responses and assessment data — retained for up to 24 months from the date of completion, after which they are deleted or anonymised.
  • Payment records — retained for 7 years to meet applicable legal and tax obligations.
  • Contact enquiries — retained for 12 months from the date of enquiry.
  • Marketing communication preferences — retained until you withdraw consent or unsubscribe.

We may retain data longer where required by law or to resolve disputes. You can request deletion of your data at any time by emailing info@futurebraining.com.

Who we share data with

We use the following third-party service providers to operate the platform. Each processes data on our behalf and is subject to its own privacy and security commitments:

  • Cloudflare Pages — website hosting and serverless functions (Pages + Pages Functions). All HTTP requests pass through Cloudflare's infrastructure. Cloudflare Privacy Policy.
  • Firebase / Google — anonymous session authentication and role-data database (Firestore). Used to serve curated role information that improves report quality. Firebase Privacy and Security.
  • Anthropic — AI model provider (Claude). Survey responses are processed by Anthropic's API to generate assessment outputs. Anthropic Privacy Policy.
  • Stripe — payment processing for paid reports. Payment data is handled entirely by Stripe and is not stored by Futurebraining. Stripe Privacy Policy.

We do not sell your personal data to any third party, and we do not use your data for advertising purposes.

Cookies and session storage

Futurebraining does not use advertising cookies, tracking cookies, or analytics scripts. We do not use Google Analytics or any similar tracking technology.

Firebase Authentication stores a temporary anonymous session token in your browser (via IndexedDB) when you visit pages that use the role-data feature. This token is used solely to authenticate requests to our role database and is not linked to your identity or used for tracking. It expires automatically at the end of the session.

Stripe may store cookies for fraud prevention purposes when the payment screen is displayed. These are strictly necessary for the payment process and are governed by Stripe's Privacy Policy.

No consent banner is displayed because no non-essential cookies or tracking identifiers are set by Futurebraining.

Your rights

Where GDPR applies, you have the following rights regarding your personal data:

  • Access — request a copy of the personal data we hold about you.
  • Correction — ask us to correct inaccurate or incomplete data.
  • Deletion — ask us to delete your data (subject to legal retention obligations).
  • Restriction — ask us to limit how we process your data in certain circumstances.
  • Objection — object to processing based on legitimate interests.
  • Portability — receive your data in a structured, machine-readable format where processing is based on consent or contract.
  • Withdraw consent — where processing is based on consent, withdraw it at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, email info@futurebraining.com. We will respond within 30 days.

You also have the right to lodge a complaint with a supervisory authority. As Futurebraining operates under Spanish law, the lead supervisory authority is the Agencia Española de Protección de Datos (AEPD)www.aepd.es. If you are based in another EU/EEA country, you may also contact your local data protection authority.

International transfers

Several of our service providers are based in the United States (Cloudflare, Firebase/Google, Anthropic, Stripe). Transfers of personal data to these providers are made on the basis of Standard Contractual Clauses (SCCs) approved by the European Commission, and/or the EU–US Data Privacy Framework where the provider is certified under it. Each provider maintains its own data protection and security commitments. Links to their privacy documentation are provided in the "Who we share data with" section above.

Contact

If you have questions about privacy, data handling, or a specific assessment/report record, email info@futurebraining.com.

This policy reflects our current data handling practices as of April 2026. It should be reviewed again before broader commercial rollout, institutional procurement, or any significant change in data processing activities. Questions? Email info@futurebraining.com.