Privacy Policy

Last updated: May 26, 2026 · Gonchar Consulting LLC

Overview

Gonchar Consulting LLC ("Gonchar," "we," "us," or "our") provides AI consulting and implementation services to businesses. This Privacy Policy describes how we collect, use, and protect information in connection with our website at goncharconsulting.com and our consulting services.

We take privacy seriously — both yours and your clients'. This policy is intentionally straightforward.

Information We Collect

We collect minimal personal information, only what's necessary to discuss and deliver our services:

• Contact information — name, email address, company name, and any details you share when reaching out via email at igor@goncharconsulting.com. We do not use contact forms, lead capture tools, or marketing automation.
• Basic website analytics — if analytics are enabled, we may collect anonymized page view data (pages visited, referrer, browser type) to understand site performance. We do not use tracking cookies, behavioral targeting, or cross-site tracking.
• Project communications — email correspondence related to scoping, implementation, and ongoing care engagements.

We do not purchase, broker, or sell personal data. We do not build marketing lists.

Client Data Handling

During implementation engagements, we access client business data to build Signal, Atlas, or On-Premise deployments. Here is exactly how we handle it:

• Read-only access during Audit — The AI Growth Audit uses read-only API connections to your existing tools (CRM, ops software, financials). We observe data; we do not modify or export it.
• Implementation access is scoped and temporary — During Signal and Atlas builds, we configure API connections on your behalf. Credentials and access are configured in your environment, not stored on Gonchar systems.
• Your data stays in your environment — We do not copy, export, or retain your business data. All data connections are built to run in your infrastructure.
• No third-party data sharing — We do not share client data with any third parties except as required to deliver the contracted services (e.g., configuring connections to AI API providers you have approved).

AI Provider Privacy — Cloud Deployments (Signal & Atlas)

Signal and Atlas deployments use cloud AI APIs from Anthropic and OpenAI. The following privacy protections apply:

• No model training on API data — Both Anthropic and OpenAI contractually guarantee that data submitted via their API (as opposed to consumer products like ChatGPT or Claude.ai) is not used to train or improve their models. This guarantee is part of their standard API terms of service.
• Data processed in-transit — API requests are processed by the provider to generate a response and are not retained for purposes beyond service delivery, subject to standard data retention policies in their API terms.
• You control the API accounts — All API credentials are configured in your business accounts. Gonchar configures and assists with setup but does not hold master credentials.

For the most current information on AI provider data practices, refer to:

• Anthropic API Privacy Policy: anthropic.com/legal/privacy
• OpenAI API Privacy Policy: openai.com/policies/api-data-usage-policies

On-Premise Deployments

For clients who choose On-Premise deployment, data privacy is complete and absolute:

• The entire AI stack — models, embedding pipeline, query interface, and agent runtime — runs on hardware physically located at your premises.
• No external API calls are made. Local LLMs (Llama 3, Qwen, Mistral) run entirely on hardware you own.
• Data never leaves your premises, technically or contractually.
• The deployment is fully air-gap capable — it can operate with no external network connection.

Data Security

We take reasonable precautions to protect information in our possession:

• Business communications are conducted over encrypted email (TLS in transit).
• We do not store client credentials, API keys, or sensitive business data on Gonchar-owned systems.
• Any project documentation containing client information is stored in access-controlled environments and deleted when no longer needed.

Data Retention

We retain project communications and documentation for the duration of an engagement plus a reasonable period thereafter for legal and business continuity purposes (typically 3 years). Contact information is retained unless you ask us to remove it. We do not retain client business data after project completion.

Your Rights

You may request access to, correction of, or deletion of personal information we hold about you at any time. To make such a request, contact us at igor@goncharconsulting.com.

We will respond to verified requests within 30 days.

Cookies

This website does not use cookies for tracking, advertising, or behavioral profiling. If basic analytics are enabled, they use privacy-preserving methods and do not track individuals across sessions or sites.

Children's Privacy

Our services are directed at businesses and their representatives. We do not knowingly collect personal information from individuals under the age of 18.

Changes to This Policy

We may update this Privacy Policy periodically. Material changes will be reflected in the "Last updated" date at the top of this page. Continued use of our services after changes constitutes acceptance of the updated policy.

Governing Law

This Privacy Policy is governed by the laws of the State of Washington, without regard to its conflict of law provisions.

Contact

For privacy questions, data requests, or concerns:

Gonchar Consulting LLC
igor@goncharconsulting.com