Privacy Policy

Last updated: January 28, 2026

This Privacy Policy describes our policies and procedures on the collection, use, and disclosure of Your information when You use our Services and tells You about Your privacy rights and how the law protects You.

We respect Your privacy and are committed to protecting Your personal data. This Privacy Policy will inform You about how we handle Your personal data, Your privacy rights, and how the law protects You when You visit our Website or engage us for Consulting Services.

By using our Services, You agree to the collection and use of information in accordance with this Privacy Policy. If You do not agree with this Privacy Policy, please do not use our Services.

Interpretation and Definitions

Interpretation

The words of which the initial letter is capitalized have meanings defined under the following conditions. The following definitions shall have the same meaning regardless of whether they appear in singular or in plural.

Definitions

For the purposes of this Privacy Policy:

Account means a unique account created for You to access certain features of our Services.
Axeleros or Company (referred to as either “the Company”, “We”, “Us” or “Our” in this Policy) refers to Axeleros, a global consulting firm specializing in preclinical development and regulatory strategy.
Client means an individual or organization that engages Axeleros for Consulting Services.
Consulting Services refers to the professional advisory services provided by Axeleros in the field of preclinical development and regulatory strategy.
Cookies are small files placed on Your device by a website, containing details of Your browsing history on that website.
Data Controller means the entity that determines the purposes and means of processing Personal Data. For the purposes of this Privacy Policy, Axeleros is the Data Controller.
Data Processor means any natural or legal person who processes data on behalf of the Data Controller.
Device means any device that can access the Services such as a computer, cellphone, or digital tablet.
GDPR means the General Data Protection Regulation (EU) 2016/679.
Personal Data is any information that relates to an identified or identifiable individual. For residents of the EU, this includes any information relating to You such as a name, identification number, location data, online identifier, or factors specific to Your physical, physiological, genetic, mental, economic, cultural, or social identity.
Regulatory Data means information related to regulatory submissions, strategies, or interactions with Regulatory Authorities that may be shared or discussed during Consulting Services engagements.
Service Provider means any natural or legal person who processes data on behalf of the Company to facilitate the Services, provide the Services on behalf of the Company, perform services related to the Services, or assist the Company in analyzing how the Services are used.
Services refers to the Consulting Services and the Website collectively.
Usage Data refers to data collected automatically, either generated by use of the Services or from the Services infrastructure itself (for example, duration of a page visit, IP address, browser type).
Website refers to Axeleros’ website, accessible from https://axeleros.com
You means the individual accessing or using the Services, or the company or other legal entity on behalf of which such individual is accessing or using the Services, as applicable.

Collecting and Using Your Personal Data

Types of Data Collected

We collect different types of information depending on how You interact with our Services:

Personal Data

When You use our Website or engage our Consulting Services, we may ask You to provide certain personally identifiable information that can be used to contact or identify You. Personal Data may include, but is not limited to:

Contact Information: Name, email address, phone number, business address
Professional Information: Job title, company name, professional credentials, areas of expertise
Business Information: Company details, industry sector, regulatory jurisdiction of interest
Communication Data: Information contained in emails, contact forms, and other communications with us
Engagement Data: Details about consulting engagements, project requirements, regulatory questions
Financial Information: Billing address, payment method details (processed securely through third-party payment processors)

When You engage our Consulting Services, we may receive or collect:

Scientific and Technical Data: Information about Your research, development programs, study designs, and technical questions
Regulatory Information: Details about regulatory strategies, submissions, interactions with Regulatory Authorities
Confidential Business Information: Strategic plans, timelines, budgets, and other business-sensitive information related to Your projects

Important Note: All project-related information is subject to strict confidentiality obligations as outlined in our Terms and Conditions and engagement agreements. This information is processed solely for the purpose of providing Consulting Services to You.

Usage Data

Usage Data is collected automatically when using the Website.

Usage Data may include information such as Your Device’s Internet Protocol address (IP address), browser type, browser version, the pages of our Website that You visit, the time and date of Your visit, the time spent on those pages, unique device identifiers and other diagnostic data.

When You access the Website through a mobile device, we may collect certain information automatically, including but not limited to: the type of mobile device You use, Your mobile device unique ID, the IP address of Your mobile device, Your mobile operating system, the type of mobile Internet browser You use, unique device identifiers and other diagnostic data.

We may also collect information that Your browser sends whenever You visit our Website or when You access the Website through a mobile device.

Tracking Technologies and Cookies

We use Cookies and similar tracking technologies to track activity on our Website and store certain information. Tracking technologies used include beacons, tags, and scripts to collect and track information and to improve and analyze our Services.

The technologies we use may include:

Cookies or Browser Cookies: A cookie is a small file placed on Your Device. You can instruct Your browser to refuse all Cookies or to indicate when a Cookie is being sent. However, if You do not accept Cookies, You may not be able to use some features of our Website. Unless you have adjusted Your browser setting so that it will refuse Cookies, our Website may use Cookies.
Web Beacons: Certain sections of our Website and our emails may contain small electronic files known as web beacons (also referred to as clear gifs, pixel tags, and single-pixel gifs) that permit us, for example, to count users who have visited those pages or opened an email and for other related website statistics (for example, recording the popularity of a certain section and verifying system and server integrity).
Analytics Tools: We may use third-party analytics services (such as Google Analytics) to help us understand how visitors use our Website. These services may use cookies and similar technologies to collect information about Your use of the Website and other websites.

Types of Cookies We Use

Cookies can be “Persistent” or “Session” Cookies. Persistent Cookies remain on Your device when You go offline, while Session Cookies are deleted as soon as You close Your web browser.

We use both Session and Persistent Cookies for the purposes set out below:

Necessary / Essential Cookies
- Type: Session Cookies
- Administered by: Us
- Purpose: These Cookies are essential to provide You with services available through the Website and to enable You to use some of its features. They help to authenticate users and prevent fraudulent use of user accounts. Without these Cookies, the services that You have asked for cannot be provided.
Cookies Policy / Notice Acceptance Cookies
- Type: Persistent Cookies
- Administered by: Us
- Purpose: These Cookies identify if users have accepted the use of cookies on the Website.
Functionality Cookies
- Type: Persistent Cookies
- Administered by: Us
- Purpose: These Cookies allow us to remember choices You make when You use the Website, such as remembering your login details or language preference. The purpose of these Cookies is to provide You with a more personal experience and to avoid You having to re-enter your preferences every time You use the Website.
Analytics Cookies
- Type: Persistent Cookies
- Administered by: Us and Third Parties
- Purpose: These Cookies help us understand how visitors interact with our Website by collecting and reporting information anonymously. This helps us improve the Website and our Services.

Most web browsers are set to accept cookies by default. If You prefer, You can usually choose to set Your browser to remove or reject cookies. Please note that if You choose to remove or reject cookies, this could affect the availability and functionality of our Website.

For more information about managing cookies, please visit Your browser’s help documentation.

Use of Your Personal Data

If You are located in the European Economic Area (EEA), our legal basis for collecting and using Personal Data depends on the data we collect and the specific context in which we collect it. We may process Your Personal Data because:

We need to perform a contract with You (e.g., to provide Consulting Services)
You have given us permission to do so
The processing is in our legitimate interests and not overridden by Your rights
To comply with legal obligations

Purposes of Processing

Axeleros may use Personal Data for the following purposes:

To provide and maintain our Services: Including monitoring the usage of our Website and delivering Consulting Services as agreed in engagement letters or statements of work.
To manage Your Account: To manage Your registration as a user of the Services. The Personal Data You provide can give You access to different functionalities of the Services available to You as a registered user.
For the performance of consulting engagements: To provide professional advisory services in preclinical development and regulatory strategy, including developing strategies, preparing documentation, coordinating with third-party service providers, and delivering recommendations and reports.
To contact You: To contact You by email, telephone calls, or other equivalent forms of electronic communication regarding Your consulting engagement, updates to Services, regulatory developments relevant to Your projects, or informative communications related to the Services You have engaged, including security updates when necessary or reasonable for their implementation.
To provide You with industry insights: With Your consent, to provide You with news, scientific updates, regulatory changes, and general information about services and events which may be of professional interest to You. You may opt out of receiving such information at any time.
To manage Your requests: To attend and manage Your inquiries, questions, and requests to Us.
For regulatory compliance: To comply with applicable laws, regulations, legal processes, and governmental requests, including those related to pharmaceutical development, data protection, and export controls.
For business transfers: We may use Your information to evaluate or conduct a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of our assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which Personal Data held by Us is among the assets transferred.
To protect our legal rights: To establish, exercise, or defend legal claims, protect the rights, property, or safety of Axeleros, our clients, employees, or others.
For business analytics: To analyze data, identify usage trends, determine the effectiveness of our Services, and evaluate and improve our Services, marketing, and Your experience. This data is typically aggregated and anonymized.
To fulfill confidentiality obligations: To ensure proper handling and protection of confidential information related to Your consulting engagements.

We may share Your Personal Data in the following situations:

With Service Providers: We may share Your Personal Data with carefully selected Service Providers who assist us in operating our Website, conducting our business, or providing Services to You (such as hosting providers, email services, payment processors, analytics providers). These Service Providers have access to Your Personal Data only to perform specific tasks on our behalf and are obligated not to disclose or use it for any other purpose.
With Third-party Professional Service Providers: When necessary for Your consulting engagement, we may share relevant information with Contract Research Organizations (CROs), laboratories, testing facilities, or other professional service providers. Such sharing is done only with Your prior consent or as necessary to deliver the Services You have engaged.
With Regulatory Authorities: If required by law or in response to valid legal processes, we may share Your Personal Data with Regulatory Authorities or other governmental bodies.
For business transfers: We may share or transfer Your Personal Data in connection with, or during negotiations of, any merger, sale of Company assets, financing, or acquisition of all or a portion of our business to another company. In such cases, we will require the receiving party to honor this Privacy Policy.
With Affiliates: We may share Your information with our affiliates, in which case we will require those affiliates to honor this Privacy Policy. Affiliates include our parent company and any other subsidiaries, joint venture partners or other companies that we control or that are under common control with Us.
With professional advisors: We may share Your information with our lawyers, accountants, auditors, and other professional advisors who are bound by confidentiality obligations.
With Your consent: We may disclose Your Personal Data for any other purpose with Your explicit consent.

Important Note on Confidentiality

Any project-related information, Regulatory Data, or other confidential information shared during consulting engagements is subject to strict confidentiality obligations as outlined in our Terms and Conditions and engagement agreements. We implement rigorous security measures to protect such information and limit access to authorized personnel only.

Retention of Your Personal Data

Axeleros will retain Your Personal Data only for as long as necessary for the purposes set out in this Privacy Policy and to comply with our legal and regulatory obligations.

Retention Periods

Website Usage Data: Generally retained for 12-24 months for analytics and Website improvement purposes.
Contact Information: Retained for as long as You maintain an account or business relationship with us, plus a reasonable period thereafter to maintain business records.
Consulting Engagement Data: Retained for the duration of the engagement plus a minimum of 7 years following completion, or longer if required by:
- Legal or regulatory obligations
- Industry standards for professional services
- Contractual obligations with You or third parties
- Legitimate business purposes (such as defense of legal claims)
Financial Records: Retained in accordance with applicable tax and accounting regulations, typically 7-10 years.
Confidential and Regulatory Information: Retained as specified in engagement agreements or as required by applicable regulations, typically 7-15 years depending on the nature of the information and regulatory requirements.

Secure Disposal

When Personal Data is no longer needed, we will securely delete or anonymize it in accordance with our data retention and disposal procedures.

Transfer of Your Personal Data

International Transfers

Your information, including Personal Data, may be processed at Axeleros’ operating offices and in other locations where parties involved in the processing are located. This means that Your information may be transferred to — and maintained on — computers located outside of Your state, province, country, or other governmental jurisdiction where data protection laws may differ from those in Your jurisdiction.

If You are located in the European Economic Area (EEA), United Kingdom, or Switzerland, we will ensure that transfers of Personal Data to a third country or international organization are subject to appropriate safeguards as required by GDPR and other applicable data protection laws.

Safeguards for International Transfers

When transferring Personal Data internationally, we implement appropriate safeguards such as:

Standard Contractual Clauses approved by the European Commission
Adequacy decisions by the European Commission
Other legally recognized transfer mechanisms
Binding Corporate Rules where applicable

Your consent to this Privacy Policy followed by Your submission of information represents Your agreement to such transfers.

Security During Transfer

We will take all steps reasonably necessary to ensure that Your data is treated securely and in accordance with this Privacy Policy. No transfer of Your Personal Data will take place to an organization or country unless there are adequate controls in place, including the security of Your data and other Personal Data.

Your Data Protection Rights

You have certain rights regarding Your Personal Data. The availability and scope of these rights may depend on Your location and applicable laws.

General Rights

Depending on Your location, You may have the following rights:

Right to Access: You have the right to request copies of Your Personal Data that we hold.
Right to Rectification: You have the right to request that we correct any Personal Data You believe is inaccurate or complete information You believe is incomplete.
Right to Erasure (Right to be Forgotten): You have the right to request that we erase Your Personal Data, under certain conditions.
Right to Restrict Processing: You have the right to request that we restrict the processing of Your Personal Data, under certain conditions.
Right to Object to Processing: You have the right to object to our processing of Your Personal Data, under certain conditions.
Right to Data Portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to You, under certain conditions.
Right to Withdraw Consent: If we are relying on Your consent to process Your Personal Data, You have the right to withdraw Your consent at any time. This will not affect the lawfulness of processing based on consent before its withdrawal.

How to Exercise Your Rights

You may exercise Your rights by:

Logging into Your Account (if applicable) and updating Your information in the account settings
Contacting us directly at: contact@axeleros.com
Sending a written request to our contact address

We will respond to Your request within one month of receipt. If Your request is particularly complex or You have made multiple requests, we may extend this period by two further months, in which case we will inform You.

Limitations on Rights

Please note that we may need to retain certain information when we have a legal obligation or lawful basis to do so, including:

Compliance with legal or regulatory obligations
Establishment, exercise, or defense of legal claims
Fulfillment of contractual obligations
Protection of the rights of other individuals
Professional record-keeping requirements

For EEA, UK, and Swiss Residents

If You are located in the European Economic Area (EEA), United Kingdom, or Switzerland, You have additional rights under the GDPR and equivalent laws:

Right to Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority if You believe our processing of Your Personal Data violates applicable law. A list of supervisory authorities is available at: https://edpb.europa.eu/about-edpb/board/members_en
Automated Decision-Making: You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning You or similarly significantly affects You. Axeleros does not use automated decision-making or profiling that significantly affects You.

For California Residents (CCPA)

If You are a California resident, You have specific rights under the California Consumer Privacy Act (CCPA):

Right to know what Personal Data is being collected
Right to know whether Personal Data is sold or disclosed and to whom
Right to say no to the sale of Personal Data
Right to access Personal Data
Right to equal service and price

We do not sell Your Personal Data to third parties.

Disclosure of Your Personal Data

Business Transactions

If Axeleros is involved in a merger, acquisition, asset sale, reorganization, or bankruptcy proceeding, Your Personal Data may be transferred as part of that transaction. We will provide notice before Your Personal Data is transferred and becomes subject to a different Privacy Policy. We will require the receiving party to maintain the confidentiality of Your Personal Data and use it only for the purposes for which it was originally collected.

Law Enforcement and Legal Obligations

Under certain circumstances, Axeleros may be required to disclose Your Personal Data if required to do so by law or in response to valid requests by public authorities, including:

Courts or judicial authorities
Government agencies
Regulatory Authorities (FDA, EMA, PMDA, NMPA, etc.) when required for regulatory compliance
Law enforcement agencies

Other Legal Requirements

Axeleros may disclose Your Personal Data in good faith belief that such action is necessary to:

Comply with a legal obligation or legal process
Respond to lawful requests from public authorities, including national security or law enforcement requirements
Protect and defend the rights or property of Axeleros
Prevent or investigate possible wrongdoing in connection with the Services
Protect the personal safety of users of the Services, our employees, or the public
Protect against legal liability
Enforce our Terms and Conditions or other agreements
Comply with regulatory requirements in the pharmaceutical, biotechnology, and medical device industries

Confidential Information Protection

We maintain strict procedures to protect confidential information related to consulting engagements. Any disclosure of Personal Data or project-related information for legal or regulatory purposes will be limited to what is legally required and will be conducted in a manner that seeks to maintain maximum confidentiality protection.

Security of Your Personal Data

The security of Your Personal Data is of paramount importance to Axeleros. We recognize that our business involves handling sensitive scientific, regulatory, and business information, and we take our security responsibilities seriously.

Security Measures

We implement appropriate technical and organizational measures to protect Your Personal Data against unauthorized or unlawful processing, accidental loss, destruction, or damage, including:

Encryption: We use encryption technology (including SSL/TLS) to protect data in transit. Sensitive data at rest is also encrypted.
Access Controls: We implement strict access controls to limit access to Personal Data to authorized personnel only on a need-to-know basis. All personnel with access to Personal Data are bound by confidentiality obligations.
Network Security: We use firewalls, intrusion detection systems, and other security technologies to protect our networks and systems.
Secure Communication: We use secure communication channels for sharing confidential information with clients and partners.
Regular Security Assessments: We conduct regular security audits and vulnerability assessments to identify and address potential security risks.
Data Backup: We maintain regular backups of data to prevent loss and ensure business continuity.
Incident Response: We have established procedures for detecting, responding to, and recovering from security incidents.
Third-Party Security: We require our Service Providers to implement appropriate security measures to protect Personal Data.
Physical Security: Our offices and data centers have appropriate physical security measures to prevent unauthorized access.
Employee Training: Our employees receive regular training on data protection and information security best practices.

Industry Standards

We strive to comply with industry-standard security frameworks and best practices relevant to our sector, including considerations for handling scientific and regulatory data in the pharmaceutical and biotechnology industries.

Limitations

While we strive to use commercially acceptable means to protect Your Personal Data, please remember that no method of transmission over the Internet or method of electronic storage is 100% secure. We cannot guarantee absolute security, but we are committed to using reasonable and appropriate measures to protect Your information.

Security Incidents

In the event of a data breach that is likely to result in a risk to Your rights and freedoms, we will notify You and, where required, the relevant supervisory authority, in accordance with applicable laws and regulations.

Children’s Privacy

Our Services are not directed to individuals under the age of 18. We do not knowingly collect Personal Data from children under 18. If You are a parent or guardian and You are aware that Your child has provided Us with Personal Data, please contact Us immediately. If We become aware that We have collected Personal Data from a child under 18 without verification of parental consent, We will take steps to remove that information from our servers.

Our Services are designed for and directed to professionals in the pharmaceutical, biotechnology, and life sciences industries.

Links to Other Websites

Our Website may contain links to other websites that are not operated by Us, including:

Regulatory Authority websites (FDA, EMA, PMDA, NMPA, etc.)
Third-party Service Provider websites (CROs, laboratories)
Scientific databases and publications
Professional organizations
Industry resources

If You click on a third-party link, You will be directed to that third party’s website. We strongly advise You to review the Privacy Policy of every website You visit.

We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party websites or services. The inclusion of any link does not imply endorsement by Axeleros of the linked website.

Data Protection Officer

For questions about this Privacy Policy or our data processing practices, You may contact our Data Protection Officer at:

Email: contact@axeleros.com
Subject Line: “Data Protection Inquiry”

Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or for other operational, legal, or regulatory reasons.

Notification of Changes

We will notify You of material changes by:

Posting the new Privacy Policy on this page
Updating the “Last updated” date at the top of this Privacy Policy
Sending an email notification to registered users (if applicable)
Displaying a prominent notice on our Website

For consulting clients, we may also provide direct notice of material changes that affect the processing of Your Personal Data related to ongoing engagements.

Review and Acceptance

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page. Your continued use of the Services after changes become effective constitutes Your acceptance of the revised Privacy Policy.

If You do not agree to the updated Privacy Policy, You should discontinue use of our Services and contact us to discuss Your concerns.

International Privacy Laws

If You are located in the EEA, this Privacy Policy is intended to comply with the General Data Protection Regulation (GDPR). We process Personal Data in accordance with GDPR requirements and principles.

If You are located in the United Kingdom, we comply with the UK GDPR and Data Protection Act 2018.

Swiss Federal Data Protection Act

If You are located in Switzerland, we comply with the Swiss Federal Data Protection Act.

CCPA Compliance (California)

If You are a California resident, additional information about Your rights under the California Consumer Privacy Act (CCPA) is provided in the “Your Data Protection Rights” section above.

Contact Us

If you have any questions about this Privacy Policy, Your Personal Data, or our data processing practices, You can contact us:

By email: contact@axeleros.com
By visiting our contact page: https://axeleros.com/contact
Subject Line for Privacy Inquiries: “Privacy Policy Inquiry”

For matters related to specific consulting engagements and confidential information, please contact Your designated Axeleros project manager or consultant.

Response Time

We aim to respond to all privacy-related inquiries within 30 days. For complex requests or requests that require access to significant amounts of information, we may require additional time, but we will keep You informed of our progress.

Axeleros - Accelerating from Lab to Market

Preclinical Development · Regulatory Strategy · Global Consulting

Last updated: January 28, 2026