Privacy Policy
Last updated: 10/05/2026
1. About this policy
This Privacy Policy explains how Montero Labs, DBA Caroline Jones ("Company," "we," "us," or "our"), collects, uses, and protects your personal data when you use this website, complete The Bridge Map, or enquire about The Bridge Programme or speaking services.
We are based in Ireland and comply with the EU General Data Protection Regulation (GDPR) and Irish data protection law.
2. What data we collect
When you browse the Site, we collect standard analytics data, such as pages visited and general usage patterns, to understand how the Site is used and to improve it.
When you take The Bridge Map, we collect your responses to the screening questions, along with your email address if you choose to receive your results. Because these responses relate to stress, emotional wellbeing, and related experiences, this is treated as special category data under GDPR, and we ask for your explicit consent before you begin.
When you enquire about coaching, consultancy, or speaking, we collect the contact and event details you choose to share with us.
When you sign up for the free class or our mailing list, we collect your name and email address.
3. Why we collect it
We use your data to:
- Provide your Bridge Map results and any follow-up you request
- Respond to enquiries about coaching, consultancy, or speaking
- Send the free class or newsletter content you've signed up for
- Understand and improve how the Site is used
Where we process special category data (your Bridge Map responses), we rely on your explicit, separate consent, which you can withdraw at any time.
4. How your Bridge Map results are generated
Your responses are scored against the published methodology of validated clinical instruments to produce your results. Your results are for your own understanding and are not stored or treated as a clinical or medical record.
5. Who we share your data with
We use a small number of trusted third-party tools to run the Site and deliver our Services, including hosting, scheduling, and email providers. We don't sell your personal data, and we only share it with these providers as needed to operate the Services, under arrangements that require them to protect your data appropriately.
Some providers may process data outside the EU/EEA. Where that's the case, appropriate safeguards are used to protect your data in line with GDPR requirements.
6. How long we keep your data
We keep personal data only for as long as needed for the purpose it was collected, or as required by law. You can ask us to delete your data at any time, as set out in Section 7.
7. Your rights
Under GDPR, you have the right to:
- Access the personal data we hold about you
- Correct inaccurate data
- Delete your data, including Bridge Map responses and results
- Restrict or object to certain processing
- Withdraw consent at any time, without affecting processing already carried out
- Data portability, where applicable
- Complain to the Irish Data Protection Commission (DPC) if you believe your data has been mishandled: dataprotection.ie
To exercise any of these rights, please use the contact details provided elsewhere on this Site.
8. Security
We take reasonable technical and organisational measures to protect your data, with particular care given to the sensitivity of Bridge Map responses.
10. Children's privacy
The Site and Services are not intended for anyone under 18. We do not knowingly collect data from minors.
11. Changes to this policy
We may update this Privacy Policy from time to time. The date at the top reflects the most recent version.
12. Contact
Questions about this policy, or requests relating to your data, can be sent via our enquiry form.