Privacy Policy

Effective Date: 02/06/2025
Last Updated: 03/30/2025

CorpifyInc ("Company," "we," "our," or "us") is committed to safeguarding the privacy and security of your personal data. This Privacy Policy outlines how we collect, use, store, and disclose your information in compliance with all applicable U.S. federal and state regulations (including CCPA/CPRA, VCDPA, CPA, CTDPA, UCPA, COPPA, the FTC Act, CAN-SPAM), and relevant international laws such as the General Data Protection Regulation (GDPR). We also adhere to best practices for payment security, including the Payment Card Industry Data Security Standard (PCI DSS).

By using our services, you acknowledge and agree to the terms in this Privacy Policy. If you do not agree, please refrain from using our services.

Definitions

For the purposes of this Privacy Policy, the following definitions apply:

  • Personal Data: Any information relating to an identified or identifiable natural person.
  • Processing: Any operation or set of operations performed on personal data, whether or not by automated means.
  • Controller: The entity that determines the purposes and means of processing personal data.
  • Processor: The entity that processes personal data on behalf of the controller.

1. Legal Basis for Data Collection

We collect and process your personal data only when legally justified, including:

  • Performance of a contract – When processing is necessary to fulfill contractual obligations.
  • Legitimate interest – When processing is required for business purposes without overriding your rights and freedoms.
  • Legal compliance – When required to collect or retain data under applicable laws or regulations.
  • Consent – When you voluntarily agree to data processing, which you may withdraw at any time as described in this Policy.

2. Information We Collect

We collect the following types of information:

2.1 Personally Identifiable Information (PII)

  • Full name
  • Email address
  • Contact information (e.g., phone number, mailing address)
  • Payment details (processed through third-party providers in compliance with PCI DSS).
    Note: We do not store full payment card numbers or CVV codes on our own servers.

2.2 Technical & Usage Data

  • IP address
  • Device type and operating system
  • Browser version
  • Referring website or service
  • Website interaction data (e.g., pages visited, session duration)

2.3 Cookies & Tracking Technologies

We use cookies and similar technologies for:

  • User authentication
  • Site security and fraud prevention
  • Performance analytics (e.g., Google Analytics)
  • Marketing and advertisement services (e.g., Google Ads, Facebook Pixel)

For more details, please refer to our Cookie Policy. You may also configure your browser to reject cookies or to alert you when cookies are being sent.

2.4 Prohibition on Sensitive Data

We do not intentionally collect or process sensitive categories of personal data (e.g., health information, biometric data, racial or ethnic origin, religious or philosophical beliefs, etc.). Please do not submit such information via our Services. If we learn that we have inadvertently collected such data, we will delete it promptly.

3. Purposes of Data Processing

We use your information for:

  • Service provision: Processing transactions, handling inquiries, and delivering customer support.
  • Security & fraud prevention: Detecting, preventing, and responding to potential cyber threats or illegal activities.
  • Legal compliance: Fulfilling legal and regulatory obligations (tax, accounting, record-keeping).
  • Marketing & analytics: Enhancing user experience and improving our products, subject to your opt-out preferences.
  • Payment processing: Ensuring secure processing of payment information through trusted third-party providers compliant with PCI DSS.

We do not engage in automated decision-making that has legal or similarly significant effects on you without your explicit consent.

4. Disclosure of Information

We do not sell, rent, or trade personal data for profit. However, we may share data in these scenarios:

4.1 Third-Party Service Providers

We work with trusted service providers who assist with:

  • Payment processing (e.g., Stripe, PayPal)
  • Cloud hosting & security infrastructure
  • Customer support solutions
  • Analytics & performance monitoring (e.g., Google Analytics, other third-party tracking tools)
  • Email marketing & communication (e.g., Mailchimp or similar)
  • Advertising & remarketing services (e.g., Google Ads, Facebook)

All providers operate under contractual obligations and comply with relevant data protection laws.

4.2 Legal & Regulatory Disclosures

We may disclose personal data:

  • To comply with legal obligations (e.g., tax reporting, audits).
  • In response to lawful requests from authorities, including subpoenas or court orders.
  • To prevent fraud, security threats, or imminent harm to any individual or to protect our legal rights.

4.3 Corporate Transactions

In case of mergers, acquisitions, or asset sales, data may be transferred to the acquiring entity under appropriate safeguards. We will notify you if your data becomes subject to a different Privacy Policy.

5. Data Retention Policy

We retain personal data as long as necessary to meet the following obligations:

  • Account-related data: Held while the account remains active.
  • Payment records: Retained to satisfy financial and tax regulations.
  • Marketing data: Retained until you opt out or withdraw consent.

Server logs containing technical data (such as IP addresses, browser information) are retained only as long as needed for security, typically no longer than 12 months, unless required by law.

After the retention period, data is securely deleted, anonymized, or pseudonymized where appropriate.

6. International Data Transfers

We may transfer data to countries outside your jurisdiction. When we do, we ensure:

  • Adequate contractual protections, such as Standard Contractual Clauses (SCCs) for EU data transfers.
  • Encryption & strict access controls to maintain confidentiality and security.

By using our services, you consent to these data transfers where necessary for our business operations.

7. Your Rights Under Data Protection Laws

Depending on your jurisdiction (e.g., California, EU/EEA, Virginia, Colorado, Connecticut, Utah, etc.), you may have the following rights:

  • Right to Access – Request a copy of your data.
  • Right to Rectification – Correct inaccurate data.
  • Right to Deletion – Request removal of your data.
  • Right to Restrict Processing – Limit how your data is used.
  • Right to Data Portability – Transfer your data to another provider.
  • Right to Object – Oppose data processing, including for marketing.
  • Right to Withdraw Consent – You may withdraw your consent at any time by contacting [email protected].
  • Right to Opt-Out of Sale – Although we do not sell personal data, you can still contact us if you wish to formally opt out of any future sales should our practices ever change.

If you are located in the EU/EEA, you also have the right to lodge a complaint with your local supervisory authority if you believe we are processing your personal data unlawfully.

We typically respond to rights requests within 30 days. In more complex scenarios, this may be extended up to 60 days with prior notice.

To exercise your rights, contact [email protected].

8. Data Security Measures

We employ industry-standard security practices:

  • SSL/TLS encryption to secure data in transit.
  • Encryption at rest on our servers where feasible.
  • Strict access controls limiting sensitive data access to authorized personnel.
  • Regular security audits & penetration testing to identify and fix vulnerabilities.
  • PCI DSS compliance when handling payment information via our third-party payment partners.
  • Data anonymization/pseudonymization where possible to reduce privacy risks.
  • Incident response program to handle data breaches, including user notification as required by law.

While we strive to protect your data, no system is 100% secure. We advise users to:

  • Use strong, unique passwords.
  • Enable two-factor authentication (2FA).
  • Be cautious of phishing attempts.

9. Children’s Privacy

We comply with the Children’s Online Privacy Protection Act (COPPA) and do not knowingly collect personal data from children under 13 (or under 16 if required by local law). If we learn that we have inadvertently obtained data from a minor, we will delete it promptly.

If you believe we have collected a minor’s data, please contact [email protected].

10. Third-Party Links & Integrations

Our website may contain links to third-party services (e.g., social media platforms, payment gateways, advertising networks). We do not control these external sites and are not responsible for their privacy practices or content.

We encourage you to review third-party privacy policies before sharing any personal data.

11. “Do Not Track” Signals

Some browsers transmit "Do Not Track" (DNT) signals. We currently do not respond to DNT signals because there is no industry-standard approach to interpreting them. We continuously monitor developments around DNT and may update our practices once a standard is established.

12. Updates to This Policy

We may update this Privacy Policy to reflect:

  • Legal or regulatory changes
  • Security enhancements
  • Adjustments to data collection or usage

Significant updates will be communicated via email or prominent notices on our website. Continued use of our services following any updates constitutes acceptance of the revised Policy.

13. Contact Information & Compliance Requests

For privacy-related inquiries or compliance requests, please contact us:

📧 Email: [email protected]
🌍 Website: www.CorpifyInc.com

We are committed to addressing your privacy concerns and ensuring transparent data practices.

14. Data Breach Notification

In the event of a data breach that compromises your personal data, we will notify you and any applicable regulators as required by law. Notifications may include:

  • Description of the breach
  • Type of data involved
  • Steps taken to mitigate harm
  • Contact details for further information

15. Additional State-Specific Privacy Rights

Residents of certain U.S. states (e.g., California, Virginia, Colorado, Connecticut, Utah) may have enhanced privacy rights. If you reside in one of these states, you can:

  • Request specific disclosures about your data (including categories of personal information collected, sources of that information, and any sharing practices).
  • Opt out of “sale” or “sharing” of personal data if applicable under your state’s law.
  • Appeal any decision we make in relation to your rights request if your request is denied.

For more details on how to exercise these rights, please email us at [email protected].

16. Legal Disclaimer & Liability

This Privacy Policy does not constitute legal advice. It is designed to align with GDPR, CCPA/CPRA, COPPA, and other applicable laws, but you must ensure your own compliance where you reside or operate. For specialized legal concerns, consult a licensed attorney.

Security & Liability:
While we employ safeguards to protect your data, no system is completely secure. To the fullest extent permissible by law, we disclaim liability for unauthorized access or use of your personal information resulting from factors beyond our control. You agree to use our services at your own risk and to indemnify and hold us harmless in connection with any breach or security incident affecting your data under circumstances beyond our reasonable control. We also disclaim liability for any acts or omissions by third-party providers who are governed by their own policies and applicable laws.

International Users:
If you access or use our services outside of the United States, you are responsible for complying with any local laws and regulations. We make no representations that our Privacy Policy fully addresses all foreign legal requirements, and we disclaim liability for any non-compliance when users access our services from outside the U.S. or EU/EEA.

To the extent that certain jurisdictions do not allow the exclusion of liability for gross negligence or willful misconduct, our liability in those jurisdictions shall be limited to the fullest extent permitted by applicable law.

CorpifyInc Logo

© CorpifyInc.com. All rights reserved.

HomeLLCCorporationNonprofitDBASole ProprietorshipCompare businessesServicesBlogSign in
Privacy PolicyTerms of UseCookie Policy