We use your personal information for the following purposes:
Service Delivery
Lead Generation Services: Creating and managing lead recovery campaigns
AI System Training: Customizing AI responses and behavior for your business
Communication: Sending service-related emails, SMS, and making calls
Account Management: Managing your account, preferences, and settings
Customer Support: Providing technical support and answering questions
Marketing & Business Development
Lead Nurturing: Following up on your interest in our services
Marketing Communications: Sending promotional emails and SMS
Sales Calls: Discussing how we can help your business
Market Research: Understanding industry trends and customer needs
Product Improvement: Enhancing our services based on usage data
Legal & Compliance
Legal Compliance: Meeting regulatory requirements and legal obligations
Contract Enforcement: Enforcing our terms of service and agreements
Fraud Prevention: Detecting and preventing fraudulent activities
Safety & Security: Protecting our systems and users
3. Information Sharing & Third Parties
We share your information only with trusted third-party service providers that help us operate our business:
Essential Service Providers
GoHighLevel: Customer relationship management and automation
Twilio: SMS messaging and voice call services
Mailgun: Email delivery and marketing services
Stripe/Square/PayPal: Payment processing
Google Analytics: Website analytics and performance tracking
Google Workspace: Business email and document management
Marketing & Analytics Partners
Meta (Facebook) Ads: Advertising effectiveness and audience building
Google Ads: Advertising performance and conversion tracking
TikTok Pixel: Advertising analytics and optimization
LinkedIn Marketing: B2B advertising and lead generation
All service providers are contractually obligated to protect your information and use it only for the specific services they provide to us.
Legal Disclosures
We may disclose your information when required by law, court order, or to protect our rights and safety.
4. Cookies & Tracking Technologies
Our website uses cookies and similar tracking technologies to improve your experience and understand how you interact with our services.
What Are Cookies?
Cookies are small text files stored on your device when you visit our website. They help us remember your preferences, analyze site usage, and provide personalized experiences.
Types of Cookies We Use
Strictly Necessary Cookies
These cookies are essential for website operation and cannot be disabled:
Cookie Name
Purpose
Duration
session_id
Maintains user session and security
Session (expires when browser closes)
csrf_token
Protects against security attacks
Session
consent_status
Remembers your cookie preferences
1 year
Analytics Cookies
These cookies help us understand website usage and improve performance:
Service
Cookies Used
Purpose
Duration
Google Analytics
_ga, _ga_*, _gid, _gat
Track website usage and visitor behavior
2 years (_ga), 24 hours (_gid)
Marketing & Advertising Cookies
These cookies track visitors across websites for targeted advertising:
Service
Cookies Used
Purpose
Duration
Meta (Facebook) Pixel
_fbp, fr
Track conversions and build remarketing audiences
90 days
Google Ads
_gcl_au, IDE, test_cookie
Track ad performance and conversions
90 days to 2 years
TikTok Pixel
_ttp, _tt_enable_cookie
Track interactions for advertising optimization
1 year
Managing Cookies
Cookie Preference Center
You can manage your cookie preferences below:
Browser Settings
You can also control cookies through your browser settings:
Chrome: Settings → Privacy and Security → Cookies
Firefox: Settings → Privacy & Security → Cookies
Safari: Preferences → Privacy → Cookies
Edge: Settings → Cookies and site permissions
5. SMS Marketing & Communications
By providing your phone number, you consent to receive SMS messages from us, including service-related communications and marketing messages.
TCPA Compliance Notice
Frequency: Up to 3-5 messages per month
Message & Data Rates: Standard rates may apply from your carrier
Automated System: Messages sent using automatic telephone dialing system
Consent Not Required: Consent is not a condition of purchase
Opt-Out: Reply "STOP" to any message to unsubscribe immediately
Help: Reply "HELP" for customer support information
Time Restrictions: No messages before 8:00 AM or after 9:00 PM in your time zone
Do Not Call Registry Compliance
We honor the National Do Not Call Registry and state-specific do not call lists where applicable. Our AI calling system respects these restrictions and maintains proper opt-out procedures.
6. Data Retention
We retain your personal information for different periods based on the type of data and purpose:
Retention Periods
Active Prospects: Until you request removal or opt out of communications
Current Customers: Duration of business relationship plus 7 years for business records
Former Customers: 7 years after relationship ends for legal and tax purposes
Marketing Contacts: Until you unsubscribe or request deletion
Security Logs: 12 months for security and fraud prevention
Communication Records: 3 years for quality assurance and training
Automatic Deletion
We automatically delete or anonymize data when retention periods expire, unless longer retention is required by law.
7. Your Privacy Rights
You have several rights regarding your personal information:
Universal Rights
Access: Request access to your personal information
Correction: Request correction of inaccurate information
Deletion: Request deletion of your personal information
Portability: Request a copy of your data in portable format
Restriction: Request limitation of processing activities
Objection: Object to certain types of processing
Opt-Out: Opt out of marketing communications
How to Exercise Your Rights
To exercise any of these rights, contact us at [email protected] with "Privacy Request" in the subject line, or use our contact information below.
8. California Privacy Rights (CCPA/CPRA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):
California-Specific Rights
Right to Know: Know what personal information we collect and how it's used
Right to Delete: Request deletion of personal information
Right to Opt-Out: Opt-out of the "sale" or "sharing" of personal information
Right to Correct: Request correction of inaccurate personal information
Right to Limit: Limit the use of sensitive personal information
Right to Non-Discrimination: Not receive discriminatory treatment for exercising privacy rights
California Consumer Disclosures
Sale of Personal Information: We do not sell personal information as traditionally defined. However, sharing data with advertising partners may be considered "selling" under CCPA.
Sensitive Personal Information: We may collect precise geolocation, account login information, and communication contents. This data is used only for disclosed business purposes.
California Opt-Out Rights
To opt out of the "sale" or "sharing" of personal information:
Email us at [email protected] with "CCPA Opt-Out" in the subject line
Use our cookie preference center to disable marketing cookies
Click "Do Not Sell My Personal Information" link (if available on homepage)
9. EU Privacy Rights (GDPR)
If you are in the European Union, you have rights under the General Data Protection Regulation (GDPR):
Legal Basis for Processing
Consent: For marketing communications and optional cookies
Legitimate Interest: For essential cookies and business operations
Contract Performance: For providing requested services
Legal Obligation: For compliance with applicable laws
GDPR Rights
Right of Access: Obtain confirmation of processing and copy of data
Right to Rectification: Correct inaccurate personal data
Right to Erasure: Request deletion ("right to be forgotten")
Right to Restrict Processing: Limit how we use your data
Right to Data Portability: Receive data in structured format
Right to Object: Object to processing based on legitimate interests
Right to Withdraw Consent: Withdraw consent at any time
EU Representative
For EU-related privacy matters, you can contact our EU representative or use our standard contact information below.
10. Data Security & Breach Notification
We implement comprehensive security measures to protect your personal information:
Security Measures
Encryption: Data encrypted in transit (TLS/SSL) and at rest (AES-256)
Access Controls: Role-based access with multi-factor authentication
Regular Audits: Quarterly security assessments and penetration testing
Employee Training: Regular privacy and security training for all staff
Vendor Management: Due diligence and contractual protections for all vendors
Incident Response: Documented procedures for security incidents
Data Minimization: Collect and retain only necessary information
Backup Security: Encrypted backups with restricted access
Data Breach Notification
In the unlikely event of a data breach affecting your personal information:
Notification Timeline: We will notify you within 72 hours of discovery
Notification Method: Email and/or SMS to your registered contact information
Information Provided: Nature of breach, data involved, steps taken, and recommended actions
Regulatory Notification: We will notify relevant authorities as required by law
Support: Dedicated support team to assist affected individuals
Security Limitation: While we implement industry-standard security measures, no internet transmission or electronic storage is 100% secure. We cannot guarantee absolute security of your information.
11. Children's Privacy
Our services are not intended for children under 18 years of age:
Age Restriction: We do not knowingly collect information from anyone under 18
Business Focus: Our services are designed exclusively for adults and business professionals
Parental Discovery: If we learn we have collected information from a child under 18, we will delete it immediately
Verification: We may request age verification for account creation
12. International Data Transfers
Your information may be transferred to and processed in countries other than your own:
Transfer Locations
Primary Location: United States (where our servers are located)
Service Providers: Various countries where our vendors operate
Cloud Storage: Multiple regions for redundancy and performance
Transfer Safeguards
Standard Contractual Clauses: EU-approved data transfer agreements
Adequacy Decisions: Transfers to countries with adequate protection
Vendor Agreements: Contractual protections with all international vendors
Encryption: All international transfers are encrypted
13. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements:
Change Notification
Material Changes: 30 days advance notice via email
Minor Changes: Updated "Last Updated" date and website posting
New Rights: Notification of any new privacy rights or options
Continued Use: Continued use of services constitutes acceptance of changes
Change History
We maintain a record of significant changes to this policy. Contact us for details about previous versions.
14. Contact Us
For any privacy-related questions, concerns, or requests, please contact us:
Privacy Contact Information
Company: Card Enterprises, LLC
Address: 31805 Temecula Parkway #D7-590, Temecula, CA 92952
Subject Line: "Privacy Request" or "CCPA Request" or "GDPR Request"
Phone: Available upon request for privacy matters
Response Time
We aim to respond to all privacy requests within 30 days (or sooner as required by applicable law).
Identity Verification
To protect your privacy, we may need to verify your identity before fulfilling certain requests.
Supervisory Authority
If you believe we have not adequately addressed your privacy concerns, you have the right to lodge a complaint with your local data protection authority or:
EU: Your local Data Protection Authority
California: California Attorney General's Office
Other US States: Your state's consumer protection agency