Privacy Policy
Growth & Grace Digital Labs LLC
Growth & Grace Digital Labs LLC ("Company," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website growthandgracedigitallabs.com, use our services, or interact with us in any capacity. This policy is designed for compliance with applicable federal, state, and international privacy regulations through 2035.
By accessing or using our website and services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree, please discontinue use of our website and services immediately.
1. Information We Collect
1.1 Personal Data You Provide
We may collect personal information that you voluntarily provide when you:
- Fill out contact forms, request a consultation, or schedule a strategy call
- Subscribe to our newsletter, download resources, or register for events
- Engage with our AI-powered chatbot
- Enter into a service agreement or contract with us
- Communicate with us via email, phone, or social media
This information may include:
- Full name, email address, phone number, and mailing address
- Company or business name, job title, and industry
- Billing and payment information (processed via secure third-party providers)
- Any information you voluntarily include in messages, form submissions, or communications
1.2 Usage Data & Automatically Collected Information
When you visit our website, we automatically collect certain technical information, including:
- IP address (which may be anonymized), browser type and version, operating system
- Device type, screen resolution, and language preference
- Pages visited, time spent on pages, referring URLs, and click patterns
- Date and time of access, session duration, and navigation paths
1.3 Cookies & Tracking Technologies
We use cookies, pixel tags, web beacons, and similar technologies to collect information about your browsing behavior. See Section 4: Cookie Policy for detailed information about the cookies we use and how to manage them.
1.4 Analytics Data
We use third-party analytics services, including Google Analytics, to understand how visitors interact with our website. These services may collect information such as how often users visit the site, what pages they visit, and what other sites they used prior to visiting our site.
2. How We Use Your Information
We use the information we collect for the following purposes:
2.1 Service Delivery
- To provide, operate, and maintain our digital marketing services
- To process your inquiries, consultation requests, and service agreements
- To manage client accounts and deliver project deliverables
- To communicate with you about your projects, services, and account
2.2 Marketing & Communications
- To send you newsletters, marketing materials, and promotional content (with your consent)
- To provide you with relevant industry updates and educational resources
- To personalize your experience and tailor content to your interests
- To conduct market research and analyze trends to improve our services
2.3 Website Improvement & Analytics
- To monitor and analyze usage patterns and trends on our website
- To improve our website functionality, design, and user experience
- To troubleshoot technical issues and ensure website security
- To develop new features, products, and services
2.4 Legal & Compliance
- To comply with applicable laws, regulations, and legal processes
- To enforce our Terms of Service and other agreements
- To protect the rights, property, and safety of our company, clients, and users
- To detect, prevent, and address fraud, security breaches, and technical issues
3. Information Sharing & Third Parties
We do not sell your personal information. We may share your information with the following categories of third parties for legitimate business purposes:
3.1 Service Providers & Processors
- FormSubmit.co — Processes form submissions on our website. Data submitted through our contact and inquiry forms is routed through FormSubmit.co's servers for delivery to our email.
- OpenAI — Powers our AI chatbot assistant. Conversations with our chatbot may be processed by OpenAI's API. We do not share identifying personal information with OpenAI beyond the content of your chat messages.
- Google Analytics — Collects anonymized website usage data to help us understand visitor behavior and improve our website. Google Analytics may use cookies and collect IP addresses (which may be anonymized).
- Advertising Platforms — We may use platforms such as Google Ads, Meta (Facebook/Instagram) Ads, LinkedIn Ads, and other advertising networks to deliver targeted advertising. These platforms may use cookies and tracking pixels to measure ad performance.
- GoHighLevel — Our client relationship management (CRM) platform used for managing client communications, workflows, and service delivery.
3.2 Business Transfers
If Growth & Grace Digital Labs LLC undergoes a merger, acquisition, reorganization, dissolution, or sale of assets, your personal information may be transferred as part of that transaction. We will notify you of any such change and any choices you may have regarding your information.
3.3 Legal Requirements
We may disclose your information when required by law, subpoena, court order, or governmental request, or when we believe disclosure is necessary to protect our rights, your safety, or the safety of others.
5. Your Privacy Rights
Depending on your location, you may have specific rights regarding your personal information under applicable privacy laws. Growth & Grace Digital Labs LLC respects and upholds these rights.
5.1 California Residents — CCPA/CPRA
If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA):
- Right to Know: You may request that we disclose the categories and specific pieces of personal information we have collected about you, the sources of that information, our purposes for collecting it, and the categories of third parties with whom we share it.
- Right to Delete: You may request that we delete any personal information we have collected about you, subject to certain exceptions.
- Right to Correct: You may request that we correct inaccurate personal information we maintain about you.
- Right to Opt-Out of Sale or Sharing: You have the right to opt out of the sale or sharing of your personal information. We do not sell personal information. If we engage in sharing for cross-context behavioral advertising, you may opt out by contacting us.
- Right to Non-Discrimination: We will not discriminate against you for exercising any of your privacy rights.
- Right to Limit Use of Sensitive Personal Information: If we collect sensitive personal information, you may request that we limit its use to what is necessary to provide our services.
5.2 European Union Visitors — GDPR
If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have the following rights under the General Data Protection Regulation (GDPR):
- Right of Access: You may request a copy of the personal data we hold about you.
- Right to Rectification: You may request correction of inaccurate or incomplete personal data.
- Right to Erasure (Right to Be Forgotten): You may request deletion of your personal data under certain circumstances.
- Right to Restriction of Processing: You may request that we restrict the processing of your personal data.
- Right to Data Portability: You may request that we provide your personal data in a structured, commonly used, machine-readable format.
- Right to Object: You may object to the processing of your personal data for direct marketing or based on legitimate interests.
- Right to Withdraw Consent: Where processing is based on consent, you may withdraw your consent at any time.
Our lawful bases for processing personal data include consent, performance of a contract, legitimate interest, and compliance with legal obligations.
5.3 Virginia Residents — VCDPA
If you are a Virginia resident, you have rights under the Virginia Consumer Data Protection Act (VCDPA), including the right to access, correct, delete, and obtain a copy of your personal data, and the right to opt out of targeted advertising, sale of personal data, and profiling.
5.4 Tennessee Residents — TIPA
If you are a Tennessee resident, you have rights under the Tennessee Information Protection Act (TIPA), including the right to access, correct, and delete your personal information. You also have the right to opt out of the sale of your personal information, targeted advertising, and certain profiling activities. We comply with all applicable provisions of TIPA.
5.5 Exercising Your Rights
To exercise any of these rights, please contact us using the information provided in Section 11. We will respond to your request within the timeframes required by applicable law (typically 30–45 days). We may need to verify your identity before processing your request. You will not be charged a fee for exercising your rights unless your request is manifestly unfounded or excessive.
6. Data Security
We implement commercially reasonable administrative, technical, and physical security measures to protect your personal information from unauthorized access, use, alteration, and disclosure. These measures include:
- SSL/TLS encryption for data transmitted between your browser and our website
- Secure storage of personal data with access controls and authentication
- Regular security assessments and updates to our systems
- Limited access to personal information on a need-to-know basis
- Use of reputable, security-compliant third-party service providers
While we strive to protect your personal information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security of your data, and any transmission is at your own risk.
7. Data Retention
We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. Our retention periods are as follows:
- Client Account Data: Retained for the duration of the business relationship plus 7 years for tax, legal, and regulatory compliance purposes.
- Marketing & Communication Data: Retained until you unsubscribe or request deletion, whichever occurs first.
- Website Usage & Analytics Data: Retained for up to 26 months, consistent with Google Analytics default retention settings, unless configured otherwise.
- Form Submissions: Retained for up to 3 years or until the inquiry is resolved, whichever is longer.
- Chatbot Conversations: Retained for up to 12 months for service improvement and quality assurance purposes.
- Financial & Billing Records: Retained for 7 years as required by applicable tax and financial regulations.
When personal data is no longer needed, we will securely delete or anonymize it in accordance with our data retention and disposal procedures.
8. Children's Privacy
Our website and services are not directed to individuals under the age of 13 (or under 16 in certain jurisdictions). We do not knowingly collect personal information from children under 13 years of age. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at the information provided in Section 11.
If we become aware that we have collected personal information from a child under the applicable minimum age without verifiable parental consent, we will take steps to promptly delete that information from our records.
9. International Data Transfers
Growth & Grace Digital Labs LLC is based in the United States and primarily processes data within the United States. If you are accessing our website or using our services from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States.
By using our website or services, you consent to the transfer of your information to the United States and other jurisdictions where our service providers operate. We take appropriate measures to ensure that any international transfers of personal data comply with applicable data protection laws, including the use of standard contractual clauses or other approved transfer mechanisms where required.
The data protection laws in the United States may differ from those in your country of residence. We will take reasonable steps to ensure your personal information receives an adequate level of protection in the jurisdictions in which we process it.
10. Changes to This Policy
We reserve the right to update or modify this Privacy Policy at any time. When we make changes, we will update the "Last Updated" date at the top of this page. If we make material changes to how we treat your personal information, we will notify you through a prominent notice on our website or by other appropriate means.
We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of our website and services after any changes to this Privacy Policy constitutes your acceptance of those changes.
11. Contact Information
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
Growth & Grace Digital Labs LLC
Johnson City & Bristol, Tennessee
Email: terrilovesmarketing@gmail.com
Phone: (404) 988-6588
Website: growthandgracedigitallabs.com
For privacy-specific inquiries, including requests to exercise your data rights under CCPA/CPRA, GDPR, VCDPA, or TIPA, please include "Privacy Request" in the subject line of your email.