Privacy Policy

1. Introduction

GraceRock Global LLC ("we," "our," or "us") is committed to protecting your privacy and personal information in accordance with the applicable US federal and state privacy laws. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our services.

2. Information We Collect

2.1 Personal Information

We may collect the following types of personal information:

• Contact information (name, email address, phone number, company name)
• Business information (industry, company size, operational challenges)
• Technical information (IP address, browser type, device information)
• Usage data (pages visited, time spent on site, interaction patterns)
• Communication records (emails, chat logs, consultation notes)

2.2 Automated Data Collection

We use cookies and similar technologies to collect information about your browsing behaviour and preferences. This includes:

• Session cookies for website functionality
• Analytics cookies to understand user behaviour
• Marketing cookies for targeted advertising

3. How We Use Your Information

We process your personal information for the following purposes:

• Providing AI automation and digital marketing services
• Responding to enquiries and providing customer support
• Conducting free automation audits and consultations
• Improving our services and developing new solutions
• Marketing communications (with your consent)
• Compliance with legal obligations
• Protecting our legitimate business interests

4. Legal Basis for Processing

We process your personal information based on:

• Consent: When you provide explicit consent for marketing communications
• Contract: To fulfil our service agreements with you
• Legitimate Interest: For business operations, fraud prevention, and service improvement
• Legal Obligation: To comply with US laws and regulations

5. Information Sharing and Disclosure

We do not sell your personal information. We may share your information with:

• Service Providers: Third-party vendors who assist in our operations (hosting, analytics, marketing platforms)
• Business Partners: With your consent, for joint service delivery
• Legal Requirements: When required by US law or court orders
• Business Transfers: In case of merger, acquisition, or asset sale

6. Data Security

We implement appropriate technical and organisational measures to protect your personal information, including:

• Encryption of data in transit and at rest
• Access controls and authentication systems
• Regular security assessments and updates
• Staff training on data protection
• Incident response procedures

7. Data Retention

We retain your personal information only as long as necessary for the purposes outlined in this policy or as required by law:

• Customer data: For the duration of our business relationship plus 7 years
• Marketing data: Until you withdraw consent or 3 years of inactivity
• Website analytics: 26 months maximum
• Communication records: 5 years for business purposes

8. Your Rights

As a data subject, you have the right to:

• Access: Request copies of your personal information
• Correction: Request correction of inaccurate information
• Deletion: Request deletion of your personal information
• Objection: Object to processing for direct marketing
• Restriction: Request limitation of processing
• Portability: Receive your data in a structured format
• Withdraw Consent: Withdraw consent at any time

9. International Data Transfers

Some of our service providers may be located outside USA. We ensure adequate protection through:

• European Commission adequacy decisions
• Standard contractual clauses
• Provider certification schemes
• Your explicit consent where required

10. Children's Privacy

Our services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children under 18 without parental consent.

11. Cookies Policy

Our website uses cookies to enhance your experience. You can control cookie settings through your browser preferences. Disabling certain cookies may limit website functionality.

12. Third-Party Links

Our website may contain links to third-party websites. This privacy policy does not apply to those sites. We encourage you to review their privacy policies.

13. Updates to This Policy

We may update this Privacy Policy periodically. Material changes will be communicated through our website or direct notification. Your continued use of our services constitutes acceptance of the updated policy.

14. Information Officer

Our designated Privacy Officer is:

15. Complaints

If you have concerns about our data processing practices, you may:

• Contact our Information Officer directly
• Lodge a complaint with the Federal Trade Commission (FTC)
• Contact details: www.ftc.gov/about-ftc/contact

16. Contact Information

For privacy-related enquiries, please contact us: