Sunrise Privacy – Privacy Notice

Effective Date – January 8, 2025

Introduction

At Sunrise Privacy Consulting (also known as “Sunrise Privacy” or “we” or “us”), we take the protection and handling of your data very seriously. This Privacy Notice describes how we use your personal data, the purposes for which we process it and your rights regarding your personal data. You may contact us at any time using the below information:

Sunrise Privacy Consulting

+1-502-292-8125

ashley@sunriseprivacy.com

Unless otherwise stated, Sunrise Privacy is the data controller.

This Notice applies to www.sunriseprivacy.com and all subdomains, as well as any time you interact with us online or in-person.

“Personal Data” means any information that is identifiable to an individual or household, as defined by applicable laws or regulations. By using this website or our services, you acknowledge this Notice.

Data Collection

We only collect personal information that is relevant and reasonably necessary for our business operations and to provide our services.

How We Collect Your Data

We collect data directly from you when you fill out our contact form, send an inquiry email, or otherwise communicate with us directly.

We collect data indirectly from you when you interact with our website and this information may be shared with our service providers. Please see our “Cookies and Other Tracking Technologies” section below for more information.

We may collect data about you from third parties, such as publicly available social media applications or other public websites, and combine this with data that you have shared directly with us.

Categories of Personal Data Collected

We may collect the following data about you:

Contact Details – Basic data such as name, email, phone number or address

Professional or Employment Information – Data related to your profession, such as job title, job role, employer or business contact information

Financial Information – Data in order to process payments for services, such as credit card number, bank account information or payment and transaction history

Social Media Information – Data such as social media handles or your interactions with us on social media platforms

Other Information that you may provide directly to us

Usage Information – Data related to your interactions with our website, such as the following:

  • IP Address

  • Device Type and Operating System

  • Browser Type

  • The pages you visit while on our website

We do not collect the following categories of data – Protected Class Data (such as race, ethnic origin, religion, etc), Biometric Data, Geolocation Data, Inference Data or Other Sensitive Personal Data.

Our Business Purposes and Legal Basis for Processing

We collect data about you for the following purposes:

  • Provide our services and manage our relationship with you

  • Process payments related to our services

  • Communicate with you, send information related to our services or to respond to inquiries

  • Improve our website and services or conduct analytics related to our website performance in order to enhance user experience

  • Detect, prevent and investigate illegal or harmful activity or other security breaches

  • Enforce our privacy notice and any related terms of service

  • Comply with applicable laws and regulations

  • Other purposes to which you give consent, such as marketing activities

We only process data when we have a legal basis for doing so. This includes:

  • Contract – We process personal data when it is necessary to do so to provide our services, in agreement with the terms of our contractual obligations with you.

  • Legitimate Business Interest – We process personal data when we have a legitimate business interest and it does not override your rights or freedoms to do so. Examples include:

    • To improve our website and ensure site functionality

    • To detect, prevent and investigate illegal or harmful activity or other security-related breaches

    • To respond to customer complaints and inquiries

  • Legal Compliance – We process personal data when we are required to do so by applicable laws and regulations, such as maintaining internal records or financial transactions for administrative purposes.

  • Consent – We process personal data when you have provided your consent for us to use your personal data in a specific way (for example, when you consent to receiving marketing communications from us). Consent may be revoked at any time; please see the section “Data Subject Rights” for more information on how to opt out.

Cookies and Other Tracking Technologies

We may utilize cookies, pixels or other tracking technologies on our website.

Cookies are small text files that websites store on your browser, computer, mobile device or tablet, for varying periods. They improve your browsing experience, enable statistical analysis and advanced functions, simplify logging in and personalization, and are sometimes used for targeted advertising. Cookies allow us to identify your device as belonging to you while you navigate our websites, use our Services or use your account.

Pixels are small graphic images on a website or in an email enabling for example to measure the effectiveness of advertising and user engagement. Pixels collect information about your browser or device and can set cookies on your browser. These pixels may be set by us or by third parties with whom we have partnered to assist in our marketing efforts.

Local storage allows data about your browser or device to be stored locally on your browser or device and includes HTML5 local storage and browser cache.

We use both session and persistent cookies. Session cookies are cookies that disappear from your computer or browser when you turn off your computer. Persistent cookies stay on your computer even after you’ve turned it off.

You have choices about the cookies that we set when you visit our website. You can opt out through the cookie banner on our website. When you visit our website, a cookie banner will appear. If you do not wish for cookies to be set, please select “Decline.” You can also use your browser settings to opt out of Functional Cookies and Advertising Cookies. Additionally, some

browsers allow a “do not track” (DNT) setting that requests that a web application disable its tracking of an individual user. When you choose to turn on the DNT setting in your browser, your browser will send a special signal to websites, analytics companies, ad networks, plug-in providers, and other web services you encounter while browsing and stop tracking your activity. Please note that this may impact the functionality of our website.

The cookies we set may fall into the following categories:

Strictly Necessary Cookies

These cookies are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. You can set your browser to block or alert you about these cookies, but some parts of the site will not then work. These cookies do not store any personally identifiable information.

Functional Cookies

These cookies enable the website to provide enhanced functionality and personalization. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies, then some or all of these services may not function properly.

Performance Cookies

These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site. All information these cookies collect is aggregated and therefore anonymous. If you do not allow these cookies we will not know when you have visited our site, and will not be able to monitor its performance.

Targeting Cookies

These cookies may be set on our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant adverts on other sites. They do not store personal information but are based on uniquely identifying your browser and internet device.

Sharing Your Personal Data With Third Parties

We take care in protecting your personal data and only share data with third-parties on a need- to-know basis. Examples of this type of data sharing includes sharing data with our third-party service providers who provide services to us, such as email, web hosting, payment processing, IT services, auditing, contractor consulting, and other services.

Additionally, there may be other instances in which we are required to share your data with third-parties including:

  • In connection with, or during negotiations of, any merger, sale of company assets, financing, acquisition, dissolution, corporate reorganization or similar event

  • When it is legally required of us to disclose your data to regulatory authorities, government authorities, courts, or other third parties or is necessary to protect the safety, rights, or property of Sunrise Privacy, our clients and service providers, any other third-party affiliates, national security, or the general public;

  • When the data is in aggregate form or not reasonably capable of being identified with you

  • Any other purpose with your permission or consent to do so

Data Retention

We will retain your data for only as long as it is needed to fulfill its purpose as described in this Privacy Notice or as long as we are contractually or legally obligated to retain your data.

Children’s Data

We do not knowingly collect or process the data of minors under the age of 18. By using our website or interacting with us, you acknowledge that you are over the age of 18.

Data Security

We take all reasonable measures to protect your data in accordance with industry-standard security practices. We limit the access of your data on a need-to-know basis and ensure that we have appropriate procedures in place to handle any breach in availability, confidentiality or integrity of your data. However, it should be noted that no safeguards are proven to be 100% effective and secure, and we cannot guarantee that unauthorized access, hacking or other breach of personal data will never happen.

Cross Border Data Transfers

Sunrise Privacy Consulting, LLC is a United States-based company. We operate out of the U.S. and leverage IT service providers who are located in the U.S., including for the provisioning of our web, email and IT hosting. The data protection laws in the U.S. may differ from the data protection laws in your region. By submitting your personal data, you consent to the transfer of data to the United States (if you are located outside the U.S.).

Data Subject Rights

Depending upon the region in which you reside, you may have certain rights with regards to your personal data, such as:

  • Right to Access and Portability – You may be able to request a copy of any personal data that we hold on you in a machine-readable and easy-to-read format.

  • Right to Know – You may be able to request whether we hold any of your personal data.

  • Right to Deletion – You may be able to request that we delete some or all of your personal data that we hold. In some cases, there may be a legal exception to deletion rights. For example, we may need to keep your personal data for tax or financial records.

  • Right to Correct – You may be able to request that we update or modify the personal data that we hold on you. We want to ensure that all data that we hold on your is correct and up-to-date, so please inform us if we should update any of your personal data.

  • Right to Opt Out of the Sale or Sharing of Personal Information – In some regions, you may have the right to opt out of the sale or sharing of your personal information to third-parties. However, we do not sell your personal information.

  • Right to Limit Sharing of Sensitive Personal Information – In some regions, you may have the right to limit the sharing of your sensitive personal information. However, we do not collect sensitive personal data on our clients, prospective clients or website visitors.

  • Right to Restrict or Object to Processing – You may have the right to restrict or object to the way that we process your personal data.

  • Right to Object to Automated Processing – You may have the right to request that we do not use automated processing to process your personal data.

  • Right to Withdraw Consent – You have the right to withdraw your consent at any time, including for marketing communications.

Additionally, there may be additional privacy rights that your region offers that you have the right to exercise; we will acknowledge and honor these rights, as well. We do not discriminate against an individual for exercising their privacy rights.

To exercise any of your privacy rights, please contact ashley@sunriseprivacy.com and specify which privacy rights you are choosing to exercise. We will review your request and contact you if we require any additional information to honor these rights in the applicable time frame as required by law.

If you do not agree with our decisions as it relates to your privacy rights, you have the right to appeal to your regional data protection authority.

Links to Other Websites

We may link to other websites from our website. If you leave our website, please note that our privacy policies do not apply to other websites. Please consult with those websites’ privacy notices to understand how they may process your personal data.

Changes to this Privacy Notice

From time to time, we may be required to update our privacy notice to accurately reflect how we are processing your personal data. If we need to update our privacy notice, we will update this page with the updated notice and the new effective date. If we are required to do so by law, we may notify you with any updates to our privacy notice.

Contact Us

For all questions and concerns related to this Privacy Notice or our privacy practices, please contact Ashley Haynes at ashley@sunriseprivacy.com.