Privacy Policy

1. Introduction

Biscrest LLC ("Biscrest," "we," "us," or "our") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, use our services, or engage with us in any capacity.

By accessing or using our services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with the terms of this Privacy Policy, please do not access our services.

2. Information We Collect

2.1 Information You Provide Directly

We collect information that you voluntarily provide to us when you:

• Fill out contact forms or consultation request forms
• Book appointments or consultations through our scheduling system
• Subscribe to our newsletter or marketing communications
• Create an account or use our CRM platform
• Participate in surveys, webinars, or other marketing activities
• Communicate with us via email, phone, or messaging platforms
• Engage our services as a client

This information may include:

• Personal Identifiers: Name, email address, phone number, business name, job title
• Business Information: Company details, industry, website URL, business challenges and goals
• Financial Information: Billing address, payment method details (processed securely through third-party payment processors)
• Communication Data: Your messages, feedback, questions, and any other information you choose to share

2.2 Information Collected Automatically

When you visit our website or use our services, we automatically collect certain information about your device and usage patterns:

• Device Information: IP address, browser type and version, operating system, device identifiers
• Usage Data: Pages visited, time spent on pages, links clicked, referral source, navigation paths
• Location Data: General geographic location based on IP address
• Cookies and Tracking Technologies: Data collected through cookies, web beacons, and similar technologies (see Section 7)

2.3 Information from Third-Party Sources

We may receive information about you from third-party sources, including:

• Social media platforms (if you connect your account or interact with our content)
• Business intelligence and data enrichment services
• Analytics providers and advertising networks
• Client referrals and business partners

2.4 Client Data and Marketing Platform Access

When providing our services, we may access client data through:

• Advertising platform accounts (Meta Ads, Google Ads, TikTok Ads, etc.)
• Analytics platforms (Google Analytics, data visualization tools)
• CRM systems and marketing automation platforms
• Website and funnel builders

We access this data solely to provide contracted services and maintain strict confidentiality. Client data is handled according to our Data Processing Agreement and applicable regulations.

3. How We Use Your Information

We use the information we collect for the following purposes:

3.1 Service Delivery

• Provide, maintain, and improve our marketing services and consultations
• Process and fulfill service requests and bookings
• Manage client accounts and deliver contracted services
• Execute marketing campaigns, ad optimization, and automation workflows
• Provide customer support and respond to inquiries
• Send service-related communications, updates, and notifications

3.2 Business Operations

• Process payments and manage billing
• Maintain records for accounting and tax purposes
• Comply with legal obligations and enforce our terms of service
• Detect, prevent, and address fraud, security, or technical issues
• Conduct internal research and development to improve our services

3.3 Marketing and Communications

• Send newsletters, marketing materials, and promotional offers
• Personalize your experience and tailor content to your interests
• Conduct surveys and gather feedback
• Analyze marketing campaign performance and optimize strategies

3.4 Analytics and Improvement

• Analyze website usage and user behavior patterns
• Monitor and improve website performance and functionality
• Understand customer needs and preferences
• Develop new services and features

4. How We Share Your Information

We do not sell, rent, or trade your personal information to third parties for their marketing purposes. We may share your information in the following circumstances:

4.1 Service Providers

We engage trusted third-party service providers to perform functions on our behalf, including:

• Technology Platforms: CRM systems, email service providers, scheduling tools, analytics platforms
• Payment Processors: Secure payment gateways for transaction processing
• Cloud Services: Data storage and hosting providers
• Marketing Tools: Advertising platforms, social media management tools
• Communication Services: Email, SMS, and messaging platforms

These providers have access to your information only to perform specific tasks on our behalf and are obligated to protect your information and use it only for the purposes for which it was disclosed.

4.2 Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, or sale of assets, your information may be transferred to the acquiring entity. We will provide notice before your information is transferred and becomes subject to a different privacy policy.

4.3 Legal Requirements and Protection

We may disclose your information when required by law or in response to valid requests by public authorities, including:

• Compliance with legal obligations, court orders, or subpoenas
• Enforcement of our terms of service and other agreements
• Protection of our rights, property, or safety, and that of our users or the public
• Investigation and prevention of fraud, security issues, or illegal activities

4.4 With Your Consent

We may share your information with third parties when we have your explicit consent to do so.

4.5 Aggregated or De-identified Data

We may share aggregated or de-identified information that cannot reasonably be used to identify you. This may include industry benchmarks, trend analysis, or general statistics.

5. Data Security

We implement and maintain reasonable administrative, technical, and physical security measures designed to protect your personal information from unauthorized access, disclosure, alteration, and destruction.

5.1 Security Measures

Our security practices include:

• Encryption: SSL/TLS encryption for data in transit; encryption at rest for sensitive data
• Access Controls: Role-based access restrictions; multi-factor authentication for team members
• Network Security: Firewalls, intrusion detection systems, and regular security monitoring
• Data Minimization: Collection and retention of only necessary information
• Regular Audits: Periodic security assessments and vulnerability testing
• Staff Training: Regular security awareness training for all team members
• Vendor Management: Due diligence and security requirements for third-party providers

5.2 Incident Response

In the event of a data breach that affects your personal information, we will:

• Promptly investigate and assess the scope of the breach
• Notify affected individuals as required by applicable law
• Take appropriate remedial measures to mitigate harm
• Cooperate with regulatory authorities as necessary

6. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

6.1 Retention Periods

• Active Client Data: Retained for the duration of the business relationship plus applicable legal retention periods
• Marketing Communications: Retained until you unsubscribe or request deletion
• Website Analytics: Typically retained for 26 months
• Financial Records: Retained for 7 years for tax and accounting purposes
• Legal and Compliance Records: Retained as required by applicable law

6.2 Deletion and Anonymization

When personal information is no longer needed, we will:

• Securely delete or destroy the information
• Anonymize the data so it can no longer identify you
• Retain only what is necessary for legal, accounting, or legitimate business purposes

7. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect and track information about your browsing activities on our website.

7.1 What Are Cookies?

Cookies are small text files stored on your device that help websites remember information about your visit. We use both session cookies (which expire when you close your browser) and persistent cookies (which remain on your device until deleted or expired).

7.2 Types of Cookies We Use

• Essential Cookies: Necessary for the website to function properly; cannot be disabled
• Performance Cookies: Help us understand how visitors interact with our website by collecting anonymous information
• Functionality Cookies: Remember your preferences and personalize your experience
• Marketing Cookies: Track your browsing activity to deliver relevant advertisements and measure campaign effectiveness

7.3 Third-Party Cookies

We use third-party services that may set cookies on your device, including:

• Google Analytics: Website analytics and performance tracking
• Meta Pixel: Advertising and conversion tracking
• LinkedIn Insight Tag: B2B advertising and analytics
• Other Advertising Platforms: For retargeting and campaign measurement

7.4 Managing Cookies

You can control cookies through your browser settings. Most browsers allow you to:

• View and delete cookies
• Block third-party cookies
• Block all cookies from specific sites
• Block all cookies entirely

Please note that disabling cookies may affect your ability to use certain features of our website.

7.5 Do Not Track

Some browsers include a "Do Not Track" (DNT) feature. Our website does not currently respond to DNT signals, as there is no industry standard for how to interpret and respond to these signals.

8. Your Rights and Choices

Depending on your location and applicable law, you may have certain rights regarding your personal information:

8.1 Access and Portability

• Request access to the personal information we hold about you
• Receive a copy of your personal information in a structured, commonly used format
• Request transfer of your information to another service provider (where technically feasible)

8.2 Correction and Updates

• Request correction of inaccurate or incomplete personal information
• Update your account information and preferences at any time

8.3 Deletion

• Request deletion of your personal information, subject to legal retention requirements
• Close your account and request removal of your data from our systems

8.4 Objection and Restriction

• Object to processing of your personal information for certain purposes
• Request restriction of processing in specific circumstances
• Opt-out of direct marketing communications at any time

8.5 Marketing Communications

You can opt-out of marketing emails by:

• Clicking the "unsubscribe" link in any marketing email
• Contacting us directly at privacy@biscrest.com
• Updating your communication preferences in your account settings

Please note that even if you opt-out of marketing communications, we may still send you service-related messages (e.g., account notifications, transaction confirmations).

8.6 Exercising Your Rights

To exercise any of these rights, please contact us at support@biscrest.com

We will respond to your request within 30 days (or as required by applicable law). We may need to verify your identity before processing your request.

9. International Data Transfers

Biscrest is based in the United States. If you are accessing our services from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States or other countries where our service providers operate.

When we transfer personal information internationally, we implement appropriate safeguards, including:

• Standard contractual clauses approved by relevant authorities
• Data processing agreements with adequate security provisions
• Compliance with applicable data protection frameworks

By using our services, you consent to the transfer of your information to the United States and other countries that may have different data protection laws than your country of residence.

10. Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children under 18 years of age.

If we become aware that we have inadvertently collected personal information from a child under 18, we will take steps to delete that information as soon as possible. If you believe we have collected information from a child under 18, please contact us immediately at support@biscrest.com.

11. Third-Party Links and Services

Our website and services may contain links to third-party websites, applications, or services that are not owned or controlled by Biscrest. This Privacy Policy applies only to our services.

We are not responsible for the privacy practices of third-party websites or services. We encourage you to review the privacy policies of any third-party sites you visit before providing any personal information.

When you click on third-party links or use integrated third-party services, you are subject to their respective terms of service and privacy policies. We do not endorse or assume any responsibility for the content, privacy policies, or practices of third-party sites or services.

12. California Privacy Rights (CCPA)

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA):

12.1 Your CCPA Rights

• Right to Know: Request disclosure of the categories and specific pieces of personal information we have collected about you
• Right to Delete: Request deletion of your personal information, subject to certain exceptions
• Right to Opt-Out: Opt-out of the sale of your personal information (Note: We do not sell personal information)
• Right to Non-Discrimination: You will not receive discriminatory treatment for exercising your CCPA rights

12.2 Categories of Personal Information

In the past 12 months, we have collected the following categories of personal information:

• Identifiers (name, email, phone number)
• Commercial information (purchase history, service preferences)
• Internet activity (browsing history, website interactions)
• Professional information (company name, job title)
• Inferences drawn from the above to create user profiles

12.3 Exercise Your Rights

To exercise your CCPA rights, contact us at support@biscrest.com with "CCPA Request" in the subject line. We will verify your identity and respond within 45 days.

13. European User Rights (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have additional rights under the General Data Protection Regulation (GDPR):

13.1 Legal Basis for Processing

We process your personal data based on:

• Consent: When you have given explicit consent for specific processing activities
• Contract Performance: When processing is necessary to fulfill our contractual obligations
• Legal Obligation: When we must process data to comply with legal requirements
• Legitimate Interests: When processing serves our legitimate business interests without overriding your rights

13.2 Your GDPR Rights

• Right of access to your personal data
• Right to rectification of inaccurate data
• Right to erasure ("right to be forgotten")
• Right to restriction of processing
• Right to data portability
• Right to object to processing
• Right to withdraw consent at any time
• Right to lodge a complaint with a supervisory authority

13.3 Data Protection Officer

For GDPR-related inquiries, you may contact our data protection contact at support@biscrest.com with "GDPR Request" in the subject line.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make changes, we will:

• Update the "Last Updated" date at the top of this policy
• Post the revised policy on our website
• Notify you via email or prominent website notice if changes are material
• Obtain your consent if required by applicable law

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information. Your continued use of our services after changes are posted constitutes your acceptance of the revised policy.

15. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

We will respond to all legitimate requests within a reasonable timeframe and in accordance with applicable law.

Data Protection Inquiries

For specific data protection requests or privacy concerns, please include the following in your email:

• Subject line indicating the nature of your request (e.g., "Data Access Request," "GDPR Request," "CCPA Request")
• Your full name and contact information
• Detailed description of your request or concern
• Any relevant account information or reference numbers

We take all privacy inquiries seriously and are committed to addressing your concerns promptly and professionally.