Effective Date: March 2, 2022
In connection with your use of the Services, we collect three types of information about you: Business Information, User Information, and General Information. Information from any of these categories may be linked with other information that we collect about you.
- <Business Information. Business Information includes information regarding businesses that use or otherwise access the Services (“Customers”). Business Information includes, but is not limited to (i) business name, address, email, and telephone number, (ii) company structure, (iii) industry type, (iv) incorporation date, (v) annual revenue, (vi) bank account information (e.g., average bank balance, bank statements, credit card statements), (vii) payment information (e.g., payment history, merchant category code, payment card number), (viii) business social network data (e.g., likes, posts, followers), (x) accounting information (e.g., Quickbooks), and (xi) beneficial ownership information.
- User Information. User Information includes information about the owners, principals, and business representatives, such as: name, job title, user name(s), mailing address, email address, primary telephone number, date of birth, social security number, and Employee Identification Number (EIN).
- General information. General Information includes technical information such as information regarding your use of and interactions with the Sites. This General Information includes, but is not limited to, information about (i) your Internet connection, (ii) the equipment you use to access the Sites and usage details, (iii) your operating system, browser version and internet protocol (IP) address, (iv) your mobile device type, your device’s unique identifier, and your mobile network information, and (v) web pages, content, communications, or advertisements that you view or otherwise interact with, and (vi) referring/exit pages, clickstream data, and information that you search for using the Services.
How We Collect Your Information
- Information Provided by You and Your Business. We collect any information you provide when you use the Services. For example, we collect User Information and Business Information from you when you (i) register an account on the Sites, (ii) fill out forms or fields on the Sites, or (iii) complete an application for a product or service available through the Services. We also collect any information you may submit through communications with us by email, mail, text, telephone, facsimile or other means.
- Information Received from Third Parties. In the course of providing the Services, we may also collect additional Business Information or User Information from third parties, including, but not limited to: financial institutions, referral partners, identity verification services, card networks, vendors, mailing list providers, consumer reporting agencies, commercial credit bureaus and associations, fraud prevention agencies, and publicly available sources. We may combine this information with information we already have about you.
Use of Information
- Service-Related Usage. We use the information we collect about and from you, both in a personally-identifiable form and in an aggregated or anonymized form, for a number of purposes, including for providing, supporting, promoting, and improving the Services. Such uses include:
- Enabling users to obtain products and services through the Services;
- Facilitating marketing, processing, servicing, and collections activities;
- Providing customer support;
- Understanding, customizing, and enhancing user experience;
- Providing targeted marketing and advertising;
- Verifying your identity, conducting appropriate diligence, and keeping your information current;
- Creating an account connection between your account and a third-party account or platform;
- Sending notifications and information regarding the Services;
- Measuring and improving the performance and functionality of the Sites;
- Managing and protecting our information technology infrastructure;
- Administering and managing the security of the Sites;
- Developing new products and services; and
- Compiling, using, researching, analyzing, and generating data analytics reports to better understand our Customers and to improve the Services.
- Communications. We may communicate with you using the information collected (i) for customer service, (ii) to provide you with updates or information relating to the Services, or (iii) to conduct surveys and collect feedback about the Services.
- Marketing and Advertising. We may use the information we collect for marketing and advertising purposes. These purposes may include communicating with you about our products and services, or products and services offered by or through our business partners, including but not limited to providing you with promotional materials that may be useful, relevant, valuable, or otherwise of interest to you, and inviting you to participate in events or surveys. Where required under applicable law, we will obtain your prior opt-in consent to send you electronic marketing communications. To learn more about your choices regarding interest-based advertising and cross-device tracking, please see the Third-Party Information Collection section below.
- Compliance with Law and Our Own Obligations. We may use the information we collect, to the extent permitted or required under applicable laws (i) to enforce our Terms of Service or other legal rights, including intellectual property infringement, (ii) to detect and protect against potentially prohibited or illegal activities, including fraud and unauthorized access, (iii) in response to lawful requests for information or legal process, (iv) to establish, exercise, or defend a legal claim, and (v) to comply with our contractual obligations, our policies, industry standards, and applicable laws.
- Other Purposes. We may use the information we collect for other purposes for which we provide notice to you at the time of collection or for which we obtain your consent.
- Aggregate Data. We may process your information in an anonymized or aggregated form for purposes other than described above.
We may share Business Information, User Information, and General Information as follows:
- Affiliates and Subsidiaries. We may share your information with and amongst our affiliates and subsidiaries for any of the purposes described in the Use of Information section above.
- Service Providers. We may engage service providers to assist us in providing Services. These service providers may provide services such as fraud prevention, cloud computing, cybersecurity, identity verification, credit checks, collections, and payment processing. We may share any information we receive with such parties as is necessary for the provision of the Services.
- As Required By Law and Similar Disclosures. We may disclose your information if we believe doing so is required or appropriate to (i) comply with applicable laws and regulations, (ii) comply with regulatory investigations, enforcement requests, and legal process, such as subpoenas, court orders, and bankruptcy notices, (iii) respond to your requests or resolve disputes or inquiries, (iv) detect, prevent, or otherwise address fraud, confidentiality, security or technical issues, (v) respond to regulatory authorities jurisdiction over us for examinations, compliance, or other purposes, (vi) respond to requests from third-party auditors, and (vii) protect your, our, or others’ rights, property, or safety, or the security or integrity of our Services.
- Corporate Changes and Transactions. We may disclose your information in connection with (including, without limitation, during the negotiation or due diligence process of) a corporate merger, consolidation, or restructuring; the sale or transfer of some or all of our stock and/or assets; equity or debt financings, acquisition, divestiture, or dissolution of all or a portion of our business; or other corporate change.
- Aggregated or Anonymized Information. We may sell, license or distribute information in anonymized or aggregated form so that the information does not identify a specific user, without restriction, including, but not limited to, for producing data analytics and reports for business partners or other third parties.
- Consent. We may disclose your information to any third party with your consent. For example, we may disclose information at your direction, as described at the time you agree to share, or when you authorize a third-party application or website to access your information.
- Other Purpose. To fulfill the purpose for which you provide such information to us or any other purpose disclosed by us when you provide the information to us.
Third-Party Information Collection
We may work with third-party advertising partners (e.g., Facebook) to display advertisements on the Sites and other websites and mobile applications and third-party analytics partners (e.g., Google Analytics) to evaluate and provide us with information regarding your use of the Sites. We may also utilize framing techniques to serve you content from third-party providers, while preserving the look and feel of the Services. In such cases, you will be providing information to these third parties.
You may choose to stop receiving marketing emails by following the unsubscribe instructions included in these emails. You may also request that we do not call you for marketing-related purposes. In addition to following the unsubscribe instruction in relevant email communications, you may make these requests by contacting us at firstname.lastname@example.org We will respond to your request within a reasonable timeframe. Opting out of marketing emails will not stop your receipt of non-marketing emails related to the Services.
Various browsers may offer their own tools to manage cookies. If you disable cookies, you can still use the Services, but your ability to use some features of the Services may be limited.
Links to Third Party Websites
Security of Information
We take reasonable measures, including administrative, technical, and physical safeguards to protect your information from loss, misuse, unauthorized access, disclosure, alteration, and destruction. These security measures include firewalls, data encryption, physical access controls to our data centers, and information access authorization controls. Your information is securely sent to us with SSL using at least 128 bit-encryption over the Transport Layer Security (TLS) protocol. This creates an encrypted connection between your browser and us so that any sensitive information you provide can be securely transmitted. Unfortunately, the Internet cannot be guaranteed to be 100% secure, and we cannot ensure or warrant the security of any information you provide to us.
We believe in providing transparency with our customers. With ExitGuide, your personal and financial information and any data or documents you upload to your portal are stored securely in our servers. Payment or credit card information is both processed and stored by Stripe. Stripe has been audited by a PCI-certified auditor and is certified to PCI Service Provider Level 1. This is the most stringent level of certification available in the payments industry.
If you link your bookkeeping service account as a part of receiving the Services, we will have read-only access to such information. We do not have access to change, edit, or modify your financial records or information. We also cannot see your banking credentials (i.e., username and passwords). You are responsible for securing and maintaining the privacy of your banking credentials and account information. We are not responsible for protecting any information we share with a third-party based on an account connection that you have authorized.
Transfers to Other Countries
106 E 6th St
Austin, TX 78701
For phone inquiries please call: +1 (512) 537-2720
Your California Privacy Rights
If you are a California resident, the California Consumer Privacy Act of 2018 (“CCPA”) permits you to obtain certain disclosures about information you have shared with us in connection with your use of the Services. CCPA also provides you with certain rights with respect to this information. This section outlines those CCPA required disclosures and details those rights that apply to “personal information” subject to the CCPA. Personal information does not include information that is publicly available (as defined by the CCPA), deidentified, or aggregated.
Information We Collect
We may collect the following categories of personal information about California residents who are website visitors, users, and businesses that access services provided by or through ExitGuide:
|Identifiers||First and last name, mailing address, online identifier (e.g., username), Internet Protocol (IP) address, email address, social security number, EIN or other similar identifiers|
|Categories of information described in the California Customer Records Statute||First and last name, social security number or EIN, address, primary telephone number, job title, or any other financial information|
|Commercial or transactions information||Products or services purchased, obtained, or considered|
|Internet or other electronic network activity information||Information about your internet connection, the equipment used to access the Sites and usage details, operating system, browser version, IP address, mobile device type, device unique identifier, mobile network information, web pages, content, communications, advertisements, referring/exit pages, clickstream data, and information that you search for using the Services|
|Sensory data||Audio, or similar information|
|Professional or employment-related information||Job title|
We collect the information listed above from the following categories of sources: (i) information provided by you, (ii) information we collected when you use our Services, or (iii) information received from third parties.
Use of Personal Information
We may use or disclose the personal information we collect from you for a number of purposes compatible for which it was collected or authorized by you, including for, but not limited to, the following purposes:
- Providing, supporting, promoting, and improving the Services;
- Communicating with you;
- Marketing and advertising;
- Complying with law and our own obligations; and
- For other purposes for which we provide notice to you at the time of collection or for which we obtain your consent.
More information on how we use your personal information is available in the Use of Information section above.
Sharing Personal Information
As also described in Information Sharing, we may also disclose your personal information: (i) to affiliates and subsidiaries; (ii) as required by law; (ii) in connection with corporate changes; (vi) in anonymized or aggregate form; or (vii) with your consent.
Sale of Personal Information
Your Rights Regarding Personal Information
California residents may exercise the following rights regarding their personal information, subject to certain exceptions and limitations. While the CCPA becomes effective on January 1, 2020, some individuals may not be able to invoke these rights until January 1, 2021 due to a temporary legislative period of delay. For example, where an individual is acting on behalf of a company (e.g., as an employee, owner, director, officer, or contractor), access and deletion rights are temporarily unavailable for the personal information reflecting a written or verbal communication or transaction between us and the individual where the communication or transaction occur solely within the context of the individual’s company receiving a product or service from us.
- Right to Know. You have the right to request that we disclose certain information we have collected, used and disclosed in the past 12 months. You have the right to know:
- the categories and specific pieces of personal information we have collected about you;
- the categories of sources from which your personal information was collected;
- the purposes for collecting your personal information;
- the categories of third parties with whom we have shared personal information; and
- if your information is sold, lists of the categories of personal information sold and disclosed for a business purpose.
- Right to Delete. You have the right to request that we delete any personal information we have collected from you. We will also direct any service providers with whom we have shared your personal information to delete such information from their records. CCPA provides certain exceptions to the Right to Delete. If any of these exceptions apply, we will not be able to comply and will be forced to deny your request to delete, for example when the personal information is necessary to complete a transaction for which we collected it or to comply with a legal obligation. We use a two-step process for online requests to delete personal information. You will be asked to clearly submit your request to delete and to separately confirm your choice.
- Right to Opt-out of Sale(s). We do not sell your personal information to third parties.
- Right to Non-Discrimination. You have the right not to receive discriminatory treatment for the exercise of the privacy rights conferred by the CCPA.
To exercise any of the above rights, you may submit a verifiable request by using the following information:
- By phone at +1 (512) 537-2720; or
Responding to Your Requests
When you submit a request through one of the designated methods for submitting requests, it may take us up to 45 days from receiving your verifiable request to disclose and deliver the required information. In some cases, it may take us longer to respond to your request. If we require more time (up to 90 days), we will provide you with notice of the extension period.
We may need to request additional information from you to verify your identity or understand the scope of your request, although you will not be required to create an ExitGuide account to submit a request or have it fulfilled. If you do not have a password-protected account with us, we will require you to provide additional information to verify your identity. If we are unable to verify your identity to a reasonable degree of certainty, we will not be able to provide the requested information.
You may designate an authorized agent to make a CCPA request to know or delete on your behalf based on: (i) your written permission authorizing the agent to submit the request and the agent verifying their identity in accordance with the verification process outlined above; or (ii) providing the agent with power of attorney to act on your behalf. We will require copies of such written authorization or power of attorney.