Privacy Policy

1. Introduction

Welcome to Credit Repair AI ("we," "our," "us," or "Company"). We respect your privacy and are committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, use our services, or engage with us for credit repair services.

By accessing or using our services, you agree to the terms and conditions described in this Privacy Policy. Please read this policy carefully to understand how we handle your personal information. If you do not agree with our practices, please do not use our services.

This Privacy Policy is designed to comply with a range of privacy laws across jurisdictions, including:

• The General Data Protection Regulation (GDPR) and UK GDPR, along with the Data Protection Act 2018
• The Personal Information Protection and Electronic Documents Act (PIPEDA) and Quebec's Law 25
• U.S. privacy laws, including the California Consumer Privacy Act (CCPA), California Privacy Rights Act (CPRA), Virginia Consumer Data Protection Act (VCDPA), Colorado Privacy Act (CPA), Utah Consumer Privacy Act (UCPA), and Connecticut Data Privacy Act (CTDPA)
• Other applicable federal, state, and provincial laws governing credit reporting and electronic communications

This policy applies to information we collect:

• On our website (creditrepairai.com)
• In email, text, and other electronic communications
• Through mobile and desktop applications
• Through our credit repair services
• Through social media interactions
• Through customer support channels

2. Information We Collect

2.1 Personal Information

We collect and use personally identifying information that you provide to us in the course of seeking credit repair services or information from us. This includes:

• Identifiers (name, postal address, email address, phone number, Social Security number for credit verification)
• Credit information (credit reports, scores, history, disputes)
• Financial information (income verification, debt details, payment history)
• Professional or employment information
• Transaction history and preferences
• Audio, electronic, or visual recordings (call recordings for quality assurance)
• Government-issued identification (for identity verification)
• Bank account information (for payment processing)
• Information about your credit situation and goals

We use this information to:

• Contact you about your credit repair services
• Evaluate your credit situation
• Formulate credit repair strategies
• Conduct credit analysis
• Process credit dispute letters
• Match your needs with our services
• Track progress of your credit repair

2.2 Automatically Collected Information

When you visit our website or use our applications, we automatically collect:

• Device information (IP address, browser type, operating system)
• Usage data (pages visited, time spent, click patterns)
• Location data (if enabled on your device)
• Cookies and tracking technologies
• Mobile device identifiers
• Browser fingerprinting data
• Network connection information
• App usage statistics and interactions

2.3 Information from Third Parties

We may receive information about you from:

• Credit bureaus and reporting agencies
• Public records
• Financial institutions
• Business partners and service providers
• Marketing and analytics providers
• Credit monitoring services
• Social media platforms (if you connect with our services)

3. How We Use Your Information

We use your information for the following purposes:

3.1 Providing Services

• To provide, maintain, and improve our services
• To respond to your requests, comments, or questions
• To send administrative information and updates
• To process and evaluate credit repair requests
• To conduct credit analysis and create dispute strategies
• To facilitate credit repair processes
• To verify your identity
• To maintain accurate records and documentation

3.2 Personalization and Marketing

• To personalize your experience and deliver tailored content
• To provide relevant credit improvement recommendations
• To send promotional communications (with your consent)
• To provide credit education and updates
• To conduct surveys and research
• To analyze marketing effectiveness
• To track campaign performance
• To send service updates and notifications

3.3 Website and Service Improvement

• Improve user experience and functionality
• Develop new products and services
• Debug and fix technical issues
• Analyze usage patterns and trends
• Monitor and prevent fraud
• Enhance security measures
• Optimize credit repair algorithms
• Improve credit analysis models

3.4 Legal and Regulatory Compliance

• Comply with credit repair laws and regulations
• Maintain required transaction records
• Respond to legal requests and subpoenas
• Protect against illegal activities
• Enforce our terms and policies
• Meet tax reporting requirements
• Conduct required due diligence

4. Legal Basis for Processing (GDPR/UK GDPR)

For users located in the European Economic Area (EEA) or the United Kingdom, the legal grounds for processing your personal data include:

• Consent: Where you have given explicit consent for certain processing activities
• Performance of a contract: When processing is necessary to perform a contract or deliver a service you have requested
• Legal obligation: When required to comply with applicable laws or regulatory mandates
• Legitimate interests: When processing is necessary for our legitimate business interests provided such interests do not override your fundamental rights
• Vital interests: In exceptional circumstances where processing is required to protect your or someone else's life

We will only process your personal data in accordance with applicable data protection laws and will ensure appropriate safeguards are in place when transferring data across borders.

5. Tracking Technologies and Analytics

5.1 Cookies and Similar Technologies

We use various tracking technologies:

• Essential cookies for website functionality
• Analytics cookies to understand usage
• Advertising cookies for targeted marketing
• Social media cookies for content sharing
• Session cookies for user authentication
• Preference cookies to remember your settings
• Security cookies for fraud prevention

You can control cookie settings through your browser preferences. However, disabling certain cookies may limit functionality.

5.2 Analytics Services

We use the following analytics services:

Microsoft Clarity

• Session recordings (excluding sensitive information)
• Heatmaps and click analytics
• User behavior analysis
• Performance monitoring
• Form interaction tracking
• Page scroll depth analysis

Google Analytics

• Traffic analysis and reporting
• Demographic information
• Interest categories
• Cross-device tracking
• Conversion tracking
• Campaign performance analysis

5.3 Advertising Services

We utilize various advertising platforms:

• Google Ads (remarketing, audience targeting)
• Meta (Facebook) Ads (custom audiences, pixel tracking)
• LinkedIn Advertising (professional targeting)
• Third-party ad networks
• Credit repair marketing platforms

You can opt out of personalized advertising through:

• Google Ad Settings
• Facebook Ad Preferences
• Network Advertising Initiative
• Digital Advertising Alliance

6. Information Sharing and Disclosure

6.1 Business Partners and Service Providers

We work with partners to perform specific services or business functions. This may involve processing your data through SDKs, APIs, cookies, or similar tools on their servers, strictly based on our instructions.

We may share information with:

• Cloud Storage Providers (e.g., Amazon Web Services)
• Credit bureaus and reporting agencies
• Credit repair attorneys and legal advisors
• Credit monitoring services
• Marketing and advertising partners
• Technology service providers
• Financial institutions (with your consent)
• Payment processors

6.2 Analytics and Marketing Partners

We share data with the following types of partners:

• Analytics Tools:
  • Google Analytics - For website traffic and user behavior analysis
  • Microsoft Clarity - For session recording and user interaction analysis
  • Hotjar - For user behavior analysis and website optimization
  • Amplitude - For user engagement and feature optimization
• Marketing Services:
  • Meta (Facebook) - For targeted advertising and custom audiences
  • Google Ads - For service promotion and remarketing
  • Microsoft Advertising - For conversion tracking and campaign optimization

6.3 Legal Requirements

We may disclose information:

• To comply with laws and regulations
• In response to legal requests
• To protect our rights and property
• To prevent fraud or illegal activity

7. Your Rights and Choices

7.1 Rights for EEA and UK Residents (GDPR/UK GDPR)

If you're located in the European Economic Area or United Kingdom, you have the following rights:

• Right to access: Obtain confirmation of whether we process your data and access your personal information
• Right to rectification: Request correction of inaccurate or incomplete data
• Right to erasure: Request deletion of your data under certain conditions
• Right to restrict processing: Request that we limit processing in specific circumstances
• Right to data portability: Request transfer of your data in a structured, commonly used and machine-readable format
• Right to object: Object to processing, particularly for direct marketing purposes
• Rights related to automated decision-making: Seek human oversight or challenge decisions based solely on automated processing

7.2 Rights Under Canadian Privacy Laws (PIPEDA and Quebec's Law 25)

If you're a Canadian resident, you have these rights:

• Access and correction: Request access to and correction of your personal information
• Consent management: Withdraw consent for data processing (subject to legal restrictions)
• Data portability: Where applicable, request your personal information in a format that enables transfer
• Knowledge of automated decisions: Receive information about automated decisions that significantly affect you

7.3 CCPA Rights (California Residents)

Under the California Consumer Privacy Act (CCPA), you have the right to:

• Know what personal information we collect and how it's used
• Access your personal information
• Request deletion of your personal information
• Opt-out of the sale of personal information
• Non-discrimination for exercising your rights
• Designate an authorized agent
• Receive your data in a portable format
• Request correction of inaccurate information

To exercise your CCPA rights:

• Email [email protected]
• Submit a request through our website

7.4 Additional State Privacy Rights

Residents of certain states may have additional rights:

• Virginia (VCDPA) - Right to access, correct, delete, obtain a copy, and opt out of targeted advertising
• Colorado (CPA) - Right to opt out of profiling, access, correct, delete, and data portability
• Utah (UCPA) - Right to access, delete, and opt out of sensitive data processing
• Connecticut (CTDPA) - Right to access, correct, delete, obtain a copy, and opt out of automated processing

7.5 Marketing Choices

• Opt-out of marketing emails through unsubscribe links or your account settings
• Adjust cookie preferences using our cookie banner or browser settings
• Modify advertising settings through ad network opt-out pages
• Control mobile app notifications in your device settings
• Choose communication preferences in your account
• Opt out of SMS messages by replying STOP

7.6 Verification Process

To protect your privacy, we will verify your identity when you exercise your rights. We may require:

• Government-issued ID
• Proof of address
• Account credentials
• Transaction history
• Other identifying information

8. Data Retention

We store your personal information only for as long as necessary to fulfill the purposes for which it is collected, or as required by law. Once the data is no longer needed, we will securely delete or anonymize it in accordance with applicable data retention practices.

Factors we consider in determining retention periods include:

• Legal and regulatory requirements
• Industry standards and best practices
• The nature and sensitivity of the data
• Business and operational needs
• Potential risks of harm from unauthorized use or disclosure

Different categories of data may be retained for different periods based on their purpose and applicable regulations. For example, transaction records may be kept longer than marketing preferences to comply with financial and tax regulations.

9. International Data Transfers

If you are located outside of the United States, Canada, or the EEA, your personal data may be transferred to and processed in jurisdictions that do not offer the same level of protection as in your home region. We ensure such transfers are conducted using appropriate safeguards, including:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• Data processing agreements with third parties that include appropriate data protection provisions
• Binding Corporate Rules where applicable
• Other legally recognized transfer mechanisms as required by applicable regulations

When transferring data internationally, we implement technical and organizational measures to ensure ongoing protection of your personal information. You have the right to obtain information about the safeguards we have put in place by contacting our Privacy Officer.

10. Data Security

We implement appropriate security measures:

• Encryption of sensitive data in transit and at rest
• Secure data storage and transmission using industry-standard protocols
• Access controls and multi-factor authentication
• Regular security assessments and penetration testing
• Employee training and security awareness programs
• Incident response and data breach notification procedures
• Vendor security assessments
• Secure document storage and destruction
• Regular security updates and patch management
• Network monitoring and intrusion detection

While we implement these safeguards, no system is 100% secure. We encourage you to:

• Use strong, unique passwords
• Enable two-factor authentication when available
• Keep your account credentials confidential
• Monitor your account for suspicious activity
• Report security concerns promptly

11. Children's Privacy

Our services are not directed at children under the age of 16 (or the applicable age in your jurisdiction). We do not knowingly collect personal information from children without verifiable parental consent. If we learn that personal data of a child has been collected inadvertently, we will promptly take steps to delete such information.

12. Changes to This Policy

We regularly review and update this Privacy Policy to reflect changes in our practices or legal requirements. Significant updates will be communicated on our website and by email when applicable. The "Last Updated" date at the beginning of this policy indicates the latest revision.

In accordance with the California Privacy Rights Act (CPRA), we commit to reviewing this Privacy Policy at least once every 12 months and will update it as needed. During this review, we ensure that our practices continue to align with current regulations and industry best practices.

We encourage you to periodically review this policy to stay informed about how we are protecting your information.

13. Contact Information

For privacy-related inquiries:

When contacting us, please include:

• Your full name
• Contact information
• Account details (if applicable)
• Nature of your request
• State of residence

Response Time: We strive to respond to all privacy requests within 45 days. If we need more time, we will notify you in writing.

14. Credit Repair Privacy

For credit repair services, we maintain additional privacy measures:

• Confidential handling of all credit information and personal details
• Secure transmission of financial information
• Limited access to your information on a need-to-know basis
• Proper disposal of records according to retention policies
• Confidentiality agreements with service providers and partners
• Protection of sensitive credit information

During credit analysis and dispute processes:

• We protect your credit reports and financial documents
• We maintain confidentiality of dispute letters and correspondences
• We secure access to your credit monitoring accounts
• We coordinate with trusted credit repair professionals
• We respect your privacy throughout the credit repair process

15. Acceptance of Terms

By using our services, you acknowledge that you have read and understood this Privacy Policy and agree to be bound by its terms. You also consent to our use and disclosure of your personal information as described in this policy.

If you do not agree with any terms of this Privacy Policy, please:

• Discontinue use of our services
• Do not provide us with any personal information
• Contact us to discuss your concerns

Your continued use of our services following the posting of changes to this Privacy Policy will be deemed your acceptance of those changes.

16. Communication Consent

By providing your contact information and using our services, you consent to receive communications from us. This includes:

• Text messages (SMS/MMS) about your credit repair services
• Phone calls regarding your credit improvement
• Emails about updates and opportunities
• Electronic notices and transaction updates
• Marketing and promotional content (with opt-out options)

Important Notes About Communications:

• Message and data rates may apply
• Consent is not required to purchase services
• You can opt out at any time through these methods:
  • Text messages: Reply STOP
  • Emails: Click unsubscribe link
  • Calls: Request to be added to our Do Not Call list
  • All communications: Contact our Privacy Officer

By providing your phone number, you consent to receive calls or texts, including those made using automated technology or pre-recorded messages. You can withdraw this consent at any time.

You retain the right to withdraw your consent for receiving marketing communications at any time without affecting the processing of your personal data for other purposes.