PRIVACY POLICY

Last Updated: November 11, 2024

INTRODUCTION

This Privacy Policy describes how Discovery Business Support Services, LLC collects, uses, stores, and protects information obtained through the AI Jumpstart subscription service, including our website (discovery-business.com), consultation sessions, group meetings, office hours, and related services (collectively, the "Service"). We are committed to protecting your privacy while delivering valuable AI advocacy and consulting services.

1. SCOPE OF THIS POLICY

This Privacy Policy applies to all aspects of our Service delivery, including:

  • One-on-one consultations conducted via Zoom

  • Group strategy sessions and office hours

  • Communications via Slack and email

  • Content and materials accessed through discovery-business.com

  • Newsletter and update distribution

  • Payment processing and subscription management

2. INFORMATION WE COLLECT AND WHY

2.1 Account and Profile Information We collect and maintain information necessary to create and manage your AI Jumpstart subscription, including:

  • Your name and business contact information

  • Company name and industry

  • Payment and billing information

  • Login credentials for our platform

  • Communication preferences

  • Subscription tier and status

This information is essential for providing our Service and maintaining our business relationship with you.

2.2 Service Usage Information During your use of the Service, we collect:

  • Consultation scheduling and attendance records

  • Group session participation data

  • Questions submitted during office hours

  • Material download and access logs

  • Platform usage statistics

  • Support requests and interactions

This information helps us improve our Service and ensure quality delivery.

2.3 Communication Data We maintain records of:

  • Email correspondence

  • Slack channel communications

  • Session notes and action items

  • Feedback and suggestions

  • Support tickets and resolutions

This information enables continuous service improvement and effective support delivery.

2.4 Technical Data Our website, hosted on Squarespace, automatically collects:

  • Essential cookie data for site functionality

  • IP addresses for security and site operation

  • Browser type and version

  • Device information

  • Access times and dates

  • Basic website usage data necessary for service delivery

We do not implement additional tracking or analytics beyond Squarespace's essential functionality.

3. USE OF AI TOOLS AND DATA PROTECTION

3.1 AI Tool Implementation In delivering our Service, we utilize various artificial intelligence tools, including generative AI platforms. Our use of these tools adheres to strict protocols:

  • Client data is never used to train AI models

  • Information shared with AI tools is limited to non-confidential content

  • AI processing is temporary and purpose-specific

  • All AI-processed data is deleted within 30 days

  • No sensitive personal information is shared with AI tools

3.2 AI Data Protection Measures We implement specific safeguards for AI tool usage:

  • Pre-screening of AI platforms for security compliance

  • Isolation of client data from AI training sets

  • Regular audits of AI tool usage

  • Strict access controls and monitoring

  • Clear documentation of AI data handling

4. INFORMATION SHARING AND DISCLOSURE

4.1 Service Providers We share information only with essential service providers:

  • Zoom for video consultations

  • Slack for community communication

  • Squarespace for website hosting and payment processing

  • Cloud storage providers for materials

Each provider is bound by data protection agreements and privacy requirements.

4.2 Business Operations We do not sell, rent, or trade your information. Information sharing is limited to:

  • Essential service delivery

  • Payment processing

  • Legal compliance

  • Service improvement

  • Security maintenance

5. DATA SECURITY MEASURES

5.1 Platform Security We protect your information through:

  • Industry-standard encryption

  • Secure socket layer (SSL) technology

  • Regular security audits

  • Access control systems

  • Monitoring and logging

  • Incident response procedures

5.2 Session Security For consultations and group sessions:

  • Unique meeting IDs

  • Password protection

  • Waiting room features

  • Participant authentication

  • Recording access controls

6. YOUR PRIVACY RIGHTS AND CHOICES

6.1 Access Rights You may request:

  • Copies of your personal information

  • Corrections to inaccurate data

  • Deletion of your information

  • Export of your data

  • Modification of preferences

6.2 Communication Preferences You control:

  • Newsletter subscriptions

  • Service updates

  • Marketing communications

  • Platform notifications

  • Session recordings access

7. DATA RETENTION AND DELETION

7.1 Retention Periods We retain your information for:

  • Active subscription duration

  • Required legal periods

  • Essential business purposes

  • Quality assurance

  • Service improvement

Specific retention periods:

  • Account information: Duration of subscription plus 2 years

  • Session recordings: 12 months

  • Communication logs: 24 months

  • Payment records: 7 years (legal requirement)

  • Support tickets: 24 months

7.2 Deletion Procedures Upon subscription termination:

  • Account deactivation within 24 hours

  • Personal data removal within 30 days

  • Backup deletion within 90 days

  • Archive removal within 12 months

  • Immediate cessation of marketing communications

8. COOKIES AND WEBSITE TRACKING

8.1 Essential Cookies Our website, hosted on Squarespace, uses only essential cookies necessary for basic platform functionality and security. These cookies are required for:

  • Website operation and loading

  • User authentication when accessing member content

  • Basic site functionality

  • Security measures

  • Session management

We do not implement additional tracking cookies or third-party analytics tools.

9. INTERNATIONAL USERS AND GDPR

For users accessing our Service from the European Union (EU) or European Economic Area (EEA):

9.1 Legal Basis for Processing We process your personal data based on:

  • Contract performance (service delivery)

  • Legal obligations

  • Legitimate business interests

  • Your explicit consent where required

9.2 Data Rights EU/EEA users have additional rights including:

  • Right to be informed

  • Right of access

  • Right to rectification

  • Right to erasure

  • Right to restrict processing

  • Right to data portability

  • Right to object

  • Rights related to automated decision making

10. CALIFORNIA PRIVACY RIGHTS

Under the California Consumer Privacy Act (CCPA), California residents have specific rights:

10.1 Your Rights

  • Right to know what personal information we collect and how we use it

  • Right to request deletion of personal information

  • Right to opt-out of the sale of personal information (note: we do not sell personal information)

  • Right to non-discrimination for exercising these rights

10.2 Exercising Your Rights To exercise your CCPA rights, contact us at jesse@discovery-business.com. We will respond to verifiable requests within 45 days.

11. CONTACT INFORMATION

For privacy-related inquiries:

Discovery Business Support Services, LLC 1000 Speer Blvd, Unit 701 Denver, CO 80204 jesse@discovery-business.com

12. ACCEPTANCE

By using the Service, you acknowledge this Privacy Policy and consent to the collection, use, and disclosure of your information as described herein.

Last Updated: November 11, 2024