This Privacy Policy describes how North Privacy Advisors LLC collects, uses, stores, discloses, and protects personal information received through NorthPrivacyAdvisors.com and through our consulting services. It is written to satisfy the notice requirements of all active US state consumer privacy laws currently in effect — and reflects the standard of transparency we hold our clients to. We practice what we advise. This policy is accurate, current, and maintained on a defined review schedule.
North Privacy Advisors LLC is a privacy consulting firm based in Houston, Texas. We provide fractional privacy leadership, compliance assessments, privacy program design, and related advisory services to US businesses navigating state and federal privacy obligations.
This policy governs information collected through our website and initial intake processes for consulting services. Client engagements are governed by separate written engagement agreements.
Controller: North Privacy Advisors LLC, Houston, Texas
Contact: [email protected]
We collect only what we need.
We do not collect Social Security numbers, financial account numbers, government-issued ID numbers, health information, precise geolocation, biometric data, or other sensitive personal information through this website.
We do not use cookies, pixel trackers, advertising technologies, or third-party analytics on this website. Standard web server access logs maintained by our hosting provider may capture IP addresses, browser type, and page requests for security purposes only.
We do not purchase, license, or obtain personal information from data brokers or third-party marketing sources.
We do not use personal information to build advertising profiles, engage in behavioral targeting, or sell to third parties.
We do not sell personal information. We do not share personal information for cross-context behavioral advertising.
Airtable, Inc.
Cloud database for form submissions and assessment responses. Data stored in the US.
Calendly LLC
Scheduling platform. Collects name and email when you book a discovery call.
Netlify, Inc.
Website hosting. Processes server access logs.
Google LLC
Google Workspace for internal document management. Access restricted to authorized personnel.
We do not permit service providers to use your information for their own marketing.
We may disclose personal information if required by law, subpoena, court order, or regulatory request, or where reasonably necessary to protect our rights, the rights of others, or the safety of any person.
Depending on where you reside, you may have the following rights regarding your personal information:
Right to Know
What categories of personal information we collect about you
Right to Access
A copy of the specific personal information we hold about you
Right to Delete
Erasure of your personal information, subject to limited exceptions
Right to Correct
Correction of inaccurate personal information we hold about you
Right to Opt-Out
We do not sell or share personal information — this right is not applicable
Right to Non-Discrimination
We will not discriminate against you for exercising any of these rights
To exercise any of these rights, contact us at [email protected]. We will respond within 45 days. We may need to verify your identity before processing certain requests.
We retain personal information for as long as necessary to fulfill the purposes for which it was collected, maintain business records, comply with legal obligations, and resolve disputes. Contact and inquiry data is retained for a maximum of 3 years from last contact unless a consulting engagement is established, in which case retention is governed by the engagement agreement.
You may request deletion of your personal information at any time by contacting us at [email protected].
We implement reasonable technical and organizational measures to protect the personal information you share with us against unauthorized access, disclosure, alteration, or destruction. These measures include access controls, password protection, two-factor authentication on all service provider accounts, and encryption of data in transit.
No security system is impenetrable. We cannot guarantee absolute security of your information. In the event of a breach that requires notification under applicable law, we will notify affected individuals in accordance with applicable state breach notification timelines.
California residents (CCPA/CPRA): We do not sell or share personal information. We do not use sensitive personal information beyond the purposes disclosed in this policy. The categories of personal information we collect are described in Section 02. To exercise your California privacy rights, contact us at the address above.
Texas residents (TDPSA): We do not sell personal data or process personal data for targeted advertising. To exercise your Texas privacy rights, contact us at the address above.
Virginia, Colorado, Connecticut, and other state residents: You may have additional rights under your state's privacy law. Contact us to exercise any applicable rights.
We review this Privacy Policy at least annually and any time we make a material change to our data practices. When we update this policy, we will revise the Effective Date at the top of this page. Material changes will be communicated to individuals who have provided contact information where feasible.
Questions about this policy? Contact us at [email protected].