Privacy Policy

Matchless Marketing LLC Effective Date: 2026-04-28 Last Updated: 2026-04-28

Matchless Marketing LLC ("Matchless Marketing," "we," "us," or "our") respects your privacy. This Privacy Policy explains how we collect, use, disclose, and protect personal information when you visit our websites, use our applications and AI-powered tools, purchase digital products or subscriptions, or engage our consulting services (collectively, the "Services").

This Privacy Policy applies globally and includes specific disclosures for residents of the United States, the European Economic Area ("EEA"), the United Kingdom ("UK"), and Switzerland.

If you do not agree with the practices described here, please do not use the Services.

1. Who We Are and How to Contact Us

Data Controller: Matchless Marketing LLC, a Michigan limited liability company Mailing Address: 3813 Ryan Woods Cir, Allegan, MI 49010 Email for Privacy Inquiries: [email protected] Website: https://www.matchless-marketing.com

For users in the EEA, UK, or Switzerland, see Section 12 for information about your rights and how to contact us regarding your personal data.

2. Information We Collect

We collect personal information in three ways: information you provide directly, information collected automatically when you use the Services, and information from third parties.

2.1 Information You Provide

Examples include:

(a) Account information: name, email address, username, password, business name, role. (b) Billing information: billing address, tax identification (where applicable). Payment card details are collected and processed directly by Stripe and are not stored on our servers. (c) Communications: information you provide when contacting support, completing forms, requesting information, or participating in surveys. (d) User Content and AI Inputs: prompts, files, text, images, audio, video, or other materials you submit to or generate within the Services. (e) Consulting engagement information: business goals, marketing data, internal documents, customer information, or other materials shared during the engagement.

2.2 Information Collected Automatically

When you use the Services, we automatically collect:

(a) Device and browser information: IP address, browser type, operating system, device identifiers, language preferences. (b) Usage data: pages visited, features used, clicks, session duration, referring URLs, timestamps. (c) Cookies and similar technologies: as described in Section 6. (d) Log data: error logs, performance data, security event records.

2.3 Information from Third Parties

We may receive information from:

(a) Payment processors (Stripe) regarding transaction status, fraud signals, and payment method type. (b) Authentication providers (e.g., Google, Microsoft) when you log in via single sign-on. (c) Analytics and advertising partners with information about your interactions with our advertising or external sites. (d) Public sources or business partners for marketing research, lead enrichment, or fraud prevention.

2.4 Sensitive Information

We do not intentionally collect sensitive personal information (such as health, biometric, financial account numbers beyond what Stripe processes, racial or ethnic origin, religious beliefs, or precise geolocation). Please do not submit sensitive information through User Content or AI inputs unless required and lawful.

3. How We Use Personal Information

We use personal information for the following purposes:

(a) to provide, operate, secure, and maintain the Services; (b) to process payments and manage subscriptions through Stripe; (c) to deliver AI-generated output and consulting deliverables; (d) to authenticate users and prevent fraud, abuse, or security incidents; (e) to communicate with you, including transactional emails, support, and service announcements; (f) to send marketing communications, where permitted, with the option to unsubscribe; (g) to personalize your experience and improve the Services; (h) to conduct research, analytics, and product development; (i) to comply with legal obligations, enforce agreements, and protect rights, property, and safety; (j) for any other purpose disclosed at the time of collection or with your consent.

3.1 Use of AI Inputs and Outputs

Inputs you submit to AI Services and the Outputs they generate may be processed by us and by third-party AI providers (including but not limited to OpenAI, Anthropic, and Google) to deliver the Service. Where supported, we configure third-party AI providers to disable training on your inputs. We do not use your AI inputs to train our own foundational models without your explicit consent.

3.2 Aggregated and De-Identified Data

We may aggregate or de-identify personal information so it can no longer reasonably identify you and use it for any business purpose, including improving the Services and analytics.

4. Legal Bases for Processing (EEA, UK, Switzerland)

If you are located in the EEA, UK, or Switzerland, we rely on the following legal bases under the General Data Protection Regulation ("GDPR") and UK GDPR:

(a) Contract: processing necessary to provide the Services you have purchased and to perform our obligations under our Terms of Service. (b) Legitimate interests: processing necessary for our legitimate interests, such as securing the Services, preventing fraud, conducting analytics, improving the Services, and direct marketing to existing customers, where those interests are not overridden by your rights. (c) Consent: processing based on your consent, such as for non-essential cookies, marketing emails to new prospects, and any sensitive processing. You may withdraw consent at any time. (d) Legal obligation: processing necessary to comply with applicable law.

5. How We Share Personal Information

We do not sell your personal information for monetary consideration. We share personal information in the limited circumstances described below.

5.1 Service Providers

We share personal information with third-party vendors who perform services on our behalf, subject to appropriate contractual safeguards. Categories include:

(a) payment processing (Stripe); (b) hosting and infrastructure (cloud providers); (c) email delivery and marketing (transactional and marketing email providers); (d) analytics (web analytics platforms); (e) AI model providers (OpenAI, Anthropic, Google, and similar); (f) customer support and CRM tools; (g) fraud prevention and security; (h) accounting, tax, and legal advisors.

5.2 Business Transfers

If Matchless Marketing is involved in a merger, acquisition, financing, reorganization, or sale of assets, personal information may be transferred as part of that transaction. We will notify you and post a notice if your personal information becomes subject to a different privacy policy.

5.3 Legal Compliance and Protection

We may disclose personal information when required to comply with applicable law, legal process, or governmental request, or to protect the rights, property, safety, or security of Matchless Marketing, our users, or the public.

5.4 With Your Consent

We may share personal information with other parties when you direct us to or consent to the sharing.

5.5 Aggregated Information

We may share aggregated or de-identified information that does not identify you.

5.6 Targeted Advertising and Analytics

Some sharing for analytics or interest-based advertising may be considered a "sale" or "sharing" under certain US state privacy laws. See Section 11 for opt-out rights.

6. Cookies and Tracking Technologies

6.1 What We Use

We use cookies, pixels, local storage, and similar technologies to operate the Services, remember your preferences, analyze usage, and (where applicable) serve advertising.

6.2 Categories

(a) Strictly necessary: required for the Services to function (e.g., authentication, security). (b) Functional: remember your preferences and settings. (c) Analytics: help us understand how users interact with the Services. (d) Marketing/advertising: support promotional efforts and measure effectiveness.

6.3 Your Choices

Most browsers allow you to control cookies through settings. Where required by law, we display a cookie banner that allows you to accept or reject non-essential cookies. You may also use browser-based opt-out tools or industry opt-out programs (e.g., the Digital Advertising Alliance and the Network Advertising Initiative).

6.4 Do Not Track

Because there is no industry standard for "Do Not Track" signals, we do not currently respond to them. We do honor Global Privacy Control ("GPC") signals where required by law as opt-out signals for sale and sharing of personal information.

7. Data Retention

We retain personal information only as long as necessary for the purposes described in this Privacy Policy, including:

(a) for the duration of your account or business relationship with us; (b) to comply with legal, accounting, or reporting obligations; (c) to resolve disputes and enforce agreements; (d) for legitimate ongoing business needs such as fraud prevention.

When personal information is no longer needed, we securely delete or anonymize it. Backups containing personal information are deleted on a routine schedule.

8. Security

We use commercially reasonable administrative, technical, and physical safeguards designed to protect personal information against unauthorized access, alteration, disclosure, or destruction. These include encryption in transit (TLS), access controls, monitoring, vendor due diligence, and least-privilege practices.

However, no system is completely secure. We cannot guarantee absolute security and are not responsible for circumstances beyond our reasonable control. You are responsible for maintaining the confidentiality of your account credentials.

9. International Data Transfers

We are based in the United States, and personal information we collect is processed in the United States and other countries where our service providers operate.

For transfers from the EEA, UK, or Switzerland to countries that have not been deemed to provide adequate data protection by the European Commission or relevant authorities, we rely on appropriate safeguards including the Standard Contractual Clauses ("SCCs") approved by the European Commission, the UK International Data Transfer Addendum, and supplementary measures where appropriate.

You may request a copy of the relevant transfer mechanism by contacting us at [email protected].

10. Children's Privacy

The Services are not directed to children under sixteen (16). We do not knowingly collect personal information from children under sixteen. If you believe a child has provided us with personal information, please contact us at [email protected] and we will take steps to delete it.

11. Your Rights: United States

Depending on the state you live in, you may have specific rights regarding your personal information.

11.1 California Residents (CCPA/CPRA)

If you are a California resident, you have the right to:

(a) Know what personal information we collect, use, disclose, and sell or share, including categories, sources, purposes, and recipients. (b) Access a copy of your personal information collected in the prior twelve (12) months (or longer where applicable). (c) Delete personal information we have collected, subject to exceptions. (d) Correct inaccurate personal information. (e) Opt out of the sale or sharing of personal information for cross-context behavioral advertising. (f) Limit the use of sensitive personal information. (g) Non-discrimination for exercising your rights.

We do not knowingly sell or share the personal information of consumers under sixteen (16) without affirmative authorization.

11.2 Other US States

Residents of Virginia, Colorado, Connecticut, Utah, Texas, Oregon, Montana, Iowa, Tennessee, Indiana, Delaware, New Jersey, New Hampshire, and other states with comprehensive privacy laws have similar rights, which may include access, deletion, correction, portability, and opt-out of targeted advertising, sale, or profiling for significant decisions. Specific rights vary by state.

11.3 How to Exercise Rights

To submit a request, email [email protected] with the subject line "Privacy Request." We will verify your identity using information already on file. You may designate an authorized agent to submit a request on your behalf, subject to verification.

11.4 Appeals

If we deny your request, you may appeal by replying to our denial email. We will respond within the timeframe required by your state's law.

11.5 Shine the Light

California Civil Code Section 1798.83 permits California residents to request information about disclosures of personal information to third parties for direct marketing purposes. We do not currently disclose personal information to third parties for their direct marketing purposes.

12. Your Rights: EEA, UK, and Switzerland

If you are located in the EEA, UK, or Switzerland, you have the following rights under the GDPR and UK GDPR:

(a) Access: request a copy of the personal information we hold about you. (b) Rectification: request correction of inaccurate or incomplete personal information. (c) Erasure: request deletion of your personal information ("right to be forgotten"), subject to exceptions. (d) Restriction: request that we limit processing under certain circumstances. (e) Portability: request a portable copy of your data in a structured, machine-readable format. (f) Object: object to processing based on legitimate interests or for direct marketing. (g) Withdraw consent: where processing is based on consent, you may withdraw at any time without affecting prior lawful processing. (h) Automated decision-making: request human review of decisions made solely by automated processing that produce legal or similarly significant effects. (i) Lodge a complaint: file a complaint with your local data protection authority. A list of EU authorities is available at https://edpb.europa.eu/about-edpb/about-edpb/members_en. UK residents may contact the Information Commissioner's Office at https://ico.org.uk.

To exercise any of these rights, contact us at [email protected]. We will respond within the timeframes required by applicable law (generally one month under GDPR).

12.1 EU/UK Representative

If we are required to appoint an EU or UK representative under Article 27 of the GDPR or UK GDPR, we will list their contact details here. [Note: Consider appointing an Article 27 representative if you regularly target or monitor EU/UK residents at scale.]

13. Direct Marketing

We may send you marketing emails about products, services, promotions, or content we think you'll find interesting. You can opt out at any time by clicking the "unsubscribe" link in our emails or by contacting us at [email protected]. Even if you opt out of marketing, we will still send transactional and account-related communications.

14. Third-Party Links and Services

The Services may contain links to or integrate with third-party websites, applications, or services that are not operated by us. This Privacy Policy does not apply to those third parties. We encourage you to review the privacy policies of any third party before providing your personal information.

15. Data Breach Notification

In the event of a personal data breach affecting your personal information, we will notify you and applicable authorities as required by law. Notification timing and format will follow the requirements of the jurisdiction in which you reside.

16. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or business operations. When we make material changes, we will update the "Last Updated" date at the top of this Privacy Policy and provide notice through the Services or by email. Your continued use of the Services after the effective date constitutes acceptance of the updated Privacy Policy.

17. Contact Us

For questions, concerns, or requests regarding this Privacy Policy or our privacy practices, contact us at:

Matchless Marketing LLC 3813 Ryan Woods Cir, Allegan, MI 49010 Email: [email protected] Website: https://www.matchless-marketing.com

Thank you for trusting Matchless Marketing with your information.