ClickIt CMO Privacy Policy

Last updated: 13 May 2025

1. Who We Are

ClickIt CMO, LLC (“ClickIt CMO,” “we,” “our,” “us”) provides AI-driven digital-marketing services—including our website clickitcmo.com (the “Site”) and the Rosie AI Concierge chat widget.

EU/UK Representative: DataRep, ATTN ClickIt CMO, 107-111 Fleet St, London EC4A 2AB, UK.
US Contact: privacy@clickitcmo.com

2. The Quick Version (tl;dr)

  • We collect only what we need to deliver killer AI search optimization and to answer your questions via Rosie.

  • We never sell personal data. We may share it with trusted processors (hosting, analytics, email delivery, fraud-prevention).

  • You control your data—you can access, correct, delete, or opt-out at any time.

  • Cookies are opt-in (via Complianz banner). Non-essential cookies fire only if you give consent.

  • Rosie’s AI brain (OpenAI API + first-party embeddings) sees your chat text only to answer you and train better FAQ responses. No ad-profiling.

  • Questions? privacy@clickitcmo.com

3. What Data We Collect & Why

Category Examples Purpose Legal Basis*
Identity & Contact Name, email, company, phone Respond to inquiries, schedule consults, create invoices Contract; Legitimate interest
Chat Transcripts Text you type to Rosie Provide real-time answers, improve NLP models Consent
Technical IP address, browser, device, reCAPTCHA score Site security, spam blocking Legitimate interest
Analytics Page views, events (anonymized via Google Analytics 4) Optimize content & UX Consent
Cookie Preferences Consent string (Complianz) Remember your settings Legal obligation

*GDPR Art. 6 shown. Equivalent grounds under CPRA/UK DPA apply.

4. AI & Large-Language-Model Disclosures

  • Rosie AI Concierge uses OpenAI GPT-4-turbo via EU-hosted endpoints; prompts + responses are stored up to 30 days for abuse monitoring, then anonymized.

  • We embed select chat Q&As into our FAQ database; any personal details are stripped first.

  • No automated decisions produce legal or similarly significant effects.

5. Cookies & Tracking Tech

Tool Type Lifespan Consent Required?
Google Tag Manager Loader Session Essential
GA4 (_ga) Analytics 14 mo Yes
Rank Math (rank-math-option) SEO schema 6 mo No (functional)
reCAPTCHA v3 Security 6 mo Essential
ShortPixel Image CDN Session No (functional)
WP Mail SMTP Server-to-server n/a Essential

The Complianz banner lets you: Accept All, Deny Non-Essential, or Customize.

6. How We Share Data

  • Processors: WP Engine (hosting), Google Cloud (AI & SMTP), Zoho Mail (transactional), Stripe (payments).

  • Legal: We’ll disclose if required by law or to defend our rights.

  • No Sale/Share for ads: We do not sell or share personal information for cross-context behavioral advertising.

7. International Transfers

Servers are U.S.-based (WP Engine, Texas). EU/UK data moves under SCCs + supplementary measures (encryption in transit & at rest).

8. Your Rights

  • Access / Portability – Get a copy of your data.

  • Rectification / Deletion – Fix or erase it.

  • Restrict / Object – Limit processing or say “stop.”

  • Opt-Out of Cookies – Via banner or browser settings.

  • CPRA – Opt-out of “sharing” (we don’t), limit sensitive data (none collected).

Email privacy@clickitcmo.com with your request. We’ll respond within 30 days.

9. Data Retention

Inquiries & chat transcripts: 18 months
Client records (if you buy): 7 years (tax)
Server logs: 30 days
Anonymized analytics: 26 months

10. Security

  • TLS 1.3, HSTS, weekly WP core & plugin patching.

  • reCAPTCHA v3 + server-side spam scoring for all forms.

  • Least-privilege access; 2FA on admin & hosting.

11. Children

Services not directed to kids < 16. We don’t knowingly process such data.

12. Changes

We’ll timestamp & post any update here. Major changes → banner notice + email to subscribers.

13. Contact

Shaun W.  Data Protection Lead
privacy@clickitcmo.com
Colorado Springs, CO 80905, USA