Privacy Policy

Personal Information

We may collect personal information that you voluntarily provide to us when you:

• Fill out contact forms on our website
• Subscribe to our newsletter
• Request a consultation or quote
• Sign up for our services
• Communicate with us via email, phone, or SMS

Types of Personal Data

This information may include:

• Name, email address, and phone number
• Company name and business information
• Billing and payment information
• Project requirements and business needs
• Communication preferences

We use the information we collect for the following purposes:

• Provide and maintain our services
• Process transactions and send related information
• Send administrative information and updates
• Respond to inquiries and provide customer support
• Send marketing and promotional communications (with your consent)
• Improve our website and services
• Comply with legal obligations

We use cookies and similar tracking technologies to operate the site and to measure analytics and advertising. Your default depends on your location: for visitors in the EU, UK, and Switzerland, no analytics or advertising technologies load until you opt in; elsewhere (including the United States), they are enabled by default and you can opt out at any time. A banner lets you accept, reject, or choose categories, and the cookie preferences control lets you change your choice whenever you like. We also honor Global Privacy Control signals.

Categories of Cookies

• Essential: Required for the site to function (security, your theme, and remembering your consent choice). Always on.
• Analytics: Help us understand how visitors use the site so we can improve it. Off until you opt in.
• Advertising: Measure and target our marketing campaigns. Off until you opt in.

Analytics Providers

• Google Analytics 4 (Google LLC), aggregate usage measurement; runs in Consent Mode with storage denied until you opt in
• PostHog, product analytics and session insights with inputs masked
• Microsoft Clarity (Microsoft Corporation), heatmaps and session replay

Advertising Partners

These partners may receive information about your visit for advertising measurement and audience building. This activity may be considered a "sale" or "sharing" of personal information under some state laws.

• Meta Pixel (Meta Platforms, Inc.), Facebook and Instagram ad measurement
• RB2B, business-level website visitor identification
• Microsoft Advertising / Bing UET (Microsoft Corporation), Bing ad conversion tracking

Your Controls

• Use the cookie preferences control on the site to accept, reject, or adjust categories at any time
• We support Global Privacy Control (GPC): if your browser sends a GPC signal, advertising cookies and any sale or sharing stay off automatically
• Visit our Do Not Sell or Share My Personal Information page (/do-not-sell) to opt out of advertising
• You can also instruct your browser to refuse cookies, though some essential features may not work

We implement appropriate technical and organizational security measures to protect your personal information:

• Encryption of data in transit using SSL/TLS
• Secure data storage with access controls
• Regular security assessments and updates
• Employee training on data protection
• Incident response procedures

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.

GDPR Rights (EU Residents)

If you are a resident of the European Union, you have the following rights:

• Right to Access: Request copies of your personal data
• Right to Rectification: Request correction of inaccurate data
• Right to Erasure: Request deletion of your personal data
• Right to Restrict Processing: Request limitation of data processing
• Right to Data Portability: Receive data in a structured format
• Right to Object: Object to processing of your personal data

CCPA Rights (California Residents)

If you are a California resident, you have the following rights:

• Right to Know: Request disclosure of personal information collected
• Right to Delete: Request deletion of personal information
• Right to Correct: Request correction of inaccurate personal information
• Right to Opt-Out: Opt out of the sale or sharing of personal information at our Do Not Sell or Share My Personal Information page (/do-not-sell)
• Right to Non-Discrimination: Exercise rights without discrimination

We honor Global Privacy Control (GPC) browser signals as a valid opt-out of sale and sharing. To exercise any other right, contact us using the information at the end of this policy.

Our marketing automation platform integrates with third-party services on behalf of authorized users. When you connect a third-party account (such as LinkedIn, Meta/Facebook, Instagram, or Google Business Profile), you authorize us to act on your behalf within the specific scopes you approve during the OAuth consent flow.

Platforms We Integrate With

• LinkedIn (Community Management API), publish posts to authorized organization pages using the w_organization_social scope
• Meta Graph API (Facebook & Instagram), publish posts to authorized Pages and Instagram Business accounts
• Google Business Profile API, publish localPosts to authorized business locations
• Google Search Console API, read-only access to search performance data for client SEO reporting
• Google Analytics 4 API, read-only access to website analytics for client reporting

What We Store

For each connected third-party account, we store the minimum credentials required to operate the integration:

• OAuth refresh tokens, encrypted at rest using AES-256
• Account/organization identifiers (e.g., LinkedIn organization URN, Meta Page ID, GBP account ID)
• Scope grants and authorization timestamp
• Audit log of every publishing action (timestamp, platform, post ID, success/failure)

What We Do NOT Do

• We do NOT read your private messages, DMs, or inbox on any platform
• We do NOT sell, share, or transfer OAuth tokens or third-party data to other parties for marketing, advertising, or any other purpose
• We do NOT access platforms outside the explicit scope you granted during OAuth consent
• We do NOT use third-party platform data to enrich profiles, train AI models, or for any purpose unrelated to operating the integration you authorized
• We do NOT post content without an explicit publishing action initiated by an authorized user or scheduled rule the authorized user configured

Revoking Access

You can revoke our access to any connected third-party account at any time:

• From our portal at portal.savagesolutions.io: Settings → Integrations → Disconnect
• Directly from the third-party platform: LinkedIn (linkedin.com/psettings/permitted-services), Meta (facebook.com/settings/apps), Google (myaccount.google.com/permissions)
• By emailing privacy@savagesolutions.io with a deletion request

Data Retention for Integration Data

When you revoke access or close your account, we delete stored refresh tokens within 24 hours and purge associated audit logs within 30 days, except where retention is required to comply with legal obligations. Published posts remain on the third-party platform under that platform's own retention policies.

Compliance

Our integrations comply with each platform's developer terms:

• LinkedIn API Terms of Use and Professional Community Policies
• Meta Platform Terms and Developer Policies
• Google API Services User Data Policy (including the Limited Use requirements)

Consent for SMS Communications

By providing your phone number and opting in, you consent to receive SMS messages from Savage Digital Solutions.

Types of SMS Messages

• Appointment reminders and scheduling confirmations
• Project updates and status notifications
• Important account information
• Customer service communications

SMS Terms

• Message frequency varies based on your interactions with us
• Message and data rates may apply
• You can opt-out at any time by replying STOP
• For help, reply HELP or contact us directly
• We do not share SMS opt-in data with third parties for marketing purposes

Your mobile information will not be shared with third parties/affiliates for marketing/promotional purposes. All the above categories exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties.