Privacy Policy

Effective Date: July 17, 2025

Last Updated: December 29, 2025

INTRODUCTION

We at A&I Archkey Systems, LLC; A&I Threshold Consulting, LLC; and A&I Keyframe Media, LLC, collectively operating under Align & Innovate ("Align & Innovate," "we," "us," or "our") know that your privacy is important. This privacy policy ("Policy") is designed to assist you in understanding how we will collect and use the information you provide when you use (i) our publicly available websites (the "Sites"), (ii) our software applications and platforms (the "Apps"), and (iii) other related services on which we post a direct link to this privacy policy (together with Apps, the "Services").

Please read this Policy to learn more about the ways in which we collect and use your information. If we make any material changes to this Policy, we will notify you in accordance with the process described in the "Revisions or Changes" section of this Policy, below. By using our Services, you consent to our collection, use, and disclosure of your information as described in this Policy.

This Policy does not cover any other data collection or processing, including without limitation the data we host for our registered customers via the Align & Innovate software platforms, consulting portals, media management systems, and educational platforms ("Platform"). If you use our Platform, the data that you (and your customers) submit as you use our Platform will be governed by the applicable Align & Innovate agreement, and as required by law.

For the purposes of our Policy, when we refer to "you" or to a "customer" we mean any past, current or prospective customer of Align & Innovate, including any visitor to one of our Sites.

COLLECTION OF PERSONAL INFORMATION

What We Collect

In some situations you may provide us with your personally identifiable information, which could include your name, street address, telephone number, email address, job title, payment card number, other financial account number(s), mother's maiden name or other family names, date and place of birth, criminal record, arrest record, driver's license number, photographic image, voice recordings, video recordings, and any other information we collect about you that by itself is not personally identifiable information but if combined with personally identifiable information could be used to personally identify you.

You may provide us with personally identifiable information when you enter a sweepstakes or contest; complete a survey; apply for a job via the Sites; apply to become an Independent Sales Consultant (ISC) or affiliate partner; make a purchase; download an e-book, white paper, or other digital content; register for workshops, training programs, or educational events; request customer support; subscribe to certain services, email notifications and/or newsletters; register for our Platform; register and/or set up an account/profile to access, visit and/or use certain portions of our Sites; provide comments, reviews, feedback, or testimonials about our products or Services; engage our consulting or fractional executive services; contract for media production services; purchase or access our publications; and any other transactions between you and us on or in relation to our Services.

We may use your email and other addresses and contact information for customer support, required notifications, product and policy updates and marketing releases, but we will not use this information for anything else not described in this Policy.

Information We Automatically Collect

When you access our Sites whether by computer, mobile phone or other device, we automatically collect certain information about your use of our Sites (this information may include without limitation: geographical location and IDs of your computer, mobile or other device; bandwidth used; system and connection performance; browser type and version; operating system; referral source; length of visit; page views; IP address or other unique identifier for your computer, mobile phone or other device; your mobile carrier) using technologies such as cookies and web beacons. When you download and use our Apps, we may also collect additional information about your mobile device, including the hardware model, operating system and version, mobile network information and time zone.

SERVICE-SPECIFIC DATA COLLECTION

The following sections describe specific types of data we collect based on the services you use:

1. CRM & Marketing Automation Services (A&I Archkey Systems)

When you use our CRM and marketing automation services, we may collect:

• Customer relationship management data including contact interactions, communication preferences, and engagement history

• Marketing automation data including email campaign performance, SMS communications, and automated workflow interactions

• Platform usage data including access logs, feature utilization, and system performance metrics

• Sub-account data for clients using white-labeled platform solutions

• Integration data from third-party tools connected through our platform

• Payment and subscription data for tiered service plans (Starter, Professional, Enterprise)

We primarily utilize GoHighLevel (GHL) as our CRM and marketing automation platform. Data processed through GHL is subject to both this Privacy Policy and GoHighLevel's privacy policy. We maintain administrative access to client accounts on the platform for support and service delivery purposes.

2. Consulting & Fractional Executive Services (A&I Threshold Consulting)

When you engage our consulting, fractional Chief AI Officer (CAIO), fractional Chief Operating Officer (COO), or business growth strategy services, we may collect and access:

• Confidential business information including strategic plans, operational procedures, and proprietary methodologies

• Financial data including budgets, forecasts, revenue reports, and business performance metrics

• Organizational data including employee information (names, roles, performance data accessed during engagements)

• System access credentials and login information for client platforms and tools

• Technology infrastructure details including software systems, integrations, and technical specifications

• Grant application data including financial statements, business plans, organizational history, and proprietary business growth strategies submitted for funding purposes

• Industry-specific regulated data when consulting with clients in financial services (subject to FINRA/SEC requirements), healthcare (HIPAA compliance), or other regulated sectors

Confidentiality Commitment: All information accessed during fractional executive and consulting engagements is treated as strictly confidential and subject to non-disclosure agreements. We implement enhanced security protocols for clients in regulated industries. Client confidential data is never shared with third parties except as explicitly authorized in writing by the client or as required by law. We maintain separate confidentiality protocols for each client engagement to prevent cross-contamination of confidential information.

3. Media Production Services (A&I Keyframe Media)

When you engage our photography, videography, or media production services, we collect and maintain:

• Visual content including photographs, video footage (raw and edited), audio recordings, and final deliverables

• Location data from production shoots including GPS coordinates, venue information, and site access details

• Model releases and consent forms including likeness rights, usage permissions, and distribution authorizations

• Third-party talent information for contractors, models, voice talent, and production crew

• Client brand guidelines, proprietary visual assets, and intellectual property materials

• Project specifications including creative briefs, shot lists, and production schedules

• Licensing data for stock footage, music, fonts, and other third-party creative assets

Content Custody and Retention: Raw footage and working files are retained for 90 days after final deliverable approval unless otherwise specified in our service agreement. Final deliverables are retained for 2 years. Clients may request extended retention or immediate deletion of all project files. All media files are stored on encrypted, secure servers with restricted access. We maintain strict version control and backup procedures for all client content.

Usage Rights: Client content is used solely for contracted deliverables unless explicit written permission is granted for portfolio, promotional, or award submission purposes. We obtain separate authorization before using any client work in our marketing materials, case studies, or public portfolio.

4. Educational Services & Publications

When you participate in our workshops, training programs, purchase publications, or join our educational community, we collect:

• Workshop registration data including attendance records, session preferences, and participation history

• Learning engagement data including questions asked, case studies discussed, and interactive exercise responses

• Video recordings of training sessions if you participate in recorded workshops (with prior notice and consent)

• Community platform data including forum posts, peer interactions, and resource downloads on our GoHighLevel community platform

• Book purchaser information for "Aligned Before AI" and future publications (note: direct Amazon KDP purchases are subject to Amazon's privacy policy)

• Newsletter subscriptions specific to book readers and educational content

• Testimonials and reviews from workshop participants and book readers

• Access logs for downloadable resources, templates, and supplementary materials

Workshop recordings are used solely for internal training improvement and authorized participant access unless explicit consent is obtained for broader distribution. Community platform interactions may be visible to other community members. Beta reader and advance review copy data is kept confidential and used only for publication development purposes.

5. Independent Sales Consultant (ISC) & Partner Program Data

When you apply for or participate in our ISC program, affiliate program, or partner network, we collect:

• Application data including professional background, sales experience, references, and motivation statements

• Financial information including tax identification numbers (W-9 forms), payment preferences, and banking details for commission payments

• Performance metrics including sales data, client acquisition numbers, revenue generated, and tier progression tracking

• Commission calculations and payment history across all program tiers (Affiliate 15%, Bronze-Platinum ISC 10-25%, Diamond ISC 30% plus profit sharing)

• Referral tracking data including attribution codes, client source identification, and conversion analytics

• Training completion records for ISC certification and ongoing education requirements

• Communication history including coaching sessions, performance reviews, and support interactions

• Profit-sharing calculations and distributions for Diamond-level ISCs

ISC Data Protection: All ISC financial and performance data is kept strictly confidential and accessible only to authorized personnel managing the partner program. Commission and profit-sharing calculations are maintained with audit-trail documentation. ISC data is never shared with other ISCs or third parties except as required for payment processing or tax compliance. Upon termination of ISC relationship, performance data is archived per legal retention requirements but financial distributions cease as specified in the ISC agreement.

ARTIFICIAL INTELLIGENCE PROCESSING

As part of our "Aligned Before AI" methodology and service delivery, we utilize various artificial intelligence tools and platforms to enhance our services. This section describes how AI processing may interact with your data:

AI Tools and Platforms We Use

We may utilize the following types of AI platforms in service delivery:

• Large language models (such as ChatGPT, Claude, and similar tools) for content generation, analysis, and strategic consultation support

• AI-powered media generation tools (including Sora and similar platforms) for video creation and media production

• Marketing automation AI features within our CRM platform for campaign optimization and personalization

• AI analytics tools for business intelligence and performance insights

• Transcription and content analysis AI for workshop recordings and media production

How Your Data May Be Processed by AI

When we use AI tools in service delivery, your data may be processed as follows:

• Anonymous or aggregated data only: We preferentially use AI tools with data that cannot identify you personally

• Client-authorized processing: For consulting and fractional executive services, AI tools may process confidential business information only with explicit client authorization

• Media enhancement: Client media files may be processed through AI tools for editing, enhancement, or generation purposes as part of contracted deliverables

• Content generation: AI may be used to draft materials, analyze data, or generate recommendations that inform our consulting advice

Data Protection in AI Processing

Training Data Exclusions: We utilize enterprise-tier AI services and API access that exclude your data from being used to train AI models. Client data processed through AI tools is not retained by AI providers or used to improve their models. We maintain data processing agreements with AI service providers that prohibit retention or training use of client data.

Data Residency: AI processing typically occurs on servers in the United States. For clients with specific data residency requirements, we can arrange for AI processing through region-specific endpoints or abstain from AI processing entirely.

Client Opt-Out Rights: You may request that your data not be processed through AI tools. For consulting clients, we will discuss alternative methodologies that achieve similar outcomes without AI assistance. For media production clients, we can provide manual editing alternatives, though this may affect project timelines and pricing. Contact us to opt out of AI-assisted service delivery.

Human Oversight: All AI-generated content, analysis, and recommendations are reviewed and validated by human experts before delivery to clients. We do not provide unreviewed AI outputs as final deliverables.

PAYMENT PROCESSING

We use third-party payment processors to handle financial transactions securely. We do not directly store complete credit card numbers or sensitive payment credentials on our servers.

Payment Processors

We utilize the following payment processing services:

• Stripe for credit card processing, ACH payments, and subscription billing management

• PayPal for alternative payment options

• Direct bank transfers for enterprise clients and large consulting engagements

• Payment processing integrated within GoHighLevel for CRM service subscriptions

Each payment processor maintains PCI DSS compliance and operates under their own privacy policies. We recommend reviewing the privacy policies of Stripe and PayPal to understand how they handle your payment information.

Payment Data We Collect

In connection with payment processing, we may collect and store:

• Billing contact information (name, email, billing address)

• Last four digits of credit card numbers and card expiration dates

• Transaction history including dates, amounts, and services purchased

• Subscription status and recurring payment schedules for three-tier service plans

• Failed payment attempts and retry history

• ISC commission payment records and tax documentation

• Refund and chargeback information

PCI Compliance: We maintain PCI DSS compliance standards through our payment processors. Full credit card numbers and CVV codes are transmitted directly to payment processors and are never stored on our servers. We use tokenization to reference payment methods for recurring subscriptions without storing sensitive card data.

Subscription Billing: For recurring subscription services, your payment method is securely stored by our payment processor and automatically charged according to your subscription tier and billing cycle. You will receive email notifications before each recurring charge. You may update or remove payment methods through your account dashboard or by contacting customer support.

Failed Payment Handling: If a scheduled payment fails, we will attempt to process the payment up to 3 times over a 10-day period. You will receive email notifications of failed payments. If payment cannot be processed after retry attempts, your service may be suspended until payment is received. We do not charge fees for failed payment attempts, though your financial institution may assess fees.

DATA INTEGRITY AND SECURITY

We use reasonable and diligent efforts to maintain accurate information on our customers, and have adopted and implemented reasonable industry standard security procedures to protect any such information collected. We constantly monitor our systems, which are protected using industry-standard security measures. Although Align & Innovate will use reasonable efforts to secure network communications and our Sites, we cannot guarantee that the information submitted to, maintained on, or transmitted from our systems will be completely secure.

Our security measures include:

• Encryption of data in transit using SSL/TLS protocols

• Encryption of sensitive data at rest on secure servers

• Multi-factor authentication for system access

• Regular security audits and vulnerability assessments

• Restricted access controls with role-based permissions

• Secure backup procedures with encrypted off-site storage

• Employee training on data security and privacy best practices

• Enhanced security protocols for clients in regulated industries (financial services, healthcare)

DATA BREACH NOTIFICATION

In the unlikely event of a data breach that compromises your personal information, we are committed to transparency and prompt notification in accordance with applicable laws.

Our Data Breach Response Process

In the event of a confirmed data breach, we will:

1. Immediate Assessment: Conduct an immediate investigation to determine the scope, nature, and severity of the breach

2. Containment: Take immediate steps to contain the breach and prevent further unauthorized access

3. Notification Timing: Notify affected individuals without unreasonable delay and within timeframes required by applicable law (typically within 72 hours of discovery for GDPR, and as required by state breach notification laws)

4. Notification Method: Contact affected individuals via email to the address on file, and post a notice on our website if the breach affects a large number of individuals

5. Notification Content: Provide clear information about what data was compromised, when the breach occurred, what we are doing in response, and what steps you can take to protect yourself

6. Regulatory Notification: Report the breach to appropriate regulatory authorities as required by law

7. Remediation: Implement additional security measures to prevent similar breaches in the future

8. Support Services: Offer appropriate support services such as credit monitoring or identity theft protection if the breach involves sensitive financial or identity information

Types of Information We Will Provide

Our breach notification will include:

• A description of what happened and when we discovered it

• The types of personal information that were involved

• What we have done or are doing in response

• Steps you can take to protect yourself

• How to contact us for more information

• Resources for additional assistance

Contact for Breach-Related Concerns

If you believe you have discovered a security vulnerability or potential data breach, please contact our Privacy Officer immediately at [email protected] or (954) 466-5205. Please do not disclose the vulnerability publicly until we have had an opportunity to address it.

DATA RETENTION

We retain personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. When we no longer need your personal information, we will securely delete or anonymize it.

Specific Retention Periods by Data Type

• Account and contact information: Retained while your account is active plus 7 years after closure for legal and tax compliance

• Payment and transaction records: Retained for 7 years from transaction date for tax, accounting, and legal compliance

• Marketing communications opt-outs: Retained indefinitely to ensure we honor your preferences

• Media production files: Raw footage and working files retained for 90 days after final approval; final deliverables retained for 2 years unless client requests extended retention or immediate deletion

• Consulting engagement data: Confidential client information retained per contractual agreement, typically 3-7 years after engagement conclusion

• ISC program data: Financial records retained for 7 years after ISC relationship termination; performance data archived per legal requirements

• Workshop and training records: Attendance and completion records retained for 3 years; recordings retained per participant consent

• Website analytics and cookies: Typically retained for 24-38 months

• Security and access logs: Retained for 1 year for security monitoring and incident response

• Legal hold data: Information subject to litigation, investigation, or regulatory request is retained until the matter is resolved

You may request earlier deletion of your personal information by contacting our Privacy Officer, subject to our legal and contractual obligations to retain certain data.

BIOMETRIC DATA

Current Collection Status

We do not currently collect, store, or process biometric data such as facial recognition data, fingerprints, voiceprints for identification purposes, retina or iris scans, or other biometric identifiers as defined by applicable biometric privacy laws including the Illinois Biometric Information Privacy Act (BIPA), Texas Capture or Use of Biometric Identifier Act (CUBI), and similar state laws.

Voice and Video Recordings

While we may collect voice recordings through workshop sessions, podcast recordings, and video footage through media production services, these recordings are:

• Used solely for the intended purpose (educational content, media deliverables, etc.)

• Not processed through biometric analysis systems for identification or verification

• Not used to create biometric templates or identifiers

• Subject to informed consent before recording

• Retained according to the timelines specified in our Data Retention section

Future Biometric Use

Should we decide to collect, use, or store biometric data in the future, we will:

• Update this Privacy Policy with specific biometric data provisions

• Obtain separate, explicit informed consent before collecting any biometric information

• Provide clear notice of the purpose and duration of biometric data collection

• Implement enhanced security measures specific to biometric data protection

• Comply with all applicable biometric privacy laws including BIPA and similar state regulations

• Provide clear procedures for biometric data deletion upon request or after the purpose is fulfilled

• Never sell, lease, or trade biometric information

ACCESS TO CUSTOMER INFORMATION; UPDATING CUSTOMER INFORMATION

A customer may (i) access any of their personally identifiable information that we collect and maintain, or (ii) correct, update or delete their personally identifiable information maintained by us, in each case by contacting us by telephone or mail using the contact information provided below. We will try and respond to your request promptly and in all cases within 30 days. To protect customer privacy and security, we reserve the right to take reasonable steps to verify a customer's identity prior to granting access to or processing changes or corrections to such information. We will retain a customer's personal information for so long as its account is active or as reasonably needed by us to provide our Services. We may also retain and use such information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.

HOW WE USE PERSONAL INFORMATION

General

Align & Innovate may use personally identifiable information to respond to your inquiries, and/or address other requests or questions; enable your use of the Services; contact you regarding your purchase; consider and respond to your job application or ISC program application; collect payments from you; process commission payments to ISCs; deliver consulting, fractional executive, or media production services; facilitate workshop registration and participation; fulfill book and publication orders; send you goods or services purchased through our Sites; provide information and updates related to your purchase; send invoices; send email notifications that you have specifically requested; send email marketing communications relating to our business, which we think may be of interest to you; and send email messages containing company news, product or service information. We may also use information collected through our Sites for research regarding the effectiveness of the Sites and related marketing, advertising and sales efforts.

We may disclose your personally identifiable information (i) to the extent required by law or if we have a good-faith belief that such disclosure is necessary in order to comply with official investigations or legal proceedings initiated by governmental and/or law enforcement officials, or private parties, including but not limited to: in response to subpoenas, search warrants, or court orders; (ii) if we sell or transfer all or a portion of our company's business interests, assets, or both, or in connection with a corporate merger, consolidation, restructuring, or other company change, or (iii) as otherwise disclosed in the terms and conditions of our agreements with customers, including our separately posted and applicable Terms of Use for the relevant Services.

Requests for Information

If you provided your email address or phone number on the Sites to receive information from Align & Innovate, you agree that Align & Innovate, and our fulfillment partners may contact you using the contact information you provide us regarding our products and Services, such as offers, support and product updates. Align & Innovate and our fulfillment partners may make such contact by email, phone and/or text, including the phone number you provide us, and we may use automated dialers technology in order to more efficiently connect you with one of our representatives. Your mobile phone carrier's standard message and data rates may apply to text messages. You are not required to provide your phone number as a condition of purchasing products or Services, and you can opt out at any time as described in the "Opting Out" section found below within this Policy.

Email

We may communicate with a customer through email using the customer's personal contact information on file in our systems to inform the customer of new products, important industry news or information about Services and upgrades provided by Align & Innovate.

Disclosures to Third Parties (Service Providers)

We may disclose information collected from a customer to our independent contractors and business partners who have agreed to (i) hold this information in confidence, and (ii) not use it for any purpose except to carry out the services they are providing for Align & Innovate. Such contractors and business partners include those:

• Hosting our Services or other data (cloud hosting providers, server infrastructure)

• Managing the functionality of our Services (technical support providers)

• Hosting customer relationship management, marketing automation, customer service and other software platforms on our behalf (including GoHighLevel)

• Processing credit or other payment card payments (Stripe, PayPal, etc.)

• Collecting delinquent accounts

• Fulfilling and processing orders

• Delivering products you have ordered

• Conducting background checks if you submit an application for employment or ISC partnership

• Assisting with marketing and promotions

• Enabling us to send you email (email service providers)

• Providing AI processing services (as described in the Artificial Intelligence Processing section)

• Workshop and training platform services

• Media production subcontractors and equipment providers

Disclosures to Third Parties (Strategic Partners)

Align & Innovate has a number of partner programs designed to maximize our customers' ability to use our Services and to purchase complementary products and services that may be used in tandem with our Services. We may disclose information collected from a customer to one or more trusted partners for the purpose of such partner(s) providing assistance to the customer in its use of the Services and for the purpose of marketing complementary or value-add products and services to the customer. In each case such trusted partner will have agreed to (i) hold this information in confidence, and (ii) not use it for any purpose except for the purposes described above.

Disclosures of Aggregate Information

Align & Innovate may also disclose aggregate, anonymous data based on information collected from customers. Should a sale of any Align & Innovate entity's business ever occur, collected customer information may be transferred along with the sale. In the event of a business transfer, merger, acquisition, or sale of assets:

• Customer information will be treated in accordance with this Privacy Policy

• Active client contracts and service obligations will be honored by the acquiring entity

• ISC commission obligations and profit-sharing arrangements will be transferred or settled according to ISC agreements

• Customers will be notified via email and prominent website notice at least 30 days before any transfer of their data to a new entity

• Customers will have the opportunity to opt-out or request data deletion before the transfer, subject to contractual obligations and legal requirements

• If there are any significant changes to how customer information will be handled post-transfer, we will provide clear notice and obtain consent where required by law

Disclosures Made by You within Interactive Areas of a Site

If you use a bulletin board, blog, comment or discussion forum, chat room, or community platform made available on a Site, you should be aware that any personally identifiable information you submit there can be read, collected, or used by other users of these forums, and could be used to send you unsolicited messages, and could be potentially searchable through search engines. We are not responsible for the potential misuse by third parties of any personally identifiable information that you choose to submit in these various forums.

OTHER GENERAL POLICIES RELATING TO PRIVACY

Third Party Sites

Our Sites may contain links to third party websites. Please note that the privacy and other policies of any such third party website may differ materially from this Policy. We strongly recommend that customers review the privacy policies of any such third party prior to submitting personally identifiable information. Align & Innovate has no control over and is not responsible for the information practices of other websites, including those to which we may link and those which may link to us.

Use of Widgets and Social Media Features

We may provide widgets and social media features on our Sites that make it possible to share information on third-party platforms. These widgets do not store your personally identifiable information. To the extent we use these features, they may collect your IP address, which page you are visiting on our site, and may set a cookie to enable the feature to function properly. Social media features and widgets are either hosted by a third party or hosted directly on our Site. Your interactions with these features are governed by the privacy statement of the company providing the feature or widget.

Social Media and Video Platforms

We maintain presence on various social media and video platforms including but not limited to YouTube, LinkedIn, Facebook, Instagram, and TikTok. When you interact with our content on these platforms:

• Platform analytics: We receive aggregate analytics data about video views, engagement, demographics, and watch time through platform-provided analytics tools

• Subscriber information: Platform-provided information about subscribers and followers is governed by the respective platform's privacy policy

• Comments and interactions: Public comments, likes, shares, and other interactions on our social media content are subject to the platform's terms of service and privacy policy

• Podcast listener data: Podcast hosting platforms may provide us with aggregate listener statistics, but individual listener identities are typically not disclosed to us

• Direct messages: If you contact us via social media direct message or platform messaging, those communications may be stored on the platform's servers and are subject to their data retention policies

We do not control the data collection practices of third-party social media platforms. We encourage you to review the privacy policies of YouTube, LinkedIn, Facebook, Instagram, TikTok, and other platforms you use to understand how they collect and use your information.

Use of Cookies

When you interact with the Site, we try to make that experience simple and meaningful. When you visit our Site, our web server sends a cookie to your computer. Cookies are files that web browsers place on a computer's hard drive and are used to indicate whether you have visited the Site previously. The data collected may include how you navigate around a web page and the most commonly clicked links on a specific web page. Certain technical information, such as your browser version and operating system, are also collected. You can configure your browser to accept all cookies, reject all cookies, or notify you when a cookie is set (each browser is different, so check the "Help" menu of your browser to learn how to change your cookie preferences). We use cookies for a number of purposes, including to: access a customer's account information when a customer logs into a Site, so that we can provide the customer with customized content, keep track of preferences you specify while you are using the Services, estimate and report total audience size (unique users) and traffic for our Sites, and to conduct research to improve the content and services of our Sites.

Third-Party Cookies

We may also from time to time engage third parties to track and analyze non-personally identifiable usage and volume statistical information from visitors to our Sites to help us administer our Sites and improve their quality. Such third parties may use cookies and web beacons to help track visitor behavior. Such cookies and web beacons may track how you interact with a Site through the use of cookies and the data collected may include how you navigate around a web page and the most commonly clicked links on a specific web page. Certain technical information, such as your browser version and operating system, may also be collected. If collected, this information will be used by us to evaluate and, if necessary, modify the relevant Site to improve the functions and ultimately, make it easier for customers to use. None of your personally identifiable information, that is, your name, address, or phone number, is collected through such collections.

Use of Testimonials

We may select and post customer testimonials on our Services, which may contain personally identifiable information such as your name and/or the city, state, or country in which you live. We will obtain your consent prior to posting any testimonial with your name. If you post such content, it will be available to other users of the Services. Your posting may also become public and we cannot prevent such information from being used in a manner that may violate this Policy or the law. If you would like us to remove or delete your name or testimonial from our Services, you may contact Align & Innovate using the information in the "Contact Us" section of this Policy. Note that copies of information that you have updated, modified, or deleted may remain viewable in cached and archived pages of our Sites for a period of time.

Reviews

We may post customer reviews on our Sites or Services, which may contain personally identifiable information such as your name and/or the city, state, or country in which you live. When submitting your review you are giving us permission to post your review on our Sites or Services. If you post such content, it will be available to other users of the Sites or Services. Your posting may also become public and we cannot prevent such information from being used in a manner that may violate this Policy or the law. If you would like us to remove your name or review from our Sites or Services, you may contact Align & Innovate using the information in the "Contact Us" section of this Policy. Note that copies of information that you have updated, modified, or deleted may remain viewable in cached and archived pages of our Sites for a period of time.

COMPLIANCE WITH PRIVACY LAWS

General Compliance

Align & Innovate is committed to compliance with applicable privacy laws and regulations, including but not limited to the California Consumer Privacy Act (CCPA), the California Privacy Rights Act (CPRA), Virginia Consumer Data Protection Act (VCDPA), Colorado Privacy Act (CPA), Connecticut Data Privacy Act (CTDPA), Utah Consumer Privacy Act (UCPA), and other state and federal privacy regulations in the United States. We respect the rights of individuals to access, correct, delete, and manage their personal information as provided by law.

CCPA and CPRA Rights (California Residents)

If you are a California resident, you have specific rights regarding your personal information under the CCPA and CPRA, including:

• Right to Know: You have the right to request that we disclose what personal information we collect, use, disclose, and sell.

• Right to Delete: You have the right to request deletion of personal information we have collected from you, subject to certain exceptions.

• Right to Opt-Out: You have the right to opt-out of the sale or sharing of your personal information.

• Right to Correct: You have the right to request correction of inaccurate personal information.

• Right to Non-Discrimination: You have the right not to receive discriminatory treatment for exercising your CCPA/CPRA rights.

To exercise any of these rights, please contact us using the information in the "Contact Us" section below. We will respond to your request within the timeframes required by applicable law.

Additional State Privacy Rights

If you are a resident of Virginia, Colorado, Connecticut, or Utah, you may have similar rights under your state's consumer privacy law, including rights to confirm whether we process your personal data, access your personal data, correct inaccuracies, delete your personal data, obtain a copy of your personal data, and opt out of certain processing activities including targeted advertising and sales of personal data.

To exercise these rights, please contact us using the information in the "Contact Us" section below. We will respond to your request within 45 days as required by applicable state laws.

Industry-Specific Compliance

When providing services to clients in regulated industries, we adhere to additional compliance requirements:

• Financial Services: When consulting with financial advisory firms, registered investment advisors (RIAs), or other financial services clients, we comply with applicable FINRA and SEC regulations regarding confidentiality and data protection.

• Healthcare: If we encounter protected health information (PHI) during consulting engagements with healthcare clients, we comply with HIPAA privacy and security requirements and execute Business Associate Agreements (BAAs) as required.

• Nonprofits: When working with nonprofit organizations, we handle donor information and sensitive organizational data in accordance with applicable state charitable solicitation laws and industry best practices.

GDPR Considerations (European Union Residents)

While Align & Innovate primarily operates in the United States, we recognize that we may process personal information of individuals located in the European Union. If you are located in the EU, you may have additional rights under the General Data Protection Regulation (GDPR), including:

• The right to access your personal data

• The right to rectification of inaccurate personal data

• The right to erasure ("right to be forgotten")

• The right to restrict processing

• The right to data portability

• The right to object to processing

• Rights related to automated decision-making and profiling

If you are an EU resident and wish to exercise any of these rights, please contact us using the information in the "Contact Us" section below.

GOVERNING LAW; SUPERSEDING CONTRACT TERMS

By choosing to visit and interact with Align & Innovate, you agree that your visit and any dispute regarding the protection of your privacy during such visit is subject to this Policy and the dispute resolution provisions in our separate Terms of Use applicable to the Services relating to the dispute. Please note that to the extent a customer enters into other contractual agreements with any entity operating under Align & Innovate (A&I Archkey Systems, LLC; A&I Threshold Consulting, LLC; or A&I Keyframe Media, LLC), the privacy terms and conditions of such agreements (including the separate Terms of Use applicable to the relevant Services) may by express reference supplement or supersede portions of this Policy.

REVISIONS OR CHANGES

Align & Innovate reserves the right to change this Policy and other policies prospectively at any time, subject to applicable laws and regulations, by posting a prominent notice of any such material changes on the Site prior to the change becoming effective. Regardless of later updates or changes to our Policy, we will never use the information you submit under our current Policy in a new way without first providing you an opportunity to opt out or otherwise prevent such use.

OPTING OUT

You may opt out of having your personally identifiable information shared with third parties for reasons other than for the express purpose of delivering the purchased product or service requested and except as required by law. To do this, you may contact our Privacy Officer using the information in the "Contact Us" section of this Policy or by clicking the "Unsubscribe" link found in the footer of our email messages. Please note that if you opt out of promotional/marketing messages, you may continue to receive certain communications from us, such as administrative and services announcements and/or messages about your account/profile.

You may also opt out of:

• AI-assisted service delivery (see Artificial Intelligence Processing section)

• Marketing communications via email, phone, or text

• Data sharing with strategic partners

• Cookies through your browser settings

• Sale or sharing of personal information (California and other applicable state residents)

CHILDREN'S PRIVACY

Align & Innovate does not knowingly collect personal information from children under the age of 13. Our Services are not directed to children under 13, and we do not knowingly solicit or collect personal information from children. If we learn that we have collected personal information from a child under age 13, we will delete that information as quickly as possible. If you believe that we might have any information from or about a child under 13, please contact us using the information in the "Contact Us" section below.

INTERNATIONAL DATA TRANSFERS

Our Services are hosted in the United States. If you access our Services from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States where our servers are located and our central database is operated. The data protection and other laws of the United States and other countries might not be as comprehensive as those in your country. By using our Services, you consent to your information being transferred to our facilities and to the facilities of those third parties with whom we share it as described in this Policy.

For clients with specific data residency requirements (such as EU clients requiring data to remain within the European Economic Area), we can arrange for alternative hosting solutions or service delivery methods. Please contact us to discuss data residency options for your specific needs.

CONTACT US

If you have questions, comments, or concerns about this Privacy Policy or our privacy practices, or if you would like to exercise your privacy rights, please contact us at:

Align & Innovate
A&I Archkey Systems, LLC; A&I Threshold Consulting, LLC; A&I Keyframe Media, LLC

📞 (954) 466-5205
📧 [email protected]
🌐 www.aligninnovate.com

Privacy Officer Contact: For specific privacy-related inquiries or to exercise your privacy rights under applicable law, please direct your request to our Privacy Officer at the email address above with the subject line "Privacy Rights Request."

ACKNOWLEDGMENT

By using any of the Services provided by A&I Archkey Systems, LLC; A&I Threshold Consulting, LLC; or A&I Keyframe Media, LLC, collectively operating under Align & Innovate, you acknowledge that you have read and understood this Privacy Policy and agree to be bound by its terms.

This Privacy Policy applies to all services, platforms, and websites operated by A&I Archkey Systems, LLC; A&I Threshold Consulting, LLC; and A&I Keyframe Media, LLC under the Align & Innovate brand. Each subsidiary entity is jointly and severally responsible for compliance with this Policy.