Privacy Policy

Effective date: January 1, 2026. This Privacy Policy explains how Clearbrookline LLC collects, uses, discloses, and protects personal information when you visit our website or interact with our services. We value privacy and design our services to limit collection to what is necessary to provide, secure, and improve our offerings. This document describes the types of information we process, purposes and legal bases for processing, retention practices, cookies and tracking technologies, security measures, and your rights. If you are a resident of a jurisdiction with specific data protection laws, this policy describes how to exercise your rights or how to contact our data protection team. For contractual details about service terms and data processing responsibilities between Clearbrookline and our clients, see our Terms page at /terms/ and consult any executed agreement.

Abstract lock and data visualization representing privacy and security

Information we collect

We collect information that you provide directly when you contact us, register for services, or use interactive features. This includes name, email address, phone number, company name, job title, and the content of any messages you send. We also collect information generated during technical interactions with our website and services, such as IP address, browser type, operating system, device identifiers, pages visited, referring URL, and timestamps. When we perform work for clients, we may process operational or business data provided by the client under a separate agreement; such processing is governed by the contract and applicable data protection clauses. We limit data collection to the minimum necessary for the stated purposes and segregate personal contact details from operational datasets when possible. We do not knowingly collect personal data from minors. If we become aware of such collection we will delete that information promptly.

How we use information and legal bases

We use personal data to communicate with you about services, proposals, scheduling, and support. We process contact information to respond to inquiries and requests. Technical and analytic data is used to maintain and secure our website, improve functionality, and analyze usage patterns to enhance user experience. For clients, we process operational data to deliver contracted services, including diagnostics, automation configuration, architecture work, and training. The legal bases for processing include performance of a contract, legitimate interest in operating and improving our business and services, and, where required, your consent for marketing communications. You can opt out of marketing at any time by following the unsubscribe link in emails or contacting [email protected]. Where specific jurisdictions require, we rely on consent or contractual necessity according to local law. We do not sell personal data to third parties.

Cookies, tracking, and analytics

We use cookies and similar technologies to provide essential site functions, remember preferences, and measure site performance. Cookies fall into categories: strictly necessary (required for core site functionality), performance and analytics (aggregate usage data), and functional preferences. We may use widely adopted analytics tools to collect aggregated information about site usage to help us understand and improve site performance. Our cookie modal allows you to accept or reject non-essential cookies. Rejecting non-essential cookies will not prevent access to the site but may limit certain convenience features and analytics. If you need to withdraw consent after accepting, use your browser cookie controls or contact us at [email protected]. When we process analytics data we endeavor to anonymize or aggregate data to minimize identifiability. For client engagements that require advanced telemetry, we will document the data types collected and configured processing in the project scope or Data Processing Addendum as appropriate.

Data retention and security

We retain personal data only as long as necessary to fulfill the purposes described in this policy, to comply with legal obligations, or to resolve disputes. Contact information related to marketing and sales is retained for a period consistent with business needs and legal requirements, typically up to three years unless you request deletion. Client engagement data and project deliverables are retained according to contractual terms and may be kept longer to support reporting and compliance; retention periods are specified in client agreements when needed. We implement technical and organizational measures to protect personal data against unauthorized access, disclosure, alteration, and destruction, including encrypted backups, access controls, and secure development practices. Access to personal data is limited to staff and contractors who need it to perform their duties. Despite these safeguards, no system can be fully immune to risk; in the event of a security incident we will follow applicable notification requirements and take appropriate remedial action.

Your rights and choices

Depending on your jurisdiction you may have rights regarding your personal data, including the right to access, correct, delete, restrict processing, object to processing, and data portability. To exercise these rights send a request to [email protected] with details that help us locate your data. We will verify requests to protect privacy and will respond within the timeframes required by applicable law. You can manage marketing preferences through links in our emails or by contacting us directly. For cookie consent, use the cookie controls on the site or clear cookies through your browser. If you are a client and need specific contractual protections or data processing terms, we will include them in a Data Processing Addendum within our client agreement. If you believe we have processed your data unlawfully, you can contact us or lodge a complaint with your supervisory authority where applicable.

Third-party disclosures and international transfers

We may share personal information with service providers and subprocessors who assist in providing our services, such as hosting providers, analytics processors, payment processors, and communication tools. We require processors to implement appropriate security measures and process data only as instructed. Client data processed on behalf of a client is handled in accordance with the applicable client agreement and any Data Processing Addendum. Personal data may be transferred to and maintained on servers located in countries other than your own. When transfers occur, we apply appropriate safeguards such as standard contractual clauses or rely on permitted transfer mechanisms under applicable law. We do not transfer data unless adequate protections are in place. We do not sell personal information to third parties.

Contact and updates

For questions about this policy or to make a privacy request contact: Clearbrookline LLC, 412 Riverbend Drive, Suite 210, Boston, MA 02108, United States; Email: [email protected]; Phone: +1 (617) 253-0000. We review this policy periodically and may update it to reflect changes in our practices or legal requirements. When we make material changes we will update the effective date and may provide prominent notice on our website. Continued use of our services after changes indicates acceptance. For contractual details about processing between Clearbrookline and clients, see /terms/ and any executed client agreement. If you have unresolved concerns you may contact your local data protection authority where applicable.