Table of Contents
1. Introduction
Conway Connects ("we," "us," or "our") operates conwayconnects.com (the "Site"). This Privacy Policy explains what personal information we collect, how we use it, who we share it with, and what rights you have regarding your data.
We provide credit repair and business funding services to business owners and entrepreneurs nationwide. In providing these services, we handle sensitive financial and credit information and are committed to protecting it with the highest standards of security and transparency.
By using our Site or booking a consultation, you agree to the practices described in this policy.
2. Information We Collect
2.1 Information You Provide Directly
When you book a free credit audit consultation through our site, we collect:
- Full name — to identify you and personalize your consultation
- Email address — to send your booking confirmation and follow-up communications
- Phone number — to contact you for your scheduled appointment
- Any information you share during the consultation — including credit report data, financial details, or business information you voluntarily provide during your free audit call
Booking information is collected through our scheduling system powered by Go High Level (GHL), operated at leadconnectorhq.com.
2.2 Information Collected Automatically
When you visit our Site, we automatically collect certain information through analytics tools:
- Google Analytics 4 (GA4) — collects page views, session duration, referring URL, browser type, device type, approximate geographic location (city/region level), and on-page interactions. GA4 uses anonymized IP addresses. See Google's Privacy Policy.
- UTM parameters — if you arrive via a link with UTM tags (e.g., /ig, /tt, /email), we collect traffic source data for marketing analytics purposes.
- Server logs — our hosting provider (Vercel) may log IP addresses, request timestamps, and HTTP status codes for security and performance monitoring.
2.3 Information from Third-Party Services
Our Site loads resources from the following third-party services, which may collect data as part of their operation:
- Google Fonts — loads the Roboto typeface from Google's servers. Google may collect your IP address when fonts are requested. See Google Fonts Privacy FAQ.
- Cloudinary — serves optimized images via CDN. Cloudinary may log request data including IP addresses for delivery optimization.
- Go High Level (GHL) — powers our booking calendar embed. When you interact with the booking widget, your data is transmitted to GHL's servers. See GHL Privacy Policy.
2.4 Cookies and Similar Technologies
| Cookie Type | Purpose | Source | Duration |
|---|---|---|---|
| Essential | Site functionality, security | Vercel CDN | Session |
| Analytics | Usage statistics, traffic source tracking | Google Analytics (GA4) | Up to 2 years |
| Analytics | Booking flow tracking | Go High Level (GHL) | Session / persistent |
We do not use advertising cookies, retargeting pixels, or cross-site tracking cookies. We do not use Meta/Facebook Pixel, Google Ads tracking, or any third-party ad network scripts.
3. How We Use Your Information
We use the information we collect for the following purposes:
- Booking confirmation — to confirm your free credit audit appointment and send reminders
- Service delivery — to provide credit repair and business funding consultation services
- Follow-up communications — to follow up after your consultation and provide service information
- Analytics and improvement — to understand how visitors use our Site and improve our content and user experience
- Legal compliance — to comply with the Fair Credit Reporting Act (FCRA), Credit Repair Organizations Act (CROA), and other applicable laws
- Security — to detect and prevent fraud, abuse, or unauthorized access
Legal Basis for Processing (GDPR):
| Purpose | Legal Basis |
|---|---|
| Booking and consultation | Contractual necessity (pre-contractual steps) |
| Service delivery | Contractual necessity |
| Analytics (GA4) | Legitimate interests (site improvement) |
| Legal compliance (FCRA/CROA) | Legal obligation |
| Follow-up marketing | Consent / Legitimate interests |
4. How We Share Your Information
Service Providers
We share data with the following service providers who process it on our behalf:
- Go High Level (GHL) — booking, CRM, and client communication platform
- Google LLC — Google Analytics (analytics) and Google Fonts (CDN)
- Vercel Inc. — website hosting and CDN
- Cloudinary — image delivery CDN
All service providers are contractually obligated to protect your data and use it only for the purposes we specify.
Credit Bureaus and Reporting Agencies
If you become a client of Conway Connects, we may share information necessary to dispute items on your behalf with credit reporting agencies including Equifax, Experian, TransUnion, LexisNexis, ChexSystems, Early Warning Services, and Innovis. This sharing is performed solely to deliver our credit repair services and is governed by your service agreement and applicable law (FCRA/CROA).
Legal Requirements
We may disclose your information if required by law, court order, subpoena, or government request, or where necessary to protect our legal rights or the safety of others.
Business Transfers
In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you before your personal information becomes subject to a materially different privacy policy.
We do not sell your personal information to third parties. We do not share your information with advertising networks, data brokers, or any third party for their independent marketing purposes.
5. Data Retention
| Data Type | Retention Period | Reason |
|---|---|---|
| Consultation booking data | 3 years from last contact | Service records and follow-up |
| Client service records | 7 years from service completion | CROA compliance, legal obligations |
| Credit report data shared during consultation | Duration of service + 7 years | FCRA compliance, dispute records |
| Google Analytics data | 14 months (GA4 default) | Usage analytics |
| Server logs (Vercel) | 30–90 days | Security and debugging |
| Marketing communications | Until you opt out | Consent-based |
When data is no longer needed, we delete or anonymize it in accordance with our data retention schedule.
6. Data Security
We implement appropriate technical and organizational measures to protect your personal information, including:
- Encryption in transit via HTTPS/TLS (enforced by Vercel)
- Access controls limiting who can view client data
- Secure third-party platforms (GHL, Cloudinary) with their own security programs
- Regular review of data handling practices
No method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your personal information, we cannot guarantee its absolute security. If you believe your information has been compromised, contact us immediately at info@conwayconnects.com.
7. Your Rights Under GDPR (EEA/UK Residents)
If you are located in the European Economic Area or United Kingdom, you have the following rights regarding your personal data:
- Right of Access — Request a copy of the personal data we hold about you
- Right to Rectification — Request correction of inaccurate or incomplete data
- Right to Erasure — Request deletion of your data where we have no lawful basis to retain it
- Right to Restrict Processing — Request that we limit how we use your data
- Right to Data Portability — Receive your data in a structured, machine-readable format
- Right to Object — Object to processing based on legitimate interests
- Right to Withdraw Consent — Withdraw consent at any time where processing is based on consent
- Right to Lodge a Complaint — File a complaint with your local Data Protection Authority
To exercise any of these rights, email us at info@conwayconnects.com. We will respond within 30 days.
8. Your Rights Under CCPA/CPRA (California Residents)
If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):
- Right to Know — What personal information we collect, use, disclose, and sell
- Right to Delete — Request deletion of your personal information (subject to legal exceptions)
- Right to Opt-Out of Sale/Sharing — We do not sell or share personal information for advertising purposes
- Right to Non-Discrimination — We will not deny services or charge different prices based on your exercising these rights
- Right to Correct — Request correction of inaccurate personal information
- Right to Limit Use of Sensitive Information — Limit use of sensitive personal information to necessary purposes
Categories of personal information collected (past 12 months):
| CCPA Category | Examples Collected | Sold? |
|---|---|---|
| Identifiers | Name, email, phone number | No |
| Financial information | Credit report data shared during consultation | No |
| Internet / network activity | IP address, page views (via GA4) | No |
| Geolocation (approximate) | City/region level (via GA4) | No |
To exercise your California rights, email us at info@conwayconnects.com with the subject line "CCPA Request."
9. Children's Privacy
Our Site and services are not directed to children under the age of 13, and we do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at info@conwayconnects.com and we will promptly delete it.
10. International Data Transfers
Conway Connects is based in the United States and our services are directed at US residents. Your personal information is processed and stored in the United States. If you access our Site from outside the United States, please be aware that your information may be transferred to, stored, and processed in the US, where data protection laws may differ from those in your country.
Our service providers (Google, Vercel, GHL, Cloudinary) are US-based companies and process data on US servers. When we share data with these providers, we rely on their standard contractual clauses and privacy certifications as appropriate safeguards.
11. Credit Information & FCRA/CROA
Conway Connects provides credit repair services governed by the Fair Credit Reporting Act (FCRA) and the Credit Repair Organizations Act (CROA). In connection with these services:
- You have the right to dispute inaccurate information on your credit report directly with the credit bureaus at no charge via annualcreditreport.com
- Credit repair services are provided under a separate written service agreement, as required by CROA
- You have the right to cancel your service agreement within three (3) business days of signing without penalty
- We do not charge fees before services are fully performed
- Any credit report data you share with us during your consultation or service engagement is used solely to provide credit repair services on your behalf
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:
- Post the updated policy on this page
- Update the "Last Updated" date at the top of this page
- Notify you by email if you are an active client (where email is on file)
Your continued use of the Site after the effective date of any changes constitutes your acceptance of the revised policy. We encourage you to review this page periodically.
13. Contact Us
If you have questions about this Privacy Policy, want to exercise your data rights, or need to report a privacy concern, please contact us:
- Email: info@conwayconnects.com
- Website: conwayconnects.com
- Booking / Support: Book a free audit
We will respond to all privacy inquiries within 30 days.