Privacy Policy
Effective date: June 4, 2026. This policy explains how SOC 2 Consult collects, uses, shares, and protects information when you visit our website or contact us about our SOC 2 consulting services.
Information We Collect
We collect information you provide directly, including:
- Contact details such as first name, last name, work email, and company name.
- Information about your compliance interests, timeline, and messages submitted through our contact form.
- Communications you send to us through the website or other business channels.
We may also collect limited technical information automatically, such as IP address, browser type, device information, pages visited, referral source, and timestamps.
How We Use Information
We use information to:
- Respond to inquiries and provide requested information about our services.
- Evaluate your SOC 2 readiness needs and prepare relevant follow-up.
- Operate, secure, troubleshoot, and improve our website and intake process.
- Send service-related communications and business updates where permitted.
- Comply with legal obligations and protect our rights, users, and services.
Service Providers
We use third-party providers to run our website and manage intake. For example, form submissions may be processed by Netlify, and lead enrichment or contact matching may be sent to Apollo when our Apollo integration is configured. If Google reCAPTCHA is enabled, Google may process information to help prevent spam and abuse.
These providers may process personal information only as needed to provide services to us, comply with law, or protect their systems.
Cookies and Similar Technologies
Our website may use cookies, pixels, local storage, server logs, or similar technologies for security, performance, analytics, and form functionality. You can control cookies through your browser settings, but disabling them may affect site functionality.
How We Share Information
We do not sell personal information. We may share information:
- With service providers that support website hosting, form processing, security, analytics, or sales operations.
- With professional advisors where necessary for legal, accounting, compliance, or business purposes.
- When required by law, subpoena, court order, or other legal process.
- To protect the security, rights, property, or safety of SOC 2 Consult, our users, or others.
- In connection with a merger, acquisition, financing, restructuring, or transfer of business assets.
Data Retention
We retain personal information for as long as reasonably necessary to respond to inquiries, provide services, maintain business records, comply with legal obligations, resolve disputes, and enforce agreements.
Security
We use reasonable administrative, technical, and organizational safeguards designed to protect personal information. No website, network, or transmission method is completely secure, so we cannot guarantee absolute security.
Your Choices and Rights
Depending on where you live, you may have rights to request access to, correction of, deletion of, or restriction of certain personal information. You may also object to certain processing or request that we stop sending non-essential communications.
To make a privacy request, contact us through the form on our homepage. We may need to verify your request before taking action.
Children's Privacy
Our website and services are intended for businesses and are not directed to children under 13. We do not knowingly collect personal information from children under 13.
International Visitors
SOC 2 Consult is operated from the United States. If you access the website from another country, your information may be processed in the United States or other locations where our service providers operate.
Changes to This Policy
We may update this Privacy Policy from time to time. The effective date above shows when this policy was last updated. Material changes will be posted on this page.