Privacy Policy | Lions Privacy Group

Last updated: [Update this date when you publish]

Lions Privacy Group (“Lions Privacy Group,” “we,” “our,” or “us”) operates the website lionsprivacygroup.com (the “Site”) and provides compliance consulting services (the “Services”). This Privacy Policy explains what information we collect, how we use it, with whom we share it, and the rights you have with respect to it.

Because this firm practices in the privacy space, we hold ourselves to the same standards we would recommend to clients. This policy is drafted to be clear, complete, and accurate.

1. Who We Are and How to Contact Us

Lions Privacy Group is a compliance-consulting practice based in Atlanta, Georgia. You can reach our Privacy Contact at: Ferdinand.n@lionsprivacygroup.com.

2. Information We Collect

We collect the minimum information necessary to operate the Site and deliver our Services. Specifically:

a) Information You Provide Directly. When you submit a contact form, book a call through our scheduling tool, request a resource, or subscribe to updates, you may provide your name, email address, practice name, state, and the substance of your inquiry.

b) Information Collected Automatically. When you visit the Site, our hosting provider and analytics tools may collect technical information including IP address (truncated where possible), browser type, device type, referring URL, pages visited, time spent on pages, and interactions with Site elements.

c) Information From Third-Party Integrations. When you book a call through our scheduling tool (Calendly), that tool collects the information you provide to it (name, email, scheduling details) and shares it with us for the purpose of completing the booking.

PHI notice: We do not knowingly collect Protected Health Information (PHI) through the Site. Do not submit PHI or patient-identifying information through our contact form or email without a Business Associate Agreement in place.

3. How We Use Information

We use collected information to:

Respond to inquiries and schedule consultations
Deliver requested resources (e.g., the HIPAA Readiness Self-Check)
Send service-related communications and, where consent is provided, occasional compliance updates
Improve the Site and our Services through aggregate analytics
Comply with legal obligations and defend legal claims

We do not sell personal information. We do not share personal information with third parties for their own marketing purposes.

4. Legal Basis for Processing (GDPR / UK GDPR)

Where the GDPR or UK GDPR applies, our legal bases for processing are: (i) your consent (e.g., for marketing emails); (ii) performance of a contract or pre-contractual steps at your request (e.g., responding to inquiries, scheduling calls); (iii) our legitimate interests in operating and improving the Site and Services, balanced against your rights; and (iv) compliance with legal obligations.

5. Service Providers and Third Parties

We use the following categories of service providers, each bound by data-processing terms:

Website hosting and infrastructure (Hostinger)
Email and scheduling tools (Google Workspace, Calendly)
Analytics (to be specified at launch; we may use a privacy-preserving analytics tool such as Plausible or similar, or no analytics at all)

We disclose personal information only as necessary to operate the Services, comply with law, respond to valid legal process, protect our rights, or as otherwise described in this Policy.

6. Cookies and Similar Technologies

The Site uses a small number of cookies and similar technologies. See our Cookie Notice for details, categories, and opt-out instructions.

7. Data Retention

We retain personal information only as long as necessary for the purposes set out in this Policy, unless a longer retention period is required or permitted by law. Inquiry records are typically retained for three years from last contact. Client engagement records are retained per our engagement agreement and applicable professional-standards obligations.

8. Your Rights

Depending on your jurisdiction, you may have the right to: (a) access the personal information we hold about you; (b) correct inaccurate information; (c) request deletion; (d) object to or restrict processing; (e) withdraw consent; (f) portability of your data; and (g) lodge a complaint with a supervisory authority.

Residents of California, Virginia, Colorado, Connecticut, Texas, and other states with comprehensive privacy laws have additional state-specific rights, which we honor regardless of whether the law strictly applies to us.

To exercise any right, contact Ferdinand.n@lionsprivacygroup.com. We verify requests using the email address on file and respond within the timeframes required by applicable law (typically 30–45 days).

9. Security

We maintain reasonable administrative, technical, and physical safeguards designed to protect personal information against unauthorized access, use, alteration, or destruction. No system is perfectly secure; we encourage users to safeguard their own account credentials and to avoid submitting sensitive information via unencrypted channels.

10. Children

The Site is not directed to children under 16, and we do not knowingly collect personal information from children. If we learn that we have collected personal information from a child under 16, we will delete it.

11. International Transfers

Lions Privacy Group operates in the United States. If you access the Site from outside the United States, your information may be transferred to, stored, and processed in the United States. Where required by applicable law, we rely on appropriate transfer mechanisms (e.g., Standard Contractual Clauses).

12. Changes to This Policy

We may update this Policy from time to time. Material changes will be posted on this page with a new “Last updated” date. Continued use of the Site after an update constitutes acceptance of the updated Policy.

13. Contact

Lions Privacy Group · Atlanta, Georgia, USA · Ferdinand.n@lionsprivacygroup.com