1. Introduction

This Privacy Policy describes how Adfelt LLC, a Florida limited liability company (“Adfelt,” “we,” “us,” or “our”), collects, uses, shares, and protects personal information when you (a) visit adfelt.com or any other website, landing page, funnel, or checkout operated by Adfelt; (b) submit information through any Adfelt form, lead-capture, or inquiry tool; (c) purchase, subscribe to, or use any Adfelt product or service (including, without limitation, the Foundations Launch Kit, CARE Loop, hosting, domain registration, voice AI, and related deliverables); (d) communicate with us by email, phone, SMS, or any other channel; or (e) interact with one of our voice AI agents, including agents operating under the CareIntake AI Specialist brand on behalf of Adfelt or an Adfelt customer (collectively, the “Services”).

This policy is intended to apply Adfelt-wide. Where a specific Adfelt product or feature has additional or differing privacy practices, those practices will be described in a supplemental notice or product-specific terms made available at the point of collection.

By using the Services, you acknowledge that you have read this Privacy Policy. If you do not agree, please do not use the Services.

2. Scope and Key Terms

2.1 Who this policy covers

This Privacy Policy applies to (a) website visitors, prospects, and leads who interact with Adfelt’s marketing surfaces; (b) Adfelt customers (home care agencies, senior care businesses, and similar businesses that purchase Adfelt’s products and services); (c) employees, contractors, and authorized users of those customers; and (d) end-user callers and contacts who interact with Adfelt’s voice AI agents on behalf of an Adfelt customer (for example, prospective home care clients calling an Adfelt-built CareIntake AI agent operated by a home care agency).

2.2 Personal information

“Personal information” means information that identifies, relates to, or could reasonably be linked to a particular individual or household. The categories of personal information we collect are described in Section 3.

2.3 Adfelt’s role

Adfelt acts as a business or controller (depending on the applicable law) with respect to information about its own website visitors, prospects, customers, and personnel. With respect to information that Adfelt processes on behalf of a customer (for example, lead and call data captured by a customer’s CareIntake AI agent and stored in the customer’s GoHighLevel account), Adfelt acts as a service provider or processor on behalf of that customer. The customer remains responsible for the lawful basis, notice, and consent obligations applicable to its end users.

3. Information We Collect

3.1 Information you provide directly

We collect personal information you provide when you:

• Submit a form or lead-capture tool — name, business name, email address, phone number, business website, business location, role, services offered, current monthly client volume, and any other fields displayed on the form.
• Book a sales call or apply to work with us — the information above plus scheduling preferences, qualifying answers, and any free-text comments you provide during booking or application.
• Make a purchase — billing name, billing address, business address, email, phone, and order details. Payment card information is collected and processed directly by Adfelt’s payment processor (currently Stripe, Inc.); Adfelt does not store full payment card numbers on its own systems.
• Onboard as a customer — business details required to deliver the Services, including state and local licensing information, hours of operation, services offered, photographs, logos, branding assets, intake preferences, custom phone scripts, contact lists, and other Customer Content.
• Communicate with us — the content of your emails, SMS messages, voice calls, video calls, support tickets, chat messages, and any attachments you send.
• Subscribe to our list or download a resource — email address and any optional fields you fill in (for example, business name, role, or interests).

3.2 Information collected automatically

When you visit an Adfelt website or interact with our digital surfaces, we and our service providers automatically collect certain information using cookies, pixels, software development kits (SDKs), server logs, and similar technologies, including:

• Device and connection data — IP address, device type, operating system, browser type and version, language preference, screen resolution, and approximate location derived from IP address.
• Usage data — pages and resources viewed, the date and time of visits, referring URLs, links clicked, scroll depth, time on page, and similar engagement signals.
• Advertising and attribution data — identifiers (such as cookie IDs, mobile advertising identifiers, click IDs from ad networks) and signals used to measure and optimize our advertising and to attribute conversions across the Adfelt funnel.
• Cookies and similar technologies — see Section 7 for details on the categories of cookies we use and your choices.

3.4 Information from third parties

We may receive personal information about you from third parties, including:

• Advertising and marketing platforms — such as Meta (Facebook), Google, and similar platforms, which provide attribution, audience, and conversion data.
• Referral and partner sources — information you authorized a partner, referrer, or directory to share with us.
• Service providers — such as Stripe (payment status), GoHighLevel (CRM and communications activity), Retell (voice call data), Fathom (meeting recordings and transcripts), and Google Workspace (email and scheduling), each of which provides data necessary to deliver and improve the Services.
• Publicly available sources — such as business directories, state licensing databases, Google Business Profile listings, and similar resources, which we may use to verify business information you provide or to enrich a business contact record.

4. How We Use Personal Information

We use the personal information we collect for the following purposes:

• To provide, operate, and maintain the Services, including building, hosting, and supporting the Launch Site, Growth Site, voice AI agents, CRM workflows, and related deliverables;
• To process payments, manage subscriptions, and detect and prevent fraudulent transactions;
• To respond to inquiries, schedule and conduct sales calls, and onboard new customers;
• To send transactional and operational communications (such as receipts, build-status updates, scheduling confirmations, hosting notices, security alerts, and support messages);
• To send marketing communications about our products and services, subject to your consent and your right to opt out as described in Section 8;
• To measure and improve our marketing, including audience modeling, attribution, A/B testing, and campaign optimization;
• To improve our products, services, and AI agents, including training and tuning of voice agent prompts and workflows using anonymized or aggregated call data;
• To enforce our Terms of Service, protect the rights, property, or safety of Adfelt, our customers, or others, and to comply with legal obligations;
• To carry out internal business operations such as accounting, audits, analytics, security, and corporate transactions; and
• For any other purpose described to you at the time of collection or otherwise authorized by you.

5. How We Share Personal Information

We share personal information in the following circumstances:

5.1 Service providers and processors

We share personal information with vendors and service providers who perform services on our behalf, subject to contractual obligations to use the information only for the purposes for which it was disclosed and to protect it appropriately. These include, without limitation:

• Payment processing — Stripe, Inc.
• CRM, communications, and workflow automation — GoHighLevel.
• Voice AI and call handling — Retell.
• Email, calendaring, and document storage — Google (Google Workspace).
• Meeting recording, transcription, and summarization — Fathom.
• Hosting and infrastructure — Squarespace, Inc. and Adfelt’s WordPress hosting provider [counsel to confirm specific WordPress host, e.g., 10Web, WP Engine, or other].
• Operational and project management tools — Airtable, Discord (team communications only — not customer data unless explicitly shared), and similar internal tools.
• Advertising and analytics — Google (Google Analytics, Google Ads), Meta (Facebook Pixel and Conversions API), and similar platforms (see Sections 5.4 and 7).

5.2 Adfelt customers

When you interact with one of our customers’ voice AI agents or marketing funnels, we share information collected during that interaction (including caller phone number, transcript, structured intake data, and call recording) with the customer that operates the agent. The customer’s own privacy practices govern how it subsequently handles that information.

5.3 Business transfers

If Adfelt is involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of all or substantially all of its assets, personal information may be disclosed or transferred as part of that transaction. We will use commercially reasonable efforts to require the recipient to honor this Privacy Policy or to notify affected individuals of any material changes.

5.5 Legal and protective disclosures

We may disclose personal information if we believe in good faith that doing so is necessary to (a) comply with a law, regulation, subpoena, court order, or other lawful request from a public authority; (b) enforce our Terms of Service or other agreements; (c) protect the rights, property, or safety of Adfelt, our customers, our personnel, or others; or (d) detect, prevent, or address fraud, security, or technical issues.

5.6 With your consent or at your direction

We may share personal information for any other purpose with your consent or at your direction.

6. Legal Bases for Processing

Where applicable law (such as the EU/UK GDPR) requires identification of a legal basis for processing, we rely on one or more of the following: (a) the performance of a contract with you (or steps to enter into one); (b) compliance with our legal obligations; (c) our legitimate interests in operating, securing, and improving the Services and our business, where those interests are not overridden by your rights and freedoms; and (d) your consent, where required (which you may withdraw at any time without affecting the lawfulness of processing carried out before withdrawal).

7. Cookies and Similar Technologies

We and our service providers use cookies, pixels, web beacons, local storage, and similar technologies (collectively, “Cookies”) to operate our websites, recognize repeat visitors, measure performance, and deliver advertising. The categories of Cookies we use include:

• Strictly necessary Cookies — required to operate the website, complete transactions, and provide essential functionality. These cannot be disabled.
• Performance and analytics Cookies — used to understand how visitors use the website, measure traffic, and identify popular content. We currently use Google Analytics for this purpose.
• Functional Cookies — used to remember your preferences and improve your experience.
• Advertising Cookies — used by us and our advertising partners (including Meta and Google) to deliver relevant ads, build audiences, and measure ad performance. These may be used to share or sell information for cross-context behavioral advertising.

Most browsers allow you to manage Cookie preferences through their settings. You can also opt out of certain advertising Cookies by visiting industry tools such as the Digital Advertising Alliance’s WebChoices tool (optout.aboutads.info) or the Network Advertising Initiative (optout.networkadvertising.org). Opting out of advertising Cookies will not stop you from seeing ads, but those ads may be less relevant to you.

8. Marketing Communications and Your Choices

8.1 Email

You can opt out of marketing emails at any time by clicking the “unsubscribe” link in any email or by emailing eliasb@adfelt.com. We will continue to send you transactional and operational messages (for example, receipts, build-status updates, hosting notices, and support messages) related to your purchase, even if you have unsubscribed from marketing emails.

8.2 SMS

If you provide your mobile number and consent to receive SMS messages from Adfelt or one of our customers’ voice AI agents, we may send you SMS messages relating to your inquiry, appointment, or service. Message and data rates may apply. You can opt out at any time by replying STOP to any message; you can request help by replying HELP. Frequency varies based on your interaction. By providing your mobile number, you confirm that you are the subscriber to or customary user of that number.

8.3 Phone calls

If you do not wish to receive further calls from Adfelt or an Adfelt voice agent, you can request to be added to our internal do-not-call list by emailing eliasb@adfelt.com.

9. Your Privacy Rights

Depending on where you live, you may have rights under applicable privacy laws with respect to the personal information we hold about you. These may include the rights to:

• Know what personal information we collect, use, share, or sell about you;
• Access a copy of your personal information in a portable format;
• Correct inaccurate personal information;
• Delete personal information, subject to certain exceptions;
• Opt out of the sale or sharing of personal information for cross-context behavioral advertising;
• Limit the use of sensitive personal information (where applicable);
• Withdraw consent (where processing is based on consent); and
• Appeal a denial of a privacy rights request, or lodge a complaint with the relevant supervisory authority.

9.2 Other state privacy laws

Residents of other U.S. states with comprehensive privacy laws (including, where applicable, Virginia, Colorado, Connecticut, Utah, Texas, Oregon, Montana, Florida, and others as those laws come into effect) may have similar rights. To exercise any such rights, contact us using the information in Section 17.

9.3 EU/UK residents (GDPR)

If you are located in the European Economic Area, the United Kingdom, or Switzerland, you may have rights under the GDPR or UK GDPR, including the rights described above and the right to lodge a complaint with your local data protection authority. Adfelt’s primary place of business is in Florida, United States, and the Services are not directed at residents of the EU, UK, or Switzerland. If you choose to use the Services from those regions, you understand that your information will be transferred to and processed in the United States.

9.4 How to submit a request

To submit a privacy rights request, email eliasb@adfelt.com with the subject line “Privacy Rights Request” and include enough information for us to verify your identity (typically the email address and/or phone number associated with your interactions with Adfelt). We will respond within the timeframe required by applicable law (generally within 45 days for CCPA requests, with one 45-day extension allowed when reasonably necessary). We will not discriminate against you for exercising your privacy rights.

10. Data Retention

We retain personal information for as long as necessary to fulfill the purposes for which we collected it, including to provide the Services, comply with our legal, accounting, tax, and reporting obligations, resolve disputes, and enforce our agreements. Specific retention periods depend on the type of information and the purpose:

• Account, customer, and order records — retained for the duration of the customer relationship plus a reasonable period thereafter for tax, accounting, audit, and legal compliance purposes;
• Voice call recordings and transcripts — retained for as long as needed to provide and improve the Services, subject to applicable customer instructions and legal requirements;
• Marketing and analytics data — retained for the period necessary to measure marketing effectiveness, with periodic deletion or anonymization;
• Backups — retained for the period required by our backup and disaster-recovery practices, after which they are overwritten or deleted on schedule.

When personal information is no longer needed, we will take commercially reasonable steps to delete or anonymize it.

11. Information Security

We implement technical, administrative, and physical safeguards designed to protect personal information from unauthorized access, disclosure, alteration, or destruction. These include access controls, encryption in transit, strong-password and multi-factor authentication requirements for our personnel, vendor due diligence, and regular review of our security practices. No method of transmission or storage is 100% secure, however, and we cannot guarantee absolute security. You are responsible for safeguarding your own credentials and for promptly notifying us of any suspected unauthorized access.

12. Children’s Privacy

The Services are intended for use by businesses and adults eighteen (18) years of age and older. Adfelt does not knowingly collect personal information from children under the age of sixteen (16), and the Services are not directed to children. If we become aware that we have collected personal information from a child under sixteen (16) without verifiable parental or guardian consent, we will take commercially reasonable steps to delete that information.

13. International Data Transfers

Adfelt is based in the United States, and the personal information we collect is processed and stored in the United States and, in some cases, in other countries where our service providers operate. If you access the Services from outside the United States, your information will be transferred to the United States, where data protection laws may differ from those in your jurisdiction. By using the Services, you consent to this transfer.

14. Third-Party Websites and Services

Our websites and Services may contain links to or integrations with third-party websites and services that we do not operate. This Privacy Policy does not apply to those third parties. We encourage you to review the privacy policies of any third party before providing your information.

15. Do Not Track

Our websites do not currently respond to Do Not Track (DNT) signals because no industry standard for DNT response has been established. We do, however, honor Global Privacy Control (GPC) signals as a valid opt-out of sale/sharing for the requesting browser as described in Section 9.1.

16. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. The “Last Updated” date at the top of this policy reflects the most recent revision. For material changes, we will use commercially reasonable efforts to notify affected individuals (for example, by email to the address on file or by a prominent notice on our website). Your continued use of the Services after the effective date of any update constitutes your acceptance of the updated policy.

17. Contact Us

If you have questions about this Privacy Policy, wish to exercise a privacy right, or have a complaint about our handling of your personal information, please contact:

If you are not satisfied with our response, you may have the right to contact your local data protection or consumer protection authority.