Privacy Policy.

Introduction & Scope

This Privacy Policy describes how Battle Plan Marketing, LLC ("we," "us," or "our") collects, uses, and shares information when you visit our website at battleplan-marketing.com or subscribe to any of our services — including Appointment Accelerator™, AssociatePro™, and RapidReviews™ (collectively, the "Services").

This policy works alongside our Terms & Conditions. Together they govern your use of the Services.

"You" means the individual visiting our website, or the business subscribing to one of our Services. "End-customer" means a customer of yours whose data flows through the Services we operate for you (for example, a lead who texts back, a buyer who scans a QR code, or a shopper who interacts with an AI sales associate).

By using the website or subscribing to a Service, you agree to this Privacy Policy. If you do not agree, do not use the website or the Services.

Information We Collect

2.1 Information you provide directly

When you contact us, request information, sign up for our newsletter, book a strategy call, or purchase a subscription, you may give us:

• Name (first and last)
• Business name
• Email address
• Phone number
• Postal address (street, city, state, ZIP)
• Payment information (processed directly by Stripe — we don't store full card numbers)
• Information about your business (industry, location, current marketing stack) shared during onboarding or strategy calls

2.2 Information collected automatically

When you visit our website or interact with our Services, we automatically collect:

• Usage data: IP address, device type, browser type and version, operating system, pages visited, time spent on pages, referring URLs, click paths.
• Device identifiers: Unique device IDs, mobile network information.
• Cookie and tracking data: Details in Section 4.

2.3 End-customer data flowing through our Services

When you subscribe to one of our Services, end-customer data flows through the systems we operate on your behalf. This may include name, phone number, email address, message content, NPS scores, review text, and behavioral data (clicks, opens, scans).

For end-customer data, you are the data controller and we act as a service provider/processor. We process end-customer data only to deliver the Service you subscribed to. We do not sell or use end-customer data for our own commercial purposes.

How We Use Information

We use the information we collect for the following purposes:

3.1 To deliver and improve the Services

• Operate, maintain, and improve our website and Services.
• Set up your account and process payments for subscriptions.
• Build and run automations, AI replies, and review flows on your behalf.
• Monitor performance, debug issues, and maintain system security.

3.2 To communicate with you

• Respond to inquiries and requests for information.
• Send service-related notifications (billing receipts, system alerts, scheduled-maintenance notices).
• Send onboarding and support communications.
• Send our newsletter or promotional offers if you opted in. You can unsubscribe anytime via the unsubscribe link in any marketing email or by replying STOP to any marketing SMS.

3.3 For marketing and advertising

• Show retargeting ads on third-party platforms (Facebook, Google) to visitors who showed interest in our Services.
• Measure the effectiveness of our marketing campaigns.
• Improve our content and offers based on aggregated usage patterns.

3.4 For legal, security, and compliance reasons

• Comply with applicable laws and respond to lawful requests from authorities.
• Enforce our Terms & Conditions and protect against fraud, abuse, or unauthorized use.
• Investigate and prevent security incidents.
• Protect the rights, property, or safety of Battle Plan Marketing, our customers, and the public.

Cookies & Tracking Technologies

We use cookies and similar tracking technologies (web beacons, pixel tags, local storage) to operate the website, remember your preferences, and understand how visitors use the site.

4.1 Types of cookies we use

• Essential cookies: Required for the website to function — login session, security tokens, cart state. You can't opt out of these without breaking the site.
• Functional cookies: Remember your preferences (language, display options). Persistent, but optional.
• Analytics cookies: Help us understand traffic patterns and improve the site (Google Analytics — see Section 5).
• Advertising cookies: Used by Facebook Pixel, Google Ads, and similar services to show retargeting ads. You can opt out (see Section 9 and the "Do Not Sell or Share" section).

4.2 Managing cookies

You can control cookies through your browser settings. Most browsers let you block or delete cookies. Some parts of our website may stop working correctly if you block essential cookies.

For interest-based advertising, you can opt out through industry tools:

• Digital Advertising Alliance: optout.aboutads.info
• Network Advertising Initiative: networkadvertising.org/choices
• European users: youronlinechoices.com

On mobile devices, enable "Limit Ad Tracking" (iOS) or "Opt out of Ads Personalization" (Android).

Service Providers & Data Sharing

We share personal information with the third-party service providers below. Each operates under its own privacy policy, and we contractually require them to use your data only to deliver services to us.

5.1 Other situations where we may share information

• Business transfers: If Battle Plan Marketing is acquired, merges, or sells assets, your information may transfer to the acquiring entity. We'll notify you before the transfer takes effect.
• Legal compliance: We may disclose information to comply with applicable law, court orders, subpoenas, or lawful government requests.
• Protection of rights: We may disclose information when necessary to protect our rights, property, or safety, or those of our customers or the public.
• With your consent: We may share information for any other purpose with your explicit consent.

5.2 We do not sell your personal information

We do not sell your personal information for monetary consideration. Under California law (CCPA/CPRA), the term "sell" or "share" has a broader definition that may include sharing data with analytics and advertising partners. To the extent any of our use of cookies and pixels is considered "sharing" under that definition, you can opt out — see Section 9.

SMS & Messaging Compliance

By providing your mobile phone number through our website, our chat systems, our forms, or by texting us first, you consent to receive SMS text messages from Battle Plan Marketing. Messages may include service updates, marketing offers, scheduled-call reminders, customer-service follow-ups, and information about the Services you subscribe to.

Messages may be sent through an automated system. Message frequency varies. Message and data rates from your carrier may apply.

We do not sell or share your mobile number with third parties for their own marketing purposes.

A2P 10DLC compliance: All business-text-messaging through our Services is registered under A2P 10DLC standards through Twilio (the upstream carrier). For more on the carrier-level standards that govern this messaging, refer to LeadConnector's published rate and compliance guide.

Data Retention

We retain personal information only as long as necessary to deliver the Services and to meet our legal, accounting, and compliance obligations. In general:

• Active subscriber data — retained for the duration of your subscription plus seven (7) years thereafter for tax and accounting purposes.
• End-customer data flowing through your subscription — retained during your active subscription. Upon cancellation, you may request export of your data within 30 days; after that, we delete or anonymize it unless required by law to retain longer.
• Marketing contact data (newsletter subscribers, lead-magnet downloaders) — retained until you unsubscribe or request deletion.
• Website analytics — aggregated data retained for up to 26 months (Google Analytics default).
• Server logs — typically 30–90 days for operational purposes.

You can request earlier deletion of your data at any time by emailing us at office@mg.battleplan-marketing.com, subject to our legal retention obligations.

Data Security & International Transfers

8.1 Security measures

We take reasonable technical and organizational measures to protect personal information: encrypted transmission (HTTPS/TLS), encrypted-at-rest storage through our service providers, access controls for our staff, and contractual data-protection requirements with all third-party processors. No method of internet transmission or electronic storage is 100% secure, so we cannot guarantee absolute security.

8.2 International transfers

Battle Plan Marketing is based in California, USA, and most of our processors are also U.S.-based. If you access our Services from outside the United States, your information will be transferred to and processed in the U.S. Data-protection laws in the U.S. may differ from your home jurisdiction. By using our Services, you consent to this transfer.

For EU/EEA visitors, we rely on appropriate safeguards (Standard Contractual Clauses with our processors where applicable) to protect your data during international transfer.

California Privacy Rights (CCPA/CPRA)

This section applies to California residents and supplements the rest of this Privacy Policy. It is provided under the California Consumer Privacy Act of 2018 ("CCPA") as amended by the California Privacy Rights Act of 2020 ("CPRA").

9.1 Categories of personal information we collect

In the past 12 months, we have collected the following categories of personal information from California residents:

9.2 Sources of personal information

• Directly from you (forms, account signup, customer support, subscription purchase).
• Automatically (cookies, pixels, server logs).
• From our service providers (analytics, advertising, payment processing).

9.3 Purposes for which we use personal information

See Section 3 above. In summary: providing and improving the Services, communicating with you, marketing and advertising, security and fraud prevention, and legal compliance.

9.4 Sale or sharing of personal information

We do not sell your personal information for monetary consideration.

Under the broader CCPA/CPRA definition of "share," our use of advertising cookies and pixels (Facebook, Google) may be considered sharing personal information for cross-context behavioral advertising. To opt out, follow the instructions in Section 4 and Section 9.7 below.

9.5 Your rights as a California resident

• Right to know: Request what categories and specific pieces of personal information we have collected about you, the sources, the purposes, and the categories of third parties we share with.
• Right to delete: Request that we delete personal information we collected from you, subject to certain exceptions (e.g., we may need to keep it for legal, security, or fraud-prevention reasons).
• Right to correct: Request correction of inaccurate personal information.
• Right to opt out of sale/sharing: Direct us to stop sharing your data for cross-context behavioral advertising — see Section 9.7.
• Right to limit use of sensitive personal information: We don't collect sensitive personal information (financial-account data is processed by Stripe under their privacy policy), but you can request limited use if you believe we have any.
• Right to non-discrimination: We won't deny you Services, charge different prices, or provide a different quality of Service because you exercised any of these rights.

9.6 How to exercise your rights

To exercise any of these rights, email office@mg.battleplan-marketing.com with the subject line "California Privacy Request" and tell us which right you're exercising. We may need to verify your identity before responding. We aim to respond within 45 days; the law allows up to a 45-day extension if your request is complex.

9.7 Do Not Sell or Share My Personal Information

To opt out of the "sharing" of your personal information for cross-context behavioral advertising:

• Email us at office@mg.battleplan-marketing.com with "Do Not Sell or Share" in the subject line.
• Use industry opt-out tools: DAA, NAI.
• Enable Global Privacy Control (GPC) in your browser — we honor GPC signals as an opt-out request.
• On mobile, enable "Limit Ad Tracking" (iOS) or "Opt out of Ads Personalization" (Android).

9.8 "Do Not Track" signals

Our website does not respond to "Do Not Track" browser signals because there is no industry standard for how to interpret them. We do honor Global Privacy Control (GPC) signals as described in Section 9.7.

9.9 Shine the Light disclosure

Under California Civil Code Section 1798.83, California residents who have an established business relationship with us may request information about whether we shared their personal information with third parties for those third parties' direct marketing purposes in the prior calendar year. We do not share personal information with third parties for their direct marketing purposes.

9.10 Minors

If you are a California resident under 18 who has registered an account, you may request removal of content or information you posted on our Services. Note that removal does not ensure complete or comprehensive removal of the content.

GDPR Rights (EU/EEA/UK Visitors)

If you are located in the European Union, European Economic Area, or United Kingdom, you have the following rights under the General Data Protection Regulation (GDPR) and UK GDPR:

• Right of access — request a copy of the personal data we hold about you.
• Right to rectification — request correction of inaccurate or incomplete data.
• Right to erasure ("right to be forgotten") — request deletion of your data, subject to exceptions.
• Right to restrict processing — request that we limit how we use your data.
• Right to data portability — receive your data in a structured, machine-readable format and transfer it to another controller.
• Right to object — object to processing based on legitimate interests, including direct marketing.
• Right to withdraw consent — where processing is based on consent, withdraw it at any time without affecting prior processing.
• Right to lodge a complaint — with your local data-protection supervisory authority.

10.1 Legal basis for processing

We process personal data under one or more of the following legal bases: your consent, performance of a contract (delivering the Services), our legitimate interests (operating our business), and compliance with legal obligations.

10.2 How to exercise GDPR rights

Email office@mg.battleplan-marketing.com with "GDPR Privacy Request" in the subject line. We aim to respond within 30 days.

Children's Privacy

Our website and Services are intended for business owners and are not directed to children under 16. We do not knowingly collect personal information from children under 16. If you believe a child has provided us with personal information, please contact us at office@mg.battleplan-marketing.com and we will delete it.

Under CCPA, we do not knowingly sell or share personal information of consumers under 16 years of age.

Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of this page. For material changes, we will notify active subscribers by email at least fifteen (15) days before the changes take effect.

Continued use of the website or Services after the effective date of a change constitutes acceptance of the updated policy.

Contact

Questions about this Privacy Policy, your data, or any privacy-related request:

Battle Plan Marketing, LLC
30141 Antelope Rd, Ste D-438
Menifee, CA 92584
Email: office@mg.battleplan-marketing.com
Phone: +1 (951) 470-1950