Introduction

Tactical Edge AI, LLC (“Tactical Edge,” “we,” “our,” or “us”) is committed to protecting the privacy of our clients, partners, and website visitors. This Privacy Policy describes how we collect, use, and disclose personal information in connection with our consulting services, website, and business operations (collectively, the “Services”).

By engaging with our Services, you agree to the terms of this Privacy Policy. If you do not agree, please discontinue use of our Services.

Scope & Applicability

This Privacy Policy applies to:

• Clients and Prospective Clients: Businesses and individuals engaging with our consulting services.
• Users: Employees, representatives, or stakeholders of our clients who interact with us.
• Website Visitors: Individuals browsing our website, engaging with our content, or submitting inquiries.

We primarily collect and process business-related information and do not provide services for personal, household, or consumer use.

Data Controller and Data Processor Roles

Tactical Edge operates as both a Data Controller and a Data Processor, depending on the nature of the engagement:

• Data Controller: When Tactical Edge collects personal data directly from website visitors, marketing subscribers, and prospective clients, we determine the purpose and means of data processing.
• Data Processor: When Tactical Edge processes client-provided data as part of consulting engagements, we act on behalf of the client and follow contractual obligations regarding data use.

Clients who engage Tactical Edge for consulting services remain responsible for ensuring that any personal data shared with Tactical Edge complies with applicable laws.

Information We Collect

We collect different categories of personal data, depending on your interaction with us:

Client & Business Data

• Contact Information: Name, job title, company name, business email, phone number.
• Engagement Details: Information related to consulting agreements, project deliverables, and communications.
• Billing & Payment Information: Invoice details, financial transactions, and related records.

Website & Marketing Data

• Website Usage Data: IP address, browser type, referring pages, and interactions with our site.
• Marketing Preferences: Communication preferences, webinar attendance, and newsletter signups.
• Publicly Available Business Data: Professional details collected from public sources like LinkedIn.

Automatically Collected Data

• Device Information: Technical data like browser type, operating system, and screen resolution.
• Cookies & Tracking Data: We use cookies and similar technologies to enhance website functionality and analytics. See our Cookie Policy for details.

How We Use Your Data

We process personal data for legitimate business purposes, including:

• Providing Consulting Services: Managing client engagements, delivering insights, and supporting business operations.
• Client Communication: Responding to inquiries, scheduling meetings, and providing updates.
• Marketing & Business Development: Sending newsletters, invitations, and industry insights (with opt-out options).
• Legal & Compliance Obligations: Maintaining records, fulfilling regulatory requirements, and responding to legal inquiries.
• Website Analytics & Improvement: Understanding how visitors engage with our site to optimize content and user experience.

We do not process sensitive personal data such as financial account numbers, medical records, or government-issued IDs.

Client Confidentiality & Consulting Data Protections

Tactical Edge is a consulting firm that values client confidentiality and strict data protection measures. As part of our professional engagements, we may have access to business strategies, internal reports, operational processes, and proprietary client data.

To ensure confidentiality and trust:

• We do not share client-specific business insights, strategies, or reports with third parties, unless explicitly authorized by the client or required by law.
• Client-provided documents and proprietary business information remain confidential and are only used for consulting purposes.
• We do not store or repurpose consulting-related data for marketing, sales, or internal analytics.

Tactical Edge operates under non-disclosure agreements (NDAs) where applicable and enforces strict access controls to ensure that sensitive information is only available to authorized personnel.

Legal Basis for Processing (GDPR & CCPA Compliance)

We process personal data based on the following legal bases:

• Performance of a Contract: Fulfilling consulting engagements and service agreements.
• Legitimate Interests: Enhancing business operations, improving our services, and conducting professional networking.
• Consent: Sending marketing emails or processing optional cookies (where legally required).
• Legal Obligations: Retaining data for compliance with tax, accounting, and regulatory requirements.

Where required by law, we obtain explicit consent before processing personal data for marketing or analytics.

Data Sharing & Third Parties

We do not sell personal data. We share data only when necessary:

• With Service Providers: Third-party vendors assisting with IT, analytics, billing, and administrative functions.
• With Business Partners: Collaborating firms or advisors involved in joint consulting engagements.
• Legal & Compliance Reasons: If required by law, regulatory authorities, or court orders.
• Corporate Transactions: In case of mergers, acquisitions, or business transfers.

All third-party service providers are contractually obligated to protect personal data in accordance with applicable privacy laws.

Third-Party Data Processing & Vendor Compliance

Tactical Edge works with trusted third-party service providers to support its business operations, such as:

• Cloud storage providers for secure data management
• IT and cybersecurity vendors for infrastructure security
• Billing and administrative tools for payment processing

To ensure privacy and compliance:

• We require all third-party vendors to meet strict security and data protection standards.
• Third parties are contractually obligated to follow applicable privacy laws (e.g., GDPR, CCPA, U.S. data protection regulations).
• We do not share consulting-related client data with third parties for marketing or external research purposes.

If Tactical Edge engages additional vendors that process client data, we will notify affected clients as necessary.

Data Security & Risk Mitigation Measures

Tactical Edge takes data security seriously and follows industry best practices to safeguard personal and business data against unauthorized access, loss, or misuse. Our security measures include:

• Encryption: All stored and transmitted data is protected using industry-standard encryption protocols.
• Access Controls: Only authorized personnel can access sensitive data, with role-based permissions to limit unnecessary exposure.
• Incident Response Plan: In the event of a security breach, we follow a structured incident response plan, including:
  
  • Immediate containment of the breach
  • Client and regulatory notifications (where required)
  • Internal investigation and remediation actions
• Regular Security Audits: We conduct internal security reviews to identify vulnerabilities and strengthen protections.

We strongly advise clients to use secure communication channels when sharing sensitive business information with us.

Data Breach Notification

Tactical Edge follows industry-standard security measures to protect personal data. In the event of a security breach affecting personal data, we will:

1. Assess the scope and impact of the breach.
2. Notify affected clients and individuals as required by applicable law (e.g., within 72 hours under GDPR regulations).
3. Take corrective actions to prevent future incidents.
4. Provide affected clients with a report detailing remediation efforts.

Clients and affected parties will be informed through email or official communication channels if their data is impacted.

If you suspect unauthorized access or a data breach, please report it immediately to security@tacticaledge.ai.

Your Rights & Choices

Depending on your jurisdiction, you may have the following rights:

• Access & Correction: Request copies or corrections of your personal data.
• Opt-Out of Marketing: Unsubscribe from promotional emails.
• Data Deletion: Request deletion of your personal data (subject to legal retention requirements).
• Restrict Processing: Object to certain uses of your data.

User Consent & Withdrawal Rights

Tactical Edge may collect and process personal data based on user consent where required by law, including for:

• Marketing communications (e.g., newsletters, promotional emails).
• Website cookies and tracking technologies.
• Voluntarily submitted information through contact forms.

By using our Services, you consent to this data collection. You may withdraw your consent at any time by:

• Unsubscribing from emails via the opt-out link in any marketing email.
• Managing cookie preferences in your browser settings or through our Cookie Preferences Center.
• Contacting us directly at privacy@tacticaledge.ai to request withdrawal of consent.

If you withdraw consent, it will not affect the lawfulness of data processing conducted before withdrawal.

Opt-Out of Sale or Sharing of Personal Information

Tactical Edge does not sell or share personal data for advertising, monetization, or third-party marketing purposes.

However, if you are a California resident, you have the right under the California Consumer Privacy Act (CCPA) to:

• Request confirmation that your personal data has not been sold or shared.
• Opt-out of any potential future sale or sharing of personal information.

To exercise your opt-out rights, please contact privacy@tacticaledge.ai.

Tactical Edge does not use automated decision-making processes to make legally binding decisions about individuals.

If you are an EU or UK resident and believe Tactical Edge has not adequately addressed your data protection concerns, you may file a complaint with your local data protection authority. In the UK, this is the Information Commissioner’s Office (ICO). EU residents can find their local authority on EDPB’s website.

International Data Transfers

Tactical Edge operates in the United States but may process data internationally. Where applicable, we implement:

• Standard Contractual Clauses (SCCs) for cross-border data transfers.
• Data Protection Agreements (DPAs) with third-party processors.
• Encryption & Security Standards to protect international data transfers.

For EU, UK, or other global data protection concerns, contact us at privacy@tacticaledge.ai.

Compliance with International Privacy Laws

Tactical Edge provides consulting services to clients in multiple jurisdictions. In addition to U.S. data protection laws, we comply with applicable international privacy regulations, including:

• General Data Protection Regulation (GDPR) for individuals in the European Economic Area (EEA).
• UK Data Protection Act 2018 for individuals in the United Kingdom.
• Other regional privacy laws as required by applicable jurisdictions.

If you are located outside the U.S., Tactical Edge will process your personal data in accordance with the relevant laws governing your jurisdiction.

For inquiries about specific regional privacy protections, contact privacy@tacticaledge.ai.

International Data Transfers & GDPR Compliance

Tactical Edge may transfer personal data across international borders to support global consulting engagements.

To ensure compliance with GDPR and other international privacy regulations, we rely on:

• Standard Contractual Clauses (SCCs) for data transfers from the European Economic Area (EEA) to the United States.
• Other legally recognized safeguards, such as data encryption, access controls, and privacy frameworks.

Clients engaging Tactical Edge for international projects should ensure their own data processing agreements (DPAs) cover cross-border transfers where applicable.

For questions about international data transfers, contact privacy@tacticaledge.ai.

Cookies & Tracking Technologies

We use cookies to enhance functionality, analyze website traffic, and personalize user experience. You can:

• Adjust Browser Settings: Disable cookies through your browser preferences.
• Use Our Cookie Preferences Center: Manage tracking settings on our website.

For full details, see our Cookie Policy.

Children's Privacy

Our Services are intended for business professionals. We do not knowingly collect or process data from individuals under 16 years old.

If you believe we have inadvertently collected personal data from a minor, please contact us for deletion.

Tactical Edge’s services are intended for business professionals and are not designed for individuals under 16. We do not knowingly collect personal data from children. If we become aware of such data, we will delete it immediately.

Updates to This Policy

We may update this Privacy Policy periodically. Changes will be posted with an updated effective date. Continued use of our Services constitutes acceptance of the revised policy.

For material changes, we will notify users via email or website updates.

Legal Jurisdiction & Dispute Resolution

This Privacy Policy is governed by the laws of Virginia state and U.S. Federal Law, without regard to conflict of law principles.

In the event of a dispute:

1. Clients must first attempt to resolve disputes by contacting privacy@tacticaledge.ai.
2. If unresolved, the dispute will be subject to mediation or binding arbitration in Virginia.
3. Legal proceedings (if necessary) must be conducted in Virginia.

By using Tactical Edge’s services, you agree to the exclusive jurisdiction of the courts or arbitration process specified above.

Contact Information

For questions or privacy-related concerns, contact us:

‍Tactical Edge AI, LLC
Email: privacy@tacticaledge.ai
Address: 8401 Mayland Dr, Ste S, Richmond, VA, 23294, USA

Article 27 Representative (EU/UK)

If you reside in Europe or the UK, you can also contact Rickert, which has been appointed as our representative for data protection matters under Article 27 of the GDPR. You can contact Rickert for GDPR-related inquiries in addition to our DPO:

‍UK Representative

Rickert Services Ltd UK

PO Box 1487

Peterborough, PE1 9XX, United Kingdom

art-27-rep-tacticaledgeai@rickert-services.uk 

‍

EU Representative

Rickert Services Ltd UK

PO Box 1487

Peterborough, PE1 9XX, United Kingdom

art-27-rep-tacticaledgeai@rickert-services.uk

‍

Record of Processing Activities Addendum

This section details how Tactical Edge processes personal data in accordance with applicable privacy regulations, such as the GDPR, UK GDPR, and CCPA.

1. Processing Activities

Controller

Tactical Edge AI, LLC, Contact: privacy@tacticaledgeai.com 

Purpose of Processing

To provide, manage, and enhance our services, including facilitating customer interactions, improving product functionality, conducting analytics, and supporting marketing and operational activities.

Categories of Data Subjects

• Customers: Business representatives of companies using our platform.
• Users: Individuals acting on behalf of our customers (e.g., account administrators, billing contacts).
• Prospects: Individuals interacting with our website, marketing materials, or events.

‍Categories of Personal Data Processed

• Customer Data: Contact details, billing information, organization details, user login credentials, and business preferences.
• Usage Data: Interaction logs, session data, device and browser information, and inferred preferences.
• Prospect Data: Names, email addresses, website interactions, and analytics.

2. Third-Party Service Providers

We engage third-party providers for hosting, analytics, payment processing, email distribution, and customer relationship management. These providers act as "data processors" under GDPR and are bound by data processing agreements to ensure compliance with privacy laws. 

3. Retention Periods

Personal data is retained as follows, unless otherwise required by legal or contractual obligations:

• Customer Data: Retained for the duration of the customer relationship and up to 3 years after termination.
• Usage Data: Retained for 12 months for analytical purposes.
• Prospect Data: Retained for 18 months from the last interaction.

Maximum timelines depend on the nature of the data and legal requirements. For example, financial transaction records may need to be retained for 7 years for compliance.

4. International Data Transfers

Personal data may be transferred to and stored in the United States. To safeguard these transfers, we implement the following measures:

• Standard Contractual Clauses (SCCs): Approved by the European Commission for data transfers.
• Data Privacy Framework Adherence: Compliance with EU-U.S. and Swiss-U.S. Data Privacy Framework principles.
• Technical Measures: Encryption and pseudonymization during transfers.

5. Technical and Organizational Measures

To protect data, we implement industry-standard security measures, including:

• Encryption of data in transit and at rest.
• Role-based access controls and employee training on data security.
• Regular vulnerability assessments and audits.

6. Legal Basis for Processing

We rely on the following bases under GDPR:

• Performance of a Contract: Providing our services.
• Legitimate Interests: Enhancing services, conducting analytics, and improving marketing.
• Consent: For optional cookies and marketing communications.

Tactical Edge does not require a Data Protection Officer (DPO) under GDPR. However, our EU/UK Representative (Rickert Services) can be contacted for GDPR-related inquiries.