Privacy Policy

1. Who We Are

DeepDive is operated by All Day Automations (CCT Consulting LLC), a Florida limited liability company located at:

233 NE 27th St, Miami, FL 33137
Email: [email protected]
Phone: (786) 689-3211

This Privacy Policy describes how we collect, use, share, and protect information when you visit our website or purchase a DeepDive report.

2. Information We Collect

Information you provide to us:

• Your name and email address when you place an order or contact us
• Payment information processed securely through Stripe (we do not store card numbers)
• The name, location, or other identifying details of the subject you request research on
• Any messages or inquiries you send us

Information collected automatically:

• IP address and browser/device type
• Pages visited, time on site, and referring URLs
• Cookies and similar tracking technologies (see Section 6)

Information about report subjects:

We compile publicly available information to fulfill research requests. This may include public records, court records, social media profiles, news articles, business filings, and other lawfully accessible sources. We do not access private, confidential, or non-public data.

3. How We Use Your Information

• To process and fulfill your research report order
• To communicate with you about your order or inquiries
• To send order confirmations and delivery notifications
• To improve our service quality and website experience
• To detect and prevent fraud or abuse
• To comply with applicable legal obligations

We do not sell your personal information to third parties for their own marketing purposes.

4. Payment Processing (Stripe)

All payments are processed by Stripe, Inc., a PCI-DSS Level 1 certified payment processor. When you submit payment, your card details are transmitted directly to Stripe and are never stored on our servers. We receive only a transaction confirmation token and the last four digits of your card.

Stripe's privacy practices are governed by the Stripe Privacy Policy.

5. Data Retention

• Search queries and personal information submitted with an order: Retained for 90 days, then permanently deleted
• Report content: Retained for 30 days after delivery for quality assurance, then permanently deleted
• Order records: Retained for up to 2 years for business and legal compliance purposes
• Email communications: Retained for up to 1 year unless earlier deletion is requested
• Payment records: Retained as required by tax and financial regulations (typically 7 years)
• Website analytics data: Retained in aggregated, anonymized form

You may request deletion of your personal data at any time by contacting us at [email protected]. We will fulfill deletion requests within 30 days except where retention is required by law.

6. Cookies and Tracking

Our website uses cookies and similar technologies for the following purposes:

• Essential cookies: Required for checkout and session management — always active
• Analytics cookies (consent required): Google Analytics 4 (GA4) and Microsoft Clarity are loaded only if you accept cookies via the consent banner. If you decline, neither service is initialized and no tracking scripts run.
• Payment cookies: Set by Stripe to facilitate secure transactions

When you first visit our site, a cookie consent banner is displayed. Your choice is saved in your browser's local storage. You may change your preference at any time by clearing your browser storage and revisiting the site. Declining analytics cookies does not affect checkout functionality or report delivery. We do not use cookies for cross-site advertising or behavioral profiling.

7. Third-Party Services

We use the following third-party services that may process your data:

• Stripe — Payment processing (Privacy Policy)
• Google Analytics — Website analytics (Privacy Policy)
• Cloudflare — Performance and security (Privacy Policy)

We do not share your personal information with any other third parties except as required by law or to complete your order.

8. FCRA Disclaimer

DeepDive is not a Consumer Reporting Agency as defined under the Fair Credit Reporting Act, 15 U.S.C. § 1681 et seq. (FCRA). The reports we provide:

• Are compiled from publicly available information only
• Are intended for informational and personal research purposes
• May not be used for employment screening, background checks for hiring, tenant screening, credit decisions, or insurance eligibility determinations
• May not be used in violation of any federal, state, or local law

By placing an order, you certify that you will use DeepDive reports only for lawful personal research purposes and not for any FCRA-regulated purpose.

9. California Privacy Rights (CCPA)

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA):

• Right to Know: Request disclosure of the categories and specific pieces of personal information we have collected about you
• Right to Delete: Request deletion of your personal information, subject to certain exceptions
• Right to Opt-Out: We do not sell personal information, so there is nothing to opt out of
• Right to Non-Discrimination: We will not discriminate against you for exercising these rights

To submit a CCPA request, contact us at [email protected]. We will respond within 45 days.

10. Florida Privacy Rights (FDBR)

If you are a Florida resident, the Florida Digital Bill of Rights (FDBR) may provide you with additional rights regarding your personal data, including the right to access, correct, delete, and obtain a portable copy of your data. To exercise these rights, contact us using the information below.

11. GDPR Rights (EEA & UK Residents)

If you are located in the European Economic Area (EEA) or United Kingdom, you have the following rights under the General Data Protection Regulation (GDPR) and applicable UK law:

Right to Erasure (Article 17)
You may request deletion of your personal data at any time by emailing [email protected]. We will process erasure requests within 30 days. Erasure may be limited where we are required to retain data by law (e.g., tax records).

Right to Access (Article 15)
You may request a copy of all personal data we hold about you. Submit your request to [email protected] and we will respond within 30 days.

Right to Rectification (Article 16)
You may request correction of inaccurate personal data we hold about you.

Right to Restriction and Objection (Articles 18–21)
You may request that we restrict processing of your personal data or object to processing based on legitimate interests.

Right to Data Portability (Article 20)
Where processing is based on consent or contract and carried out by automated means, you may request your data in a structured, machine-readable format.

To exercise any of these rights, contact us at [email protected]. You also have the right to lodge a complaint with your local supervisory authority.

12. Legal Basis for Data Processing (GDPR)

Where GDPR applies, we process your personal data on the following legal bases:

• Contractual necessity (Article 6(1)(b)): Processing is necessary to fulfill your report order and provide the services you have requested.
• Legitimate interest (Article 6(1)(f)): We process limited data to improve our services, prevent fraud, and maintain security. Our legitimate interests do not override your fundamental rights.
• Consent (Article 6(1)(a)): Analytics cookies (Google Analytics 4, Microsoft Clarity) are only processed on the basis of your explicit consent via the cookie banner.
• Legal obligation (Article 6(1)(c)): We retain payment and transaction records as required by applicable tax and financial law.

13. International Data Transfers

Your personal data is processed and stored in the United States. The US may not provide the same level of data protection as your home country. By using our service, you acknowledge and consent to the transfer of your data to the United States.

Where required by GDPR, transfers to the US are conducted in reliance on applicable transfer mechanisms. Our third-party processors (Stripe, Google, Cloudflare) participate in recognized data transfer frameworks or rely on Standard Contractual Clauses to protect transferred data.

14. Third-Party Data Sharing

We do not sell, rent, or share your personal data with third parties for their marketing or commercial purposes. Your data is used solely to fulfill your report order and operate this service.

We share data only in these limited circumstances:

• Service providers: Stripe (payment processing), Google Analytics / Microsoft Clarity (analytics, with your consent), and Cloudflare (security and performance). These processors are bound by data processing agreements and may only use your data as directed by us.
• Legal compliance: We may disclose data if required by law, court order, or to protect the rights and safety of our users or the public.
• Business transfers: In the unlikely event of a merger or acquisition, your data may be transferred as part of that transaction, subject to this Privacy Policy.

15. Data Security

We implement commercially reasonable technical and organizational measures to protect your information, including HTTPS encryption, secure payment processing via Stripe, and access controls on our systems. However, no method of internet transmission is 100% secure, and we cannot guarantee absolute security.

16. Children's Privacy

DeepDive is not directed at individuals under 18 years of age. We do not knowingly collect personal information from minors. If you believe we have inadvertently collected information from a minor, please contact us and we will promptly delete it.

17. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last Updated" date at the top of this page. Continued use of our service after changes are posted constitutes acceptance of the revised policy. For material changes, we will notify customers via email.

18. Contact & Data Protection Inquiries