Privacy Policy

1. Introduction

BrickByClick.ai ("we," "our," or "us") respects your privacy and is committed to protecting your personal data. This Privacy Policy applies to our website (brickbyclick.ai), services, and any interactions you have with us.

By using our website or services, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Information You Provide Directly

When you interact with our services, we may collect:

• Contact Information: Name, email address, phone number, business name
• Business Information: Business address, website URL, industry, services offered
• Account Credentials: Username, password (encrypted)
• Payment Information: Credit card details, billing address (processed by third-party payment processors)
• Communication Data: Messages, emails, support tickets, feedback
• Service-Related Data: Website content, images, business descriptions, target keywords

2.2 Information Collected Automatically

When you visit our website, we automatically collect:

• Device Information: IP address, browser type, operating system, device type
• Usage Data: Pages viewed, time spent, click patterns, referral sources
• Cookies and Tracking: Session cookies, analytics cookies, preference cookies
• Location Data: Approximate geographic location based on IP address

2.3 Information from Third Parties

We may receive information from:

• Social Media: If you connect social accounts or share content
• Business Directories: Public business information for citation building
• Analytics Providers: Google Analytics, heatmapping tools
• Review Platforms: Google, Yelp, Facebook reviews (public data only)

3. How We Use Your Information

3.1 To Provide Services

• Deliver SEO, website development, and AI automation services
• Optimize your website and online presence
• Manage your Google Business Profile and online listings
• Generate and monitor reviews
• Provide customer support and respond to inquiries

3.2 To Improve Our Services

• Analyze website usage and performance
• Develop new features and functionality
• Conduct research and testing
• Identify and fix technical issues

3.3 For Communication

• Send service updates and notifications
• Provide monthly reports and analytics
• Send marketing communications (with your consent)
• Respond to support requests

3.4 For Legal and Security Purposes

• Comply with legal obligations
• Prevent fraud and abuse
• Protect our rights and property
• Enforce our Terms of Service

4. Legal Basis for Processing (GDPR)

For users in the European Economic Area (EEA), we process your data based on:

5. Cookies and Tracking Technologies

5.1 What Are Cookies?

Cookies are small text files stored on your device that help us provide and improve our services.

5.2 Types of Cookies We Use

• Essential Cookies: Required for website functionality (login, security)
• Analytics Cookies: Google Analytics, heatmaps, usage tracking
• Preference Cookies: Remember your settings and preferences
• Marketing Cookies: Track ad performance and retargeting (with consent)

5.3 Managing Cookies

You can control cookies through your browser settings. Note that disabling certain cookies may limit website functionality.

Learn more about managing cookies at: www.allaboutcookies.org

6. How We Share Your Information

6.1 Service Providers

We share data with third-party service providers who help us deliver services:

• Hosting Providers: Website and application hosting
• Payment Processors: Stripe, PayPal (credit card processing)
• Email Services: Transactional and marketing email delivery
• Analytics Tools: Google Analytics, monitoring services
• CRM Platforms: Customer relationship management
• AI Services: OpenAI, Anthropic for AI-powered features

These providers are contractually obligated to protect your data and use it only for specified purposes.

6.2 Business Transfers

If BrickByClick.ai is acquired, merged, or restructured, your data may be transferred to the new entity.

6.3 Legal Requirements

We may disclose information if required by law, court order, or to protect our rights and safety.

6.4 With Your Consent

We may share data with other parties when you explicitly consent or direct us to do so.

6.5 What We Do NOT Share

• We do NOT sell your personal information to third parties
• We do NOT rent or lease your contact information
• We do NOT share your data for unrelated marketing purposes

7. Data Security

7.1 Security Measures

We implement industry-standard security measures to protect your data:

• Encryption: SSL/TLS encryption for data transmission
• Access Controls: Role-based access, strong passwords, two-factor authentication
• Monitoring: Security monitoring and intrusion detection
• Regular Updates: Software patches and security updates
• Employee Training: Staff trained on data protection practices

7.2 Data Breach Notification

In the event of a data breach, we will notify affected users within 72 hours (as required by GDPR) and provide information about the breach and remediation steps.

7.3 Limitations

While we take security seriously, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

8. Data Retention

We retain your personal information for as long as:

• You maintain an active account with us
• Necessary to provide services you've requested
• Required by law or for legal purposes (typically 7 years for financial records)
• Needed to resolve disputes or enforce agreements

8.1 After Account Closure

When you close your account:

• Personal data is deleted or anonymized within 90 days
• Backup copies may persist for up to 180 days
• Legal/financial records retained as required by law
• Aggregated, anonymized data may be retained indefinitely

9. Your Privacy Rights

9.1 GDPR Rights (EEA Users)

If you're in the European Economic Area, you have the right to:

• Access: Request a copy of your personal data
• Rectification: Correct inaccurate or incomplete data
• Erasure: Request deletion of your data ("right to be forgotten")
• Restriction: Limit how we process your data
• Portability: Receive your data in a structured, machine-readable format
• Objection: Object to processing based on legitimate interests
• Withdraw Consent: Withdraw consent at any time (where consent is the legal basis)
• Lodge a Complaint: File a complaint with your local data protection authority

9.2 CCPA Rights (California Users)

If you're a California resident, you have the right to:

• Know: Request disclosure of data collected, sold, or shared
• Delete: Request deletion of your personal information
• Opt-Out: Opt out of the sale of personal information (we do not sell data)
• Non-Discrimination: Not be discriminated against for exercising your rights

9.3 All Users

Regardless of location, you can:

• Update your account information at any time
• Unsubscribe from marketing emails via the unsubscribe link
• Request a copy of your data
• Close your account

9.4 Exercising Your Rights

To exercise any of these rights, contact us at: privacy@brickbyclick.ai

We will respond to requests within 30 days. We may request verification of your identity before processing requests.

10. International Data Transfers

BrickByClick.ai operates from Canada. If you're located outside Canada, your data may be transferred to and processed in Canada or other countries where our service providers operate.

We ensure adequate protections through:

• Standard Contractual Clauses (SCCs) for EEA transfers
• Adequacy decisions where applicable
• Privacy Shield Framework (where available)
• Other approved transfer mechanisms

11. Children's Privacy

Our services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children.

If we become aware that we've collected data from a child without parental consent, we will delete it immediately. If you believe we have information about a child, contact us at: privacy@brickbyclick.ai

12. Third-Party Links

Our website may contain links to third-party websites (Google, social media, review platforms, etc.). We are not responsible for the privacy practices of these sites.

We encourage you to read the privacy policies of any third-party sites you visit.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements.

When we make material changes:

• We will update the "Last Updated" date
• We may notify you via email or website notice
• Continued use of our services constitutes acceptance of the updated policy

We encourage you to review this policy periodically.

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, contact us:

BrickByClick.ai
Privacy Officer
Email: privacy@brickbyclick.ai
General Inquiries: info@brickbyclick.ai
Website: https://brickbyclick.ai

14.1 Data Protection Officer (GDPR)

For GDPR-related inquiries, contact our Data Protection Officer at: dpo@brickbyclick.ai

14.2 EEA Representative

If you're in the EEA and need to contact a local representative, email: eu-representative@brickbyclick.ai

15. Specific Service Privacy Practices

15.1 Review Generation Service

Our AI review generation service:

• Only sends review requests to customers who actually used your services
• Stores customer email/phone temporarily for sending requests
• Does not share customer data with third parties (except email/SMS providers)
• Complies with CAN-SPAM, CASL, and anti-spam regulations
• Allows customers to opt out of future communications

15.2 AI Services

When using AI-powered features:

• Data may be processed by third-party AI providers (OpenAI, Anthropic)
• Conversations may be stored temporarily for service delivery
• We do not use your data to train third-party AI models
• AI-generated content is your property

15.3 Website Hosting

Websites we host:

• May collect visitor data via analytics tools
• Are subject to this Privacy Policy and your own privacy policy
• You are responsible for your own website's GDPR/CCPA compliance