Authentic Dynamics | Elite Web Solutions

Scope and definitions

This Privacy Policy applies to www.authenticdynamics.com and any pages or products we operate that link here. It covers visitors, prospective clients, and clients that interact with our site, forms, newsletters, and related services.

Personal data means information that identifies or can reasonably be linked to a person.
Processing means any operation on data like collecting, storing, using, or disclosing.
Controller means the party that decides how and why data is processed. On this website we are the controller.
Processor means the party that processes data for a controller. When we build and operate sites for clients, we act as a processor for client-owned data. See Client data.

We do not sell data

We do not sell or share your personal information for cross-context behavioral advertising. You can still exercise opt-out rights where the law gives you that choice.

Who we are

Authentic Dynamics LLC is a web and SEO studio based in Central Pennsylvania. We design, build, and support custom websites and related services for small businesses and nonprofits.

Contact for privacy requests: andrewguasch@authenticdynamics.com. If you need a mailing address, request it by email and we will provide it.

Categories of personal data we collect

Data you provide

Contact details like name, email, phone, company, and role.
Project information like goals, budget ranges, timelines, and content samples.
Support communications like emails and form messages.
Newsletter preferences and consent signals where applicable.

Data collected automatically

Log data like IP address, browser type, device type, referrer, and timestamps.
Usage data like pages viewed, session duration, and interactions with UI elements.
Approximate location derived from IP at the city or region level.
Cookie identifiers or similar if you consent to analytics or preferences. See Cookies.

Data from third parties

Lead sources like referrals or partner introductions.
Basic business info from public records or directories.
Platform analytics where we host or promote content.

Sensitive data

We do not intentionally collect sensitive personal information through this website. Do not include health, financial account numbers, social security numbers, or similar sensitive details in forms.

How we use personal data

Core purposes

Provide and improve our website and services.
Respond to inquiries and provide quotes.
Set up and maintain client projects, accounts, and billing.
Send service messages like updates, security notices, or policy changes.

Optional purposes

With consent, send newsletters or education content.
Run basic analytics to understand site performance and content interest.
Protect against fraud, abuse, and misuse of our services.

Legal bases for processing

If you are in the European Economic Area, United Kingdom, or other regions with similar laws, we rely on these legal bases:

Contract to evaluate or perform a project you request.
Legitimate interests like securing our services, improving the site, and communicating with you in ways you would expect. We balance these interests against your rights.
Consent for optional analytics, newsletters, or marketing. You can withdraw consent at any time.
Legal obligations like tax, accounting, or compliance requirements.

Cookies and similar technologies

How we use cookies

We use strictly necessary cookies to operate the site. With consent, we may use functional or performance cookies for analytics. We do not use cookies for cross-site ad targeting.

Necessary like session and CSRF tokens to keep requests secure.
Functional like remembering preferences such as cookie choices.
Performance like aggregate page metrics to improve speed and content.

Your browser may let you block or delete cookies. Features that rely on them may stop working if you disable necessary cookies.

Consent and controls

If we present a cookie banner, your choices are honored on this device. You can revisit choices by clearing cookies or using a site preference link if we provide one.

When we disclose personal data

Service providers

We use vendors that help us operate this site and deliver services. Common categories include:

Hosting and infrastructure providers.
Email and productivity tools.
Optional analytics providers.
Payment processors when you pay us online.
Security, logging, backup, and monitoring tools.

Vendors are required to protect data and use it only on our instructions.

Other disclosures

To comply with law, regulation, legal process, or enforceable governmental requests.
To enforce agreements, protect the rights, property, or safety of Authentic Dynamics, our clients, or the public.
During business transfers like a merger or acquisition. Your privacy rights remain in effect.

Sale or sharing for advertising

We do not sell personal data. We also do not share personal data for cross-context behavioral advertising as defined by US state privacy laws.

Retention

We keep personal data only as long as needed for the purposes described above, to comply with legal requirements, or resolve disputes. Typical retention windows:

Data retention schedule
Category	Typical retention	Notes
Inquiry and contact records	Up to 24 months after last interaction	Deleted sooner upon verified request unless needed for legal reasons.
Client project records	Project term plus 7 years	For accounting, tax, and contractual obligations.
Newsletter lists	Until you unsubscribe or we prune inactive contacts	We remove bounces and long-term inactivity.
Server logs	Up to 12 months	Shorter if not required for security or diagnostics.
Cookie preferences	Up to 12 months	Resets if you clear cookies or change consent.

Security

TLS encryption in transit for this site where supported by your browser.
Provider-level encryption at rest where the vendor offers it.
Access controls with least privilege and need-to-know review.
Backups and monitoring appropriate to the size of our business.

No system is perfectly secure. If we discover a breach that affects your data, we will notify you and any regulator when required by law.

International data transfers

Our services are operated in the United States. If you access our site from outside the US, your information may be transferred to the US. Where applicable, we rely on appropriate safeguards such as standard contractual clauses with vendors that process data outside your region.

Your privacy rights and how to exercise them

Global rights we honor

Access and portability. Request a copy of your personal data.
Correction. Ask us to fix inaccurate or incomplete data.
Deletion. Ask us to delete personal data, subject to legal exceptions.
Restriction and objection. Object to processing based on legitimate interests or ask us to limit certain uses.
Consent withdrawal. If we process based on consent, you can withdraw it at any time.

Region specific rights

GDPR and UK GDPR. You may complain to your data protection authority. We would appreciate the chance to resolve concerns first.
California, Colorado, Connecticut, Virginia, and similar US state laws. You may have rights to know, access, correct, delete, and opt out of certain uses. We do not sell or share for cross-context behavioral advertising. You can still request that we limit the use of any sensitive personal information if that ever applies here.

How to exercise your rights

Email andrewguasch@authenticdynamics.com with the subject line Privacy Request and tell us what you are asking for. We will verify your identity based on information we already have or by asking for reasonable additional details. You may authorize an agent to act for you by providing signed permission and identity verification as required by law. We will not discriminate against you for exercising your rights.

Client data that we process on your behalf

When we build, host, or maintain websites and digital assets for clients, we may process end-user data as a processor acting on the client’s instructions. Examples include contact forms, order details, or analytics related to a client site.

We use client data only to provide the contracted service and to meet legal obligations.
We implement reasonable security and confidentiality controls.
On request, we will sign a Data Processing Addendum that reflects these roles and responsibilities.
At the end of a project or on request, we return or delete client data unless law requires us to retain it.

Children’s privacy

Our site and services are not directed to children under 13. We do not knowingly collect personal information from children. If you believe a child provided us personal information, contact us and we will delete it.

Do Not Track and global privacy controls

Some browsers offer Do Not Track or Global Privacy Control signals. We do not use data for cross-site behavioral advertising, and where legally required we will honor valid opt-out preference signals for activities that qualify as a sale or sharing. If you think a signal was not recognized, email us.

Changes to this policy

We may update this Privacy Policy to reflect changes in our services or the law. If the changes are material, we will post a notice on this page and adjust the effective date at the top. We encourage you to review this page periodically.

Contact us

If you have questions or requests about this Privacy Policy, email andrewguasch@authenticdynamics.com. For security, do not include sensitive information in emails or forms.