Privacy Policy
Effective Date: June 30, 2025
1. Purpose and Scope
This Privacy Policy ("Policy") sets forth the data collection, use, and disclosure practices of Project Fortress, LLC ("Company", "we", "us", or "our") in connection with the operation of the Company’s website (the "Site"). This Policy applies to all users of the Site and governs the manner in which the Company collects, processes, stores, and discloses information obtained through the Site.
2. Information Collection
The Company collects information from users of the Site as described in this Section 2. The Company does not collect personally identifiable information ("PII") except where such information is expressly and voluntarily provided by the user. PII may be collected in the following circumstances: (a) when a user subscribes to the Company’s newsletter by providing an email address; or (b) when a user submits a request for a product demonstration, in which case the user may provide name, email address, company affiliation, and other contact information for purposes of scheduling and facilitating the demonstration. The Company does not otherwise solicit or harvest PII from users of the Site.
The Company also collects certain technical and usage information automatically through the use of cookies, web beacons, and similar technologies, including Google Analytics. This information may include IP address, browser type, device identifiers, referring and exit pages, and pages viewed on the Site. Such data is collected in aggregate and does not directly identify individual users. Users may opt out of Google Analytics tracking by using the Google Analytics Opt-out Browser Add-on or similar mechanisms.
3. Cookies and Tracking Technologies
The Site uses cookies and similar tracking technologies to enhance user experience, analyze Site usage, and improve functionality. Cookies are small data files stored on your device. By using the Site, you consent to the use of cookies as described in this Policy. Users may adjust browser settings to refuse cookies or to alert when cookies are being sent; however, certain features of the Site may not function properly without cookies.
The Site does not respond to “Do Not Track” signals transmitted by web browsers.
4. Use of Information
The Company uses information collected pursuant to Section 2 and Section 3 for the following purposes: (a) to provide, operate, maintain, and improve the Site and related services; (b) to respond to user inquiries and process requests for product demonstrations; (c) to send newsletters and other communications to users who have affirmatively opted in; (d) to analyze and enhance user experience; (e) to comply with applicable laws, regulations, or legal processes; and (f) to protect the Company’s rights and interests.
Where required by law (including GDPR), the Company relies on the following legal bases for processing PII: (i) user consent; (ii) performance of a contract; (iii) compliance with a legal obligation; and (iv) legitimate business interests, provided such interests are not overridden by user rights and interests.
5. Disclosure of Information
The Company does not sell, rent, or otherwise disclose PII to third parties for their own marketing or commercial purposes. The Company may share PII with third-party service providers engaged to perform services on the Company’s behalf, including email delivery and website hosting, provided such service providers are contractually obligated to maintain the confidentiality and security of such information and to use it solely for the purposes specified by the Company. The Company may also disclose PII if required to do so by law or in the good faith belief that such action is necessary to: (a) comply with a legal obligation or governmental request; (b) protect and defend the rights or property of the Company; (c) act in urgent circumstances to protect the personal safety of users of the Site or the public; or (d) in connection with a merger, acquisition, or sale of all or a portion of the Company’s assets, subject to the acquirer’s agreement to maintain the privacy of such information consistent with this Policy.
6. International Data Transfers and GDPR Compliance
The Company is headquartered in the United States but offers its services internationally. For users located in the European Economic Area (“EEA”) or the United Kingdom (“UK”), the Company stores personal data exclusively on servers located within the EEA and processes such data in accordance with the General Data Protection Regulation (“GDPR”). All Master Service Agreements (“MSAs”) entered into by the Company include Data Processing Addenda that address data protection obligations and cross-border transfer mechanisms as required by the GDPR and other applicable laws.
Users in the EEA or UK have the right to lodge a complaint with a supervisory authority if they believe their data protection rights have been violated.
7. Data Security
The Company implements reasonable administrative, technical, and organizational measures designed to protect PII from unauthorized access, disclosure, alteration, or destruction. In the event of a data breach affecting PII, the Company will notify affected users and relevant authorities as required by applicable law.
Notwithstanding the foregoing, the Company cannot guarantee the absolute security of information transmitted via the Internet or stored in electronic form, and all such transmissions and storage are subject to inherent risks.
8. Data Retention
The Company retains PII only for as long as necessary to fulfill the purposes described in this Policy, or as required to comply with applicable legal, regulatory, or contractual obligations, to resolve disputes, and to enforce the Company’s agreements. When PII is no longer required, it will be securely deleted or anonymized.
9. User Rights and Choices
Users who have subscribed to the Company’s newsletter may opt out of receiving further communications at any time by following the unsubscribe instructions included in each email communication. Users may also disable cookies through their browser settings as described in Section 3.
Users located in the EEA, UK, or other jurisdictions with applicable data protection laws may have additional rights, including the right to access, rectify, erase, restrict, or object to the processing of their personal data, the right to data portability, and the right to withdraw consent at any time without affecting the lawfulness of processing based on consent before its withdrawal. Requests to exercise such rights should be directed to the Company using the contact information provided in Section 14.
California residents may have additional rights under the California Consumer Privacy Act (“CCPA”), including the right to request information about the categories of personal information collected, the sources of such information, the business purpose for collection, and the categories of third parties with whom the information is shared. California residents may also request access to or deletion of their personal information, subject to certain exceptions.
10. Children’s Privacy
The Site is not directed to children under the age of sixteen (16), and the Company does not knowingly collect PII from children under sixteen (16). If the Company becomes aware that it has collected PII from a child under sixteen (16) without appropriate consent, it will promptly delete such information from its records.
11. Third-Party Links and Embedded Content
The Site may contain links to third-party websites or embedded content (such as videos, images, or articles) that are not operated or controlled by the Company. The Company is not responsible for the privacy practices or content of such third-party sites. Users are encouraged to review the privacy policies of any third-party sites they visit.
12. Accessibility
The Company is committed to ensuring that this Policy is accessible to all users, including individuals with disabilities. Users who require this Policy in an alternative format should contact the Company using the information provided in Section 14.
13. Changes to this Policy
The Company reserves the right to amend or update this Policy at any time in its sole discretion. Any changes to this Policy will be posted on the Site with an updated effective date. Continued use of the Site following the posting of any changes constitutes acceptance of such changes. Users are encouraged to review this Policy periodically for updates.
14. Contact Information
Questions, concerns, or requests regarding this Policy or the Company’s data practices, including requests to exercise data subject rights, should be directed to:
Project Fortress, LLC
csteffen@projectfortress.com
11009 W 120th St, Overland Park, KS 66213
If required by law, users may also contact the Company’s Data Protection Officer at the above address or by email.
15. Version
This Policy is version 2 and is effective as of the date first written above.