Effective Date: August 12, 2025
RIA Family Legacy Group LLC — Marketing Agency
At RIA Family Legacy Group LLC, we respect your privacy and are committed to protecting personal data we process in connection with our services, website, and communications. This Privacy Policy complies with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA/CPRA), and other applicable laws.
Information We Collect
We collect information you provide directly, such as names, business details, email addresses, phone numbers, preferences, and messages; usage information like IP address, device and browser data, pages viewed, and interactions collected via cookies or similar technologies; client-provided data including customer or lead contact details shared for marketing campaigns; and billing or transaction data when applicable to paid services.
How We Use Information
We use information to deliver and improve services; communicate about projects, updates, events, and offers; measure and analyze campaign and website performance; personalize content or advertising when permitted; comply with legal obligations and enforce agreements; prevent fraud and abuse; and maintain security.
Legal Bases for Processing (GDPR)
We process personal data based on consent where required (for example, marketing messages), contractual necessity to perform agreements, legal obligations, and our legitimate interests such as service improvement and security that do not override your rights.
Sharing Information
We do not sell personal data. We share information with service providers that help operate our business (for example, hosting, analytics, messaging platforms, payment processors) under contracts restricting their use to our instructions and requiring appropriate protections. We may disclose information to comply with law, protect rights, or complete a corporate transaction.
International Transfers
If you are located in the EU or UK, your data may be transferred to countries with different data protection laws, including the United States. We use appropriate safeguards such as Standard Contractual Clauses where required to protect transferred data.
Your Rights
EU/UK residents may request access, correction, deletion, restriction or objection to processing, and data portability, and may withdraw consent at any time without affecting prior processing. California residents may request to know categories and specific pieces of personal information collected, request deletion, request correction, and limit use and disclosure of sensitive personal information, and will not be discriminated against for exercising these rights. To exercise rights, contact us via the details below. We will verify requests consistent with law and respond within required timelines.
Data Security
We employ administrative, technical, and physical safeguards designed to protect personal data. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.
Cookies and Tracking
We use essential cookies to operate our site, performance cookies for analytics, and marketing cookies to personalize experiences where permitted. You can control cookies through browser settings and, where required, through consent tools we provide.
Data Retention
We retain personal data only as long as necessary for the purposes described, to comply with legal obligations, resolve disputes, and enforce agreements. Retention periods vary by data type and context.
Children’s Privacy
Our services are intended for adults. We do not knowingly collect personal data from children under the age required by applicable law without appropriate consent.
SMS Privacy (A2P 10DLC)
If you subscribe to RIA text messages, we collect your mobile number, consent timestamp and source, message logs, and delivery and engagement metadata to operate the SMS program, including sending messages, processing STOP and HELP requests, preventing spam and abuse, and complying with law. We use your number solely for this program and communications you request. We do not sell or share mobile subscriber data with third parties for their own marketing. You can opt out at any time by replying STOP. You can opt in by submitting a web form with disclosure adjacent to the submit button, by texting WEALTH to 708-498-7708, by consenting on a point-of-sale or paper form with the same disclosure, or by recorded voice consent. Program messages may include appointment reminders, service notifications, and promotional offers. Message and data rates may apply. Message frequency varies. For help, reply HELP or contact 502-323-6677 or [email protected]. Carriers are not liable for delayed or undelivered messages.
Your Choices
You can opt out of email or SMS marketing at any time using the unsubscribe link or STOP instructions in those messages. You may request access, correction, or deletion of your data using the contact methods below.
Contact
RIA Family Legacy Group LLC, 212 N. 2nd St., Ste 100, Richmond, KY 40475, USA. Office: 502-323-6677. Support: [email protected]. Privacy requests: [email protected].
Changes to This Policy
We may update this Privacy Policy to reflect changes in practices or law. The updated version will show a new effective date and will be posted where this policy appears.
Data Processing Agreement (DPA)
This DPA applies when RIA processes personal data on behalf of a client as a processor. The subject matter, duration, nature, and purpose of processing are to provide marketing, analytics, advertising, and related services under the applicable agreement until services end or are terminated. The categories of data subjects include the client’s customers, prospects, and leads. The types of data may include names, business roles, contact information, engagement and conversion data, and other data provided by the client or collected at the client’s direction. RIA processes personal data only on documented instructions from the client, ensures persons authorized to process the data are bound by confidentiality, implements measures appropriate to the risk as required by GDPR Article 32, assists the client in responding to data subject requests and meeting security and breach-notification obligations, and upon termination deletes or returns personal data unless retention is required by law. RIA may engage sub-processors such as email, SMS, analytics, and hosting providers under written contracts imposing equivalent data protection obligations and remains responsible for their performance. RIA will not transfer personal data outside the EEA or UK unless it implements appropriate transfer mechanisms such as Standard Contractual Clauses or other lawful safeguards. Each party is responsible for its own compliance and liability to the extent permitted by law and any applicable agreement.