Privacy Policy

Effective Date: March 28, 2028

Last Updated: March 28, 2028

Executive Summary

At Wilder Strategy Lab, we understand that when you trust us with your digital marketing strategy, you’re also trusting us with sensitive information about your business and customers. This Privacy Policy explains in straightforward language how we collect, use, protect, and never misuse the data that flows through our systems.

Our Core Privacy Commitments:

We never sell or broker your data. Your information stays with us and is used solely to deliver the services you’ve contracted.
We practice data minimization. We only collect what’s necessary to serve you effectively.
We maintain Clean Data Alliance certification, demonstrating our commitment to rigorous, audited privacy standards.
We’re transparent about tracking. We clearly explain what analytics and marketing tools we use and why.
We protect your data with enterprise-grade security, treating your information with the same care we’d want for our own.

This policy is designed for business owners who value privacy but may not be technology experts. If you have questions after reading, we welcome them at (415) 275-0970 or through our contact form.

1. Introduction: Our Philosophy on Data Privacy

Who We Are

Wilder Strategy Lab is a data-driven digital marketing consultancy based in Mill Valley, California. We build custom lead-generating marketing systems for local and national brands, including businesses in legal, professional services, and other sectors where privacy and confidentiality are paramount.

Our Approach to Privacy

As a company founded on logical, strategic thinking and technical expertise, we apply the same rigor to data privacy that we bring to customer journey mapping. We recognize that:

Your trust is earned through actions, not just words. That’s why we’ve pursued third-party certification through the Clean Data Alliance.
Privacy is a competitive advantage. In an era of data breaches and privacy concerns, demonstrating genuine commitment to data protection distinguishes ethical businesses.
Transparency builds stronger client relationships. We believe in explaining our practices in plain language rather than hiding behind legal jargon.

Clean Data Alliance Certification

Wilder Strategy Lab is certified by the Clean Data Alliance, an independent organization that audits and verifies rigorous data privacy practices. This certification confirms that we:

Maintain documented data governance policies
Conduct regular privacy audits
Train our team on privacy best practices
Implement technical safeguards that meet industry standards
Submit to periodic third-party review

Our certification demonstrates that privacy isn’t just a policy document—it’s how we operate every day.

2. What Information We Collect and Why

We believe in data minimization: collecting only what we need to deliver excellent service. Here’s exactly what we gather and the business reason behind each category.

2.1 Information You Provide Directly

Business Contact Information

What we collect: Name, email address, phone number, company name, business address
Why we collect it: To communicate with you about projects, send proposals, schedule meetings, and provide the services you’ve contracted
Examples: When you fill out our contact form, request a Lead Gen Assessment, or sign up for our services

Project-Specific Information

What we collect: Details about your business goals, target customers, current marketing challenges, website access credentials, brand guidelines
Why we collect it: To develop effective digital marketing strategies tailored to your specific needs
Examples: Information gathered during discovery calls, strategy sessions, and collaborative planning

Payment Information

What we collect: Billing address, payment method details (processed through secure third-party payment processors)
Why we collect it: To process invoices and payments for our services
Security note: We do not store complete credit card numbers on our systems—this is handled by PCI-compliant payment processors

2.2 Information Collected Through Our Website

Basic Analytics Data

What we collect: Pages visited, time spent on site, device type, browser, general geographic location (city/region level)
Tools we use: Google Analytics 4 (with IP anonymization enabled)
Why we collect it: To understand which content resonates with visitors, improve website navigation, and identify technical issues
What we don’t do: We don’t use this data to build individual profiles or track you across other websites

Social Media Pixels

What we use: Meta (Facebook) Pixel, LinkedIn Insight Tag (when running campaigns on those platforms)
Why we use them: To measure the effectiveness of advertising campaigns and show relevant content to people who’ve expressed interest in our services
Your control: You can opt out through your browser settings or ad preference centers on those platforms
Important note: These pixels are only active when we’re running paid campaigns and are removed when campaigns conclude

Form Submissions and Interactions

What we collect: Information you enter in contact forms, assessment request forms, or newsletter signups
Why we collect it: To respond to your inquiries and provide the information you’ve requested
Storage: Form data is transmitted securely and stored in our CRM system

2.3 Information We Don’t Collect

We want to be equally clear about what we don’t collect:

No sensitive personal information unless directly relevant to a project (and then only with explicit consent)
No tracking across unrelated websites for advertising purposes
No collection of information from children (our services are exclusively B2B)
No audio or video recording of meetings without explicit consent and clear notification
No keystroke logging, screen recording, or invasive monitoring of any kind

3. How We Use Your Information

Every piece of data we collect has a specific, legitimate business purpose. Here’s the complete picture:

3.1 Primary Uses

Service Delivery

Developing your digital marketing strategy and customer journey maps
Building and maintaining your website
Implementing CRM systems and email marketing campaigns
Managing advertising campaigns on Google, Meta, LinkedIn, and other platforms
Providing ongoing support and strategic guidance

Client Communication

Responding to inquiries and support requests
Sending project updates and deliverables
Scheduling meetings and consultations
Sharing relevant educational content about digital marketing best practices

Business Operations

Processing payments and maintaining financial records
Improving our service offerings based on aggregated client feedback
Complying with legal and regulatory requirements

3.2 Marketing Communications

We may send you information about our services, case studies, or digital marketing insights if:

You’ve explicitly opted in to receive such communications, OR
We have an existing business relationship and the content is directly relevant to services you’ve used

You always have control: Every marketing email includes a clear unsubscribe option, and we honor opt-out requests immediately.

3.3 What We Never Do With Your Data

To be absolutely clear, here’s what we do not do:

❌ Sell your information to data brokers, lead generation companies, or any third parties
❌ Rent or share your data for others’ marketing purposes
❌ Use your data to train AI models that benefit other clients or external parties
❌ Share confidential business information you’ve provided during strategy sessions
❌ Combine your data with external databases to build enhanced profiles without your consent

4. Data Sharing and Third-Party Services

We work with carefully selected service providers to deliver our services. We believe in transparency about these relationships.

4.1 Service Providers We Use

Customer Relationship Management (CRM)

Service: HubSpot
Purpose: Managing client relationships, project timelines, and communications
Data shared: Contact information, project details, communication history
Privacy commitment: HubSpot is SOC 2 certified and GDPR compliant

Website Hosting and Infrastructure

Services: Professional-grade hosting providers with enterprise security
Purpose: Hosting our website and client project files
Data shared: Website content, form submissions
Security features: SSL encryption, regular backups, DDoS protection

Analytics and Performance Monitoring

Service: Google Analytics 4
Purpose: Understanding website performance and user experience
Data shared: Anonymized usage data (IP addresses anonymized)
Your control: Respects Do Not Track signals and browser privacy settings

Payment Processing

Services: Secure, PCI-compliant payment processors
Purpose: Processing invoices and payments
Data shared: Billing information (not stored on our systems)
Security: Full PCI DSS Level 1 compliance

Email Communications

Services: Professional email marketing platforms
Purpose: Sending newsletters, project updates, and educational content
Data shared: Email address, name, subscription preferences
Your control: One-click unsubscribe in every message

4.2 Advertising and Marketing Platforms (When Active)

When we run advertising campaigns, we may use:

Google Ads

Purpose: Reaching potential clients searching for digital marketing services
Data flow: Conversion tracking for campaign measurement
Duration: Only while campaigns are active

Meta (Facebook/Instagram) Business Tools

Purpose: Showing relevant content to business audiences
Data flow: Website visits, form submissions (hashed for privacy)
Duration: Only while campaigns are active

LinkedIn Marketing Solutions

Purpose: Reaching professional audiences
Data flow: Company information, professional interests
Duration: Only while campaigns are active

Important notes:

These tools are deployed strategically, not permanently
You can opt out through platform-specific privacy controls
We regularly audit and remove unnecessary tracking pixels

4.3 Our Vendor Management Standards

Every third-party service provider must meet our standards:

✅ Documented privacy and security policies that meet or exceed industry standards
✅ Data processing agreements that clearly define how data can be used
✅ Regular security audits and industry certifications (SOC 2, ISO 27001, etc.)
✅ Commitment to data minimization and purpose limitation
✅ Transparent data breach notification procedures

We review our vendor relationships annually and discontinue services that don’t maintain adequate privacy standards.

4.4 Legal Disclosures

We may disclose information when required by law:

In response to valid legal processes (subpoenas, court orders)
To protect our legal rights or defend against legal claims
To prevent fraud or security threats
To comply with regulatory requirements

Even in these situations, we disclose only what’s legally required and notify affected clients when permitted by law.

5. Artificial Intelligence and Your Data

AI is transforming digital marketing, and clients rightfully have questions about how their data interacts with these technologies.

5.1 Our AI Usage Policy

Where We Use AI:

Content drafting assistance: We may use AI tools to draft initial marketing copy, subject lines, or content outlines (always reviewed and edited by our team)
Data analysis: AI-powered analytics to identify patterns in website performance or campaign results
Design assistance: AI tools for image editing, layout suggestions, or visual asset creation

Strict Limitations:

✅ We use AI as a tool to enhance our expertise, not replace strategic thinking
✅ All AI-generated content is reviewed, edited, and approved by experienced strategists
✅ We do not feed confidential client information into public AI systems
✅ We use enterprise AI tools with data protection agreements when handling sensitive information

5.2 Your Data and AI Training

This is a critical concern, and we want to be crystal clear:

We do not:

❌ Upload your confidential business strategy to public AI systems like ChatGPT or Claude without explicit consent
❌ Allow your proprietary data to be used for training third-party AI models
❌ Share customer lists, financial information, or strategic plans with AI platforms that retain data
❌ Use AI to make automated decisions about your marketing strategy without human review

When we use AI tools:

We use enterprise versions with data protection agreements (not free consumer versions)
We anonymize or generalize information before inputting it into any AI system
We maintain contractual guarantees that your data won’t be retained or used for training
We document our AI usage and can provide transparency about specific tools used in your project

5.3 AI and Future Innovation

As AI technology evolves, we commit to:

Maintaining transparency about new AI tools we adopt
Conducting privacy impact assessments before deploying new AI technologies
Giving clients opt-out options for AI-enhanced services
Updating this policy to reflect new AI capabilities and their privacy implications

If you have specific concerns about AI usage in your project, please discuss them during your initial consultation. We can accommodate requests to limit or exclude AI tools from your engagement.

6. Data Security and Protection

We implement multiple layers of security to protect your information from unauthorized access, alteration, disclosure, or destruction.

6.1 Technical Security Measures

Encryption

All data transmitted to and from our systems uses industry-standard SSL/TLS encryption
Sensitive data at rest is encrypted using AES-256 or equivalent standards
Email communications containing sensitive information are encrypted when possible

Access Controls

Role-based access: Team members access only the data needed for their responsibilities
Multi-factor authentication required for all systems containing client data
Regular access reviews to ensure permissions remain appropriate
Immediate access revocation when team members leave or change roles

Network Security

Firewalls and intrusion detection systems protect our infrastructure
Regular security updates and patch management
Secure VPN access for remote work
Network segmentation to isolate sensitive systems

Data Backup and Recovery

Regular automated backups of all client data
Encrypted backup storage in geographically separate locations
Tested disaster recovery procedures
Business continuity plans to maintain service during disruptions

6.2 Organizational Security Measures

Team Training

All team members complete privacy and security training upon joining
Annual refresher training on data protection best practices
Specific training for handling sensitive client information
Clear protocols for reporting security concerns

Security Policies

Documented information security policies reviewed annually
Clean desk policy for physical workspace
Secure disposal procedures for physical and digital materials
Vendor security requirements and audit procedures

Incident Response

Written incident response plan for potential data breaches
Defined roles and escalation procedures
Client notification protocols (within 72 hours of confirmed breach)
Post-incident review and remediation process

6.3 Physical Security

Our Mill Valley office maintains:

Restricted access to workspace containing client information
Secure storage for physical documents
Visitor logging and escort procedures
Secure destruction of physical documents when no longer needed

6.4 Limitations and Shared Responsibility

While we implement robust security measures, no system is 100% impervious to threats. We also rely on you to:

Maintain secure passwords for systems we build for you
Promptly report any suspected security issues
Follow best practices when sharing access credentials
Keep your own devices and networks secure

7. Data Retention: How Long We Keep Information

We retain your information only as long as necessary for legitimate business purposes or legal requirements.

7.1 Active Client Data

During Active Engagement:

We retain all project-related information while actively working on your account
This includes strategy documents, campaign data, website analytics, and communication history
Purpose: To deliver services effectively and maintain continuity

After Project Completion:

Core project deliverables: Retained for 7 years (for warranty support and potential future reference)
Communication records: Retained for 3 years (for business continuity and dispute resolution)
Financial records: Retained for 7 years (for tax and regulatory compliance)
Analytics data: Aggregated and anonymized after 2 years; detailed data deleted after 3 years

7.2 Prospective Client Data

Inquiries and Consultations:

Contact information from website forms: Retained for 2 years if no engagement occurs
Consultation notes: Retained for 1 year to facilitate follow-up conversations
After retention period: Automatically deleted or anonymized

7.3 Marketing Communications

Newsletter Subscribers:

Active subscribers: Retained while subscription is active
Unsubscribed contacts: Immediately moved to suppression list (to honor opt-out) but personal details deleted within 30 days

7.4 Your Right to Request Deletion

You can request deletion of your information at any time, subject to:

Legal obligations to retain certain records (tax, contracts, etc.)
Legitimate business needs during active engagements
Technical limitations (e.g., backup systems may retain data until next refresh cycle)

We respond to deletion requests within 30 days and provide confirmation once complete.

8. Your Privacy Rights and Controls

You maintain significant control over your information. Here are your rights and how to exercise them.

8.1 Access Rights

Right to Know:

You can request a copy of the personal information we hold about you
We’ll provide this in a readable format (typically PDF or CSV)
Response time: Within 30 days of verified request

How to request: Email privacy@wilderstrategylab.com or call (415) 275-0970

8.2 Correction Rights

Right to Accuracy:

You can request corrections to inaccurate or incomplete information
We’ll update records within 15 business days
You’ll receive confirmation of changes

How to request: Contact your project lead directly or email privacy@wilderstrategylab.com

8.3 Deletion Rights

Right to Be Forgotten:

You can request deletion of your personal information
Subject to legal and contractual obligations
We’ll confirm completion within 30 days

How to request: Submit a written request to privacy@wilderstrategylab.com

8.4 Objection and Restriction Rights

Right to Object:

You can object to specific uses of your data (e.g., marketing communications)
We’ll honor objections within 10 business days
Some objections may limit our ability to provide certain services

How to object: Use unsubscribe links in emails or contact privacy@wilderstrategylab.com

8.5 Portability Rights

Right to Data Portability:

You can request your data in a machine-readable format
Useful when transitioning to a different service provider
We’ll provide standard formats (CSV, JSON, etc.)

How to request: Email privacy@wilderstrategylab.com with specific data needs

8.6 Cookie and Tracking Controls

Browser-Level Controls:

Modern browsers allow you to block or delete cookies
You can enable “Do Not Track” signals
You can use privacy-focused browser extensions

Platform-Level Controls:

Google: https://adssettings.google.com
Facebook: https://www.facebook.com/settings?tab=ads
LinkedIn: https://www.linkedin.com/psettings/advertising

8.7 Response Process

When you exercise privacy rights:

We verify your identity to protect against fraudulent requests
We confirm receipt of your request within 5 business days
We fulfill the request within specified timeframes
We provide written confirmation of actions taken

No fees: We don’t charge for privacy rights requests unless they’re manifestly excessive or repetitive.

9. Special Considerations for Specific Audiences

9.1 Legal and Professional Services Clients

We recognize that attorneys, legal firms, and professional services have heightened confidentiality requirements.

Enhanced Protections:

We treat all client strategy information as confidential by default
We execute Business Associate Agreements (BAAs) when handling data subject to attorney-client privilege
We implement additional access restrictions for legal client data
We maintain attorney-work-product protections in our documentation

Data Isolation:

Legal client data is stored in separate, access-restricted systems when requested
Case studies and examples never reference legal clients without explicit written consent
Analytics data is reviewed to ensure no inadvertent disclosure of confidential information

9.2 Startup and Early-Stage Companies

Competitive Sensitivity:

We understand that startups often handle pre-launch products and competitive strategy
We sign NDAs before discovery conversations when requested
We restrict team access to need-to-know basis for stealth-mode clients

Flexibility:

We accommodate evolving privacy needs as your business scales
We can adjust data sharing preferences as you approach funding rounds or launches

9.3 Nonprofit Organizations

Mission Alignment:

We recognize that donor privacy and beneficiary confidentiality are paramount
We implement additional safeguards for sensitive populations
We align our practices with nonprofit sector standards (e.g., AFP Donor Bill of Rights)

10. California and State-Specific Privacy Rights

10.1 California Consumer Privacy Act (CCPA) / California Privacy Rights Act (CPRA)

California residents have specific rights under state law:

Right to Know: You can request disclosure of:

Categories of personal information collected
Specific pieces of personal information held
Sources from which information was collected
Business purposes for collection
Categories of third parties with whom information is shared

Right to Delete: You can request deletion of personal information we’ve collected, subject to specific exceptions.

Right to Opt-Out of Sale: While we don’t sell personal information, you have the right to opt out if practices change.

Right to Non-Discrimination: We won’t discriminate against you for exercising CCPA rights.

How to exercise rights:

Email: privacy@wilderstrategylab.com
Phone: (415) 275-0970
Mail: Wilder Strategy Lab, 3000 Shelter Bay Avenue, Mill Valley, CA 94941

Verification: We verify requests through multi-factor authentication or matching information you’ve previously provided.

Response time: Within 45 days (with possible 45-day extension for complex requests)

10.2 Other State Privacy Laws

We comply with privacy laws in other states where we do business, including but not limited to:

Virginia Consumer Data Protection Act (VCDPA)
Colorado Privacy Act (CPA)
Connecticut Data Privacy Act (CTDPA)
Utah Consumer Privacy Act (UCPA)

Residents of these states have similar rights to those described above.

11. International Considerations

11.1 Data Location

Primary Storage:

Client data is primarily stored on servers located in the United States
Backup systems may utilize geographically distributed data centers for redundancy
All storage locations meet our security and privacy standards

11.2 International Data Transfers

For International Clients:

We use Standard Contractual Clauses (SCCs) or equivalent mechanisms for data transfers outside your country
We conduct Transfer Impact Assessments for high-risk jurisdictions
We implement supplementary security measures as recommended by regulatory guidance

11.3 GDPR Compliance (European Clients)

While we primarily serve U.S.-based businesses, we comply with GDPR when working with EU clients:

Legal Basis for Processing:

Contractual necessity (to deliver services you’ve engaged us for)
Legitimate interests (business operations, with balancing test)
Consent (for marketing communications)

EU Individual Rights:

All rights described in Section 8, plus additional GDPR-specific protections
Right to lodge complaints with supervisory authorities
Right to object to automated decision-making

Data Protection Officer:

For GDPR-related inquiries: dpo@wilderstrategylab.com

12. Children’s Privacy

Wilder Strategy Lab provides exclusively business-to-business (B2B) services. We do not knowingly collect information from individuals under 18 years of age.

If We Learn of Underage Data Collection:

We will delete the information immediately
We will investigate how the collection occurred
We will implement additional safeguards to prevent recurrence

Parents/Guardians:

If you believe we’ve inadvertently collected information about a minor, contact us immediately at privacy@wilderstrategylab.com.

13. Changes to This Privacy Policy

13.1 Update Notification

How We Notify You:

Material changes: Direct email notification to active clients at least 30 days before implementation
Minor updates: Notification on our website and in client portal
Effective date: Clearly displayed at the top of this policy

What Constitutes Material Change:

New data collection practices
Sharing data with additional third parties
Significant changes to data retention
Reduction of your privacy rights

13.2 Version History

We maintain a version history of this policy:

Current version: January 2025
Previous versions available upon request
Change log documenting significant updates

13.3 Your Options When Policy Changes

If you disagree with material changes:

You may opt out of new practices (where feasible)
You may request data deletion and service termination
You may negotiate custom data handling terms for active contracts

14. Contact Information and Privacy Governance

14.1 Privacy Questions and Requests

Primary Privacy Contact:

Email: privacy@wilderstrategylab.com
Phone: (415) 275-0970
Mail: Privacy Officer, Wilder Strategy Lab, 3000 Shelter Bay Avenue, Mill Valley, CA 94941

Expected Response Times:

General inquiries: Within 2 business days
Privacy rights requests: Acknowledgment within 5 business days, completion within 30 days
Security concerns: Immediate acknowledgment, investigation begins within 24 hours

14.2 Founder’s Commitment

As founder and principal strategist, Wendy Louise Wilder personally oversees privacy governance at Wilder Strategy Lab. With a Master of Science in Technology Management and two decades of experience building digital systems, she ensures privacy is engineered into our processes from the ground up—not added as an afterthought.

Personal Accountability:

“Privacy isn’t just a legal requirement—it’s a core value that reflects respect for our clients. We handle your data with the same care we’d want for our own business information. When you work with Wilder Strategy Lab, you’re trusting us with your growth strategy, and that trust extends to every piece of information you share.”

— Wendy Louise Wilder, Founder & Digital Strategist

14.3 Privacy Governance Structure

Internal Oversight:

Quarterly privacy policy reviews
Annual third-party privacy audits (Clean Data Alliance)
Documented data governance procedures
Regular team training and accountability measures

External Verification:

Clean Data Alliance certification (renewed annually)
Compliance audits for industry-specific requirements
Vendor security assessments
Professional liability insurance covering data privacy

15. Frequently Asked Questions

Q: What is the Clean Data Alliance certification, and why does it matter?

A: The Clean Data Alliance is an independent organization that audits and certifies companies meeting rigorous data privacy standards. Unlike self-certification or policy statements, Clean Data Alliance certification requires:

Third-party verification of our practices
Regular compliance audits
Documented governance procedures
Ongoing monitoring and renewal requirements

This certification provides independent confirmation that we do what we say regarding privacy protection.

Q: Do you use my data to train AI systems that benefit other clients?

A: No. We do not feed your proprietary business information, customer data, or strategic plans into AI systems that use data for training. When we use AI tools (with enterprise data protection agreements), we:

Anonymize information before input
Use versions that contractually prohibit data retention
Maintain clear records of AI usage
Obtain consent for any AI-generated content used in your projects

Q: What happens to my data if Wilder Strategy Lab is acquired or goes out of business?

A: In the unlikely event of business acquisition or closure:

We will notify active clients at least 60 days in advance
You will have the option to retrieve your data or have it deleted
Any acquirer must commit to privacy standards at least as protective as these
If no suitable acquirer exists, we will securely delete all client data

These commitments are part of our business continuity planning.

Q: Can I see exactly what third-party tools are running on my website?

A: Yes. We provide full transparency about tracking pixels, analytics, and marketing tools deployed on websites we build. During project kickoff, we:

Document all planned third-party integrations
Explain the purpose of each tool
Obtain your consent before implementation
Provide removal instructions if you later change your mind

Q: How do I know you won’t share my business strategy with competitors?

A: We take several measures to protect confidential strategic information:

Confidentiality clauses in all service agreements
Access restrictions limiting team member visibility
Separate storage systems for strategically sensitive clients
No case study publication without explicit written consent
Conflict-of-interest review before accepting competing clients

If you have competitors who are also clients, we maintain strict information barriers.

Q: What if I want to use your services but have stricter privacy requirements than this policy?

A: We welcome those conversations. For clients with heightened privacy needs (legal firms, healthcare-adjacent businesses, highly regulated industries), we can:

Execute custom Data Processing Agreements
Implement additional technical controls
Provide enhanced documentation and audit trails
Accommodate specific compliance requirements (HIPAA, attorney-client privilege, etc.)

Q: Do you monitor my website visitors for your own marketing purposes?

A: No. Analytics tools we implement on client websites are for your benefit—to understand your audience and improve your marketing performance. We do not:

Mine your website analytics to identify leads for ourselves
Use your visitor data for our own advertising
Share your audience insights with other clients

Your website data belongs to you.

Q: How can I verify that you’re actually following this privacy policy?

A: Several verification mechanisms exist:

Clean Data Alliance certification: Third-party audit reports available upon request
Service agreement transparency: Our contracts reference and incorporate this policy
Data access requests: Exercise your right to see what data we hold
Regular reporting: Active clients receive quarterly summaries of data handling
Open communication: We welcome questions and provide detailed answers

If you ever suspect a privacy violation, please report it immediately to privacy@wilderstrategylab.com.

16. Summary of Key Takeaways

For business owners who want the essential information at a glance:

✅ What We Do

Collect only the data necessary to deliver effective digital marketing services
Use industry-standard security to protect your information
Share data only with carefully vetted service providers under strict contracts
Maintain Clean Data Alliance certification through regular third-party audits
Provide transparency about tracking, analytics, and marketing tools

❌ What We Don’t Do

Sell, rent, or broker your data to third parties
Use your information for purposes beyond delivering your services
Feed confidential business information into public AI training systems
Share your strategy or customer data with competitors
Make your privacy rights difficult to exercise

🛡️ Your Protections

Enterprise-grade security (encryption, access controls, monitoring)
Contractual safeguards with all vendors
Rapid incident response with 72-hour breach notification
Regular privacy audits and team training
Personal oversight by experienced technology leadership

📞 Your Next Steps

Questions? Call (415) 275-0970 or email privacy@wilderstrategylab.com
Exercise rights? Use the contact information in Section 14
Custom needs? Discuss enhanced privacy arrangements during your consultation
Stay informed? We’ll notify you of any material policy changes

Conclusion: Privacy as Partnership

At Wilder Strategy Lab, we view privacy protection as a partnership between our technical expertise and your business judgment. We provide the systems, safeguards, and transparency; you decide what level of data collection and tracking aligns with your values and business model.

Just as we use the BASE3model™ to create lean, strategic customer journeys, we apply the same logic to data privacy: collect what’s necessary, protect what’s collected, delete what’s no longer needed, and maintain transparency throughout.

We’ve pursued Clean Data Alliance certification because we believe privacy claims should be verifiable, not just aspirational. We’ve written this policy in plain language because we believe you deserve to understand how your data is handled without needing a law degree.

If you’re evaluating Wilder Strategy Lab for your digital marketing needs and have privacy concerns or questions not addressed here, we encourage you to raise them during your initial consultation. Privacy is not an obstacle to effective marketing—it’s a foundation for building trust with your own customers, and that trust begins with how we treat your information.

Thank you for considering Wilder Strategy Lab. We look forward to building something great together—with your data protected every step of the way.

Wilder Strategy Lab

3000 Shelter Bay Avenue

Mill Valley, CA 94941

(415) 275-0970

Ads, SEO, Websites, and eMail marketing

*This Privacy Policy was last updated in January 2025 and reflects our current practices and commitment to data privacy. We review and update this policy regularly to reflect evolving privacy standards and client needs.*