Last updated August 1, 2025

This Privacy Policy for Friedman Kannenberg & Company, P.C. (referred to as “we,” “us“, “FKCo”, or “our“) describes how and why we might collect, use, store, and/or share (“process”) your personal information when you use our services (collectively, our “Services“), for example when you:

• Visit our website (www.fkco.com) or any website of ours that links to this Privacy Policy,
• Use our accounting, tax, or consulting services (Friedman Kannenberg & Company, P.C. is a Certified Public Accounting firm specializing in but not limited to the music industry),
• Engage with us in other related ways, such as contacting us by email, phone, or attending our events.

Questions or concerns? Reading this Privacy Policy will help you understand your privacy rights and choices. We are responsible for deciding how your personal information is processed. If you do not agree with our policies and practices, please do not use our Services. If you still have any questions or concerns, please contact us at info@fkco.com.

Below is a summary of key points from our Privacy Policy. For more details on any topic, please refer to the full section indicated in the Table of Contents.

SUMMARY OF KEY POINTS

1. What personal information do we collect? When you visit or use our Services, we may collect personal information that you voluntarily provide to us (such as your name, contact information, payment and tax information, etc.) and some information automatically (such as IP address and device information).
2. Do we process sensitive personal information? We may process certain sensitive information (e.g. financial information or identifiers like Social Security numbers) when necessary, with your consent or as otherwise permitted by law.
3. Do we receive information from third parties? We may receive information from public databases, marketing partners, social media platforms, and other outside sources.
4. How do we process your information? We process your information to provide, improve, and administer our Services, communicate with you, for security and fraud prevention, and to comply with legal obligations. We only process information when we have a valid legal reason to do so.
5. When and with whom do we share personal information? We may share information in specific situations and with specific third parties, such as with our service providers (for example, for payment processing or email communications) or during business transfers.
6. How do we keep your information safe? We have implemented organizational and technical measures to protect your personal information. However, no electronic transmission or storage is 100% secure, so we cannot guarantee absolute security.
7. What are your rights? Depending on where you are located, you may have certain rights regarding your personal information. These may include rights to access, correct, delete, or restrict the use of your data.
8. How can you exercise your rights? The easiest way is to contact us (see the Contact section below). We will review and act on any request in accordance with applicable data protection laws.

For more information on each of these points, please review our full Privacy Policy below.

TABLE OF CONTENTS

1. WHAT INFORMATION DO WE COLLECT?
2. HOW DO WE PROCESS YOUR INFORMATION?
3. WHAT LEGAL BASES DO WE RELY ON TO PROCESS YOUR INFORMATION?
4. WHEN AND WITH WHOM DO WE SHARE YOUR PERSONAL INFORMATION?
5. DO WE USE COOKIES AND OTHER TRACKING TECHNOLOGIES?
6. HOW LONG DO WE KEEP YOUR INFORMATION?
7. HOW DO WE KEEP YOUR INFORMATION SAFE?
8. DO WE COLLECT INFORMATION FROM MINORS?
9. WHAT ARE YOUR PRIVACY RIGHTS?
10. CONTROLS FOR DO-NOT-TRACK FEATURES
11. DO UNITED STATES RESIDENTS HAVE SPECIFIC PRIVACY RIGHTS?
12. DO WE MAKE UPDATES TO THIS POLICY?
13. HOW CAN YOU CONTACT US ABOUT THIS POLICY?
14. HOW CAN YOU REVIEW, UPDATE, OR DELETE THE DATA WE COLLECT FROM YOU?

1. WHAT INFORMATION DO WE COLLECT?

Personal information you disclose to us: We collect personal information that you provide to us. We collect personal information that you voluntarily provide to us when you express interest in obtaining information about us or our Services, when you participate in activities on the Services, or when you contact us in any other way.

Personal Information Provided by You: The personal information we collect depends on the context of your interactions with us and the Services, the choices you make, and the products and features you use. This information may include the following:

• names
• phone numbers
• email addresses
• mailing and billing addresses
• contact preferences
• tax filing information (such as information needed to prepare tax returns)
• debit/credit card numbers or other payment information provided by you or your personal representative

We may also ask for other information relevant to our Services. For example, if you apply for a job with us, we may collect your resume/CV details.

Sensitive Information: When necessary, with your consent or as otherwise permitted by law, we may process certain sensitive personal information. For example, we may process financial information or government-issued identifiers (such as Social Security or taxpayer identification numbers) in order to provide our accounting and tax services. We will only process sensitive information for legitimate business purposes or as required by applicable law.

Payment Data: We may collect data necessary to process payments if you make a purchase or payment through our Services. This may include your payment instrument number (such as a credit card number), expiration date, and the security code associated with your payment instrument. All payment data is processed and stored by our third-party payment processors, Authorize.net and WPForms. We do not store your full credit card information on our systems. You can review the privacy policies of these processors for more information: Visa/Authorize.net Global Privacy Notice and WPForms Privacy Policy.

All personal information that you provide to us should be true, complete, and accurate. If your personal information changes, you are responsible for notifying us of such changes.

Information automatically collected:

Some information — such as your IP address and device characteristics — is collected automatically when you visit our Services.

We automatically collect certain information when you visit, use, or navigate our websites or Services. This information does not reveal your identity (like your name or contact information) but may include device and usage information, such as your IP address, browser and device characteristics, operating system, language preferences, referring URLs, device name, country or approximate location, and information about how and when you use our Services. This information is primarily needed to maintain the security and operation of our Services, and for our internal analytics and reporting purposes.

Like many businesses, we also collect information through cookies and similar technologies to analyze usage and improve our website.

The information we collect automatically includes:

• Log and Usage Data: This is service-related, diagnostic, usage, and performance information that our servers collect automatically when you access or use our Services. Depending on how you interact with us, this data may include your IP address, device information, browser type and settings, and information about your activity on the Services (such as the pages viewed, features used, the time and date of your visits, and other actions you take). For example, our servers log the pages you visit and any errors you might encounter.
• Device Data: We collect device information such as details about your computer, phone, tablet, or other devices you use to access the Services. This can include information like your device’s IP address (or proxy server), unique device identifiers and advertising identifiers, browser type, hardware model, Internet service provider or mobile carrier, operating system, and system configuration information.
• Location Data: We may collect approximate location data such as information inferred from your IP address. For example, your IP address may indicate the general geographic region from which you are connecting, which helps us understand where our site visitors come from. We do not collect precise GPS location from your device unless you explicitly allow it.

Information collected from other sources:

We may collect limited information from public databases, business partners, and other outside sources.

To enhance our ability to provide relevant marketing and services to you and to keep our records updated, we may obtain information about you from other sources. This can include public databases, professional networking sites, joint marketing partners, social media platforms, and other third parties. For example, we might receive contact information (such as mailing addresses, job titles, email addresses, or phone numbers) from a marketing partner, or we may see public social media profile information if you interact with us through social media. We use such information only in accordance with this Privacy Policy and any applicable laws.

2. HOW DO WE PROCESS YOUR INFORMATION?

We process your personal information to provide and improve our Services, communicate with you, for security and fraud prevention, and to comply with our legal obligations. We only process your information when we have a valid legal reason to do so.

We process your personal information for a variety of reasons, depending on how you interact with our Services, including:

• To deliver services to you: We process your information to provide you with the services or information you have requested, such as preparing financial statements or tax returns, or consulting services you engage us for.
• To respond to inquiries and offer support: We may use your information to respond to your questions, requests, and to troubleshoot issues. For example, if you contact us with a question, we will use your contact information to communicate with you and resolve your inquiry.
• To send administrative information: We may process your information to send you important updates about our services, changes to our terms, policies, or other administrative information. These communications are generally not promotional in nature.
• To request feedback: We may process your information when needed to request feedback and to follow up with you about your experience with our Services.
• To send marketing and promotional communications: With your consent or as otherwise permitted by law, we may use your personal information to send you marketing communications, such as newsletters, invitations, or information about new services. You can opt out of marketing emails at any time (see the section below titled “What are your privacy rights?” for more information).
• To deliver targeted advertising: We may process your information to personalize and display advertisements or content that are more relevant to your interests. (Note: You can opt out of targeted advertising as described in the “US Privacy Rights” section below.)
• To identify usage trends and improve our Services: We process data about how you use our Services to understand what aspects of our Services are most used or need improvement. This helps us refine our Services, develop new features, and improve user experience.
• To determine the effectiveness of our campaigns: We may process information to understand how effective our marketing or promotional campaigns are, so we can adjust and make them more relevant to our audience.
• To protect against harm and illegal activities: We may process personal information as necessary to detect, prevent, and respond to fraud, abuse, security risks, and technical issues that could harm our business, our clients, or the public.
• To comply with our legal obligations and enforce our rights: We may process your information to comply with applicable laws, lawful requests and legal processes, such as responding to subpoenas or requests from government authorities. We may also process your data to establish or exercise our legal rights or defend against legal claims.
• To save or protect life or safety: In rare cases, we may need to process your information to protect an individual’s vital interests, for example to prevent imminent harm.

3. WHAT LEGAL BASES DO WE RELY ON TO PROCESS YOUR INFORMATION?

We only process your personal information when we have a valid legal basis to do so under applicable law—such as with your consent, to fulfill a contract or service, to comply with laws, to protect your vital interests or those of others, or to pursue our legitimate business interests.

The applicable legal basis for processing your personal information depends on your location and the context in which we handle data:

If you are located in the European Economic Area (EEA) or United Kingdom (UK): Under the EU and UK General Data Protection Regulation (GDPR), we must have a valid “legal basis” to process your personal information. We may rely on the following legal bases:

• Consent: We may process your personal information if you have given us permission (consent) to do so for a specific purpose. For example, we will obtain your consent to send you marketing emails where required by law. You have the right to withdraw your consent at any time (see “Withdrawing your consent” below).
• Performance of a Contract: We may process your information when it is necessary to enter into or perform a contract with you. In other words, to provide the Services you have requested (for example, using your information to complete accounting or tax services you hired us for), or to take steps at your request before entering into a contract.
• Legitimate Interests: We may process your information when it is in our legitimate business interests to do so and those interests are not overridden by your rights and freedoms. For example, we might process your information to improve our Services, to secure our systems, to send you information relevant to your engagement with us, or to prevent fraud. We will only rely on legitimate interests after considering the potential impacts on you and your rights.
• Legal Obligations: We may process your information when it is necessary for compliance with our legal obligations. For instance, we may be required to retain certain records for tax or auditing purposes, or to disclose information to comply with a court order or regulatory requirement.
• Vital Interests: We may process your information where it is necessary to protect your vital interests or those of another person. This legal basis is typically relevant in emergency situations, for example, if there is an immediate threat to someone’s life or safety.

4. WHEN AND WITH WHOM DO WE SHARE YOUR PERSONAL INFORMATION?

We may share your information with third-party service providers, business partners, or others in specific situations, and only as necessary to fulfill the purposes described in this Privacy Policy or as required by law.

We may need to share your personal information in the following situations:

• Service Providers and Contractors: We may share your information with third-party vendors, service providers, contractors, or agents who perform services on our behalf and require access to such information to do their work. This includes, for example, companies that assist us with payment processing, data analysis, web hosting, email delivery, customer service, or marketing. We contractually require these service providers to safeguard your information and only use it for the purposes we specify. For instance, we use Mailchimp (an Intuit company) to manage and send our email newsletters; if you subscribe to our newsletter, your name and email address will be shared with that service solely for that purpose. (You can review Mailchimp’s privacy practices in the Intuit Global Privacy Statement on Intuit’s website.)
• Business Transfers: We may share or transfer your information in connection with (or during negotiations of) any merger, sale of company assets, financing, or acquisition of all or a portion of our business by another company. If we are involved in a reorganization or sale, your personal information may be transferred as part of that transaction, and we will ensure the recipient respects your personal information in a manner consistent with this Privacy Policy.
• Legal Compliance and Protection: We may disclose your personal information if we believe it is necessary to: (a) comply with applicable laws, regulations, legal processes, or governmental requests (such as a court order, subpoena, or law enforcement demand); (b) enforce our agreements and terms, including for billing and collection purposes; (c) detect, prevent, or otherwise address fraud, security, or technical issues; or (d) protect the rights, property, or safety of our firm, our clients, or others. This includes exchanging information with other companies and organizations for the purposes of fraud protection and credit risk reduction.
• With Your Consent: We may share your personal information for other purposes if you have directed us to do so or given us specific consent.

We do not share your personal information with unaffiliated third parties for their own marketing purposes, and we do not sell your personal information (as “sell” is defined under applicable privacy laws).

5. DO WE USE COOKIES AND OTHER TRACKING TECHNOLOGIES?

Yes. We (and authorized third parties) use cookies and similar tracking technologies to collect and store information when you use our Services. You have choices to control or limit how these technologies are used.

Our websites may use cookies (small text files stored on your device) and similar technologies like web beacons and pixels to automatically collect information about your browsing activities. These technologies help us in several ways, for example to remember your preferences, keep our site secure, prevent crashes, fix bugs, and analyze how our website is performing.

We also allow certain third parties to use cookies and tracking technologies on our site for analytics and advertising purposes. For instance, these partners help us measure traffic and usage trends or serve advertisements that may be of interest to you on other websites. They may set their own cookies or use similar technologies to collect information about your use of our Services over time and across different websites.

Targeted advertising and “sale/sharing” of data: Some of this tracking activity might be considered a “sale” or “sharing” of personal information for targeted advertising under certain U.S. state laws. To the extent our use of cookies or tracking technology is interpreted as a sale/sharing under applicable laws, you have the right to opt out. You can do so by using the methods described in the “Do United States Residents Have Specific Privacy Rights?” section below. We also honor Global Privacy Control (GPC) signals — see below for more on this.

If you prefer not to accept cookies, most web browsers let you adjust your settings to refuse new cookies or remove existing ones. However, note that rejecting cookies may affect the availability and functionality of some features of our Services. For more information about cookies and how to manage them, you can refer to your browser’s help documentation.

Google Analytics

We use Google Analytics (a web analytics service provided by Google) to help us understand how users engage with our website. Google Analytics uses cookies and similar technologies to collect usage data and report website trends. We only use Google Analytics for analytical purposes, and we do not use it to collect personal information that would directly identify you.

You can opt out of Google Analytics tracking by installing the official Google Analytics Opt-out Browser Add-on, available at https://tools.google.com/dlpage/gaoptout. For more information about how Google collects and processes data in connection with Google Analytics, you can visit Google’s site “How Google uses data when you use our partners’ sites or apps” and the Google Privacy & Terms page.

6. HOW LONG DO WE KEEP YOUR INFORMATION?

We keep your personal information for as long as necessary for the purposes outlined in this Privacy Policy, unless otherwise required by law.

We will keep your personal information for as long as it is needed to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. For example, laws or regulations (such as tax laws and accounting rules) may require us to retain certain records for a specified period of time.

When we have no ongoing legitimate business need to process your personal information, we will either delete it or anonymize it (so that it can no longer be associated with you). If deletion or anonymization is not immediately feasible (for instance, because the data is stored in backup archives), then we will securely store your personal information and isolate it from further processing until deletion is possible.

7. HOW DO WE KEEP YOUR INFORMATION SAFE?

We aim to protect your personal information through a system of organizational and technical security measures.

We have implemented appropriate and reasonable technical and organizational security measures designed to protect the security of any personal information we process. However, despite our safeguards and efforts to secure your information, no electronic transmission over the Internet or information storage technology can be guaranteed to be 100% secure, so we cannot promise or guarantee that hackers, cybercriminals, or other unauthorized third parties will not be able to defeat our security and improperly collect, access, steal, or modify your information. Although we will do our best to protect your personal information, transmission of personal information to and from our Services is at your own risk. You should only access the Services within a secure environment.

8. DO WE COLLECT INFORMATION FROM MINORS?

Our Services are not directed to children under 18 and we do not knowingly collect data from them.

We do not knowingly solicit data from or market to children under 18 years of age (or the applicable age of majority in your jurisdiction). We also do not knowingly sell or share personal information of minors. By using the Services, you represent that you are at least 18 (or are the parent or guardian of a minor who is using our Services with your consent).

If we learn that we have collected personal information from a user who is under 18 without appropriate consent, we will take reasonable steps to delete that information from our records. If you become aware of any personal information we may have collected from a child under 18, please contact us at info@fkco.com so that we can investigate and address the issue promptly.

9. WHAT ARE YOUR PRIVACY RIGHTS?

Depending on your location, you may have certain rights regarding your personal information. These rights may include the ability to access, review, update, delete, or restrict the use of your data, and to withdraw consent that you have given us. You can exercise your rights by contacting us.

In some regions (such as the European Economic Area, United Kingdom, Switzerland, and Canada), you have specific rights under applicable data protection laws. These rights may include:

• Right of Access: The right to request access to the personal information we hold about you and to obtain a copy of that information in a usable format.
• Right to Rectification: The right to request that we correct or update any inaccurate or incomplete personal information.
• Right to Erasure: The right to request deletion of your personal information (also known as the “right to be forgotten”), subject to certain exceptions (for example, we may need to retain data if required by law).
• Right to Restrict Processing: The right to request that we limit the processing of your personal information under certain circumstances (for instance, if you contest the accuracy of the data or object to us processing it).
• Right to Data Portability: If applicable, the right to request a copy of your personal information in an electronic format so that you can transmit it to another company.
• Right to Object to Processing: You may have the right to object to the processing of your personal information in certain situations, especially if we are processing your data based on legitimate interests or for direct marketing.
• Right not to be subject to Automated Decisions: If we ever use your personal information to make a decision solely by automated means that significantly affects you (for example, an automated credit approval), you have the right to not be subject to such decision without human intervention. In practice, we do not make automated decisions about you that produce legal or similarly significant effects. If that changes, we will inform you and provide a way for you to request human review of any automated decision.

If you are in the EEA or UK and believe we are processing your personal information unlawfully, you also have the right to complain to your local data protection supervisory authority. You can find the contact details of your relevant supervisory authority on the European Data Protection Board website (for EEA residents) or contact the UK Information Commissioner’s Office (for UK residents). If you are in Switzerland, you can contact the Swiss Federal Data Protection and Information Commissioner.

Withdrawing your consent

If we are relying on your consent to process your personal information (for example, for marketing emails), you have the right to withdraw that consent at any time. You can withdraw consent by contacting us using the details provided in this Policy or, in the case of email marketing, by clicking the “unsubscribe” link in the email. Please note that withdrawing consent will not affect the lawfulness of any processing we conducted prior to your withdrawal, and it may not affect processing that is allowed on legal bases other than consent (such as fulfilling a contract or complying with a legal obligation).

Opting out of marketing communications

You can unsubscribe from our marketing or newsletter emails at any time by clicking the unsubscribe link at the bottom of those emails, or by contacting us at info@fkco.com with your request. For SMS or text message communications, you can opt out by replying with “STOP” or “UNSUBSCRIBE” to any message we send. Once you opt out, we will remove you from the respective marketing lists. However, please note we may still send you non-promotional messages, such as service-related announcements or billing communications, as long as you are using our Services.

We do not share mobile phone numbers with third parties for their marketing purposes. If we use a subcontractor to assist with text messaging or other support services, those subcontractors are only permitted to use your phone number for the purposes of providing those services, and not for marketing. In general, any information that you provide when opting into text message communications (such as your phone number and consent) will not be shared with third parties for marketing or promotional purposes.

Cookies and similar technologies

As noted above, most web browsers are set to accept cookies by default. If you prefer, you can usually configure your browser to remove or reject cookies. Please be aware that disabling cookies might affect the functionality of our Services. For more details, see the “Cookies” section of this Policy.

If you have any questions or comments about your privacy rights, you can always reach out to us at info@fkco.com.

10. CONTROLS FOR DO-NOT-TRACK FEATURES

At this time, we do not respond to Do-Not-Track (DNT) signals because a uniform technological standard has not been established.

DNT is a privacy preference that users can set in some web browsers to signal that they do not wish to be tracked across websites. Currently, there is no consistent industry standard or agreement on how to interpret DNT signals. As a result, like many businesses, we do not respond to DNT browser signals or other similar mechanisms that automatically communicate your choice not to be tracked.

If a standard for online tracking is adopted in the future that we are required to follow, we will update this Privacy Policy to inform you about how we respond to such signals.

(California law requires us to disclose how we respond to DNT signals. As noted above, we currently do not respond to those signals.)

11. DO UNITED STATES RESIDENTS HAVE SPECIFIC PRIVACY RIGHTS?

Yes. If you are a resident of California, Colorado, Connecticut, Delaware, Florida, Indiana, Iowa, Kentucky, Maryland, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Rhode Island, Tennessee, Texas, Utah, Virginia (among others), you may have specific rights regarding access to and control of your personal information. These rights may include the right to know what information we collect, the right to access or delete that information, the right to correct inaccuracies, and the right to opt out of certain data processing activities.

The table below provides an overview of the categories of personal information (as defined by relevant U.S. privacy laws) that we have collected in the past 12 months, along with examples for each category and whether we collect that information. Please note that this is a general overview; not all information in a category may apply to you personally. For a full description of what we collect, see Section 1 “What Information Do We Collect?” above.

Category	Examples	Collected?
A. Identifiers	Contact details such as real name, alias, postal address, telephone or mobile number, unique personal identifier, online identifier, IP address, email address, account name.	Yes
B. Personal information (as defined in the California Customer Records statute)	Information such as name, contact information, education, employment, employment history, and financial information.	Yes
C. Protected classification characteristics (under state or federal law)	Characteristics of protected classifications, such as gender, age/date of birth, marital status, race, ethnic origin, or nationality.	Yes
D. Commercial information	Records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies.	No
E. Biometric information	Genetic, physiological, behavioral, or biological characteristics (like fingerprints, faceprints, voiceprints, iris or retina scans) used for identification or authentication.	No
F. Internet or other similar network activity	Browsing history, search history, online behavior, information on a consumer’s interaction with websites, applications, or advertisements.	No
G. Geolocation data	Precise location or general location information about a device or individual.	Yes
H. Audio, electronic, visual, or similar information	Audio, electronic, visual, thermal, olfactory, or similar information, such as call recordings or surveillance footage.	Yes
I. Professional or employment-related information	Job-related information, such as current or past employment history or performance evaluations; business contact details to provide our Services at a business level.	Yes
J. Education information	Education records directly related to a student, such as grades, transcripts, or enrollment information (subject to the Family Educational Rights and Privacy Act (FERPA)).	Yes
K. Inferences drawn from other personal information	Profile or summary inferences drawn from any of the information above to create a profile about an individual’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, or aptitudes.	Yes
L. Sensitive Personal Information	Personal information that reveals sensitive details such as a social security number, driver’s license or state ID card number, passport number; account log-in with password or security codes; precise geolocation; racial or ethnic origin; contents of mail, email, or text messages (unless we are the intended recipient); genetic data; or personal data concerning health, sex life, or sexual orientation.	Yes

Note: We only collect sensitive personal information (Category L) as allowed by law or with your consent, and we do not use or disclose sensitive information for purposes that would infer characteristics about you.

In addition to the categories listed above, we may collect personal information outside of these categories in certain instances when you interact with us. For example:

• If you contact us for customer support, we may collect whatever information you choose to provide during the conversation (which could fall outside the categories above).
• If you participate in surveys, contests, or events we host, we might collect information related to those activities (such as feedback or contest entries).
• If we assist in delivering services to you via phone, mail, or in person, we may collect information necessary to fulfill your requests.

Sources of Personal Information: For details about the sources from which we collect personal information, please see the section “What Information Do We Collect?” earlier in this Policy.

How We Use and Share Personal Information: For an explanation of how we use your personal information and with whom we may share it, refer to “How Do We Process Your Information?” (Section 2) and “When and With Whom Do We Share Your Personal Information?” (Section 4) above.

Will your information be shared with anyone else? We may disclose your personal information to our service providers pursuant to written contracts that govern how they can use the data (for example, IT service providers, payment processors, etc.). These service providers are only allowed to use your information in order to provide services to us and not for their own purposes. We may also use your information for our own internal business purposes, such as improving our services or conducting analysis — using your data for these purposes is not considered a “sale” of your information.

Importantly, we have not disclosed or sold your personal information to third parties for their own commercial purposes in the preceding 12 months, and we have no intention of selling or sharing personal information in the future. We also have not disclosed personal information to any third parties for a business purpose in the past 12 months except as described in this Policy (for example, to our service providers who are bound by contracts).

Your Rights (for U.S. State Privacy Laws):

Residents of certain U.S. states have specific rights regarding their personal information. These rights may vary by state, but we will honor any applicable rights for your data. These may include the right to:

• Right to know whether or not we are processing your personal data.
• Right to access your personal data.
• Right to correct inaccuracies in your personal data.
• Right to request the deletion of your personal data.
• Right to obtain a copy of the personal data you previously shared with us.
• Right to non-discrimination for exercising your rights.
• Right to opt out of the processing of your personal data if it is used for targeted advertising (or “sharing” as defined under California’s privacy law), the sale of personal data, or profiling in furtherance of decisions that produce legal or similarly significant effects.

Depending upon the state where you live, you may also have the following rights:

• Right to access the categories of personal data being processed (as permitted by applicable law, including the privacy law in Minnesota).
• Right to obtain a list of the categories of third parties to which we have disclosed personal data (as permitted by applicable law, including the privacy law in California, Delaware, and Maryland).
• Right to obtain a list of specific third parties to which we have disclosed personal data (as permitted by applicable law, including the privacy law in Minnesota and Oregon).
• Right to review, understand, question, and correct how personal data has been profiled (as permitted by applicable law, including the privacy law in Minnesota).
• Right to limit the use and disclosure of sensitive personal data (as permitted by applicable law, including the privacy law in California).
• Right to opt out of the collection of sensitive data and personal data collected through the operation of a voice or facial recognition feature (as permitted by applicable law, including the privacy law in Florida).

We will not discriminate against you for exercising any of these rights. For example, we will not deny you services or charge you a different price or rate for services because you exercised your privacy rights.

How to Exercise Your Rights

If you are a resident of a U.S. state that grants privacy rights, you can submit a request to exercise your rights by contacting us through one of the following methods:

• Web Form: If available, you may submit a data subject access request through a dedicated online form on our website (when provided).
• Email: Send an email to us at info@fkco.com specifying which right you intend to exercise (for example, access, deletion, correction, etc.) and the scope of the request.
• Telephone: Call us at (860) 677-9191 and let us know that you would like to exercise your privacy rights. (Please note this is a standard business phone number; standard call charges may apply depending on your phone plan.)

For your security and to prevent fraud, we will need to verify your identity before fulfilling certain requests. When you make a request, please be prepared to provide information so we can confirm you are the correct person (for example, providing details we already have on file, like your recent transaction with us or other contact info). We will only use the information you provide in a request to verify your identity or authority.

If you make a request via an authorized agent (for instance, a lawyer or someone acting on your behalf), we may require proof of that agent’s authorization (such as a signed written permission from you). We may also still ask you (or your agent) to verify your identity directly with us.

Global Privacy Control: We recognize and honor the Global Privacy Control (GPC) signal, which is a browser setting that communicates an opt-out preference for tracking (including sale/sharing of data). If our site detects a GPC signal from your browser, we will treat it as a valid opt-out of cookies that constitute a sale or sharing under applicable laws.

Response Timing and Appeals

We aim to respond to a verifiable consumer request within the timeframe required by law (for example, within 45 days for California residents, although we may take an extension of an additional 45 days when necessary). If we need more time, we will inform you of the reason and extension period in writing.

If we decline to take action on your request, we will inform you of our decision and reasoning. Some laws (like Colorado’s) allow you to appeal a denial of your request. If we deny a request and you wish to appeal that decision, you may do so by contacting us at info@fkco.com and stating that you are appealing our decision. We will review your appeal and respond within the time frame required by law. If your appeal is ultimately denied, and if applicable under your state law, you may further lodge a complaint with your state’s Attorney General or supervising authority.

California “Shine The Light” Law

Under California Civil Code § 1798.83 (the “Shine The Light” law), California residents have the right to request information about whether we have disclosed personal information to any third parties for their direct marketing purposes. We do not share personal information with unaffiliated third parties for their own marketing use without your consent. However, if you are a California resident and would like to make an inquiry about any such potential sharing (for the immediately preceding calendar year), you may send a written request to us using the contact information provided below in “How Can You Contact Us about this Policy?”. Please include “Shine the Light Request” in your correspondence. We will respond in accordance with applicable California law.

12. DO WE MAKE UPDATES TO THIS POLICY?

We will update this Privacy Policy as needed to stay compliant with relevant laws and to reflect any changes in our practices.

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by (for example) posting a prominent notice on our website or by directly sending you a notification. The “Last updated” date at the top of this Policy indicates when the latest changes were made.

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Any changes to this Policy will become effective when the updated Privacy Policy is posted (or as otherwise required by law). If you continue to use our Services after an updated Privacy Policy is posted, it indicates that you have read and understood the current version of the Policy.

13. HOW CAN YOU CONTACT US ABOUT THIS POLICY?

If you have questions or comments about this Privacy Policy, or if you need to reach us for any reason relating to your personal information, please do not hesitate to contact us. Please refer to our contact us page for our contact info. We will be happy to answer your questions or address any concerns you have about our privacy practices.

14. HOW CAN YOU REVIEW, UPDATE, OR DELETE THE DATA WE COLLECT FROM YOU?

Depending on your country or state of residence, you may have the right to request access to the personal information we have collected about you, to receive details about how we use and share it, to correct any inaccuracies, or to delete your personal information. You may also have the right to withdraw consent for our processing of your personal information, as described in Section 9 of this Policy. These rights may be limited in some situations by applicable law (for example, even if you request deletion, we might be required to keep certain data for legal reasons).

To exercise any applicable rights to review, update, or delete your personal information, please contact us using the methods listed in Section 13 (“How Can You Contact Us About This Policy?”). Once we receive your request, we will verify your identity (as described in Section 11) and respond to you within the timeframe provided by law.