We respect your privacy and are committed to protecting the personal information you share with us. This Privacy Statement explains what we collect, how we use it, who we share it with, your rights and choices, and how to contact us. It applies to websites, tools, and services operated by Carr Consulting (the “Services”).

Scope: This statement is designed for U.S. users and includes Georgia-specific notices. We also include a California section to support CCPA/CPRA if you interact with us from California.

1) Key Definitions

  • Personal Data: information that identifies or can reasonably be linked to an individual.
  • Processing: actions performed on data (collection, use, storage, disclosure, etc.).
  • Controller: Carr Consulting determines purposes and means of processing Personal Data.

2) Information We Collect

A. You Provide to Us

  • Contact/identity (name, email, phone, address, company, role)
  • Business & financial context for consulting (industry, size, goals, documents)
  • Communications and uploads (messages, forms, files)
  • Billing & payment (billing address, transaction records)
  • Marketing preferences (opt-ins/opt-outs)

B. Collected Automatically

  • Technical/usage (IP, device, browser, pages, session data, referrers)
  • Cookies & similar tech for performance, security, personalization, and analytics

C. From Third Parties

  • Business databases, analytics providers, referral partners, public sources

3) How We Use Personal Data

PurposeExamplesLegal Basis
Provide & improve Services Deliver consulting, configure tools, troubleshoot, enhance UX Contract; Legitimate Interests
Communications Respond to inquiries, schedule, customer support Contract; Legitimate Interests
Billing & operations Invoices, receipts, accounting, tax records Contract; Legal Obligations
Security & fraud prevention Access logs, anomaly detection, enforcement Legitimate Interests; Legal Obligations
Analytics & personalization Aggregate reporting, content tuning, site performance Legitimate Interests; Consent where required
Marketing Newsletters, promotions, event invites Consent/Opt-in; You can opt out anytime

Where consent is required, you may withdraw it at any time. We may aggregate/anonymize data for statistical uses.

4) How We Share Information

  • Service providers (hosting, analytics, payment processing, communications) under confidentiality and data protection obligations.
  • Affiliates/contractors to deliver engagements and support operations.
  • Professional advisors & authorities (legal, tax, regulators) where required.
  • Business transfers (merger, acquisition, financing) under protective terms.

Cross-border transfers may occur; we use appropriate safeguards (e.g., contractual protections).

5) Retention & Security

We keep Personal Data only as long as necessary for the purposes described, including legal and accounting obligations. We use reasonable technical and organizational measures (encryption in transit/at rest where appropriate, access controls, monitoring, and incident response). No system is perfectly secure.

6) Your Rights & Choices

  • Access, correction, deletion (subject to legal limits), restriction, and portability
  • Object to certain processing (e.g., marketing); withdraw consent where applicable
  • Cookie controls via your browser or our preferences tools (if provided)

To exercise rights, use the contact options below. We will verify and respond within applicable timelines.

7) Email, SMS, and Telemarketing

We comply with CAN-SPAM and applicable TCPA rules. You can unsubscribe from marketing emails via the link in any message or request removal by contacting us. For SMS/voice, we obtain appropriate consent and you may opt out by replying STOP.

8) Cookies & Tracking

We use cookies and similar technologies for core functionality, security, analytics, and personalization. Most browsers allow you to block or delete cookies; our site may not function properly without certain cookies. We do not respond to "Do Not Track" signals at this time.

9) Children’s Privacy

Our Services are not directed to children under 13. We do not knowingly collect Personal Data from children under 13. If you believe a child has provided Personal Data, contact us to request deletion.

10) U.S. State Disclosures

California (CCPA/CPRA)

  • We do not sell or share Personal Data for cross-context behavioral advertising as those terms are defined by CCPA/CPRA.
  • California residents have the right to know, delete, correct, and opt out of sale/share/targeted advertising; and the right to limit use/disclosure of sensitive Personal Data (if we collect it).
  • To exercise these rights, see “Contact Us” below or use our request link: Do Not Sell or Share My Personal Information.

Georgia Notice

Data Breach Notification (Georgia): In the event of a data breach involving Personal Information as defined by Georgia law, we will provide notifications consistent with the Georgia Personal Identity Protection Act (O.C.G.A. § 10-1-910 et seq.) and other applicable laws.

If you primarily operate in Georgia, any disputes or claims related to this Statement may be subject to Georgia law and venue as described in “Governing Law & Venue.”

11) Changes to This Statement

We may update this Statement from time to time. Material changes will be indicated by updating the “Last Updated” date and, where appropriate, through additional notice.

12) Contact Us

Carr Consulting
3230 North Henry Blvd, Ste CC
Stockbridge, GA 30281
Email: [email protected]
Phone: 470-748-4045

CCPA Do Not Sell or Share My Personal Information: We do not sell or share Personal Data. If you still wish to submit a request, email [email protected] with the subject “CCPA Request – Do Not Sell/Share.”