Linkedin-in Youtube

Privacy Policy

Last Updated: April 22, 2026

1. Introduction

Gideon Taylor (“we,” “our,” “us”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website www.gideontaylor.com, use our services, or interact with us in any other way. Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the site or use our services.

Who this policy applies to: This policy applies to personal information we collect from visitors to our website, prospective customers, customers, webinar attendees, event attendees, and business contacts. It does not apply to personal information we process on behalf of our customers as a service provider or data processor, which is governed by our agreements with those customers.

Scope: This policy addresses our obligations under the General Data Protection Regulation (GDPR), the UK GDPR, the California Consumer Privacy Act as amended by the California Privacy Rights Act (CCPA/CPRA), and other applicable U.S. state privacy laws including those of Virginia, Colorado, Connecticut, Utah, and Texas.

2. Information We Collect

We collect personal information in the following categories:

(a) Information you provide directly to us:

  • Identifiers: name, email address, phone number, job title, company name, mailing address
  • Commercial information: records of products or services you’ve inquired about or purchased
  • Professional information: your role, industry, and organization type (e.g., higher education, public sector, enterprise)
  • Content of communications: information in forms you submit, emails you send us, chat conversations with our Ida assistant, and webinar or event registrations

(b) Information collected automatically when you visit our site:

  • Device and connection data: IP address, browser type, operating system, device identifiers, referring URL, pages viewed, time spent on pages, links clicked
  • Cookies and similar technologies (see Section 9)

(c) Information from third parties:

  • Business contact and firmographic data from prospecting and intent-data providers including Dealfront and ZoomInfo
  • Information from our marketing and advertising partners, including LinkedIn, Google, and event co-hosts
  • Publicly available professional information (e.g., LinkedIn profiles)

We do not knowingly collect “sensitive personal information” as defined under CCPA/CPRA or “special category data” under GDPR. We do not knowingly collect personal information from children under 16.

3. How We Use Your Information

We use the information we collect for the following purposes. Under GDPR, each purpose is supported by a legal basis identified in brackets:

  • To provide, operate, and maintain our services [contract performance; legitimate interests]
  • To improve, personalize, and expand our website [legitimate interests; consent where required]
  • To understand and analyze how you use our website [legitimate interests; consent where required for non-essential analytics]
  • To develop new products, services, features, and functionality [legitimate interests]
  • To communicate with you, either directly or through one of our partners, including for customer service, to provide you with updates and other information relating to the website, and for marketing and promotional purposes [legitimate interests; consent where required]
  • To process your transactions and manage your orders [contract performance]
  • To send you emails [legitimate interests; consent where required]
  • To find and prevent fraud [legitimate interests; legal obligation]
  • To comply with legal obligations, respond to lawful requests, and enforce our agreements [legal obligation; legitimate interests]

We do not sell your personal information for money. However, under CCPA/CPRA’s broad definitions, our use of advertising cookies and pixels (including LinkedIn Insight Tag and Google Ads) may constitute “sharing” personal information for cross-context behavioral advertising. You have the right to opt out — see Section 10.

4. How We Share Your Information

We may share your information in the following situations:

  • With Service Providers: We may share your information with third-party vendors, service providers, contractors, or agents who perform services for us or on our behalf and require access to such information to do that work. These include providers of customer relationship management (Salesforce), marketing automation (Mailchimp), website analytics (Google Analytics), business intelligence and visitor identification (Dealfront, ZoomInfo), advertising platforms (LinkedIn, Google), email and collaboration services, and hosting infrastructure. These parties are contractually restricted from using your information for their own purposes.
  • With Advertising Partners: We use LinkedIn Insight Tag, Google Ads, and similar technologies to deliver relevant advertising and measure campaign performance. Under CCPA/CPRA, this may constitute “sharing” your personal information. You can opt out as described in Section 10.
  • For Business Transfers: We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company.
  • With Affiliates: We may share your information with our affiliates, including Intrasee and Newbury Enterprise Services, in which case we will require those affiliates to honor this privacy policy.
  • For Legal Reasons: We may disclose your information where we are legally required to do so in order to comply with applicable law, governmental requests, a judicial proceeding, court order, or legal process.

Categories of personal information disclosed in the past 12 months (CCPA/CPRA disclosure):

  • Identifiers and professional information — disclosed to service providers, affiliates, and advertising partners
  • Internet activity and device information — disclosed to analytics and advertising partners
  • Commercial information — disclosed to service providers and affiliates

We have not sold personal information in the past 12 months. We have shared personal information for cross-context behavioral advertising as described above.

5. Data Retention

We retain personal information only as long as necessary for the purposes described in this policy, or as required by law. Typical retention periods include:

  • Website visitor analytics: up to 26 months
  • Marketing contacts and prospects: until you unsubscribe or request deletion, plus a reasonable period for record-keeping
  • Customer and vendor records: for the duration of the business relationship plus the period required by tax, accounting, and contract law (typically 7 years)
  • Webinar and event registrations: up to 3 years for follow-up and repeat-event invitations unless you opt out sooner

When personal information is no longer needed, we delete or anonymize it.

6. International Data Transfers

We are headquartered in the United States, and the information we collect is processed in the United States. If you are located in the European Economic Area, the United Kingdom, or Switzerland, please be aware that your information will be transferred to, and processed in, the United States, which may have different data protection laws than your country.

Where we transfer personal information from the EEA, UK, or Switzerland to the United States or other jurisdictions that have not received an adequacy decision, we rely on appropriate safeguards including the Standard Contractual Clauses approved by the European Commission. You may request a copy of the relevant safeguards by contacting us at the address in Section 13.

7. Security of Your Information

We use administrative, technical, and physical security measures to help protect your personal information. While we have taken reasonable steps to secure the personal information you provide to us, please be aware that despite our efforts, no security measures are perfect or impenetrable, and no method of data transmission can be guaranteed against any interception or other type of misuse.

In the event of a data breach that poses a risk to your rights, we will notify affected individuals and applicable regulators as required by law.

8. Your Privacy Rights

For residents of the European Economic Area, United Kingdom, and Switzerland (GDPR):

Depending on your location, you may have the following rights regarding your personal information:

  • The right to access — You have the right to request copies of your personal data.
  • The right to rectification — You have the right to request that we correct any information you believe is inaccurate.
  • The right to erasure — You have the right to request that we erase your personal data, under certain conditions.
  • The right to restrict processing — You have the right to request that we restrict the processing of your personal data, under certain conditions.
  • The right to object to processing — You have the right to object to our processing of your personal data, under certain conditions.
  • The right to data portability — You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.
  • The right to withdraw consent — Where we rely on your consent, you may withdraw that consent at any time without affecting the lawfulness of processing before withdrawal.
  • The right to lodge a complaint with a supervisory authority in the EU member state of your residence, work, or the alleged infringement.

For residents of California (CCPA/CPRA) and other U.S. states with comprehensive privacy laws:

You have the right to:

  • Know what personal information we have collected, used, disclosed, and shared about you, including the categories of sources and third parties
  • Delete personal information we have collected from you, subject to legal exceptions
  • Correct inaccurate personal information we maintain about you
  • Opt out of sharing of personal information for cross-context behavioral advertising (see Section 10)
  • Limit use of sensitive personal information (though we do not knowingly collect sensitive personal information)
  • Non-discrimination — we will not deny you goods or services, charge you different prices, or provide a different level of quality because you exercised a privacy right

How to exercise your rights: Submit a request by emailing SOC2ComplianceTeam@gideontaylor.com. We will verify your identity by confirming information we already have on file (typically name, email, and company) before fulfilling your request. We will respond within 45 days (GDPR) or 45 days with a possible 45-day extension (CCPA).

Authorized agents: California residents may designate an authorized agent to submit requests on their behalf. We will require proof of the agent’s authorization.

9. Cookies and Tracking Technologies

Our website uses cookies and similar technologies to operate the site, analyze usage, remember your preferences, and deliver relevant advertising. We use the following categories:

  • Strictly necessary cookies — required for the site to function (e.g., session management, security). These cannot be disabled.
  • Analytics cookies — help us understand how visitors use our site (Google Analytics, marketing automation tracking).
  • Advertising cookies — used to deliver relevant ads and measure campaigns (LinkedIn Insight Tag, Google Ads).
  • Functional cookies — remember your preferences and enable features like our Ida chat assistant.

Managing cookies: You can control cookies through your browser settings. For EEA/UK visitors, we obtain consent before setting non-essential cookies through our cookie preference banner. You can change your choices at any time by adjusting settings in the footer.

Global Privacy Control: We honor Global Privacy Control (GPC) signals as an opt-out of sharing for California and other applicable residents.

10. Do Not Sell or Share My Personal Information

We do not sell your personal information for money. However, our use of advertising cookies and pixels may constitute “sharing” for cross-context behavioral advertising under California law.

To opt out of sharing:

  • Click “Your Privacy Choices” in our website footer
  • Enable Global Privacy Control in your browser — we will honor it automatically
  • Email SOC2ComplianceTeam@gideontaylor.com with the subject “Opt Out”

Your opt-out will apply to the browser and device you use when exercising the choice. If you clear cookies or use a different browser, you may need to opt out again.

11. Data Controller

The data controller for personal information collected through this website is Gideon Taylor, located at 686 E 110 S, Unit 203, American Fork, UT 84003, USA.

12. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the “Last Updated” date above. For material changes, we will provide additional notice, such as an email to registered contacts or a prominent notice on our website, before the changes take effect. You are advised to review this Privacy Policy periodically for any changes.

13. Contact Us

If you have any questions about this Privacy Policy, or to exercise your privacy rights, please contact us:

  • By email: SOC2ComplianceTeam@gideontaylor.com
  • By mail: Gideon Taylor, Attn: Privacy, 686 E 110 S, Unit 203, American Fork, UT 84003