Privacy Policy

1. What This Covers

This Privacy Policy explains how Clickstream collects, uses, and protects your information when you visit our website or use our services. We build revenue and operations systems specifically for AV installation companies. We comply with GDPR (EU), CCPA (California), and privacy laws in Australia and New Zealand.

2. Information We Collect

We collect three types of information:

• Contact Information: Name, email, phone number, and company details you provide when booking a call via Calendly or contacting us
• Website Usage: IP address, browser type, pages visited, and time spent (via basic analytics). We use minimal cookies for essential functions only—no invasive tracking
• Client Data: Business information, CRM data, lead lists, and system credentials you share for AV operations system implementation

3. How We Use Your Information

We use your data to:

• Deliver AV operations systems (build workflows, integrate systems, respond to support requests)
• Schedule consultations via Calendly
• Send service updates and implementation progress reports
• Improve our website and services based on usage patterns

We never sell your data or use it for advertising. We don't send marketing emails unless you opt in.

4. Cookies & Tracking

We use essential cookies for basic site functionality (login sessions, form submissions). We don't use advertising cookies or third-party trackers. Calendly and our analytics provider may set their own cookies when you use those services—see their privacy policies for details.

5. Third-Party Services

We use trusted tools to deliver services:

• Calendly: Scheduling consultations (subject to Calendly's privacy policy)
• n8n: Workflow automation engine (self-hosted—data stays under our control)
• Cloud Hosting: Secure infrastructure providers with SOC 2 compliance

All third parties are vetted for security and privacy standards. We don't share client data with anyone except as needed to deliver your service.

6. Data Security

We encrypt data in transit (HTTPS/TLS) and at rest. Access is restricted to authorized team members only. Our infrastructure includes automated backups, monitoring, and security updates. See our Data & Security page for technical details.

7. Your Rights (GDPR & CCPA)

You have the right to:

• Access your personal data (we'll send you a copy within 30 days)
• Correct inaccurate information
• Request deletion of your data (subject to legal retention requirements)
• Object to processing or restrict how we use your data
• Export your data in a portable format
• Opt out of marketing communications

To exercise these rights, email hello@clickstream.dev

8. Data Retention

We retain client data only as long as needed to provide services or meet legal obligations (typically 7 years for financial records). After termination, we securely delete your data unless you request a copy or local laws require retention.

9. International Transfers

If you're in the EU, Australia, or New Zealand, your data may be processed in the US or other regions. We use standard contractual clauses and ensure adequate safeguards for cross-border transfers as required by GDPR and local laws.

10. Policy Updates

We'll notify clients of significant privacy policy changes via email. Continued use after changes go live means you accept the updated policy.