Excelerate Consulting
Legal

Privacy Policy

Effective Date: April 15, 2026  |  Last Updated: April 15, 2026

Excelerate Consulting LLC ("Excelerate," "Company," "we," "us," or "our"), a Nevada limited liability company, is committed to protecting your privacy and the security of your personal information. This Privacy Policy explains how we collect, use, disclose, store, and protect information when you visit our website at excelerateconsulting.com (the "Site"), use our client dashboard, or engage our marketing services (collectively, the "Services").

This Privacy Policy also specifically addresses how we handle data received through the Google Ads API, the Google Business Profile API, and other Google API services in compliance with the Google API Services User Data Policy, including the Limited Use requirements.

By using our Services, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree, please do not use our Services.

1. Information We Collect

1.1 Information You Provide Directly

We collect information that you voluntarily provide to us, including:

  • Contact Information: Name, email address, phone number, business name, business address, and website URL.
  • Account Credentials: Login information for third-party platforms you authorize us to access (stored using encrypted, industry-standard credential management).
  • Business Information: Information about your business, services, products, target market, and marketing goals that you share with us to facilitate our Services.
  • Communications: Content of emails, messages, form submissions, and other communications between you and Excelerate.
  • Payment Information: Billing name, billing address, and payment method details. Note that payment card information is processed by our PCI-compliant payment processor and is not stored on our servers.

1.2 Information We Collect from Third-Party Platforms

When you authorize us to access your accounts on third-party platforms, we collect data from those platforms solely to deliver our Services. This includes:

  • Google Ads Data (via Google Ads API): Campaign performance metrics (impressions, clicks, conversions, cost), keyword data, ad copy and creative assets, audience data, bid and budget information, conversion tracking data, and account structure information.
  • Google Business Profile Data (via Google Business Profile API): Business listing information (name, address, phone, hours, categories, attributes), Google Posts content, review content and reviewer information (as provided by Google), Q&A content, photo and media assets, performance insights (search queries, views, actions, direction requests, calls), and verification status.
  • Google Analytics Data: Website traffic data, user behavior data, conversion data, audience demographics, and acquisition channel data.
  • Meta (Facebook/Instagram) Data: Campaign performance metrics, audience insights, ad creative performance, conversion data, and pixel event data.
  • Other Platform Data: Call tracking records, CRM data, review platform data, and social media analytics as applicable to your Service Agreement.

1.3 Information We Collect Automatically

When you visit our Site, we automatically collect certain information, including:

  • Device Information: Browser type and version, operating system, device type, and screen resolution.
  • Usage Information: Pages viewed, time spent on pages, referring URLs, and navigation patterns.
  • Network Information: IP address and approximate geographic location.
  • Cookies and Similar Technologies: We use cookies, web beacons, and similar tracking technologies as described in Section 8 below.

2. How We Use Your Information

We use the information we collect for the following purposes:

  • Service Delivery: To provide, manage, and optimize the marketing services described in your Service Agreement, including managing advertising campaigns, optimizing business listings, generating reports, and providing strategic recommendations.
  • Google Ads Campaign Management: To create, manage, optimize, and report on your Google Ads campaigns using data received through the Google Ads API.
  • Google Business Profile Management: To manage, optimize, and report on your Google Business Profile listing using data received through the Google Business Profile API.
  • Communication: To communicate with you about your account, services, performance, and recommendations.
  • Billing: To process payments and manage your billing account.
  • Service Improvement: To analyze aggregated and anonymized data to improve our Services, AI models, and internal processes.
  • Legal Compliance: To comply with applicable laws, regulations, legal processes, and enforceable governmental requests.
  • Security: To detect, prevent, and address fraud, security issues, and technical problems.

We do not use your data to serve you advertisements. We are a service provider that manages advertising on your behalf—we do not use your data to target ads to you.

3. Google API Services — User Data Policy Compliance

This section specifically addresses our compliance with the Google API Services User Data Policy, including the Limited Use requirements. This section governs our handling of data received from Google APIs and takes precedence over any other section of this Privacy Policy to the extent of any conflict.

3.1 Limited Use Disclosure

Excelerate Consulting's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:

  • We only use Google user data to provide and improve the user-facing features that are prominent in our application's user interface—namely, the marketing management and reporting Services you have engaged us to provide.
  • We do not transfer Google user data to third parties unless: (a) it is necessary to provide or improve user-facing features that are prominent in our Services; (b) it is necessary to comply with applicable laws; (c) it is necessary for security purposes (e.g., investigating abuse); or (d) as part of a merger, acquisition, or sale of assets with prior notice to users.
  • We do not use Google user data for serving advertisements, including retargeting, personalized advertising, or interest-based advertising.
  • We do not allow humans to read Google user data unless: (a) we have obtained your affirmative agreement for specific data; (b) it is necessary for security purposes such as investigating abuse; (c) it is necessary to comply with applicable law; or (d) the data (including derivations) is aggregated and anonymized and used for internal operations.

3.2 Google Ads API Data Handling

Data received through the Google Ads API is handled as follows:

  • Purpose: Used exclusively to manage, optimize, and report on your Google Ads campaigns as part of the Services you have engaged.
  • Access: Limited to authorized Excelerate personnel assigned to your account and our internal systems that process campaign data for optimization and reporting.
  • Storage: Stored in encrypted databases (AES-256 at rest) hosted on secure cloud infrastructure with access logging and monitoring.
  • Retention: Retained for the duration of our service relationship. Upon termination, Google Ads data is deleted within 90 days, except where retention is required by law or for legitimate business purposes (e.g., invoicing records).
  • Sharing: Not sold, leased, or shared with any third parties for their own purposes. May be shared with sub-processors only as necessary to deliver Services (see Section 4).

3.3 Google Business Profile API Data Handling

Data received through the Google Business Profile API is handled as follows:

  • Purpose: Used exclusively to manage, optimize, and report on your Google Business Profile listing as part of the Services you have engaged.
  • OAuth Scopes: We request only the minimum OAuth scopes and permissions necessary to perform the services you have authorized. These may include scopes for reading and managing your business listing, posts, reviews, and insights.
  • Access: Limited to authorized Excelerate personnel assigned to your account and our internal systems that process listing data for management and reporting.
  • Storage: Stored in encrypted databases (AES-256 at rest) hosted on secure cloud infrastructure with access logging and monitoring.
  • Retention: Retained for the duration of our service relationship. Upon termination, Google Business Profile data is deleted within 90 days, except where retention is required by law.
  • Sharing: Not sold, leased, or shared with any third parties for their own purposes. May be shared with sub-processors only as necessary to deliver Services (see Section 4).

3.4 Revoking Access to Google Data

You may revoke Excelerate Consulting's access to your Google data at any time by:

  • Visiting your Google Account permissions page at https://myaccount.google.com/permissions and removing Excelerate Consulting from the list of authorized applications.
  • Contacting us at privacy@excelerateconsulting.com to request that we disconnect our API access and delete any stored Google data.
  • Removing our manager or user access from your Google Ads or Google Business Profile accounts directly.

Upon revocation, we will cease accessing your Google data and will delete any stored Google data within 30 days, except where retention is required by law. Please note that revoking access may impact our ability to deliver certain Services.

4. How We Share Your Information

We do not sell your personal information or Google user data to any third party. We may share your information in the following limited circumstances:

  • Sub-Processors: We use a limited number of trusted sub-processors to help deliver our Services (e.g., cloud hosting providers, analytics platforms, email service providers). These sub-processors are contractually bound to use your data only for the purposes we specify and to maintain appropriate security measures. A list of our sub-processors is available upon request.
  • Third-Party Platforms: We transmit data to third-party advertising and marketing platforms (e.g., Google Ads, Meta) on your behalf as part of our campaign management services.
  • Legal Requirements: We may disclose your information if required to do so by law, regulation, legal process, or enforceable governmental request.
  • Protection of Rights: We may disclose your information if we believe disclosure is necessary to protect the rights, property, or safety of Excelerate, our clients, or others.
  • Business Transfers: In the event of a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred as part of that transaction. We will notify you via email and/or a prominent notice on our Site of any change in ownership or uses of your personal information.
  • With Your Consent: We may share your information for any other purpose with your explicit consent.

5. Data Retention

We retain your information for as long as necessary to fulfill the purposes described in this Privacy Policy, including:

  • Active Service Relationship: For the duration of our service relationship, we retain all data necessary to deliver our Services.
  • Post-Termination: After termination of Services, we retain your data for up to 90 days to facilitate transition and final reporting. After this period, client data is securely deleted unless retention is required by law.
  • Legal and Compliance: We may retain certain data for longer periods as required by law (e.g., tax and financial records, legal obligations).
  • Aggregated Data: We may retain aggregated, anonymized data that cannot be used to identify you indefinitely for the purpose of improving our Services and AI models.

6. Data Security

We take the security of your data seriously and implement industry-standard administrative, technical, and physical safeguards to protect your information. These include:

  • Encryption of data in transit using TLS 1.2 or higher.
  • Encryption of data at rest using AES-256 encryption.
  • Role-based access controls ensuring that personnel can only access data necessary for their role.
  • Multi-factor authentication (MFA) for access to all internal systems and client accounts.
  • Regular security assessments, penetration testing, and vulnerability scanning.
  • Employee background checks and security awareness training.
  • Secure development practices including code review and testing.
  • Incident response plan for prompt detection, containment, and notification in the event of a data breach.
  • Access logging and monitoring for all systems that process client data.

While we strive to protect your personal information, no method of transmission over the Internet or method of electronic storage is 100% secure. We cannot guarantee absolute security, but we are committed to maintaining the highest reasonable standard of protection.

7. Your Rights and Choices

Depending on your location, you may have the following rights regarding your personal information:

  • Access: You may request a copy of the personal information we hold about you.
  • Correction: You may request that we correct any inaccurate or incomplete personal information.
  • Deletion: You may request that we delete your personal information, subject to certain legal exceptions.
  • Portability: You may request that we provide your personal information in a structured, commonly used, machine-readable format.
  • Objection: You may object to the processing of your personal information for certain purposes.
  • Restriction: You may request that we restrict the processing of your personal information in certain circumstances.
  • Withdraw Consent: Where we rely on consent for processing, you may withdraw your consent at any time.
  • Revoke Google API Access: You may revoke our access to Google data at any time as described in Section 3.4.

To exercise any of these rights, please contact us at privacy@excelerateconsulting.com. We will respond to all requests within 30 days or as required by applicable law.

8. Cookies and Tracking Technologies

Our Site uses cookies and similar tracking technologies to improve your experience, analyze usage, and measure the effectiveness of our marketing. The types of cookies we use include:

  • Essential Cookies: Necessary for the basic functionality of our Site (e.g., session management, security). These cannot be disabled.
  • Analytics Cookies: Used to understand how visitors interact with our Site (e.g., Google Analytics). These help us improve our Site and Services.
  • Marketing Cookies: Used to measure the effectiveness of our own advertising and to provide relevant content. We do not use third-party advertising cookies to target ads to you on other websites.

You can control cookies through your browser settings. Most browsers allow you to refuse or delete cookies. However, disabling cookies may affect the functionality of our Site.

9. Third-Party Links

Our Site may contain links to third-party websites, platforms, or services. We are not responsible for the privacy practices or content of these third-party sites. We encourage you to read the privacy policies of any third-party sites you visit.

10. Children's Privacy

Our Services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children under 18. If we become aware that we have collected personal information from a child under 18, we will take steps to delete such information promptly. If you believe we have inadvertently collected information from a child under 18, please contact us at privacy@excelerateconsulting.com.

11. Nevada Privacy Rights

Under Nevada law (NRS 603A), Nevada residents may submit a request directing us not to sell their personal information. We do not currently sell personal information as defined under Nevada law. If you are a Nevada resident and wish to submit such a request, please contact us at privacy@excelerateconsulting.com.

12. California Privacy Rights (CCPA/CPRA)

If you are a California resident, you may have additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), including the right to know what personal information we collect and how we use it, the right to request deletion, the right to opt out of the sale or sharing of personal information, and the right to non-discrimination for exercising your rights. We do not sell or share personal information as defined by the CCPA/CPRA. To exercise your California privacy rights, contact us at privacy@excelerateconsulting.com.

13. International Data Transfers

Our Services are based in the United States. If you access our Services from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States, where data protection laws may differ from those in your country of residence. By using our Services, you consent to the transfer of your information to the United States.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. If we make material changes, we will notify you by email or by posting a prominent notice on our Site at least 30 days before the changes take effect. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

15. Data Protection Officer / Privacy Contact

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Excelerate Consulting LLC
Attn: Privacy Team
Nevada, United States
Email: privacy@excelerateconsulting.com
Website: excelerateconsulting.com

For questions or complaints specifically related to our handling of Google user data, please contact us at privacy@excelerateconsulting.com with the subject line "Google Data Inquiry."