Privacy Policy

Information You Provide

When you interact with Dyligence, you may provide:

• Contact information: First name, last name, work email address, firm or organization name.
• Order information: Brief subject details (names, companies, or contexts you ask us to research), Pack selections, and delivery preferences.
• Payment information: Payment card data processed by our third-party payment processor. Dyligence does not store full payment card numbers.
• Communications: Messages sent to us by email or through our contact form.

Information Collected Automatically

When you visit our site, we and our infrastructure providers may automatically collect:

• Usage data: Pages visited, referring URL, browser type, device type, operating system, and timestamp of visit.
• IP address and approximate location: Used for security, fraud prevention, and geographic analytics.
• Form submission metadata: Email domain, country of origin, and submission timestamp for lead qualification and rate-limiting purposes.

We do not use persistent tracking cookies for advertising. Our infrastructure (Cloudflare) may set functional cookies required for security and performance. We do not operate third-party advertising pixels or retargeting networks.

We use the information we collect to:

• Fulfill Brief orders and deliver completed research to the designated email address;
• Process payments and maintain billing records;
• Communicate about orders, status updates, and service notifications;
• Respond to inquiries and provide client support;
• Send sample briefs and product information to professionals who request them;
• Detect and prevent fraud, abuse, and violations of our Terms of Service;
• Analyze aggregate usage patterns to improve our services;
• Comply with legal obligations.

We do not sell, rent, or trade your personal information to third parties for their marketing purposes. We do not use client order information (including subject names and research requests) for any purpose other than fulfilling your order and maintaining our service records.

In the course of fulfilling a Brief, we compile information about third-party individuals or organizations from publicly available sources. This section addresses how we handle that information.

Source of subject information. All information compiled in Briefs is sourced from publicly accessible records, including professional profiles, regulatory filings, news archives, court records, and corporate databases. We do not access private communications, non-public financial records, or information obtained through unlawful means.

Retention of subject data. Research compiled for a specific Brief may be retained by Dyligence for a reasonable period to support quality review, dispute resolution, and legal compliance. We do not maintain a persistent, searchable database of subject profiles available for general sale.

Subject access requests. If you believe Dyligence has compiled a Brief about you and wish to inquire about it, please contact us at privacy@dyligence.ai. We will respond consistent with applicable legal obligations.

We share information only in the following circumstances:

• Service providers. We share information with vendors and subcontractors engaged to help deliver our services, including data providers, email delivery services, and payment processors. These parties are bound by appropriate confidentiality and data protection obligations.
• Legal compliance. We may disclose information when required by law, regulation, or valid legal process (such as a subpoena or court order). Where permitted, we will notify affected clients of such requests.
• Protection of rights. We may disclose information where necessary to prevent fraud, enforce our Terms, or protect the rights, safety, or property of Dyligence or others.
• Business transfers. In the event of a merger, acquisition, or sale of substantially all assets, client information may be transferred as part of that transaction, subject to equivalent privacy protections.

Our services rely on the following categories of third-party providers:

• Infrastructure and CDN: Cloudflare, Inc. — provides website hosting, content delivery, DDoS protection, and serverless computing. Cloudflare may process IP addresses and request metadata as part of these services. See Cloudflare's Privacy Policy.
• Email delivery: Fastmail — used to deliver Briefs and service communications to client email addresses.
• Payment processing: Stripe, Inc. — handles all card transactions as a PCI-compliant payment processor. Stripe may collect payment card data, billing address, and transaction metadata directly. Dyligence does not store full card numbers or CVV codes. See Stripe's Privacy Policy.

We use Cloudflare Web Analytics for privacy-preserving site traffic measurement (pageviews, referrers, country, device type). This tool does not use cookies, does not track visitors across sites, and does not collect personally identifiable information. We do not use Google Analytics, Meta Pixel, or similar behavioral advertising trackers.

We retain client account and order information for as long as necessary to fulfill orders, maintain billing records, resolve disputes, and comply with legal obligations. Typically this means retaining records for a period of five (5) years following the last transaction, which covers the standard IRS audit window and the vast majority of commercial dispute scenarios applicable to our business.

Sample Brief request submissions (name, email, firm) from contacts who did not become paying clients are retained for up to two (2) years for lead qualification and service communications. You may request removal at any time by contacting us at privacy@dyligence.ai.

Website access logs are retained for up to ninety (90) days for security and performance purposes.

We implement commercially reasonable administrative, technical, and physical safeguards designed to protect information against unauthorized access, disclosure, alteration, or destruction. These include encryption of data in transit (TLS), access controls, and use of infrastructure providers with established security certifications.

No method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security. In the event of a breach that is likely to result in harm to affected individuals, we will notify relevant parties as required by applicable law.

Depending on your jurisdiction, you may have rights with respect to your personal information, including the right to access, correct, or request deletion of information we hold about you.

B2B context. Our services are offered exclusively to businesses to be used for professional business purposes. Consumer privacy law regimes (such as CCPA consumer rights and GDPR consumer-facing provisions) may apply differently to B2B data. We nonetheless honor reasonable requests from individuals to access or correct their information.

Marketing communications. If you have received a sample Brief or other communications from Dyligence and no longer wish to receive them, you may opt out by replying to any email with "unsubscribe" or by contacting us directly.

To exercise any privacy rights, contact us at privacy@dyligence.ai. We will respond within thirty (30) days.

Dyligence is based in the United States. If you access our services from outside the United States, your information will be transferred to and processed in the United States, where data protection laws may differ from those in your jurisdiction. By using our services, you consent to this transfer.

For clients or subjects located in the European Economic Area or United Kingdom, we process personal data on the basis of legitimate interests (fulfillment of professional research services) and, where required, contractual necessity. We do not rely on consent as a legal basis for processing in connection with order fulfillment.

Our services are not directed to individuals under the age of 18, and we do not knowingly collect personal information from children. If you believe we have inadvertently collected such information, please contact us immediately at privacy@dyligence.ai.

We may update this Privacy Policy from time to time. Changes will be posted to this page with an updated effective date. Where changes are material, we will provide prominent notice on our site or notify active clients by email. Continued use of our services after changes are posted constitutes acceptance of the revised policy.

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact Dyligence LLC, 30 N Gould St, Ste N, Sheridan, WY 82801, or by email at privacy@dyligence.ai.