Privacy Policy

Introduction

This Privacy Policy describes how SFH PENN LLC / SFH (“we,” “our,” or “us”) collects, uses, and protects your personal information when you visit sfh.agency or use our services. We process client data only with your authorization and in accordance with this policy.

Information We Collect

Information You Provide:

• Contact form submissions (name, email, company, phone, message)
• Email communications
• Service inquiries and project details

Automatically Collected Information:

• Site usage data via Google Tag Manager
• IP address, browser, device type
• Pages visited, time on site, referring URLs
• Cookies and similar technologies

How We Use Your Information

Service Delivery:

• Responding to inquiries and providing agreed services
• Managing client projects and analytics solutions

Analytics and Improvement:

• Understanding site performance and user behavior
• Enhancing our services and website functionality

Legal and Compliance:

• Meeting legal obligations and protecting our rights
• Preventing fraud and misuse

Data Storage and Retention

Client data is stored on our secure servers for the duration of the service agreement. Historical data supplied by the client is retained under the same terms. Unless otherwise specified, all client data is permanently deleted within 90 days after the agreement ends. Back‑up copies are overwritten or deleted within the same 90‑day window and may be stored encrypted on Google Drive under our exclusive control. Contact‑form submissions are kept for up to three years or until deletion is requested.

Data Sharing and Third Parties

We do not sell personal information and do not engage external sub‑processors for client data; if this ever changes, we will update this policy and notify affected clients. All processing occurs on infrastructure owned and controlled by SFH PENN LLC. Data is shared only when required by law or with your explicit authorization.

API Platform Compliance

We access advertising and analytics data exclusively through official APIs under your explicit authorization. We comply with each platform’s terms of service and data‑usage policies and access only the data types necessary to perform the contracted services.

International Data Transfers

Your data may be processed in the United States. When transferring personal data from the EEA or UK, we rely on Standard Contractual Clauses or another recognized transfer mechanism.

Your Rights Under GDPR and CCPA

You may request access, correction, deletion, restriction, portability, or objection to processing of your personal data. Submit requests via privacy@sfh.agency. We respond within 30 days.

Cookies and Tracking Technologies

We use cookies to remember preferences, analyze traffic, and improve user experience. You can manage cookies through your browser or our consent banner; disabling certain cookies may affect site functionality.

Data Security

Technical Measures

• TLS encryption for data in transit
• Secure database storage with access controls
• OAuth 2.0 authentication for platform integrations
• Encrypted backups

Operational Measures

• Access limited to authorized personnel via VPN
• Audit logging of data operations
• Regular system updates and security monitoring

While we employ industry‑standard safeguards, no method of transmission or storage is entirely secure.

Children's Privacy

Our services are not directed to children under 16, and we do not knowingly collect information from them.

Changes to This Policy

We may update this policy periodically. Material changes will be posted on our website with a revised “Last Updated” date.

Contact Information

• Privacy: privacy@sfh.agency
• Address: Philadelphia, PA, USA