1. Introduction
Capra Analytics LLC (“Capra,” “we,” “us,” or “our”) is a managed growth infrastructure company based in Huntington Beach, California. We provide website design, development, local search engine optimization (“SEO”), hosting, security, and ongoing digital management services to local service businesses.
This Privacy Policy describes how we collect, use, disclose, and protect your personal information when you visit our website at www.capraanalytics.com (the “Site”), submit information through our contact forms, schedule appointments through our booking system, interact with our marketing communications, or otherwise engage with our services. This Policy also describes your rights under the California Consumer Privacy Act, as amended by the California Privacy Rights Act (“CCPA/CPRA”), and other applicable privacy laws.
By using our Site or submitting information to us, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with these practices, please do not use our Site or provide us with your personal information.
2. Notice at Collection
This Section serves as our “Notice at Collection” under the California Consumer Privacy Act, as amended (“CCPA/CPRA”). We provide this notice at or before the point at which we collect your personal information. The categories of personal information we collect, the purposes for which each category is used, and the retention period for each category are described in Sections 3, 4, and 7 of this Policy, respectively. We do not sell or share (as those terms are defined under the CCPA/CPRA) the personal information we collect. For a complete description of your privacy rights, please see Section 9.
3. Information We Collect
We collect information that you provide directly to us, information collected automatically through your use of our Site, and information obtained from third-party sources.
3.1 Information You Provide Directly
When you fill out a contact form, request an audit, schedule a meeting through our booking system, or otherwise communicate with us, we may collect the following categories of personal information:
• Full name
• Business name
• Email address
• Phone number
• Business website URL
• Mailing or business address
• Scheduling and appointment information (date, time, time zone)
• Any additional information you choose to include in a message, form submission, or booking note
3.2 Information Collected Automatically
When you visit our Site, certain information is collected automatically through cookies, tracking pixels, and similar technologies. This includes:
• IP address (anonymized where technically feasible)
• Browser type and version
• Operating system
• Device type (desktop, mobile, tablet)
• Referring URL and exit pages
• Pages visited, time spent on pages, and clickstream data
• Geographic location (city/region level, derived from IP address)
• Session duration and frequency of visits
3.3 Information from Third-Party Sources
We may receive information about you from third-party platforms and service providers, including email marketing platforms, customer relationship management (“CRM”) tools, scheduling platforms, and analytics providers. This information may include engagement metrics such as email open rates, click-through rates, appointment history, and interaction records.
4. How We Use Your Information
We use the personal information we collect for the following business purposes:
• To respond to inquiries and provide services. We use your contact information to respond to form submissions, schedule consultations, deliver our audit and management services, and communicate about your account.
• To schedule and manage appointments. We use scheduling information submitted through our booking system (powered by Cal.com) to confirm, reschedule, or follow up on meetings and consultations.
• To operate and improve our Site. We use analytics data to understand how visitors interact with our Site, identify technical issues, and optimize the user experience.
• To send marketing communications. With your consent or where permitted by law, we may use your email address to send newsletters, service updates, educational content, and promotional materials. You may opt out at any time.
• To manage client relationships. We store contact and project information in our CRM, email marketing tools, and internal records to maintain ongoing client communications and deliver contracted services.
• To process payments. While we do not collect payment information directly on our Site, we use third-party payment processors (such as Stripe) and invoicing tools to process payments for our services.
• To comply with legal obligations. We may use or disclose your information as necessary to comply with applicable laws, regulations, legal processes, or enforceable governmental requests.
• To protect our rights and safety. We may use your information to detect, prevent, or address fraud, security issues, or technical problems, and to protect the rights, property, or safety of Capra, our clients, or others.
5. Cookies and Tracking Technologies
Our Site uses cookies and similar tracking technologies to collect information about your browsing behavior and to enhance your experience. The following tracking technologies are currently in use on our Site:
5.1 Google Analytics 4 (GA4)
We use Google Analytics 4, a web analytics service provided by Google LLC, to collect and analyze information about how visitors use our Site. GA4 uses first-party cookies and collects data such as page views, session duration, traffic sources, user demographics (aggregated), and user interactions. GA4 operates in a cookieless mode where feasible and uses event-based data modeling. Google may also use this data in accordance with its own privacy policy. You can opt out of Google Analytics by installing the Google Analytics Opt-Out Browser Add-on available at tools.google.com/dlpage/gaoptout.
5.2 Google Tag Manager (GTM)
We use Google Tag Manager to manage and deploy marketing and analytics tags (small pieces of code) on our Site. GTM itself does not collect personal information, but it facilitates the deployment of other tags that may collect data as described in this Policy. GTM operates under Google’s privacy practices.
5.3 Framer Built-In Analytics
Our Site is built on the Framer platform, which provides built-in analytics functionality. Framer analytics may collect aggregated and anonymized data about page views, visitor counts, and general usage patterns. This data is processed in accordance with Framer’s privacy policy.
5.4 Managing Your Cookie Preferences
Most web browsers allow you to control cookies through their settings. You can typically set your browser to refuse all cookies, accept only first-party cookies, or notify you when a cookie is being set. Please note that disabling cookies may affect the functionality of our Site. You may also manage your preferences using any cookie consent banner displayed on our Site.
6. Third-Party Service Providers
We share personal information with the following categories of third-party service providers who assist us in operating our business. These providers are contractually obligated to use your information only for the purposes for which it was disclosed and in accordance with applicable law.
• Website Platform: Framer (website hosting, rendering, and built-in analytics)
• Analytics Providers: Google LLC (Google Analytics 4 and Google Tag Manager)
• Scheduling Platform: Cal.com (appointment booking and calendar integration)
• Form Data Storage: Google Workspace (Google Sheets for contact form submission storage, Gmail for email communications)
• Payment Processors: Stripe and/or other invoicing platforms (payment processing; we do not store your credit card or bank account information on our servers)
• Email Marketing / CRM: We use email marketing and customer relationship management platforms to manage contacts, send communications, and track engagement (e.g., email opens and clicks). The specific provider(s) may change; current tools are identified in our cookie consent banner or upon request.
• Domain and DNS Providers: For domain registration, DNS management, and SSL certificates
We do not sell, rent, or trade your personal information to third parties for their own marketing purposes. We do not “share” personal information for cross-context behavioral advertising as that term is defined under the CCPA/CPRA.
7. Data Retention
We retain your personal information only for as long as reasonably necessary to fulfill the purposes for which it was collected, including to satisfy any legal, accounting, or reporting requirements. Specifically:
• Contact form submissions stored in Google Sheets and client communications in Gmail are retained for the duration of our business relationship and for a period of three (3) years following the conclusion of services, unless a longer retention period is required by law.
• Scheduling data in Cal.com is retained for the duration of our business relationship and deleted within ninety (90) days of the conclusion of services.
• Analytics data collected through GA4 is retained in accordance with Google’s data retention settings, which we have configured to a maximum of fourteen (14) months.
• Email marketing data is retained until you unsubscribe or request deletion, after which your information will be removed from our active mailing lists within thirty (30) days.
• Payment records are retained as required by applicable tax and accounting regulations, typically for a minimum of seven (7) years.
8. Data Security
We implement commercially reasonable administrative, technical, and physical safeguards designed to protect your personal information from unauthorized access, disclosure, alteration, or destruction. These measures include, but are not limited to:
• SSL/TLS encryption on all pages of our Site
• Access controls limiting personal information access to authorized personnel only
• Secure, encrypted storage of client data through trusted third-party platforms (Google Workspace, Cal.com)
• Two-factor authentication on all administrative accounts
• Regular security assessments of our Site and hosting infrastructure
However, no method of transmission over the Internet or method of electronic storage is completely secure. While we strive to protect your personal information, we cannot guarantee its absolute security.
9. Your California Privacy Rights (CCPA/CPRA)
If you are a California resident, you have certain rights under the California Consumer Privacy Act, as amended by the California Privacy Rights Act (collectively, “CCPA/CPRA”). These rights are subject to certain exceptions and limitations under applicable law.
9.1 Your Rights
As a California resident, you have the right to:
• Know and Access. Request that we disclose the categories and specific pieces of personal information we have collected about you, the categories of sources from which it was collected, the business purpose for collection, and the categories of third parties with whom it was shared.
• Delete. Request that we delete personal information we have collected from you, subject to certain exceptions (e.g., information necessary to complete a transaction, comply with a legal obligation, or maintain security).
• Correct. Request that we correct inaccurate personal information that we maintain about you.
• Opt Out of Sale or Sharing. We do not sell your personal information, nor do we “share” it for cross-context behavioral advertising purposes as defined under the CCPA/CPRA. Because we do not engage in these practices, a “Do Not Sell or Share My Personal Information” link is not required and is not displayed on our Site.
• Limit Use of Sensitive Personal Information. We do not collect categories of information classified as “sensitive personal information” under the CPRA (such as Social Security numbers, financial account credentials, precise geolocation, racial or ethnic origin, or health information). Because we do not collect sensitive personal information, a “Limit the Use of My Sensitive Personal Information” link is not required and is not displayed on our Site.
• Non-Discrimination. We will not discriminate against you for exercising any of your privacy rights. We will not deny you services, charge different prices, or provide a different level of service because you exercise your CCPA/CPRA rights.
9.2 How to Submit a Request
To exercise any of the rights described above, you may submit a verifiable consumer request by contacting us at:
• Email: privacy@capraanalytics.com
• Website: www.capraanalytics.com/contact
We will verify your identity before processing your request by matching at least two pieces of information you provide (such as your name and email address) against information we already maintain. We will respond to your request within forty-five (45) days of receipt, as required by law. If we need additional time (up to an additional forty-five days), we will notify you of the extension and the reason for it. You may submit up to two (2) verifiable consumer requests per twelve-month period.
9.3 Authorized Agents
You may designate an authorized agent to submit a request on your behalf by providing a signed, written authorization or a valid power of attorney. We may require the authorized agent to provide proof of authorization and may verify your identity directly before fulfilling the request.
9.4 Categories of Personal Information: Collection, Purpose, and Disclosure
The following table describes the categories of personal information we have collected in the preceding twelve (12) months, the business purposes for which each category is collected, and the categories of third parties to whom each category has been disclosed for a business purpose.
Category
Examples
Business Purpose
Disclosed To
Identifiers
Name, email, phone, IP address
Respond to inquiries; provide services; manage appointments; send marketing
Google Workspace (Sheets, Gmail), Cal.com, email marketing/CRM, Framer
Commercial Information
Services purchased or considered, business URL
Deliver contracted services; manage client relationships
Google Workspace, email marketing/CRM, payment processors
Internet / Network Activity
Browsing history on Site, page views, clicks, session data
Operate and improve Site; analyze usage patterns
Google Analytics, Google Tag Manager, Framer analytics
Geolocation Data
City/region from IP address
Analyze visitor demographics; optimize local SEO
Google Analytics
Professional / Employment Info
Business name, role (if provided)
Respond to inquiries; qualify leads; deliver services
Google Workspace, email marketing/CRM
We have not sold or shared (as defined by the CCPA/CPRA) any categories of personal information in the preceding twelve (12) months.
10. Global Privacy Control and Do Not Track Signals
10.1 Global Privacy Control (GPC)
We recognize and honor Global Privacy Control (“GPC”) signals transmitted by your browser or browser extension. When we detect a GPC signal, we treat it as a valid request to opt out of the “sale” or “sharing” of your personal information as those terms are defined under the CCPA/CPRA. Because we do not sell or share personal information for cross-context behavioral advertising, no additional action is required on our part upon receipt of a GPC signal; however, we will continue to honor such signals as a matter of compliance and good practice. For more information about GPC, visit globalprivacycontrol.org.
10.2 Do Not Track (DNT)
Some web browsers transmit “Do Not Track” (“DNT”) signals. There is currently no industry-accepted standard for how to respond to DNT signals, and our Site does not alter its data collection or use practices in response to DNT signals. Your privacy preferences can be more effectively managed through GPC (described above) or through the cookie management options described in Section 5.4.
11. Our Role: Business vs. Service Provider
When you visit our Site at www.capraanalytics.com and interact with us directly (e.g., submitting a contact form, booking an appointment, or subscribing to marketing communications), Capra acts as a “business” under the CCPA/CPRA and this Privacy Policy governs our collection and use of your personal information.
When Capra builds, hosts, or manages websites on behalf of our clients (e.g., local service businesses), Capra acts as a “service provider” under the CCPA/CPRA. In that capacity, we process personal information collected through our clients’ websites only on behalf of and under the instructions of the applicable client. If you have questions about how your personal information is handled on a website that Capra manages on behalf of a client, please direct your inquiry to that client business directly. Capra will not respond to CCPA/CPRA requests regarding data for which it is a service provider, and will instead redirect such requests to the applicable client.
12. Third-Party Links
Our Site may contain links to third-party websites, services, or applications that are not operated by us, including our scheduling platform (Cal.com). This Privacy Policy does not apply to those third-party services. We encourage you to review the privacy policies of any third-party site or service before providing your personal information. We are not responsible for the privacy practices or content of third-party websites.
13. Children’s Privacy
Our Site and services are not directed to individuals under the age of sixteen (16). We do not knowingly collect personal information from children under 16. If we become aware that we have inadvertently collected personal information from a child under 16, we will take steps to delete such information promptly. If you believe that we have collected information from a child under 16, please contact us immediately at privacy@capraanalytics.com.
14. International Users
Our Site is operated from the United States. If you are accessing our Site from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States, where data protection laws may differ from those of your jurisdiction. By using our Site, you consent to such transfer.
15. Changes to This Privacy Policy
We reserve the right to update or modify this Privacy Policy at any time. When we make material changes, we will: (a) update the “Last Updated” date at the top of this Policy; (b) post a prominent notice on our Site for at least thirty (30) days; and (c) where feasible, send an email notification to individuals whose email addresses we have on file. Your continued use of the Site after the posting of changes constitutes your acceptance of such changes. We encourage you to review this Privacy Policy periodically.
16. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:
Capra Analytics LLC
privacy@capraanalytics.com
For CCPA/CPRA-related requests, please use the contact methods specified in Section 9.2 above.