← Back to Home

Privacy Policy

Last Updated: January 2026

1. Introduction

Lamplight Ops ("I," "me," or "my") respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how I collect, use, disclose, and safeguard your information when you visit my website (lamplightops.com), engage my consulting services, or otherwise interact with my business.

By using my website or services, you consent to the practices described in this policy. If you do not agree with this policy, please do not use my website or services.

Accessibility: If you need this policy in an alternative format or have difficulty accessing any part of it, please contact me at hello@lamplightops.com and I will provide assistance.

2. Information I Collect

2.1 Information You Provide Directly

I collect information you voluntarily provide, including:

• Contact Information: Name, email address, phone number, company name, job title
• Business Information: Details about your business processes, tools, challenges, and goals shared during consultations
• Payment Information: Billing address and payment details (processed securely through third-party payment processors; I do not store full credit card numbers)
• Communications: Emails, messages, call recordings (with your consent), and other correspondence
• Account Credentials: Login information you provide for your business tools during project implementation (handled per confidentiality terms)

2.2 Information Collected Automatically

When you visit my website, I may automatically collect:

• Device Information: Browser type, operating system, device type
• Usage Data: Pages visited, time spent on pages, links clicked, referring website
• IP Address: Your internet protocol address (may be used to approximate general location)
• Cookies and Similar Technologies: See Section 7 for details

2.3 Information from Third Parties

I may receive information about you from:

• Scheduling Tools: When you book a call through my scheduling system (e.g., Calendly)
• Referrals: Basic contact information if someone refers you to me
• Publicly Available Sources: Business information from your website or LinkedIn profile to prepare for our conversations

3. How I Use Your Information

I use the information I collect to:

Purpose	Legal Basis
Provide consulting services you've requested	Contract performance
Communicate about projects, scheduling, and deliverables	Contract performance
Process payments and send invoices	Contract performance
Respond to inquiries and provide customer support	Legitimate interest
Send relevant updates about services (with consent)	Consent
Improve my website and services	Legitimate interest
Comply with legal obligations	Legal requirement
Protect against fraud and security threats	Legitimate interest

3.1 Sensitive Personal Information

I generally do not collect sensitive personal information (such as Social Security numbers, financial account numbers, precise geolocation, health information, or information revealing race, ethnicity, religious beliefs, or sexual orientation). If such information is incidentally provided during our engagement, I will:

• Use it only as necessary to provide requested services
• Apply additional security measures
• Delete it promptly when no longer needed
• Not use it for profiling or automated decision-making

3.2 Automated Decision-Making

I do not use automated decision-making or profiling that produces legal or similarly significant effects on you. Any AI tools used in my services are for assistance and efficiency—human judgment is always applied to decisions affecting your project or our business relationship.

3.3 How Consent Is Obtained

Where I rely on consent as a legal basis, I obtain it through:

• Clear opt-in checkboxes (not pre-checked) for marketing communications
• Written or email confirmation before recording calls
• Explicit agreement in project proposals for specific data processing activities

You may withdraw consent at any time by contacting me. Withdrawal does not affect the lawfulness of processing before withdrawal.

4. Information Sharing and Disclosure

4.1 I Do Not Sell Your Data

I do not sell, rent, or trade your personal information to third parties for their marketing purposes.

4.2 Service Providers

I may share information with trusted third-party service providers who assist in operating my business:

• Payment Processors: Stripe, PayPal, or similar services to process payments
• Email Services: To send communications and newsletters
• Scheduling Tools: Calendly or similar for appointment booking
• Cloud Storage: Google Workspace, Dropbox, or similar for secure file storage
• Project Management: Tools used to track project progress
• Analytics: To understand website usage patterns

These providers are contractually obligated to protect your information and use it only for the services they provide to me.

4.3 Legal Requirements

I may disclose your information if required by law, court order, or government request, or if I believe disclosure is necessary to:

• Comply with legal obligations
• Protect my rights or property
• Prevent fraud or security issues
• Protect the safety of any person

Where permitted, I will notify you of such requests.

4.4 Business Transfers

If my business is acquired, merged, or sells assets, your information may be transferred as part of that transaction. You will be notified of any such change and your choices regarding your information.

4.5 With Your Consent

I may share information for other purposes with your explicit consent.

5. Data Retention

I retain your information only as long as necessary for the purposes described in this policy:

• Client Records: 7 years after project completion (required for IRS tax record requirements and potential legal claims under Washington's statute of limitations)
• Communications: 3 years after last contact (for business continuity and potential dispute resolution)
• Access Credentials: Deleted within 30 days of project completion (unless ongoing retainer)
• Website Analytics: 26 months (Google Analytics default)
• Marketing Contacts: Until you unsubscribe or request deletion

You may request earlier deletion subject to legal retention requirements. I will inform you if legal obligations prevent deletion of specific data.

6. Data Security

I implement reasonable security measures to protect your information, including:

• Encryption of data in transit (HTTPS) and at rest
• Secure password practices and password management tools
• Two-factor authentication on accounts containing client data
• Regular software updates and security patches
• Limited access to personal information on a need-to-know basis
• Secure deletion of data when no longer needed

However, no method of transmission or storage is 100% secure. I cannot guarantee absolute security but will notify you of any breach affecting your personal information as required by law.

6.1 Data Breach Notification

In the event of a data breach affecting your personal information, I will:

• Investigate the breach promptly upon discovery
• Notify affected individuals within 30 days of discovering the breach, as required by Washington State law (RCW 19.255.010)
• Provide information about what data was affected and steps you can take
• Notify the Washington State Attorney General if required (breaches affecting 500+ Washington residents)
• Take steps to prevent future breaches

7. Cookies and Tracking Technologies

7.1 What Are Cookies?

Cookies are small text files stored on your device when you visit websites. They help websites function properly and provide information to website owners.

7.2 How I Use Cookies

Cookie Type	Purpose	Duration
Essential	Required for website functionality	Session
Analytics (Google Analytics)	Understand how visitors use my site	Up to 2 years
Preferences	Remember your settings	Up to 1 year

Analytics Details: I use Google Analytics to understand website traffic patterns. Google Analytics collects information anonymously and reports website trends without identifying individual visitors. You can opt out of Google Analytics by installing the Google Analytics Opt-out Browser Add-on.

7.3 Your Cookie Choices

You can control cookies through your browser settings:

• Block all cookies (may affect website functionality)
• Block third-party cookies only
• Clear cookies when you close your browser
• Receive alerts before cookies are placed

For more information, visit www.allaboutcookies.org.

7.4 Do Not Track

Some browsers offer a "Do Not Track" setting. My website does not currently respond to DNT signals, but I limit tracking to what's necessary for legitimate business purposes.

8. Your Privacy Rights

8.1 Rights for All Users

Regardless of your location, you have the right to:

• Access: Request a copy of the personal information I hold about you
• Correction: Request correction of inaccurate information
• Deletion: Request deletion of your information (subject to legal retention requirements)
• Opt-Out: Unsubscribe from marketing communications at any time
• Withdraw Consent: Where processing is based on consent, withdraw it at any time

8.2 California Residents (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

• Right to Know: What personal information I collect, use, and disclose
• Right to Delete: Request deletion of your personal information
• Right to Opt-Out: Of the sale or sharing of personal information (note: I do not sell personal information)
• Right to Non-Discrimination: I will not discriminate against you for exercising your rights
• Right to Correct: Inaccurate personal information
• Right to Limit: Use of sensitive personal information

To exercise these rights, contact me at hello@lamplightops.com. I will respond within 45 days.

8.3 Washington State Residents

Washington's My Health My Data Act provides additional protections for health-related data. While my services typically do not involve health data, if any health information is incidentally collected, it will be handled with appropriate care and deleted upon request.

Washington Privacy Act (WPA): The Washington Privacy Act (effective March 2024) provides Washington residents with rights similar to those listed in Section 8.1, including rights to access, correct, delete, and obtain a copy of personal data, as well as the right to opt out of targeted advertising, sale of personal data, and profiling. While my business may not currently meet the thresholds requiring compliance, I voluntarily honor these rights for all Washington residents. To exercise your rights, contact me at hello@lamplightops.com.

8.4 European Economic Area (EEA) Residents

If you are in the EEA, you have rights under the General Data Protection Regulation (GDPR):

• All rights listed in Section 8.1
• Data Portability: Receive your data in a structured, machine-readable format
• Restrict Processing: In certain circumstances
• Object to Processing: Based on legitimate interests
• Lodge a Complaint: With your local data protection authority

8.5 How to Exercise Your Rights

To exercise any privacy right:

• Email: hello@lamplightops.com
• Subject Line: "Privacy Request - [Your Request Type]"

I may need to verify your identity before processing your request. I will respond within the timeframe required by applicable law (typically 30-45 days).

9. Third-Party Services and AI

9.1 Third-Party Platforms

My services often involve integrating your business tools. When I access your accounts on platforms like Zapier, Make, Airtable, HubSpot, etc., those platforms have their own privacy policies governing your data. I encourage you to review their policies.

9.2 AI Services

For AI-related implementations, be aware that:

• Data processed through AI services (e.g., OpenAI, Anthropic, Google AI) may be subject to those providers' privacy policies
• I will inform you during project scoping if AI services will process your data
• You can request that certain data not be processed through AI services (which may limit project scope)
• I recommend not including sensitive personal information in AI-processed content when possible
• Where available, I use enterprise or API versions of AI services that do not use your data for model training

9.3 Data Processing Agreements

For business clients who require a Data Processing Agreement (DPA) or similar contractual data protection terms, I can provide a DPA upon request. This is particularly relevant for clients subject to GDPR or other regulations requiring such agreements with service providers.

9.4 Links to Other Websites

My website may contain links to third-party websites. I am not responsible for the privacy practices of those sites. Please review their privacy policies before providing personal information.

10. Children's Privacy

My services are not directed to individuals under 18 years of age. I do not knowingly collect personal information from children. If I learn that I have collected information from a child, I will delete it promptly. If you believe I have information about a child, please contact me.

11. International Data Transfers

I am based in Washington State, USA. If you are accessing my services from outside the United States, your information will be transferred to and processed in the United States, where data protection laws may differ from your country.

By using my services, you consent to this transfer. I implement appropriate safeguards to protect your information regardless of where it is processed.

12. Changes to This Policy

I may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last Updated" date. For significant changes, I will provide more prominent notice (such as email notification for active clients).

Your continued use of my services after changes constitutes acceptance of the updated policy.

13. Contact Me

For questions, concerns, or requests regarding this Privacy Policy or your personal information:

Lamplight Ops
Alex Hunt
Email: hello@lamplightops.com

I aim to respond to all privacy-related inquiries within 5 business days.

13.1 Complaints

If you believe I have not handled your personal information properly, you have the right to lodge a complaint with:

• Washington State: Office of the Attorney General - www.atg.wa.gov/file-complaint
• California: Office of the Attorney General - oag.ca.gov
• EEA: Your local data protection authority

I would appreciate the opportunity to address your concerns directly before you file a complaint with a regulatory authority.