Stormguard Restoration, LLC (DBA Stormguard 360) — Privacy Policy Last Updated: [10/01/2025]

1. Introduction: Stormguard Restoration, LLC (“Stormguard,” “we,” “us,” or “our”) is committed to protecting your privacy and handling your personal information responsibly. This Privacy Policy explains what personal and non-personal information we collect, how we use and share it, your rights and choices, and how we protect your information when you visit our website, contact us, request a quote, hire us for roofing/siding or storm-damage services, or otherwise interact with us.
2. Scope: This policy applies to personal information collected through our website, mobile communications (including SMS), in-person interactions, phone, email, and other channels. It covers information collected from customers, prospective customers, vendors, financing partners, referral partners, and other business contacts. It does not apply to third-party websites even if linked from our site.
3. Information We Collect: We collect information necessary to provide services, evaluate claims or financing, communicate with you, and comply with legal obligations. Categories include:

• Identity and Contact Data: name, address, phone numbers, email, property address, emergency contact.
• Project & Property Data: roof/siding photos, measurements, construction materials, project estimates, scope of work, insurance claim information.
• Financial & Payment Data: bank account or card details (via payment processors), financing application details, credit-related information required by lenders.
• Government & Program Data: documentation required for FEMA, state or local assistance programs, utility or grant applications.
• Communications Data: call recordings, voicemail, SMS/MMS content, email correspondence.
• Marketing & Preferences: opt-in preferences, marketing consent, device/browser settings.
• Technical & Usage Data: IP address, device identifiers, cookies, page views, referring/exit pages, site behavior, analytics.
• Third-Party Data: information lawfully received from referral partners, lead generators, insurance companies, finance partners, or public records.

We do not knowingly collect personal information from children under 13. If we learn we have collected such information, we will delete it.

4. How We Collect Information

• Directly from you: forms, phone calls, emails, onsite inspections, written agreements.
• Automatically: cookies, web beacons, analytics, server logs.
• From third parties: insurance companies, financing partners, referral networks, public records, government agencies, lead providers.

5. How We Use Your Information: We use information for legitimate business purposes, including:

• Providing services: estimates, inspections, project management, repairs, installations.
• Processing payments and financing: submitting applications to lenders, processing claims, billing and invoicing.
• Communication: scheduling, project updates, customer service, appointment reminders, and transactional notices.
• Marketing: with your consent, send promotional offers, newsletters, and surveys; managing opt-outs.
• Legal and compliance: responding to legal requests, fraud prevention, safety, and regulatory compliance (including FEMA or government program requirements).
• Improving services: website analytics, product/service development, performance monitoring.
• Business operations: recordkeeping, dispute resolution, business transfers (mergers, acquisitions), and vendor management.

6. Legal Bases for Processing: (where applicable) Depending on your location and applicable law, we process data on bases that may include: consent (e.g., marketing SMS/emails), contract performance (to provide services and financing), legal compliance, legitimate interests (e.g., fraud prevention, service improvement), or to protect vital interests.
7. Sharing and Disclosure: We share personal information only as necessary and subject to confidentiality safeguards:

• Service Providers & Vendors: payment processors, cloud/IT providers, CRM, estimating software, scheduling tools, marketing platforms, subcontractors, and other vendors who support our operations.
• Financing Partners & Lenders: banks, finance companies, and credit vendors for loan/approval processing and payments.
• Insurance Companies & Adjusters: for claims handling, documentation, and coordination on storm-damage repairs.
• Referral & Government Partners: referral networks, FEMA, state, or local program administrators when participating in assistance/grant programs.
• Legal & Safety: law enforcement, courts, or other parties when required by law, subpoena, or to protect our rights, safety, or property.
• Business Transfers: in connection with a merger, acquisition, reorganization, sale of company assets, or during due diligence with appropriate safeguards.
• Aggregated & De-Identified Data: for analytics, marketing, or reporting where individuals cannot be identified.

Note: We do not share mobile opt-in origins/consent data for marketing/promotional uses to third parties (see Messaging section).

8. Messaging (SMS/MMS) Terms: By providing your mobile number and opting in, you consent to receive SMS/MMS from Stormguard related to inquiries, project updates, appointment reminders, delivery notifications, and (if opted-in) marketing messages.

• Message frequency: may vary.
• Rates: message and data rates may apply per your carrier.
• Opt-out: reply STOP to any message to opt out. Reply HELP for help.
• Privacy assurance: We will not share mobile opt-in/consent data for third-party marketing/promotional distribution.

9. Cookies & Tracking Technologies We use cookies, web beacons, and similar technologies to provide and improve our website and services. Cookies may be necessary for site operation or used for analytics and marketing. You can manage cookie preferences in your browser; disabling cookies may limit site functionality.
10. Third-Party Links: Our website may link to external sites (e.g., utility portals, state program pages). We do not control third-party privacy practices; review their privacy policies.
11. Data Retention: We retain personal information as long as necessary to fulfill purposes set out in this policy, comply with legal obligations, resolve disputes, enforce agreements, and meet archival or regulatory requirements. Typical retention periods:

• Contract/project records, invoices, insurance claims: as required by law and industry best practices (often 5–7 years or per jurisdictional requirement).
• Marketing data: until you opt out.
• System logs and analytics: variable, often 1–3 years (or as otherwise required). Contact us to request specific retention timeframes for a record.

12. Security: We maintain reasonable administrative, physical, and technical safeguards to protect personal data, including:

• Encryption of financial data in transit and at rest (through our payment processors).
• Access controls and role-based access for employees and vendors.
• Vendor due diligence and contractual confidentiality requirements.
• Regular security reviews and vulnerability testing. Despite reasonable measures, no security system is infallible. If a breach occurs, we will comply with applicable breach-notification laws (including Illinois PIPA and applicable Missouri requirements) and notify affected individuals as required.

13. International Transfers: If personal data is transferred or processed outside your jurisdiction, we will use contractual or other legally recognized safeguards to protect the data in accordance with applicable law.
14. Your Rights and Choices: Depending on your jurisdiction, you may have rights such as:

• Access: request a copy of personal data we hold about you.
• Correction: ask us to correct inaccurate or incomplete data.
• Deletion: request deletion subject to legal or contractual retention obligations.
• Portability: receive a copy of data in a portable format where applicable.
• Opt-out: opt out of sale/sharing of personal information where required by law.
• Restrict/limit: request limitation of certain processing activities. To exercise rights, contact us at the contact details below. We may verify identity before processing requests. We will respond within applicable legal timeframes (e.g., 45 days for certain requests under some laws), and may need to extend if legally permitted.

15. Specific Jurisdiction Notices:

• Illinois: We comply with the Illinois Personal Information Protection Act (PIPA) and will provide notice in the event of breaches affecting Illinois residents as required by law.
• California: If applicable, California residents may have rights under the CCPA/CPRA (access, deletion, opt-out of sale). To submit a CCPA/CPRA request, contact the privacy team below. We do not knowingly sell personal information of minors under 16 without opt-in consent.
• Other jurisdictions: We comply with applicable local data protection requirements where we operate.

16. Children’s Privacy: Our services are not directed to children under 13. We do not knowingly collect personal data from children under 13. If we become aware we have collected such data, we will delete it.
17. Updates to This Policy: We may update this Privacy Policy to reflect changes in our practices or legal requirements. We will post the revised policy on our website with the updated “Last Updated” date. For material changes, we will provide additional notice where required by law.
18. Contact Us: For questions, privacy requests, or more information, contact: Stormguard Restoration, LLC (DBA Stormguard 360) Email: contact@stormguard360.com Phone: 314-900-3358 Address: 110 E Lockwood, St. Louis, MO 63119 Attn: Privacy Team
19. How to File a Complaint: If you believe we have not honored your privacy rights, please contact us first so we can attempt to resolve your concerns. You may also file a complaint with your local data protection authority or state attorney general’s office where applicable.

Acknowledgement By using our website or engaging our services, you acknowledge that you have read and understood this Privacy Policy and consent to our collection, use, and disclosure of information as described.