Privacy Policy

1. Introduction

Simple Advisor Tools LLC ("Company," "we," "us," or "our"), a Florida limited liability company, operates the Rollover Analysis Tool platform at rolloveranalysistool.com (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

IMPORTANT: By using our Service, you acknowledge that Simple Advisor Tools is a technology startup. While we strive to maintain high security standards, we do not currently hold SOC 2 compliance or similar certifications. We are continuously working to improve our security practices.

2. Information We Collect

2.1 Information You Provide

• Account Information: Email address, password (encrypted), first name, last name, firm name
• Profile Information: Company name, phone number, website URL, professional certifications, business address
• Client Data: Client names, account values, employer names, employment status (data you enter for rollover analyses)
• Payment Information: Processed by Stripe and GoHighLevel; we store transaction IDs but not credit card details
• Communication Data: Messages you send us, support requests, feedback

2.2 Automatically Collected Information

• Usage Data: Pages visited, features used, time spent, analysis history
• Device Information: IP address, browser type, operating system, device identifiers
• Cookies: Authentication tokens, session data, preferences (see Section 8)
• Analytics: We may use Google Analytics to understand usage patterns

3. How We Use Your Information

We use collected information for:

• Providing and maintaining the Service
• Processing subscription payments and billing
• Generating rollover analysis reports and PDF documents
• Authenticating users and managing accounts
• Sending technical notices, updates, and support messages
• Responding to user requests and support inquiries
• Improving and optimizing the Service
• Detecting and preventing fraud, abuse, and security issues
• Complying with legal obligations

4. Third-Party Service Providers

We use the following third-party services that may collect, store, or process your information:

5. Data Security

We implement reasonable security measures to protect your information:

• Passwords are hashed using industry-standard encryption
• Data transmitted via HTTPS/TLS encryption
• Database access restricted via row-level security (RLS) policies
• Authentication tokens with expiration
• Regular security updates and monitoring

6. Data Retention

Current Policy: We currently do not have a formal data retention policy. Generally:

• Account data is retained while your subscription is active
• Rollover analysis reports are retained to provide historical records
• After account cancellation, data may be retained for business and legal purposes
• We may implement automated deletion policies in the future

Users may request data deletion by contacting us at privacy@rolloveranalysistool.com. We will make reasonable efforts to delete personal data upon request, subject to legal obligations and legitimate business needs.

7. Your Rights and Choices

You have the following rights:

• Access: Request a copy of personal data we hold about you
• Correction: Update inaccurate or incomplete information via account settings
• Deletion: Request deletion of your personal data (subject to legal exceptions)
• Export: Download your rollover analysis data in standard formats
• Opt-Out: Unsubscribe from marketing emails (transactional emails required for service)

To exercise these rights, contact us at privacy@rolloveranalysistool.com

8. Cookies and Tracking

We use cookies and similar technologies for:

• Essential Cookies: Authentication, session management (required for service operation)
• Analytics Cookies: Google Analytics (if enabled) to understand usage patterns
• Preference Cookies: Remember your settings and preferences

You can disable cookies via browser settings, but this may affect functionality.

9. Children's Privacy

Our Service is not intended for individuals under 18 years old. We do not knowingly collect information from children. If you believe a child has provided us information, contact us immediately.

10. International Users

This Service is intended for use in the United States only. Data is stored on servers located in the United States. By using the Service, you consent to the transfer and processing of data in the US. We do not guarantee compliance with non-US data protection laws (e.g., GDPR).

11. Changes to This Privacy Policy

We may update this Privacy Policy periodically. Changes will be posted on this page with an updated "Effective Date." Continued use of the Service after changes constitutes acceptance. Material changes may be communicated via email.

12. California Privacy Rights

California residents have specific rights under the California Consumer Privacy Act (CCPA):

• Right to know what personal information is collected
• Right to know whether personal information is sold or disclosed
• Right to opt-out of sale of personal information (we do not sell personal data)
• Right to deletion of personal information
• Right to non-discrimination for exercising CCPA rights

13. Contact Us

For questions about this Privacy Policy or to exercise your privacy rights: