Privacy Policy

Effective Date: May 08, 2026  ·  Last Updated: May 08, 2026

1. Introduction and Scope

This Privacy Policy describes how Beacon Territory Group collects, uses, discloses, retains, and protects personal information in connection with our website, marketing, sales, subscription services, and the data products we make available to clients (collectively, the “Services”).

This Policy applies to:

• Visitors to our website and digital properties;
• Prospective, current, and former clients and their authorized representatives;
• Individuals who contact us, request information, or interact with our communications; and
• Consumers whose personal information may appear in lead records, property records, or other data sets we license, compile, or distribute (“Data Subjects”), to the extent required by applicable law.

By using our Services or providing personal information to us, you acknowledge the practices described in this Policy. If you do not agree, please do not use the Services.

Not for Children. Our Services are intended for businesses and individuals 18 years or older. We do not knowingly collect personal information from children under 13 in violation of the Children’s Online Privacy Protection Act (COPPA) or from minors under 16 in violation of applicable state laws. See Section 14.

2. Information We Collect

We collect personal information from three primary sources: (a) information you provide directly, (b) information collected automatically when you interact with our Services, and (c) information obtained from third parties and public records.

2.1 Information You Provide Directly

• Identity and contact data: name, business name, mailing address, email address, telephone number, job title.
• Account credentials: username, password, security questions, and authentication tokens.
• Commercial and transaction data: subscription tier (e.g., Scout, Builder, Dominator, Titan), ZIP codes selected, billing address, payment card or ACH details (processed by our PCI-DSS compliant payment processors), invoices, and purchase history.
• Communications: contents of emails, support tickets, sales calls, web-form submissions, and survey responses.
• Marketing preferences: subscription status for newsletters, promotional materials, and event invitations.

2.2 Information Collected Automatically

• Device and connection data: IP address, device identifiers, browser type and version, operating system, screen resolution, language, and time zone.
• Usage data: pages visited, referring/exit URLs, click paths, time on page, scroll depth, search queries on our site, and download events.
• Approximate location: derived from IP address (city/region level).
• Cookies, pixels, and similar technologies: first- and third-party cookies, web beacons, SDKs, and local storage. See Section 7 for details and your choices.

2.3 Information from Third Parties and Public Sources

Because Beacon licenses and distributes consumer-record data to professional clients, we obtain personal information from sources including:

• Public records: county assessor, recorder, deed, and tax-roll records; voter registration files where lawfully available; court records; and similar government-maintained datasets.
• Licensed data providers: national consumer file vendors, property data vendors, phone-append vendors, and skip-trace providers.
• Compliance and verification services: Do-Not-Call (DNC) registry scrub vendors, litigator scrub, deceased-suppression files, fraud-prevention services.
• Marketing partners and analytics platforms: advertising networks, lead-generation partners, social media platforms, and web-analytics providers.
• Business contacts and referrals: information you authorize others to share with us.

2.4 Categories of Personal Information We Collect

In the preceding twelve (12) months, we have collected the following categories of personal information, as enumerated under the California Consumer Privacy Act (“CCPA”) and similar laws:

• Identifiers (name, alias, postal address, email, phone, IP address, account ID);
• Customer records information (Cal. Civ. Code § 1798.80 categories, limited to name, address, telephone, and billing-related financial information);
• Commercial information (subscriptions, transactions, products considered);
• Internet/network activity (browsing, interaction with website and ads);
• Geolocation (approximate, derived from IP);
• Professional or employment information (title, employer, business contact details);
• Inferences drawn from the above (territory interests, likely demand).

Sensitive personal information (as defined under California, Connecticut, Colorado, and similar laws): We do not intentionally collect sensitive categories such as Social Security numbers, government IDs, precise geolocation, financial-account credentials beyond payment processing, racial or ethnic origin, religious beliefs, union membership, genetic or biometric data, health information, or sex life or sexual orientation. If sensitive information is incidentally received, we do not use or disclose it for purposes other than those permitted by applicable law without offering the right to limit such use.

3. How We Use Personal Information

We use personal information for the following business and commercial purposes:

• Providing, operating, maintaining, and improving the Services;
• Creating and managing accounts; authenticating users; processing payments and subscriptions;
• Compiling, enriching, scrubbing, and delivering territory and lead datasets to authorized clients;
• Performing DNC, litigator, deceased, and other compliance suppression on records prior to delivery;
• Communicating with you about Services, billing, support, security, and policy changes;
• Marketing our own products and services (subject to your opt-out rights);
• Conducting analytics, research, product development, and quality assurance;
• Detecting, preventing, and responding to fraud, abuse, security incidents, and unlawful activity;
• Enforcing our Terms of Service and protecting our legal rights, property, and the safety of others;
• Complying with legal obligations, including TCPA, CAN-SPAM, GLBA (where applicable), state data-broker registration laws, and lawful requests from public authorities;
• Effectuating a merger, acquisition, financing, reorganization, bankruptcy, or asset sale (with appropriate notice and protections).

We will not use personal information for materially different, unrelated, or incompatible purposes without providing notice and, where required, obtaining your consent.

4. Legal Bases for Processing

Where required by applicable law, we rely on the following legal bases to process personal information:

• Performance of a contract: to provide Services you have requested or take pre-contract steps at your request.
• Legitimate interests: to operate, secure, and improve our business; to market our services to commercial prospects; to prevent fraud; provided such interests are not overridden by your rights.
• Compliance with legal obligations: to satisfy tax, accounting, regulatory, and law-enforcement obligations.
• Consent: where required (e.g., certain cookies, electronic marketing in some jurisdictions, processing of sensitive data). You may withdraw consent at any time, without affecting prior lawful processing.

5. How We Disclose Personal Information

We disclose personal information only as described below. We do not sell personal information collected from website visitors for cross-context behavioral advertising in exchange for monetary consideration. However, our distribution of consumer-record datasets to professional clients may be deemed a “sale” or “sharing” under certain state laws. See Section 10 for opt-out rights.

5.1 Service Providers and Processors

We share personal information with vendors that perform services on our behalf, bound by written contracts limiting their use of the information to the services they provide. Categories include cloud hosting, payment processors, CRM and email-marketing platforms, data-append and DNC-scrub vendors, analytics providers, customer-support tools, security and fraud-prevention services, and professional advisors.

5.2 Clients and Recipients of Lead/Territory Data

Personal information about Data Subjects (e.g., property owners, prospective sellers) contained in lead and territory datasets is disclosed to subscribing clients for their internal use in connection with their professional outreach activities, subject to contractual restrictions including: (i) compliance with TCPA, CAN-SPAM, applicable state telemarketing and email laws, and DNC obligations; (ii) prohibitions on resale or unauthorized redistribution; (iii) data-security requirements; and (iv) obligations to honor consumer opt-outs and deletion requests forwarded by us.

5.3 Affiliates and Corporate Group

We may share personal information with our parent, subsidiaries, and affiliated entities for purposes consistent with this Policy.

5.4 Business Transfers

In connection with a merger, acquisition, reorganization, financing, bankruptcy, sale of all or part of our assets, or related due-diligence processes, personal information may be transferred to relevant counterparties subject to customary confidentiality protections.

5.5 Legal and Safety Disclosures

We may disclose personal information when we believe in good faith that disclosure is necessary to: (a) comply with applicable law, regulation, subpoena, court order, or other legal process; (b) respond to lawful requests from government authorities; (c) enforce our Terms of Service or other agreements; (d) protect the rights, property, or safety of Beacon, our clients, our users, or the public; or (e) investigate suspected fraud or wrongdoing.

5.6 With Your Consent or at Your Direction

We may share personal information with third parties when you direct us to do so or otherwise consent.

6. Aggregated and Deidentified Information

We may create aggregated, anonymized, or deidentified information that cannot reasonably be used to identify any individual or household. We may use and disclose such information for any lawful purpose. Where we maintain deidentified information, we will: (a) take reasonable measures to ensure it cannot be associated with an individual; (b) publicly commit to maintain it in deidentified form; and (c) contractually obligate recipients to comply with the same.

7. Cookies, Tracking Technologies, and Online Advertising

We and our service providers use cookies, web beacons, pixel tags, SDKs, and similar technologies (“Cookies”) to operate our website, remember preferences, perform analytics, and deliver and measure marketing. For full details, see our Cookie Policy.

Global Privacy Control (GPC): Our website honors recognized opt-out preference signals, including the Global Privacy Control, as a request to opt out of “sale” and “sharing” for the browser and device transmitting the signal, in accordance with the laws of California, Colorado, Connecticut, and other states that recognize such signals.

Do Not Track: Our website does not currently respond to “Do Not Track” browser signals other than as described above for GPC.

8. Data Retention

We retain personal information only as long as reasonably necessary to fulfill the purposes for which it was collected, including to provide the Services, comply with legal, accounting, tax, and regulatory obligations, resolve disputes, and enforce our agreements. Retention periods vary by data category; we determine them based on the nature and sensitivity of the information, the potential risk of harm, the purposes of processing, and applicable legal requirements. When personal information is no longer needed, we delete, destroy, or deidentify it in accordance with our records-retention schedule.

9. Information Security

We maintain administrative, technical, and physical safeguards designed to protect personal information against unauthorized access, disclosure, alteration, and destruction. These include encryption in transit, access controls, role-based permissions, multi-factor authentication for administrative access, vendor due diligence, employee training, and incident-response procedures. No method of transmission or storage is perfectly secure, however, and we cannot guarantee absolute security. In the event of a security incident affecting your personal information, we will notify affected individuals and regulators as required by applicable law.

10. Your Privacy Rights

Depending on your state of residence and the nature of our processing, you may have one or more of the rights described below. We will not discriminate or retaliate against you for exercising any privacy right.

10.1 Rights Available Under State Comprehensive Privacy Laws

Residents of states with comprehensive consumer privacy laws — including, as of the effective date hereof, California, Virginia, Colorado, Connecticut, Utah, Iowa, Indiana, Tennessee, Texas, Oregon, Montana, Delaware, New Hampshire, New Jersey, Maryland, Minnesota, Rhode Island, and Kentucky — may have the following rights, as applicable in their state:

• Right to know / access: confirm whether we process your personal information and obtain a copy or summary of it.
• Right to delete: request deletion of personal information we have collected from or about you, subject to legal exceptions.
• Right to correct: request correction of inaccurate personal information.
• Right to data portability: receive your personal information in a portable, readily usable format.
• Right to opt out of “sale” or “sharing”: direct us not to sell or share your personal information for cross-context behavioral advertising.
• Right to opt out of targeted advertising and certain profiling: decline targeted advertising or profiling that produces legal or similarly significant effects.
• Right to limit use of sensitive personal information: restrict our use of sensitive personal information to enumerated permitted purposes.
• Right to appeal: appeal our denial of a rights request, where applicable.
• Right to non-discrimination: be free from retaliation, denial of service, or different prices/quality for exercising your rights.

10.2 California — Additional Rights and Disclosures

Notice at Collection

The categories of personal information we collect, the purposes for which they are used, the categories “sold” or “shared” (if any), the categories of recipients, and our retention practices are described in Sections 2, 3, 5, and 8 above and in our Notice at Collection.

“Sale” and “Sharing” of Personal Information

Beacon does not sell personal information collected from website visitors in exchange for monetary consideration. However, our licensing and distribution of consumer-record datasets to subscribing clients for their professional outreach activities may constitute a “sale” or “sharing” under the CCPA and analogous laws. Categories that may be “sold” or “shared” include identifiers, customer-records information, commercial information, and inferences. Recipients are professional client subscribers and authorized service providers.

To opt out, use the “Do Not Sell or Share My Personal Information” link, submit a verifiable request via the methods in Section 10.6, or transmit a recognized opt-out preference signal.

Sensitive Personal Information

We do not use or disclose sensitive personal information for purposes other than those permitted by Cal. Civ. Code § 1798.121 and the implementing regulations.

Shine the Light

California Civil Code § 1798.83 permits California residents who have an established business relationship with us to request, once per calendar year, information about disclosures of personal information to third parties for the third parties’ direct-marketing purposes. Contact support@beaconterritory.com with the subject line “California Shine the Light Request.”

Minors’ Privacy (California)

We do not knowingly sell or share personal information of California consumers under 16 years of age without affirmative authorization (“opt-in”) from the consumer (ages 13–15) or the consumer’s parent or guardian (under 13).

10.3 Nevada

Under Nevada Revised Statutes Chapter 603A, Nevada residents may submit a verified request to opt out of the sale of certain covered personal information. While Beacon does not sell covered information as defined under Nevada law in exchange for monetary consideration, you may submit a request to support@beaconterritory.com with the subject line “Nevada Opt-Out Request.”

10.4 Vermont, Texas, Oregon, and California Data Broker Registrations

Beacon may qualify as a “data broker” under the laws of California (Cal. Civ. Code § 1798.99.80 et seq.; Delete Act), Vermont (9 V.S.A. § 2446 et seq.), Texas (Tex. Bus. & Com. Code Ch. 509), and Oregon (ORS 646A.504 et seq.). Where required, we register with and submit reports to the applicable state authority and honor consumer rights requests submitted directly or via state-authorized deletion mechanisms (including, where applicable, the California “Delete Request and Opt-Out Platform,” or DROP, when operational).

10.5 Other Federal and State Protections

• FTC Act § 5: we maintain practices consistent with our public statements and applicable FTC guidance.
• CAN-SPAM Act: our commercial email messages contain a valid postal address, accurate header information, and a functioning unsubscribe mechanism honored within 10 business days.
• TCPA and FTC Telemarketing Sales Rule: we and our clients are contractually obligated to honor the National Do-Not-Call Registry, applicable state DNC lists, internal DNC lists, time-of-day restrictions, and consent requirements for autodialed and prerecorded calls or texts. To request that Beacon add your phone number to its internal Do-Not-Call list, contact support@beaconterritory.com or (205) 809-0527.
• GLBA, FCRA: we do not provide consumer reports as defined under the FCRA. Our data products are not intended for use, and may not be used by clients, to determine eligibility for credit, insurance, employment, housing, or any other FCRA-regulated purpose.
• State telemarketing, email, and consumer protection laws: we comply with applicable state-specific requirements, including registration and bonding where required.

10.6 How to Exercise Your Rights

You or an authorized agent acting on your behalf may submit a request through any of the following methods:

• Online form:
• Email: support@beaconterritory.com
• Toll-free phone: (205) 809-0527
• Mail: Beacon Territory Group, Attn: Privacy Officer, 1224 Graylynn Dr., Vestavia Hills, AL 35216

Verification. We will take reasonable steps to verify your identity before fulfilling a request. We may ask you to confirm information we already have on file or, for sensitive requests, to provide additional verification. We will not use information collected for verification for any other purpose.

Authorized agents. Authorized agents must provide proof of authorization (e.g., signed permission, power of attorney), and we may require the consumer to verify their own identity directly.

Response timing. We will acknowledge requests within 10 business days where required and respond substantively within 45 days, with one 45-day extension where reasonably necessary and permitted by law.

Appeals. If we deny your request, you may appeal by replying to our denial notice or contacting us with the subject line “Privacy Request Appeal.” If your appeal is denied, you may contact your state attorney general or applicable regulator. California residents may contact the California Privacy Protection Agency.

11. Targeted Advertising, Profiling, and Automated Decision-Making

We may engage in cross-context behavioral or “targeted” advertising for our own commercial services. We do not engage in solely automated decision-making that produces legal or similarly significant effects on consumers. You may opt out of targeted advertising as described in Sections 7 and 10.

12. International Users and Data Transfers

Beacon is based in the United States. Our Services are intended for use in the United States and are not directed to individuals outside the United States. If you access the Services from outside the United States, you understand that your information will be transferred to, processed in, and stored in the United States, where data-protection laws may differ from those of your jurisdiction. Where required, we implement appropriate safeguards for cross-border transfers.

13. Third-Party Websites and Services

Our Services may contain links to third-party websites, services, or applications that we do not control. This Policy does not apply to those third parties. We encourage you to review the privacy practices of any third party before providing personal information.

14. Children’s Privacy

Our Services are not directed to children under 13, and we do not knowingly collect personal information from children under 13 in violation of COPPA, or from minors under 16 in violation of applicable state laws. If we learn that we have collected such information without appropriate authorization, we will delete it. Parents or guardians who believe their child has provided personal information may contact us at support@beaconterritory.com.

15. Accessibility

We are committed to ensuring this Privacy Policy is accessible to individuals with disabilities. If you require this Policy in an alternative format, please contact us at support@beaconterritory.com.

16. Changes to This Privacy Policy

We may update this Policy from time to time. When we do, we will revise the “Last Updated” date above. If changes are material, we will provide additional notice (e.g., a banner on our website or email to registered users). Your continued use of the Services after the effective date of any change constitutes acceptance, except where additional consent is required by law.

17. Contact Us

If you are not satisfied with our response, you may have the right to lodge a complaint with your state attorney general, the California Privacy Protection Agency (for California residents), the Federal Trade Commission, or another applicable supervisory authority.