Privacy Policy
  1. 1. About Us
  2. 1.1  NJ Marketing Chick LLC (“NJ Marketing Chick,” “we,” “our,” “us”) provides career-coaching and digital-marketing consulting services.
  3. 1.2  The website https://njmarketingchick.com (the “Site”) is operated by us and hosted by Webflow, Inc.
  4. 1.3  For privacy questions, email njmarketingchick@gmail.com.
  1. 2. Information We Collect
  2. 2.1  Voluntary (contact & client forms) – first name, last name, email address, subject line, message text, résumé link (if supplied), billing details (if you become a client).
  3. 2.2  Automated (analytics & UX) – IP address, browser/device type, pages viewed, clicks, scroll depth, session replays, heat-maps. Captured via Google Analytics 4, Hotjar, and standard server logs.
  4. 2.3  Hashed user-provided data – When you enter an email address, phone number, or postal address, our site may transmit a SHA-256 hash of that data to Google Analytics 4 and Google Ads. Google stores only the hash and never receives the plain text.
  5. 2.4  Cookie / consent records – consent status and Google Consent Mode v2 signals (ad_storage, analytics_storage, etc.).
  6. 2.5  Transaction details – name on card, billing address, last 4 digits of card, payment token/ID, purchase amount, date/time. Processed by Stripe, Inc. | Early Warning Services, LLC (Zelle®) | PayPal, Inc. (Venmo).; we never store full card numbers.
  7. We do not intentionally collect “sensitive” data (government IDs, precise geolocation, health data) unless you voluntarily provide it.
  1. 3. How We Use Information
  2. 3.1  Respond to inquiries and deliver coaching/consulting services.
  3. 3.2  Process and fulfil purchases through Stripe, Inc.
  4. 3.4  Improve ad measurement and audience accuracy by matching hashed contact details to Google accounts (Enhanced Conversions). This only occurs after you grant advertising consent via our cookie banner.
  5. 3.5  Send service updates, newsletters, and marketing emails (opt-in only).
  6. 3.6  Improve the Site, analyse usage, diagnose problems (GA4 + Hotjar).
  7. 3.7  Prevent fraud and enforce legal agreements.
  8. Legal bases (GDPR): contract performance, consent, and legitimate interests as applicable.
  1. 4. Cookies & Similar Technologies
  2. 4.1  Essential cookies – site operation, security, remembering cookie choices.
  3. 4.2  Performance & analytics cookies_ga, _ga_*, _hjSession_*, _hjFirstSeen; blocked until you grant analytics consent.
  4. 4.3  Marketing cookies – Google Ads, Meta Pixel; blocked until marketing consent.
  5. 4.4  We run Google Analytics 4 under Google Consent Mode v2. Until you make a choice in our cookie banner, GA4 sends only anonymised, cookieless pings for basic statistical modelling. If you grant analytics and advertising consent, GA4 resumes normal tracking (and may transmit hashed identifiers for Enhanced Conversions); if you decline, GA4 remains in consent-denied “cookieless” mode and no cookies or personal data are stored.
  6. 4.5  Hotjar recordings start only after analytics consent and mask keystrokes by default.
  7. 4.6  We honour Global Privacy Control (GPC) and other universal opt-out signals required by CPRA, NJDPA, Colorado CPA, etc.
  8. You can change or withdraw consent any time via the cookie banner or browser settings.
  1. 5. How We Share Information
  2. Recipient
    Purpose
    Safeguards
    Webflow, Inc.
    Website hosting & CDN
    Encryption in transit & at rest
    Google LLC (GA4, Tag Manager, Gmail, Ads)
    Hashed user-provided data (email / phone) for Enhanced Conversions and ad performance modelling.
    SCCs / DPF
    Hotjar Ltd.
    Session replays & heat-maps
    SCCs; EU data-centres
    Stripe, Inc. | Early Warning Services, LLC (Zelle®) | PayPal, Inc. (Venmo)
    Secure payment processing & fraud screening
    PCI-DSS Lv 1; SCCs/DPF
    Meta Platforms Inc.
    Retargeting ads
    SCCs / DPF
    Regulators, courts, auditors
    Legal compliance
    Only when legally required
    Business transferees
    Merger, acquisition, or asset sale
    Contractual confidentiality
  1. 6. Data Retention & Security
  2. 6.1  Inquiry records: 24 months after last contact (or sooner on request).
  3. 6.2  Client and transaction records: 6 years (tax/contract obligations).
  4. 6.3  GA4 analytics logs: 14 months (Google default).
  5. 6.4  Safeguards: SSL/TLS in transit, encryption at rest where supported, role-based access, annual vendor security reviews.
  6. 6.5  We retain user-level Analytics data for up to 14 months, after which it is automatically deleted or anonymised..
  1. 7. Children’s Privacy
  2. 7.1  The Site and services are not directed to children under 13.
  3. 7.2  We do not knowingly collect data from children. Contact us to delete unintended collections.
  1. 8. Your Privacy Rights
  2. 8.1  EU/EEA/UK (GDPR) – access, rectify, erase, restrict, port, object.
  3. 8.2  California (CCPA/CPRA) – know, delete, correct, opt-out of sale/share, limit sensitive data.
  4. 8.3  New Jersey (NJDPA, 15 Jan 2025) – access, correct, delete, port; opt-out of sale, targeted advertising, profiling with legal effects.
  5. 8.4  Other 2025 state laws (Colorado CPA, Virginia VCDPA, Connecticut CTDPA, Utah UCPA, etc.) – similar rights.
  6. 8.5  How to exercise – email njmarketingchick@gmail.com or submit the form at /contact. we’ll verify your identity and respond within the statutory timeframe (45 days US, 30 days GDPR).
  1. 9. International Transfers
  2. 9.1  I am US-based. For EU/UK data we rely on:
  3. a)  Standard Contractual Clauses (SCCs) with processors;
  4. b)  Additional risk assessments & protection measures per EDPB guidance.
  1. 10. Changes to This Policy
  2. 10.1  Material changes will be posted here and, if substantial, emailed to subscribers.
  3. 10.2  “Last Updated” will change with each revision.
  1. 11. Contact Us
  2. NJ Marketing Chick LLC
/* ================================ Cookie Consent Mode banner logic (Code & Wander template – FINAL) 2025‑07‑16 – • Stores visitor choice in localStorage • Keeps banner hidden on every page until reopened • Sends a GA4 event ─ cookie_consent (choice = accept_all / reject_all / custom) • Sets a GA4 user‑property ─ consent_choice (same values) ============================================== */