Effective Date: November 26, 2025

The Behavior Group (“we,” “us,” or “our”) is committed to protecting your privacy. This Privacy Policy describes how we collect, use, and disclose your personal information when you use our website and services in the United States. We comply with applicable U.S. privacy laws, including the California Online Privacy Protection Act (CalOPPA) and the Children’s Online Privacy Protection Act (COPPA), to safeguard your information. By using our site, you agree to the data practices described in this Policy. If you have any questions or concerns about this Privacy Policy, please contact us using the information provided in the “Contact Us” section below.

We collect personal information that you voluntarily provide to us, as well as certain information automatically when you interact with our website. In accordance with CalOPPA requirements, below we list the categories of personally identifiable information we collect:

• Contact Information: When you fill out forms (e.g. our contact form), we collect your name, email address, and any message or inquiry you choose to submit.
   
• Technical Identifiers: We collect your IP address and similar online identifiers automatically when you visit our site. This information helps us understand where our visitors are coming from and is used for analytics and security purposes.
   
• Cookies and Usage Data: Our website uses cookies and similar tracking technologies to enhance user experience and gather usage data (see Cookies and Tracking below). These may collect information about your browser, device, and browsing actions on our site.
   

We do not collect any information from children under the age of 13, and our services are not directed to children. In fact, we do not knowingly solicit or collect personal information from anyone under 13 years old, in compliance with COPPA (a federal law which makes it illegal for websites to collect personal data from children under 13 without parental consent). If we learn that we have inadvertently collected personal information from a child under 13, we will delete that information promptly.

We use cookies and similar tracking technologies to provide and improve our services. Cookies are small text files placed on your device that allow us to recognize you and collect information such as your device type, browser type, pages you visit, and other usage data. We utilize this information for analytics (for example, understanding which pages are most popular) and to improve our website’s functionality and services. The data from cookies helps us analyze traffic, perform marketing analytics, and make service improvements as you use our site.

Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies or alert you when cookies are being sent. Please note that if you disable cookies, some features of our site may not function properly.

Do Not Track (“DNT”): Some browsers transmit “Do Not Track” signals to websites. We currently do not respond to DNT signals or similar mechanisms, because there is not yet an industry standard for compliance with such signals. We continue to monitor developments around DNT browser technology and may update our practices if a uniform standard is established. In the meantime, you can control certain tracking preferences through your browser settings and other tools (such as browser extensions) as described above.

We use the personal information we collect for the following purposes:

• To Provide and Improve Services: We process your information to respond to your inquiries or requests (for example, if you contact us via our website, we will use your name and email to respond). We also use information like your feedback or message content to improve our services and offerings.
   
• Analytics and Performance: We use technical data (like IP addresses and cookies) to analyze how users navigate our site. This helps us understand user behavior and preferences, allowing us to improve site performance, fix issues, and enhance your overall experience.
   
• Marketing and Communications: With the contact information you provide, we may send you updates, newsletters, or marketing communications about our services if you have consented or requested such information. (For example, if you sign up for our newsletter or ask for information about our services, we will use your email to communicate with you.) We use personal data for our own marketing and promotional purposes, such as to inform you of events, services, or resources that may be of interest. You can opt out of marketing emails at any time as described in the Your Rights and Choices section.
   
• Service Improvements: We may use aggregate and de-identified data to review and improve our operational processes, develop new features, and enhance the quality of our services. Personal information (such as feedback you provide) can guide us in making our services more useful and effective.
   
• Legal Compliance and Protection: In addition, we may use or disclose your information as necessary to comply with applicable laws and regulations, to respond to lawful requests (such as court orders or subpoenas), and to protect our rights, property, or safety and that of our users or others.
   

We will not use the personal information we collected for materially different, unrelated, or incompatible purposes without updating this Privacy Policy or obtaining your consent.

We value your privacy. We do not sell, rent, or trade your personal information to third parties for their own commercial use. In particular, we do not share personal data with third parties for those third parties’ direct marketing purposes. This means you will not have to worry about the California “Shine the Light” law’s provisions, which otherwise allow residents to inquire about such marketing disclosures.

That said, we may disclose certain information to trusted third parties in the following circumstances, with appropriate safeguards in place:

• Service Providers: We may share your information with third-party vendors and service providers who perform functions on our behalf and under our instructions. For example, companies that provide website hosting, data storage, email delivery, or analytics services may have access to personal information as needed to perform their services for us. In all cases, these providers are not permitted to use your information for any purpose other than to provide agreed-upon services, and they are obligated to protect your data.
   
• Legal Requirements: We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., in compliance with a subpoena, court order, or government inquiry). We may also disclose personal information when we believe in good faith that such disclosure is necessary to protect our rights, enforce our site policies, or protect the safety of our users or the public.
   
• Business Transfers: If we ever engage in a merger, acquisition, bankruptcy, or sale of all or a portion of our business/assets, user information (including personal data) might be among the assets transferred to the relevant third party. Should such a transfer occur, we will ensure the recipient agrees to protect your personal information in a manner consistent with this Privacy Policy.
   

Aside from the instances above, no routine third-party disclosures of personal information occur. In other words, outside of service providers acting on our behalf or legal obligations, your information stays with The Behavior Group. We also do not share any personal information about our users with advertisers or social media companies, since we currently do not conduct advertising campaigns that involve disclosing user data.

As noted, our services are not intended for children under 13, and we do not knowingly collect personal information from children under 13 years of age. In fact, U.S. federal law (COPPA) prohibits the collection of personal data from children under 13 without verifiable parental consent. We adhere to this law. If you are under 13, please do not submit any personal information to us. If we learn that we have accidentally received information from a child under 13, we will delete that information from our records. Parents or guardians who believe we might have any information from or about a child under 13 may contact us at our email address provided below, and we will promptly take appropriate action.

Additionally, we do not specifically market to minors. Our website and services are designed for adults and businesses in need of our consulting services. If you are a parent or guardian and have concerns about your child’s personal information online, we encourage you to educate your children about safe internet practices and feel free to reach out to us if you have any questions.

We take reasonable measures to protect the security of your personal information. We implement appropriate technical and organizational safeguards designed to secure your data from unauthorized access, alteration, disclosure, or destruction. For example, our website is encrypted using HTTPS, which helps protect information transmitted between your browser and our site. We also restrict access to personal data to authorized personnel who have a legitimate need to know in relation to their job responsibilities.

Please understand, however, that no method of transmission over the Internet or method of electronic storage is completely secure. While we strive to protect your personal information, we cannot guarantee absolute security. You share and transmit information to us at your own risk. If we ever encounter a data breach involving your personal data, we will notify affected users and/or the appropriate authorities as required by law.

We will retain your personal information only for as long as necessary to fulfill the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements. For example, if you contact us or fill out a form on our site, we may retain the information you provided (and our response) for our records, and to effectively manage our relationship or any follow-up services. We periodically review the data we hold, and when personal information is no longer needed, we either delete it or anonymize it.

However, certain data may be retained longer if required for legal compliance or legitimate business purposes. For instance, server logs containing IP addresses may be kept for a period of time to monitor for security issues and to compile aggregate traffic statistics. Rest assured, when personal data is no longer necessary, we dispose of it in a secure manner.

We believe in transparency and want you to have control over your personal information. Below are some of the privacy choices and rights you have regarding the information you provide to us:

• Opt-Out of Marketing Communications: If you have subscribed to our newsletter or are receiving promotional emails from us, you have the right to opt out. You can unsubscribe from our marketing emails by clicking the “unsubscribe” link in any email, or by contacting us at our email address (see Contact Us below) and requesting removal. Once we process your opt-out request, we will stop sending you non-essential communications. Please note that even if you opt out of marketing messages, we may still send you transactional or administrative emails (for example, responses to inquiries you send, or critical notices about our services).
   
• Cookies: As described in the Cookies and Tracking section, you have choices regarding cookies. Most browsers allow you to delete or decline cookies. You can also usually configure your browser to notify you before cookies are placed. For more information on managing cookies, refer to your browser’s help documentation. Keep in mind that disabling cookies may affect your experience on our site (for example, certain features might not function as intended).
   
• Do Not Track: You may enable “Do Not Track” in your web browser, which is a preference to signal that you do not wish to be tracked across websites. As noted above, our site currently does not respond to DNT signals. We will update this Privacy Policy if our practices regarding DNT change in the future.
   

California Privacy Rights: If you are a California resident, state law may provide you with additional rights regarding your personal information. The California Consumer Privacy Act (CCPA), as amended by the CPRA, grants California residents rights to know what personal data is collected, to know if it is sold or shared, to opt out of sale/sharing, and to request access to or deletion of their personal data, among other rights. However, these rights apply only to businesses that meet certain criteria (for example, having a high revenue or large amounts of personal data processing). The Behavior Group is a small business that currently does not meet the CCPA’s thresholds for mandatory compliance. Therefore, while we strive to protect all users’ privacy, we are not legally required to implement the CCPA’s data access and deletion request mechanisms at this time. We do not sell or share personal information, and thus the CCPA’s opt-out provisions for sale of data do not apply in our case (as noted, we have no need for a “Do Not Sell My Personal Information” link because we do not sell data).

Additionally, because we do not disclose personal information to third parties for their direct marketing purposes, the California “Shine the Light” law is not applicable to us. California’s “Online Eraser” law (which gives minors under 18 the right to remove posted content) also does not apply to our services, since we do not host user-generated content and our site is not intended for minors.

Access or Deletion Requests: At this time, we do not offer a self-service portal for accessing, correcting, or deleting the personal data we may have about you (for example, you do not have an account with us that you can log into to retrieve or erase data). If you have specific questions about your personal information, or if you believe any information we have is inaccurate or if you wish to request deletion of personal data you have provided, you may contact us at our email address below. We will review such requests on a case-by-case basis and comply as required by applicable law. Please note that, since our business falls outside the scope of laws that mandate data access/deletion in most cases, we handle these requests as a courtesy and within the bounds of our legal obligations.

In summary, we respect your rights and will assist you with any reasonable request or inquiry regarding your personal information. If you have any questions or would like to discuss or exercise any privacy-related rights, please reach out to us using the contact information in the next section.

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us using the information below. Per California law requirements, we are providing clear contact information for privacy inquiries,

• Business Name: The Behavior Group
   
• Email Address: consulting@thebehaviorgroup.net
   
• Mailing Address: 237 N. Central Ave, Suite A, Glendale, CA 91203, USA
   
• Telephone: (833) 240-0240
   

We will do our best to respond promptly to your questions or requests. For security and verification purposes, we may take steps to verify your identity before fulfilling certain requests related to personal data (for example, if you request to know or delete data under applicable law).

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. When we make changes, we will revise the Effective Date at the top of this Policy. If changes are significant, we may provide a more prominent notice (such as a statement on our website or an email notification). We encourage you to review this Policy periodically to stay informed about how we are protecting the personal information we collect. Your continued use of our website after any changes to this Privacy Policy constitutes your acceptance of the updated terms.

Thank you for reading our Privacy Policy. We are dedicated to protecting your privacy and providing a safe, transparent experience. If you have any further questions or need clarifications, please do not hesitate to contact us.