Publish Date: 01-01-2025
Last Updated: 09-30-2025

WHO WE ARE
Gravick Group LLC (“Gravick,” “we,” “us,” or “our”) provides supply-chain consulting and technology solutions. This Privacy Policy explains how we collect, use, disclose, and protect information when you visit https://gravick.com
(the “Site”).

SCOPE
This Policy applies to information collected through our Site and any contact forms hosted on or linked from the Site. It does not apply to third-party websites, services, or platforms that we do not control. If you access our enterprise platforms through a client arrangement, separate contractual terms may govern that processing.

WHAT WE COLLECT
A. Information you provide (contact purposes only)
• Contact details submitted via forms (e.g., name, email, phone, company, message).
We do not collect personal information for purposes other than contacting you back, providing requested information, or maintaining basic business records.

B. Information collected automatically (site performance & security)
• Device and usage data (e.g., page views, clicks, timestamps, approximate location derived from IP, browser/OS, referring URLs).
• Log data generated by our servers and security tools (e.g., IP address, error codes) to maintain availability and integrity of the Site.

We use this automatically collected information in a de-identified or pseudonymous manner for performance, reliability, and security. We do not combine it with contact-form data to profile you.

HOW WE USE INFORMATION
• To respond to inquiries and provide requested information.
• To operate, secure, debug, and improve Site performance and user experience.
• To prevent fraud/abuse and to comply with applicable law.

Legal bases for EEA/UK visitors: legitimate interests (Site operation, security, analytics), consent where required (non-essential cookies), and compliance with legal obligations.

WHAT WE DO NOT DO
• We do not sell personal information.
• We do not “share” personal information for cross-context behavioral advertising.
• We do not use contact-form data for unrelated marketing without your consent.

COOKIES & SIMILAR TECHNOLOGIES
A. Types of cookies we use
• Strictly necessary: enable core functions like page navigation and security (cannot be turned off).
• Performance/Analytics (consent-based where required): help us understand how the Site is used so we can improve it.

B. Google Analytics (GA4) and performance tools
We use Google Analytics 4 and similar tools to measure Site traffic and performance. GA4 sets first-party cookies (examples: “_ga”, “ga*”, “_gid”) to generate aggregated usage statistics. GA4 does not log or store IP addresses; IPs may be used for coarse geolocation and then discarded by Google. We configured GA4 data retention for user-level events at up to 14 months and disabled Google Signals and Ads integrations to avoid ad personalization. You can:
• Use our cookie controls (where presented) to disable analytics;
• Use browser settings to block/clear cookies;
• Install Google’s opt-out add-on (see Google Analytics Opt-Out Browser Add-on).

C. Managing your preferences
Where required by law, we display a cookie banner that lets you accept or reject non-essential cookies. You can also change your browser settings to block or delete cookies. Disabling non-essential cookies won’t break core site functionality.

D. Do Not Track & Global Privacy Control
We honor Global Privacy Control (GPC) signals where legally required by treating them as an opt-out of any “sale”/“sharing” and by disabling non-essential third-party cookies to the extent feasible. Industry DNT standards are not uniform; where not required, we treat DNT as a preference and focus on cookie-level controls.

DISCLOSURE OF INFORMATION
We disclose information only to:
• Service providers that host, secure, or support the Site (e.g., managed hosting, security, performance, and analytics vendors). They may access limited data solely to perform services under confidentiality obligations.
• Professional advisers (e.g., legal counsel) under confidentiality.
• Authorities when required by law or to protect rights, safety, or security.
• Parties to a corporate transaction (e.g., merger or asset transfer), subject to continued protections.

We do not sell or “share” personal information for advertising.

DATA RETENTION
• Contact-form submissions: up to 24 months from last interaction, unless we need to retain longer to resolve inquiries, establish/defend legal rights, or comply with law.
• Analytics events: up to 14 months (GA4 user/event data).
• Server logs: typically up to 90 days, unless longer is needed for security/investigation.

When retention ends, we delete or de-identify data.

INTERNATIONAL TRANSFERS
We may process information in the United States and other countries with different data-protection laws. Where applicable, we use appropriate safeguards (e.g., standard contractual clauses) and limit access on a need-to-know basis.

SECURITY
We implement administrative, technical, and physical safeguards designed to protect information, including TLS encryption in transit, access controls, security logging/monitoring, and backups. No method is 100% secure; however, we maintain incident-response procedures and will act in accordance with applicable laws if a security event affects your information.

YOUR PRIVACY RIGHTS
Your rights depend on your jurisdiction. Subject to legal limits, you may request:
• Access or a copy of your personal information;
• Correction of inaccurate information;
• Deletion;
• Restriction or objection to certain processing;
• Portability (where applicable).
In the United States (e.g., California/Colorado/Connecticut/Virginia), you may have additional rights. Because we do not sell or share personal information for targeted advertising and use personal information only for contact purposes, most advertising-related opt-outs do not apply on our Site. To exercise rights, contact us (Section 15). We will verify your identity and respond as required by law. If you are in the EEA/UK, you can also lodge a complaint with your supervisory authority, but please contact us first.

CHILDREN’S PRIVACY
The Site is not directed to children under 13 (or higher age where required). We do not knowingly collect personal information from children. If you believe a child provided personal information, contact us to request deletion.

THIRD-PARTY LINKS & INTEGRATIONS (IMPORTANT “NOT RESPONSIBLE” NOTICE)
The Site may link to third-party websites, plug-ins, or services (including analytics, CDNs, or embedded content). We do not control and are not responsible for the privacy practices, content, security, availability, or accuracy of third-party sites or services. Your use of those resources is subject to their terms and privacy policies. We provide links solely for convenience and inclusion does not imply endorsement. To the fullest extent permitted by law, we disclaim liability for any loss or damage arising from your use of third-party sites or services.

CHANGES TO THIS POLICY
We may update this Policy as our practices, technologies, or legal requirements evolve. When we post changes, we update the “Last Updated” date above. Material changes will be highlighted on the Site or otherwise communicated where required.

CONTACT US
Email: info@gravick.com

Phone: +1 (866) 518-0608
Mailing Address: PO Box 6477, San Antonio, TX 78209, USA
Gravick Group