Privacy Policy

Archi FX LLC operates this privacy notice for visitors and inbound leads interacting with domains and subdomains we operate (collectively, the site). Separate written engagements, statements of work, or master agreements govern contracted services and may override summarized marketing explanations.

Who we are

Responsible entity: Archi FX LLC, a Florida limited liability company with principal operations in Tampa Bay area, United States. Lead desk email for privacy topics: info@archifx.com. Telephone: (727) 207-5647.

What this notice covers

• Website browsing on this site and Laravel-rendered Blade pages we publish for Archi FX.
• Voluntary inquiries through published email addresses or lead intake endpoints.
• Optional cookies or similar signals described alongside our Cookie Policy.

Information we collect

• Identifiers and contacts: name, employer, telephone, email addresses, scheduling notes, budgets, timelines, attachments you send on purpose.
• Communications metadata: envelope data from email transports (headers, DKIM verdicts in your inbox, optional message IDs referenced in tickets).
• Technical signals: IP address, approximate location derived at region level by infrastructure providers, user agent strings, TLS versions, referrer entries, and timestamps needed for HTTPS and spam defense.
• Form submissions via Laravel: fields you fill in our intake workflows plus anti-automation tooling we enable (tokens, hashed honeypots, rate limits).
• We do not request sensitive categories described in HIPAA, FCRA, nor biometrics inside this casual marketing funnel.

How we use personal information

• Respond to sales and support requests, tailor follow-up scopes, onboard signed clients.
• Operate, guard, troubleshoot, audit, back up, patch, analyze abuse, and throttle automated attacks.
• Meet legal retention, security, subpoena-response, bookkeeping, taxation, dispute resolution obligations.
• Improve human-readable documentation and internal dashboards when we aggregate pseudonymous metrics.

Sources

Direct submissions you send us, telemetry generated when your browser interacts with our edge network, integrations you authorize after contract award, referrals from collaborators with your awareness, publicly available roster data you already published (for example registrations or licenses), and hashed deduplicated lists strictly for hygiene (never unrelated marketing syndication without fresh consent).

Legal bases where applicable outside the United States

For European Economic Area, United Kingdom, and Swiss counterpart visitors, GDPR-style processing rests on contractual necessity once you request services; legitimate interests anchored in securing our infrastructure when alternative bases are premature; consent when we expressly ask (for cookies beyond strictly necessary tiers). You may lodge supervisory authority complaints without waiving contractual obligations we already owed.

U.S. state privacy expectations

Depending on your state statute, residents may invoke access, portability, deletion, correction, appeals, nondiscriminatory pricing, profiling opt-outs, or California-style "Do Not Sell or Share My Personal Information" rights. We do not treat this marketing site like a statewide data broker storefront. Requests land at info@archifx.com with verification steps proportionate to the risk presented. Authorized agents following state rules may submit with written permission plus identity checks.

Disclosures to processors and onward recipients

• Hosting, DNS, email transport, ticketing, conferencing, contracting, bookkeeping, SOC2-minded productivity vendors assisting operations.
• Professional advisers (counsel, accounting) under confidentiality regimes.
• Acquirers, regulators, auditors, counterparties enforcing merger conditions, lawful court orders requiring narrow disclosure consistent with appellate rights.

We constrain subprocessors according to contractual instructions. International transfers leverage Standard Contractual Clauses, UK addenda, supplementary measures, Privacy Shield successors, or analogous instruments when mandated.

Children

Offerings communicate to businesses, not minors under thirteen (or higher age dictated by COPPA-aligned standards). Parents who believe accidental collection occurred should email info@archifx.com; we purge demonstrably needless records.

Retention

• Commercial conversations: kept while pipelines stay active, then distilled into CRM artifacts subject to bookkeeping holds.
• Security logs with IP metadata: shortened windows except where elongated investigation windows protect networks.
• Tax, accounting, AML, subpoena freezes: durations guided by statutes of limitation or tribunal orders.

Your choices

• Emails include unsubscribe tooling when marketing bursts appear (we rarely broadcast marketing blasts; lead replies are conversational).
• Browser fingerprint controls: revisit Cookie Policy for granular toggles aligned with jurisdictional overlays.
• Direct escalation to brian@archifx.com remains available.

Security

MFA on infrastructure consoles, patching cadences, segmented secrets, Principle of least privilege, encrypted volumes, audit trails referencing CI/CD change tickets. Absolute security promises are impossible because adversaries adapt; materially harmful incidents trigger incident response runbooks referencing legal counsel.

Changes

We update this narrative when tooling, statutes, geography, acquisitions, hosting regions, processors, analytics posture, intake forms evolve. Revised dates appear in our site footer cue: policies reviewed April 2026. Significant regressions prompting fresh consent activate notice banners when legislation demands.

Refer also to our Website terms. Nothing here substitutes counsel or signed commercial contracts.