Privacy Policy

Johnson Strategic Advisory LLC ("Johnson Strategic Advisory," "we," "our," or "us") respects your privacy. This Privacy Policy explains how we collect, use, and protect information when you visit johnsonstrategic.io (the "Site") or interact with us through the Site.

By using the Site, you agree to the collection and use of information described in this Policy.

1. Information We Collect

Information you provide

When you submit our contact form or request a consultation, we collect:

• Your first name and last name
• Your email address
• Your phone number (when you provide it)
• Your business or company name (when you provide it)
• Your service interest and business size
• Any details you include in the message field — for example, fundraising stage, current systems, scope notes

You provide this information voluntarily. We don't collect it any other way through the Site.

Scheduling information

When you book a consultation through Calendly, your name, email, and scheduling preferences are collected by Calendly and shared with us to confirm the meeting. Calendly's handling of that information is governed by Calendly's own privacy policy (linked below).

Information collected automatically

When you visit the Site, we (or third-party tools acting on our behalf) automatically collect:

• Your IP address
• Your browser type, operating system, and device characteristics
• The referring website (the URL you came from)
• Pages you view, time spent on each page, and interactions like scroll depth and link clicks
• Cookies and similar technologies as described below

Information collected by our free tools

Our free tools — the CFO Toolkit and the Raise-Ready Scorecard — store the inputs you enter (financial figures, scenario assumptions, scorecard responses, optional company name) only in your browser's localStorage on your device. This data is never transmitted to us, our servers, or any third party. If you clear your browser data, the tool inputs are deleted with it. We have no access to the data you enter into either tool.

2. Cookies and Similar Technologies

The Site uses cookies and similar technologies to operate and analyze usage. Specifically:

• Google Analytics 4 sets cookies (typically named _ga and _ga_*) to measure visits, pages viewed, and aggregate visitor behavior. Read Google's privacy practices at policies.google.com/privacy.
• Microsoft Clarity uses cookies and similar technologies to record anonymized session activity (mouse movements, clicks, scrolls) and generate heatmaps so we can understand how visitors interact with the Site. Sensitive form input (passwords, payment fields, etc.) is masked by default. Read Microsoft's privacy practices at privacy.microsoft.com/privacystatement.

We do not use cookies for advertising or remarketing. We do not sell or share information for cross-context behavioral advertising.

You can disable cookies through your browser settings, but some Site features may behave unexpectedly. To opt out of Google Analytics specifically, install the Google Analytics Opt-out Browser Add-on. To opt out of Microsoft Clarity, use Microsoft's privacy controls.

3. How We Use Your Information

We use the information we collect to:

• Respond to your consultation requests and inquiries
• Provide and deliver the fractional CFO and advisory services you request
• Send follow-up communications related to your inquiry (no marketing spam)
• Operate, maintain, and improve the Site
• Analyze website traffic and usage patterns to improve the user experience
• Comply with legal and tax obligations
• Protect against fraud, abuse, and unauthorized access

4. How We Share Your Information

We do not sell your personal information. We share information only with:

Service providers

Third parties that help us operate the Site and respond to you. Each operates under its own privacy practices:

• Formspree — processes contact form submissions and forwards them to our inbox. Privacy policy.
• Calendly — schedules consultation calls. Privacy policy.
• Google LLC (Google Analytics 4) — provides Site analytics. Privacy policy.
• Google LLC (Google Fonts) — serves web typography; may log your IP address. Privacy policy.
• Microsoft Corporation (Clarity) — provides session-replay and heatmap analytics. Sensitive form input is masked. Privacy policy.
• Microsoft Corporation (Bing Webmaster Tools) — verifies the Site for Bing's index and provides aggregate search performance reports to us. This is server-to-server only; no visitor tracking is dropped on the Site. Privacy policy.
• Hostinger International — provides web hosting and DNS for the Site. Privacy policy.
• GitHub (Microsoft Corporation) — hosts the Site's source code and powers the build pipeline. No visitor data is processed by GitHub at runtime. Privacy policy.

Legal compliance and protection

We may disclose information when required by law (subpoena, court order, regulatory request) or to investigate suspected violations of our Terms and Conditions or threats to safety or property.

Business transfers

If Johnson Strategic Advisory LLC is sold, merges, or otherwise transfers ownership, your information may transfer with the business under the protection of this or a comparable Privacy Policy.

5. Data Retention

We retain information only as long as necessary to fulfill its purpose:

• Contact form submissions: typically retained for 7 years for business and tax records, or longer if required by law
• Email correspondence: retained as long as the business relationship exists, plus the retention required for tax or legal purposes
• Calendly scheduling records: retained according to Calendly's own retention defaults; we retain meeting confirmations as part of email correspondence above
• Google Analytics 4 data: retained according to GA4's default 14-month window
• Microsoft Clarity recordings: retained according to Clarity's default 13-month window
• Free tool data (Toolkit / Scorecard): we never receive this data; it is stored only in your browser's localStorage and persists until you clear it

You may request deletion of your information at any time (see Section 7).

6. Data Security

We use reasonable technical and organizational measures to protect your information, including HTTPS encryption in transit, HSTS preload enrollment, access controls on internal systems, and the use of vetted third-party providers with their own security programs. No system is 100% secure, however, and we can't guarantee absolute security.

7. Your Rights

Depending on where you live, you may have rights regarding your personal information, including:

• The right to know what information we hold about you
• The right to request a copy of that information
• The right to correct inaccurate information
• The right to request deletion
• The right to opt out of certain data processing
• The right to opt out of marketing communications
• The right to data portability where applicable

To exercise any of these rights, email us at info@johnsonstrategic.io. We'll respond within 30 days.

California residents (CCPA / CPRA)

You have additional rights under the California Consumer Privacy Act and the California Privacy Rights Act, including the right to know, delete, correct, and opt out of the "sale" or "sharing" of your information. We do not sell or share information for cross-context behavioral advertising. California residents (or authorized agents acting on their behalf) may exercise these rights by emailing info@johnsonstrategic.io. We will not discriminate against you for exercising your CCPA/CPRA rights.

EU/UK residents (GDPR / UK GDPR)

If you are a resident of the European Economic Area, the United Kingdom, or Switzerland, you have rights under the GDPR (or UK GDPR or Swiss FADP) including access, rectification, erasure, restriction, objection, and portability. Our lawful basis for processing is typically (a) consent (cookie analytics), (b) legitimate interests (operating and improving the Site), or (c) performance of a contract or pre-contractual measures (responding to your inquiry). To exercise these rights, email info@johnsonstrategic.io.

8. International Data Transfers

We're based in the United States. If you access the Site from outside the U.S., information you submit may be transferred to, stored, and processed in the U.S. or other jurisdictions where our service providers operate. Data protection laws in those jurisdictions may differ from those in your country.

9. Children's Privacy

The Site is intended for business use by professional adults. We do not knowingly collect information from children under 13. If we learn we've inadvertently collected information from a child under 13, we'll delete it promptly. If you are a parent or guardian and believe your child has provided us with personal information, please contact us.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We'll post the updated version with a new "Last updated" date at the top of this page. Material changes will be communicated via the Site or email if you've previously contacted us.

11. Contact Us

Questions about this Privacy Policy or the information we hold about you?

Johnson Strategic Advisory LLC
Mailing address: 2248 Broadway #2052, New York, NY 10024
info@johnsonstrategic.io
+1 (646) 490-1625

Johnson Strategic Advisory LLC is organized under the laws of the Commonwealth of Kentucky. For the venue applicable to disputes, see Section 15 of our Terms and Conditions.