Legal

Privacy Policy

Profile: Default • Version: v1.0 • Published 3/10/2026

Privacy Notice for Disruptica LLC

Last updated: March 10, 2026

Disruptica LLC ("Disruptica," "we," "us," or "our") respects your privacy and is committed to handling personal information responsibly. This Privacy Notice explains how we collect, use, disclose, and protect personal information when you visit our website, shop with us, apply for opportunities with us, communicate with us, or otherwise interact with us online or offline.

This Privacy Notice is designed to serve as Disruptica’s combined privacy notice, including our general website privacy disclosures, cookie-related disclosures, applicant disclosures, and U.S. state privacy disclosures where applicable.

1. Scope

This Privacy Notice applies to personal information collected through:

  • disruptica.com and related Disruptica pages;

  • shop.disruptica.com and related ecommerce experiences;

  • Disruptica forms, intake workflows, recruiting pages, scheduling tools, newsletters, and communications;

  • Butterfly CRM / Butterfly OS and related apps, portals, chatbots, and customer-facing software experiences that link to or reference this Privacy Notice; and

  • other online or offline interactions where we provide or link to this Privacy Notice.

This Privacy Notice does not apply to personal information that we process solely on behalf of our customers as a service provider, processor, or contractor under a separate agreement. In those situations, the customer controls the data and is responsible for its own privacy disclosures, and our handling of that data is governed by the applicable contract, statement of work, DPA, or other terms.

2. Who We Are

Disruptica LLC
200 East Las Olas Boulevard, 14th Floor
Fort Lauderdale, FL 33301
Email: legal at disruptica.com

3. Personal Information We Collect

The personal information we collect depends on how you interact with us.

A. Information you provide directly

We may collect personal information such as:

  • name;

  • email address;

  • phone number;

  • company name;

  • job title or role;

  • location or general geographic information;

  • budget information;

  • project details, business requirements, or service interests;

  • compliance, security, regulatory, or technology-stack details you choose to share;

  • meeting notes, correspondence, support requests, and form submissions;

  • account credentials and profile information for our apps or portals;

  • resume/CV information, work history, education, portfolio links, compensation expectations, work authorization information, references, interview notes, and assessments for applicants;

  • ecommerce and transaction information, such as order details, billing or shipping details, and related customer service communications; and

  • any other information you choose to provide.

We may also receive and store files, prompts, content, and materials you upload or submit through our products, portals, forms, or communications.

B. Sensitive or higher-risk data

We generally do not seek to collect highly sensitive personal information from website visitors or leads unless it is reasonably necessary for a specific purpose and permitted by law.

Depending on the context, particularly in recruiting or client work, we may receive or process categories that could be considered sensitive or regulated under applicable law, such as:

  • work authorization or related identity/work eligibility information;

  • information contained in applicant materials;

  • healthcare, financial, support, log, or training data made available to us by clients in the course of providing services; and

  • other categories a customer instructs us to process under contract.

Where required, we will apply additional contractual, technical, organizational, or legal safeguards.

C. Information collected automatically

When you interact with our websites, shop, apps, or portals, our service providers and we may automatically collect:

  • IP address;

  • browser type and version;

  • device identifiers;

  • operating system;

  • approximate geolocation derived from IP;

  • pages viewed, clicks, scroll activity, referring URLs, session behavior, and timestamps;

  • cookie IDs and similar identifiers;

  • usage, performance, and diagnostic data; and

  • security and fraud-prevention logs.

D. Information from third parties

We may receive personal information from:

  • Shopify;

  • Stripe;

  • Google Analytics and Google Tag Manager;

  • Microsoft Clarity;

  • Substack;

  • OpenAI, Anthropic, Google AI, Azure OpenAI, and similar AI or automation vendors acting on our behalf;

  • Butterfly CRM / Butterfly OS;

  • recruiting, referral, or business development sources;

  • customers who engage us to provide services; and

  • publicly available or commercially available sources where permitted by law.

4. How We Use Personal Information

We may use personal information to:

  • provide, operate, maintain, secure, and improve our websites, shop, products, software, and services;

  • respond to inquiries, schedule meetings, qualify leads, prepare proposals, and communicate with prospective or current customers;

  • manage customer relationships through Butterfly CRM / Butterfly OS or related systems;

  • provide software engineering, AI, consulting, support, implementation, maintenance, and related business services;

  • process ecommerce purchases, payments, fulfillment, refunds, and customer service requests;

  • manage recruiting, candidate review, interviews, hiring, and onboarding-related workflows;

  • personalize user experiences and improve website usability, content, and performance;

  • measure website traffic, campaign performance, and product usage;

  • send newsletters, updates, marketing emails, event communications, and thought leadership content, subject to applicable law and your choices;

  • detect security incidents, prevent fraud, troubleshoot issues, protect our rights, and enforce our agreements;

  • comply with legal, regulatory, tax, accounting, contractual, and reporting obligations; and

  • carry out any other purpose disclosed at the time of collection or otherwise permitted by law.

5. AI, Automation, and Model Training Restrictions

Disruptica builds and works with AI systems, and we may use AI-enabled or automated tools in our business operations and service delivery. For example, we may use AI or automation for:

  • internal productivity and drafting assistance;

  • analytics or workflow automation;

  • support and knowledge assistance;

  • product features, chat experiences, or agentic workflows;

  • quality assurance or data processing support; and

  • service delivery for customers.

Disruptica’s policy is that personal information submitted by website visitors, leads, applicants, and customers is not intentionally provided to third-party AI vendors for training their public or shared models. Where we use AI vendors, we expect them to process data under applicable contractual restrictions and security obligations, consistent with the services we use.

For clarity:

  • Website visitors and leads: not used to train third-party public/shared AI models;

  • Applicant data: not used to train third-party public/shared AI models;

  • Client data: not used to train third-party public/shared AI models unless expressly agreed in writing with the client.

Where required by law or appropriate to the context, we may provide additional just-in-time disclosures for specific AI-powered features.

6. Legal Bases for Processing (for Users Outside the U.S.)

If a law in your jurisdiction requires a legal basis for processing, we may rely on one or more of the following:

  • performance of a contract or steps taken at your request before entering a contract;

  • compliance with legal obligations;

  • legitimate interests, such as operating and improving our business, securing our systems, or communicating about relevant services, where those interests are not overridden by your rights;

  • consent, where required; and

  • any other lawful basis permitted by applicable law.

7. Cookies, Tracking, and Similar Technologies

Our service providers, and we may use cookies, pixels, local storage, scripts, tags, SDKs, session replay tools, and similar technologies to:

  • keep our sites and systems functioning properly;

  • remember settings and preferences;

  • understand site traffic and usage patterns;

  • improve performance and user experience;

  • support analytics and troubleshooting; and

  • measure campaigns and business performance.

Categories of cookies and similar technologies we may use

  • Strictly necessary cookies: required for site operation, security, authentication, checkout, fraud prevention, or core functionality.

  • Analytics and performance technologies: help us understand usage and improve our sites and services.

  • Functional technologies: help remember preferences and enhance convenience.

  • Advertising or measurement technologies: if we implement these in the future, they may support campaign attribution, marketing performance measurement, or other related activities.

At this time, Disruptica does not state that it sells personal information or shares personal information for cross-context behavioral advertising. If that changes, we will update this Privacy Notice and any required notices or consent/opt-out tools.

Cookie choices

Depending on your device, browser, and location, you may be able to:

  • adjust browser settings to refuse or delete cookies;

  • use browser-based privacy settings or extensions;

  • unsubscribe from marketing emails;

  • use any cookie preference tools we make available; and

  • submit privacy requests as described below.

Please note that some site features may not function properly if certain cookies or technologies are disabled.

8. Global Privacy Control and U.S. State Opt-Out Preference Signals

Where required by applicable U.S. state privacy law, Disruptica will process qualifying browser-based Global Privacy Control (GPC) or other recognized opt-out preference signals as valid requests to opt out of the sale or sharing of personal information, or targeted advertising, to the extent such obligations apply to our processing activities and technical environment.

Because Disruptica currently states that it does not sell personal information or share personal information for cross-context behavioral advertising, many users may not experience a material change when sending a GPC signal. However, we maintain this commitment so our practices can remain aligned with applicable law as our tools and marketing technologies evolve.

9. When We Disclose Personal Information

We may disclose personal information to the following categories of recipients:

  • hosting, infrastructure, cloud, security, and IT providers;

  • ecommerce, payment, billing, and fulfillment providers, including Shopify and Stripe;

  • analytics and website technology providers, including Google Analytics, Google Tag Manager, and Microsoft Clarity;

  • newsletter, communications, or publishing providers, including Substack;

  • AI, automation, productivity, and software vendors, including OpenAI, Anthropic, Google AI, and Azure OpenAI, when used under our instructions and contractual terms;

  • CRM, intake, applicant, support, and operations systems, including Butterfly CRM / Butterfly OS;

  • professional advisors such as lawyers, accountants, auditors, and insurers;

  • business partners, referral partners, or subcontractors involved in delivering requested services;

  • regulators, courts, law enforcement, or government authorities where required by law or necessary to protect rights or safety; and

  • a buyer, investor, lender, successor, or affiliate in connection with a merger, financing, acquisition, corporate transaction, or sale of assets.

Disruptica does not sell or share personal information for cross-context behavioral advertising, as described in this Privacy Notice.

10. Client Data We Process on Behalf of Customers

In the course of providing services, Disruptica may process personal information on behalf of customers, including:

  • employee data;

  • end-user or customer data;

  • support tickets and communications;

  • system logs and usage data;

  • healthcare-related or financial-related information made available by a customer;

  • training, testing, or operational data for AI systems; and

  • other data a customer instructs us to process.

In these situations:

  • the customer is typically the controller, business, or responsible party;

  • Disruptica acts as a processor, service provider, or contractor; and

  • our obligations are governed by contract, including applicable DPAs, security provisions, and confidentiality obligations.

If your personal information was provided to us by one of our customers and you want to exercise privacy rights related to that information, you should contact that customer directly. We will support our customers in responding to valid requests as required by law and contract.

11. International Transfers

Disruptica is based in the United States. Personal information may be stored or processed in the United States or other countries where our service providers or we operate.

Where applicable, Disruptica uses contractual and organizational safeguards for international data transfers, including when processing customer data under a DPA or similar contractual framework.

12. Data Retention

We retain personal information for as long as reasonably necessary for the purposes described in this Privacy Notice, including to provide services, maintain records, comply with legal obligations, resolve disputes, enforce agreements, and protect our business.

Unless a longer period is required or permitted by law, Disruptica generally follows these retention guidelines:

  • Lead and contact data: up to 1 year after the most recent meaningful interaction;

  • Marketing subscriber data: up to 5 years, or sooner if you unsubscribe or we determine the record is no longer necessary;

  • Applicant data: up to 5 years after the relevant recruiting activity, unless a shorter or longer period is required by law or legitimate business need;

  • Customer, contract, and project data: up to 5 years after the end of the relationship or project, unless a longer period is required for legal, compliance, accounting, audit, security, or dispute-resolution purposes;

  • Shop and order data: up to 5 years, subject to tax, accounting, fraud-prevention, and chargeback-related requirements;

  • Analytics and cookie-related data: typically up to 14 months where platform settings permit, or a shorter period where feasible;

  • Security logs: approximately 3 months, unless needed longer for investigation, legal, or security purposes.

Retention can vary depending on the context, applicable law, contractual requirements, backup cycles, litigation holds, investigations, or security needs.

13. Data Security

We use administrative, technical, and organizational safeguards designed to protect personal information. These measures may include access controls, role-based permissions, contractual restrictions, security reviews, logging, monitoring, encryption where appropriate, and vendor management practices.

However, no system or transmission method is completely secure, and we cannot guarantee absolute security.

14. Your Privacy Rights and Choices

Depending on where you live, you may have some or all of the following rights, subject to applicable law and exceptions:

  • the right to know or access the personal information we have collected about you;

  • the right to know the categories of sources, purposes, recipients, and disclosures related to that information;

  • the right to correct inaccurate personal information;

  • the right to delete personal information;

  • the right to obtain a portable copy of certain personal information;

  • the right to opt out of sale, sharing, or targeted advertising, where applicable;

  • the right to limit certain uses of sensitive personal information, where applicable;

  • the right to withdraw consent where processing is based on consent;

  • the right to appeal a denial of your privacy request, where applicable; and

  • the right not to be discriminated against for exercising applicable privacy rights.

To submit a request, contact us at legal@disruptica.com. We may take reasonable steps to verify your identity before fulfilling a request. You may also designate an authorized agent where permitted by law.

Appeals

If you believe we denied your request in error and applicable law gives you a right to appeal, you may respond to our decision or contact us again at legal at disruptica.com with “Privacy Appeal” in the subject line.

Marketing choices

You may opt out of marketing emails by using the unsubscribe link in the message or by contacting us.

15. Additional U.S. State Privacy Disclosures

This section supplements the other parts of this Privacy Notice for residents of California and other U.S. states with applicable privacy laws.

Categories of personal information we may collect

Depending on your interaction with us, we may collect the following categories:

  • identifiers;

  • personal records and contact information;

  • commercial or transaction information;

  • internet or other electronic network activity information;

  • approximate geolocation information;

  • professional or employment-related information;

  • education or recruiting-related information;

  • audio, electronic, or visual information if you communicate with us or participate in interviews or demos;

  • inferences drawn from personal information; and

  • sensitive personal information or other regulated data where relevant to recruiting, customer engagements, or legal compliance.

Sources

We collect personal information from:

  • you directly;

  • your devices and browser interactions;

  • our service providers and processors;

  • customers and business partners;

  • recruiting and referral sources; and

  • public or commercially available sources where permitted by law.

Purposes

We collect and use personal information for the business and commercial purposes described in this Privacy Notice, including operations, service delivery, communications, analytics, recruiting, ecommerce, security, legal compliance, and improvement of our business.

Disclosure categories

We may disclose the categories of personal information described above to the recipient categories listed in Section 9.

Sale / sharing / targeted advertising

Disruptica states that it does not:

  • sell personal information;

  • share personal information for cross-context behavioral advertising; or

  • knowingly process personal information for targeted advertising in a way that would require an opt-out notice beyond what is stated here.

If our practices change, we will update this Privacy Notice and any required notices, consent tools, or opt-out methods.

Sensitive personal information

To the extent Disruptica collects or processes sensitive personal information under laws such as California’s, we use it only for permitted business purposes, requested services, legal compliance, security, recruiting administration, or other purposes allowed by law and disclosed here.

Notice at collection

Disruptica provides this Privacy Notice as its general notice at collection for personal information collected through covered channels. Additional context-specific notices may appear at or before the point of collection where appropriate.

16. Notice for Applicants and Candidates

If you apply for a job, contract role, or other opportunity with Disruptica, we may use your information to:

  • review your qualifications;

  • communicate with you about roles or opportunities;

  • assess skills, experience, eligibility, and fit;

  • conduct interviews and evaluations;

  • verify information where lawful;

  • maintain recruiting records; and

  • improve our recruiting process.

Applicant information may be shared with relevant internal reviewers, service providers supporting recruiting operations, and other parties where required by law or reasonably necessary to evaluate candidacy.

17. Children’s Privacy

Our websites, products, and services are not directed to children under 13, and we do not knowingly collect personal information from children under 13.

18. Third-Party Websites and Services

Our websites, shop, products, and communications may contain links to third-party websites, services, or platforms. We are not responsible for the privacy practices of those third parties, and we encourage you to review their privacy notices.

19. Changes to This Privacy Notice

We may update this Privacy Notice from time to time. When we do, we will revise the “Last updated” date and, where appropriate, provide additional notice.

20. Contact Us

If you have questions about this Privacy Notice or wish to exercise privacy rights, contact:

Disruptica LLC
200 East Las Olas Boulevard, 14th Floor
Fort Lauderdale, FL 33301
legal at disruptica.com