Privacy Policy

Atelo Group ("Atelo Group," "we," "our," or "us") is a Generative Engine Optimization (GEO) media management agency incorporated and operating under the laws of the State of Florida. We operate the website located at atelogroup.com (the "Site") and provide digital marketing and content management services to dental practices and other healthcare businesses (collectively, the "Services").

This Privacy Policy ("Policy") explains how we collect, use, disclose, store, protect, and otherwise process information about you when you visit our Site, contact us, or engage with our Services. It also explains your rights with respect to your personal information and how to exercise them.

By accessing or using our Site or Services, you acknowledge that you have read, understood, and agree to the practices described in this Policy. If you do not agree, please do not access or use our Site or Services.

This Policy applies to all visitors, prospective clients, current clients, and any other individuals whose information we process in connection with our Site and Services. It does not apply to information collected by third-party websites, services, or applications that may be linked to or from our Site.

1. Information We Collect

We collect information about you in the following ways. The categories of information we collect depend on how you interact with us.

1.1 Information You Provide Directly

We collect information that you voluntarily provide to us when you:

• Complete and submit any contact, inquiry, or onboarding form on our Site
• Request information about our Services by email, phone, or any other communication channel
• Enter into a services agreement with us
• Communicate with us by email, telephone, text message, or through social media platforms
• Subscribe to our email newsletters, updates, or marketing communications
• Participate in surveys, research, testimonials, or case studies
• Provide feedback about our Services

The types of information you may provide include:

• Full name and job title
• Business name and practice name
• Business address, city, state, zip code, and country
• Email address (business and personal)
• Telephone number and mobile number
• Payment and billing information (processed through our third-party payment processor; we do not store full card numbers on our own systems)
• Information about your dental practice, including services offered, patient demographics, geographic service area, and competitive landscape
• Login credentials for business accounts you authorize us to access, including Google Business Profile, Facebook Business Suite, Instagram Business Account, and Twitter/X
• Any other information you choose to provide

1.2 Information We Collect Automatically

When you visit our Site, we and our third-party partners automatically collect certain technical and usage information, including:

• Internet Protocol (IP) address and approximate geographic location derived from IP address
• Browser type, version, and settings
• Operating system and device type
• Referring URL and exit pages
• Pages visited on our Site, the order of those pages, and the time spent on each page
• Date and time of your visit
• Links clicked on our Site
• Search terms used to reach our Site
• Cookie identifiers and similar tracking data (see Section 5 for our Cookie Policy)

1.3 Information We Receive from Third Parties

We may receive information about you from third parties, including:

• Business information from professional networks such as LinkedIn
• Referrals from existing clients or business partners
• Information from third-party analytics and advertising platforms
• Publicly available information about dental practices, including Google Business Profile data, social media profiles, and practice websites
• Information from business data providers for the purpose of marketing our Services to prospective clients

1.4 Information Relating to Your Clients and Patients

In the course of providing Services to dental practices, we may encounter or process content that relates to their patients. We have no direct relationship with any dental patients. We do not knowingly collect, store, or process Protected Health Information (PHI) as defined under the Health Insurance Portability and Accountability Act of 1996 (HIPAA). Under our Services Agreement, our dental practice clients are solely and exclusively responsible for ensuring that any patient information or patient-related content they submit to us complies with all applicable privacy laws, including HIPAA, and that all required patient consents have been obtained. If you believe we have received PHI in error, please contact us immediately at michael@atelogroup.com.

2. How We Use Your Information

We use the information we collect for the following purposes, which are based on legitimate interests, performance of a contract, compliance with legal obligations, or your consent where required:

2.1 To Provide and Manage Our Services

• To fulfill our contractual obligations under our Services Agreement with you
• To create, manage, and maintain your client account
• To produce, schedule, and publish digital marketing content on your behalf
• To manage your Google Business Profile, social media accounts, and other digital assets you have authorized us to access
• To generate monthly performance reports and analytics summaries
• To respond to your requests, questions, and support inquiries
• To process billing and payment for our Services

2.2 To Communicate with You

• To send you service-related notifications, updates, and administrative messages
• To send you invoices and payment reminders
• To send you marketing communications about our Services, where you have consented or where permitted by law
• To request feedback or reviews about our Services
• To conduct surveys or gather information for research and development purposes

2.3 To Improve and Develop Our Services

• To analyze how our Site and Services are used and to identify areas for improvement
• To develop and test new features, tools, and service offerings
• To troubleshoot technical issues and ensure the security and reliability of our Site and Services
• To train internal processes and methodologies, using only anonymized or aggregated data

2.4 For Marketing and Business Development

• To create anonymized case studies, portfolio examples, and performance testimonials using results achieved for clients (as permitted under our Services Agreement)
• To target our advertising to relevant prospective clients
• To measure the effectiveness of our marketing campaigns
• To identify and reach prospective clients through third-party advertising platforms

2.5 To Comply with Legal Obligations

• To maintain records required by applicable law and regulation
• To respond to lawful requests from courts, government authorities, and law enforcement agencies
• To enforce our Terms of Service and Services Agreement
• To protect the rights, property, and safety of Atelo Group, our clients, and the public
• To detect, prevent, and address fraud, unauthorized access, and other illegal activity

2.6 Artificial Intelligence and Content Generation

We use artificial intelligence tools, including large language models and generative AI systems, to assist in producing content on behalf of our clients. These tools process the information you provide in your onboarding materials and Master Context documents to generate GEO-optimized content. We do not use your confidential client information to train third-party AI models without your consent. The AI-generated content we produce is reviewed and edited before delivery and publication. You retain responsibility for reviewing and approving all content before it is published on your digital channels.

3. Legal Basis for Processing Your Information

If you are located in a jurisdiction that requires a legal basis for processing personal information (including the European Economic Area, United Kingdom, or California), we process your information on the following bases:

• Contract Performance: We process information necessary to perform our obligations under our Services Agreement with you, including providing the Services you have engaged us to deliver.
• Legitimate Interests: We process information for purposes that are in our legitimate business interests, including improving our Services, marketing to prospective clients, preventing fraud, and maintaining the security of our systems, provided those interests are not overridden by your rights and interests.
• Legal Obligation: We process information as necessary to comply with applicable laws, regulations, court orders, and governmental requests.
• Consent: Where required by law, we obtain your consent before processing your information for specific purposes, such as sending marketing communications. You may withdraw your consent at any time by contacting us at michael@atelogroup.com.

4. How We Share Your Information

We do not sell, rent, or trade your personal information to third parties for their own marketing purposes. We share your information only in the following circumstances:

4.1 Service Providers and Vendors

We share information with third-party service providers who perform services on our behalf and who are contractually obligated to protect your information and use it only as directed by us. These providers include:

• Payment processors (including Stripe) to process billing and payments
• Email service providers for communications and marketing
• Cloud storage and data hosting providers
• Analytics and tracking platforms (including Google Analytics)
• Social media scheduling and management platforms (including Metricool)
• Artificial intelligence and content generation platforms
• Customer relationship management (CRM) platforms
• Cybersecurity and fraud prevention services
• Legal, accounting, and professional advisors

4.2 Platform Integrations

In delivering our Services, we access and interact with third-party platforms on your behalf, including Google Business Profile, Facebook, Instagram, and Twitter/X. Your use of those platforms is subject to their own terms of service and privacy policies. We are not responsible for the privacy practices of those platforms.

4.3 Business Transfers

If we are involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of all or a portion of our business or assets, your information may be transferred as part of that transaction. We will provide notice before your personal information is transferred and becomes subject to a different privacy policy.

4.4 Legal Requirements and Protection of Rights

We may disclose your information if we believe disclosure is required or permitted by law, including to comply with a subpoena, court order, or other legal process; to enforce our agreements; to protect our rights, property, or safety or that of our clients or the public; or to respond to an emergency that poses a threat to the life or safety of a person.

4.5 With Your Consent

We may share your information with third parties when you have given us your explicit consent to do so.

4.6 Aggregated and Anonymized Data

We may share aggregated, anonymized, or de-identified information that cannot reasonably identify you with third parties for research, marketing, analytics, and other business purposes. This data does not constitute personal information and is not subject to this Policy.

5. Cookies and Tracking Technologies

5.1 What Are Cookies

Cookies are small text files placed on your device by websites you visit. They are widely used to make websites work more efficiently and to provide information to website operators. We use cookies and similar tracking technologies (including web beacons, pixel tags, and local storage) on our Site.

5.2 Types of Cookies We Use

• Strictly Necessary Cookies: These cookies are essential for the Site to function properly. They cannot be switched off in our systems. They are usually set in response to actions you take such as setting your privacy preferences, logging in, or filling in forms.
• Performance and Analytics Cookies: These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our Site. All information these cookies collect is aggregated and therefore anonymous.
• Functional Cookies: These cookies enable the Site to provide enhanced functionality and personalization, such as remembering your preferences and settings.
• Targeting and Advertising Cookies: These cookies may be set through our Site by our advertising partners to build a profile of your interests and show you relevant ads on other sites. They do not store directly personal information, but are based on uniquely identifying your browser and device.

5.3 Third-Party Analytics

We use Google Analytics to collect information about how visitors use our Site. Google Analytics uses cookies to collect information such as how often users visit the Site, what pages they visit, and what other sites they used prior to visiting. We use this information to improve our Site and Services. You can prevent Google Analytics from recognizing you on return visits by disabling cookies on your browser or by using the Google Analytics Opt-out Browser Add-on available at tools.google.com/dlpage/gaoptout.

5.4 Managing Cookies

You can set your browser to refuse all or some browser cookies or to alert you when websites set or access cookies. If you disable or refuse cookies, please note that some parts of our Site may become inaccessible or not function properly. To find out more about cookies, including how to see what cookies have been set and how to manage and delete them, visit www.allaboutcookies.org.

6. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes for which it was collected, including to provide our Services, comply with legal obligations, resolve disputes, enforce our agreements, and for legitimate business purposes. When determining the appropriate retention period, we consider:

• The nature and sensitivity of the information
• The purposes for which we process the information and whether we can achieve those purposes through other means
• The applicable legal, regulatory, accounting, or reporting requirements
• The potential risk of harm from unauthorized use or disclosure

Specifically, we typically retain:

• Active client account information for the duration of our Services Agreement and for seven (7) years following termination, as required for tax, accounting, and legal compliance purposes
• Correspondence and communications for three (3) years following our last interaction
• Marketing inquiry information for two (2) years if you do not become a client
• Payment transaction records for seven (7) years as required by applicable tax law
• Website analytics data in aggregated form indefinitely; individual session data for up to twenty-six (26) months

When your information is no longer needed, we will securely delete or anonymize it in accordance with our data retention and destruction procedures.

7. Data Security

We take the security of your information seriously and implement appropriate technical, administrative, and physical measures to protect your personal information from unauthorized access, disclosure, alteration, destruction, and misuse. Our security measures include:

• Encryption of data in transit using industry-standard Transport Layer Security (TLS) protocols
• Restricted access to personal information on a need-to-know basis
• Password policies and multi-factor authentication for internal systems
• Regular review of our information collection, storage, and processing practices
• Contractual requirements for our service providers to maintain appropriate security standards

However, no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security. In the event of a data breach that requires notification under applicable law, we will notify affected individuals and relevant authorities as required.

You are responsible for maintaining the confidentiality of any login credentials you provide to us for the purpose of managing your digital accounts. You should notify us immediately if you suspect any unauthorized use of your accounts.

8. Your Rights and Choices

Depending on your location and applicable law, you may have the following rights with respect to your personal information. To exercise any of these rights, please contact us at michael@atelogroup.com. We will respond to your request within the timeframe required by applicable law, typically within thirty (30) days.

8.1 Right to Access

You have the right to request confirmation of whether we process your personal information and, if so, to receive a copy of the personal information we hold about you, along with information about how we use it.

8.2 Right to Correction

You have the right to request that we correct any inaccurate or incomplete personal information we hold about you.

8.3 Right to Deletion

You have the right to request that we delete your personal information, subject to certain exceptions. We may retain information that we are required to retain by law or that is necessary for legitimate business purposes such as ongoing legal obligations or pending litigation.

8.4 Right to Restriction of Processing

You have the right to request that we restrict the processing of your personal information in certain circumstances, such as when you contest the accuracy of the information or object to its processing.

8.5 Right to Data Portability

You have the right to receive your personal information in a structured, commonly used, and machine-readable format, and to request that we transmit it to another controller where technically feasible.

8.6 Right to Object

You have the right to object to our processing of your personal information based on our legitimate interests or for direct marketing purposes. If you object to processing for direct marketing purposes, we will stop processing your information for those purposes.

8.7 Right to Withdraw Consent

Where we rely on your consent to process your personal information, you have the right to withdraw that consent at any time. Withdrawal of consent will not affect the lawfulness of processing based on consent before its withdrawal.

8.8 Right to Non-Discrimination

We will not discriminate against you for exercising your privacy rights. We will not deny you our Services, charge you a different price, or provide a different quality of service because you exercised a privacy right.

8.9 California Residents

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), including the right to know what personal information we have collected, disclosed, or sold; the right to delete; the right to opt out of the sale or sharing of personal information; the right to correct; the right to limit the use of sensitive personal information; and the right to non-discrimination. California residents may submit requests by contacting us at michael@atelogroup.com. We do not sell personal information as defined under the CCPA.

8.10 Florida Residents

We are headquartered in Florida and comply with applicable Florida privacy laws. Florida residents may contact us at michael@atelogroup.com to exercise their rights under applicable Florida law.

8.11 EU, EEA, and UK Residents

If you are located in the European Economic Area, European Union, or United Kingdom, you may have additional rights under the General Data Protection Regulation (GDPR) or UK GDPR, including the right to lodge a complaint with your local data protection supervisory authority. Our processing of personal information from EEA or UK residents is limited and is based on the legal bases described in Section 3.

9. Children's Privacy

Our Site and Services are directed exclusively to businesses and are not intended for individuals under the age of eighteen (18). We do not knowingly collect personal information from children under eighteen. If we become aware that we have inadvertently collected personal information from a child under eighteen, we will take steps to delete such information promptly. If you believe we have collected information from a child, please contact us immediately at michael@atelogroup.com.

10. Third-Party Links and Services

Our Site may contain links to third-party websites, platforms, and services that are not owned or controlled by us. This Policy applies only to our Site and our Services. We have no control over and assume no responsibility for the privacy practices, content, or data collection of third-party sites. We encourage you to review the privacy policies of any third-party sites or services you visit. This includes, without limitation, Google, Meta (Facebook and Instagram), Twitter/X, Stripe, Metricool, and any other platforms with which our Services integrate.

11. International Data Transfers

We are based in the United States. If you access our Site or Services from outside the United States, your information may be transferred to, stored, and processed in the United States, where our servers are located and where our central database is operated. The data protection laws of the United States may differ from those of your country. By using our Site or Services, you consent to the transfer of your information to the United States in accordance with this Policy.

Where we transfer personal information from the EEA, UK, or Switzerland to countries that may not provide the same level of data protection, we rely on appropriate transfer mechanisms such as Standard Contractual Clauses approved by the European Commission, or other legally recognized transfer mechanisms.

12. Changes to This Privacy Policy

We reserve the right to update or modify this Policy at any time and from time to time. We will notify you of any material changes by posting the updated Policy on our Site with a new effective date, and where required by applicable law, by providing notice to you directly via email or other communication. Your continued use of our Site or Services after the effective date of any changes constitutes your acceptance of the updated Policy.

We encourage you to review this Policy periodically to stay informed about how we protect your information.

13. Contact Us

If you have any questions, concerns, or complaints about this Privacy Policy or our privacy practices, or if you wish to exercise any of your rights with respect to your personal information, please contact us:

We will acknowledge your request within five (5) business days and will endeavor to resolve your inquiry or request within thirty (30) days. If you are not satisfied with our response, you may have the right to lodge a complaint with a relevant data protection authority.