Privacy Policy
Introduction
LinkedIn Profile and Resume Writing Services, LLC, d/b/a Klaxos, is committed to protecting your privacy. This Privacy Policy explains what personal information we collect, how we use it, and the choices you have regarding your information when you use our website at klaxos.com (the “Site”) or our services (the “Services”).
This Privacy Policy applies to information we collect through the Site and during the delivery of our Services. By using the Site or purchasing our Services, you acknowledge that you have read and understood this Privacy Policy.
Your use of the Site and Services is also governed by our Terms and Conditions. Your use of the Site and Services is also governed by our Cookie Policy.
If you are located in the European Union, the United Kingdom, the European Economic Area, or Switzerland, please also review the European Privacy Rights (GDPR and UK GDPR) section, which describes additional rights and protections that apply to you.
Personal Information We Collect
We collect the following categories of information:
Identifiers.
Name, email address, phone number, mailing address, and IP address are collected when you contact us, purchase a service, or use our Services.
Professional information.
Work history, education, skills, accomplishments, target roles, resume, and LinkedIn profile content, and any other career information you provide to us through our intake questionnaire, during interviews, or in subsequent communications.
Financial information.
When a product or service is purchased from us, payment details are processed through our third-party payment processors. We do not store your full credit card number on our servers, as your web browser tokenizes it before sending it to our payment processor. Our payment processors include, but are not limited to, PayPal, Braintree, Google, Stripe, Venmo, Zelle, and similar providers.
Automatically collected information.
When you visit our Site, we automatically collect information, including your browser type, device type, operating system, pages viewed, links clicked, the website you came from, the date and time of your visit, and similar usage data. We collect this information using cookies and analytics tools (see Cookies and Tracking, below).
Audio recordings.
By using our Services, you consent to audio recording of our Experience & Strategy Interview (the intake call) and other conversations or meetings. Recordings are used to accurately reference what you told us during the Intake call to inform our writing of your resume, LinkedIn profile, or other materials. If you do not wish to be recorded, please let us know before the call begins. You may withdraw your consent and request deletion of the recording at any time.
LinkedIn login credentials.
If you purchase a service that includes LinkedIn profile installation, you may provide your LinkedIn username and password to us so we can install your new profile content in your LinkedIn account. We retain these credentials no longer than necessary to provide the requested Services. You may decline to provide us with your credentials and self-install the profile using the new profile text we provide.
How We Use Personal Information
We use the information we collect to:
- Provide, deliver, and improve our Services
- Communicate with you about your purchase, project, and account
- Process payments and prevent fraud
- Respond to questions, requests, and feedback
- Send service updates, marketing communications, and promotional messages (you may opt out at any time)
- Maintain accurate records of work performed for you, including audio recordings of consultations, for the purpose of writing accurate and complete documents
- Operate, maintain, and secure the Site
- Comply with legal obligations, including tax, accounting, and regulatory requirements
Cookies and Tracking
We use cookies and similar technologies on our Site to collect personal and other information. Cookies are small text files placed on your device that allow us to recognize your browser and remember information about your visit.
We use the following analytics and tracking tools on our Site:
- Google Analytics, to understand how visitors use our Site and improve its content
- WP Activity Log, a WordPress plugin that tracks IP login and logout events and site usage on our website backend
We do not use Facebook Pixel or advertising trackers.
You may disable cookies through your browser settings. If you disable cookies, some functionality on the Site may not work as intended. To learn more about how to manage cookies, visit your browser’s help section or refer to https://www.allaboutcookies.org.
Security and Fraud Prevention
We use the Wordfence security plugin to protect our website against malicious activity, including hacking attempts and brute-force attacks. To provide these security services, the plugin processes visitor IP addresses and may set security-related cookies. This information is used to identify and block malicious traffic and to maintain the integrity of our Site. This data may be processed by Defiant, Inc. (the providers of Wordfence) on our behalf, in accordance with their privacy policy.
Disclosure of Information
We do not sell or rent your personal information to third parties. We may disclose your information in the following circumstances:
Service providers.
We share information with third-party vendors and contractors who perform services on our behalf, including payment processors, hosting providers, email and communication tools, security providers, and similar service providers. These providers are authorized to use your information as necessary to provide services to us.
Legal compliance.
We may disclose information when required by law, subpoena, court order, regulatory request, or to investigate, prevent, or take action regarding suspected illegal activity, fraud, or threats to safety.
Business transfer.
If we are involved in a merger, acquisition, sale of assets, reorganization, dissolution, or similar transaction, your information may be transferred to an acquirer of or a successor to our business as part of that transaction.
LinkedIn login credentials.
We do not share your credentials with third parties.
Accessing and Controlling Your Personal Information
If you are a U.S. resident, you have rights regarding your personal information, including the right to:
- Know what personal information we collect about you
- Access a copy of your personal information
- Correct inaccurate personal information
- Delete your personal information, subject to legal exceptions
- Opt out of marketing communications
- Withdraw consent for processing based on consent (such as audio recording)
- Not be discriminated against for exercising applicable privacy rights
These rights may be exercised by contacting us. Subject to applicable law, we may charge a reasonable fee to cover costs for providing records of your information that we possess and that you request. We reserve the right to verify your identity before responding to data requests.
While any deletions will be reflected in active user databases (as updated within a reasonable period of time), we may retain information for backups, archiving, fraud and abuse prevention, analytics, and to satisfy other legal obligations we reasonably believe are applicable. We may retain your information to comply with laws, prevent fraud, resolve disputes, troubleshoot problems, assist with any investigations, enforce our contracts, and take other actions otherwise permitted by law.
Additional Access and Control Rights Available to all U.S. Residents
In addition to the above, U.S. residents have certain rights under various state consumer privacy laws, including (without limitation) the California Consumer Privacy Act, as amended by the California Privacy Rights Act (collectively, the “CPRA”); the Colorado Privacy Act; the Connecticut Act Concerning Personal Data and Online Monitoring; the Utah Consumer Privacy Act; the Virginia Consumer Data Protection Act; and the consumer privacy laws of Colorado, Connecticut, Delaware, Indiana, Maryland, Nebraska, New Jersey, Oregon, Rhode Island, Texas, and other U.S. states with comprehensive privacy laws (collectively, “U.S. State Consumer Privacy Laws”). Without limiting the generality of the foregoing, if you are a U.S. resident, you have the following rights under the U.S. State Consumer Privacy Laws:
Right to Know. Request disclosure of the categories of personal information we have collected about you, the sources used, the business purpose for collection, and the specific pieces of personal information we hold.
Right to Access. Request a copy of your personal information.
Right to Delete. Request that we delete personal information we have collected from you, subject to certain legal exceptions, including the right to retain records required for tax, accounting, audit, or regulatory purposes.
Right to Correct. Request correction of inaccurate personal information we maintain about you.
Right to Limit. Use of Sensitive Personal Information. Request that we limit the use of sensitive personal information (such as login credentials and financial account details) to what is necessary to provide the Services you have requested. Note that limiting the use of LinkedIn credentials may require us to discontinue the LinkedIn profile installation service.
Right to Non-Discrimination. We will not discriminate against you for exercising any of these privacy rights, including by denying services, changing prices, or altering service quality.
To exercise the rights described above, please submit a verifiable consumer request to us via this contact information link. Only you or a person registered with the Secretary of State of your State of residence, whom you authorize to act on your behalf, may make a verifiable consumer request related to your Personal Information. You may also make a verifiable consumer request on behalf of your minor child. You may make only two verifiable consumer requests for access or data portability within 12 months. For us to be able to verify your request, the request must:
- Provide sufficient information that allows us to reasonably verify you are the person about whom we collected Personal Information or an authorized representative.
- Describe your request with sufficient detail that allows us to understand, evaluate, and respond to it properly.
We cannot respond to your request or provide you with Personal Information if we cannot verify your identity or authority to make the request and confirm that the Personal Information relates to you. Making a verifiable consumer request does not require you to create an account with us. We will only use Personal Information provided in a verifiable consumer request to verify the requestor’s identity or authority to make the request. NOTE: Verification of identity or authority is not required for requests to opt out of sale or sharing of Personal Information or requests to limit uses of Personal Information.
We will endeavor to respond to a verifiable consumer request within 30 days of its receipt. If we require more time (up to 90 days), we will inform you of the reason and extension period in writing. If you have an account with us, we will deliver our written response to that account. If you do not have an account with us, we will deliver our written response by mail or electronically, at your option. Any disclosures we provide will cover only the 12 months preceding the receipt of the verifiable consumer request. The response we provide will also explain the reasons we cannot comply with a request, if applicable. If we determine that we cannot comply with a request, you can appeal this decision by contacting us. For data portability requests, we will select a format for your Personal Information that is readily usable and should allow you to transmit it from one entity to another without hindrance.
Subject to applicable law, we may charge a reasonable fee to cover costs for providing records of your Personal Information that we possess and that you request. We do not charge a fee to process or respond to your verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will explain our decision and provide a cost estimate before completing your request.
Non-Discrimination
We will not discriminate against you for exercising any of your rights of access or control of your Personal Information. Unless permitted by the applicable laws, we will not:
- Deny you goods or services.
- Charge you different prices or rates for goods or services, including by granting discounts or other benefits or by imposing penalties.
- Provide you with a different level or quality of goods or services.
- Suggest that you may receive a different price or rate for goods or services, or a different level or quality of Services.
We do not sell your personal information for monetary compensation. We do not share your personal information with third parties for cross-context behavioral advertising.
We comply with the California Online Privacy Protection Act (CalOPPA). As required by CalOPPA, we disclose that our Site does not currently respond to browser ‘Do Not Track’ signals. Some third-party tools used on our Site, such as analytics, hosting, payment, or security providers, may collect information about your online activities over time and across different websites, subject to their own privacy policies.
European Privacy Rights (GDPR and UK GDPR)
Lawful Basis for Processing
We process your personal information only when we have a lawful basis under GDPR Article 6. The lawful basis depends on the type of processing:
Performance of a contract (Article 6(1)(b)).
We rely on this basis to write your resume, LinkedIn profile, cover letter, biography, or other materials, to install your LinkedIn profile when you have purchased that service, and to provide job search coaching, interview coaching, and other Services you have purchased.
Consent (Article 6(1)(a)).
We rely on this basis when we audio-record our Experience & Strategy Interview (the intake call) and other consultations. You may withdraw your consent at any time. Withdrawal does not affect the lawfulness of processing carried out before the withdrawal.
Legitimate interests (Article 6(1)(f)).
We rely on this basis for marketing communications to past clients, for security and fraud prevention through tools such as Wordfence, and for analytics and improvement of our Site through tools such as Google Analytics. You may opt out of marketing communications at any time, and you may object to processing based on legitimate interests as described in Your GDPR Rights, below.
Legal obligation (Article 6(1)(c)).
We rely on this basis to retain transactional and financial records for tax, accounting, audit, and regulatory purposes.
International Data Transfer
Klaxos is located in the United States. When you provide us with your personal information, it is transferred from the EU, EEA, UK, or Switzerland to the United States for processing and storage.
The European Commission has not issued an adequacy decision for the United States. We do not participate in the EU-US Data Privacy Framework, and we do not rely on Standard Contractual Clauses for these transfers.
We rely on Article 49(1)(a) of the GDPR, which permits the transfer of personal information to a third country when the data subject has explicitly consented to the proposed transfer after having been informed of the possible risks.
By providing your personal information to us through the Site, our intake questionnaire, our consultations, or any other means, you explicitly consent to the transfer of your personal information to the United States. You acknowledge that:
- United States data protection laws may differ from those in your country
- United States authorities may have access rights to data stored in the United States that go beyond what is permitted in the EU, EEA, UK, or Switzerland
- You may not have the same legal remedies in the United States as you would in your home country
If you do not consent to this transfer, please do not provide us with personal information and do not purchase our Services.
Your GDPR and UK GDPR Rights
If you are located in the EU, EEA, UK, or Switzerland, you have the following rights regarding your personal information:
Right of access (Article 15).
You have the right to request a copy of the personal information we hold about you and information about how we process it.
Right to rectification (Article 16).
You have the right to request that we correct any inaccurate personal information and complete any incomplete personal information.
Right to erasure (Article 17).
You have the right to request that we delete your personal information, subject to certain legal exceptions, including our obligation to retain financial and tax records.
Right to restriction of processing (Article 18).
You have the right to request that we restrict the processing of your personal information in certain circumstances, such as while we verify the accuracy of contested data.
Right to data portability (Article 20).
You have the right to receive your personal information in a structured, commonly used, machine-readable format, and to transmit that data to another data controller.
Right to object (Article 21).
You have the right to object to processing based on our legitimate interests, including direct marketing. If you object to direct marketing, we will stop processing your personal information for that purpose.
Right to withdraw consent (Article 7(3)).
Where we rely on your consent, you have the right to withdraw consent at any time. Withdrawal does not affect the lawfulness of processing carried out before the withdrawal.
Right not to be subject to automated decision-making (Article 22).
You have the right not to be subject to a decision based solely on automated processing that produces legal or similarly significant effects. We do not engage in automated decision-making of this kind.
How to Exercise Your Rights
To exercise any of these rights, please contact us. We may need to verify your identity before we can respond to your request.
We will respond to your request within approximately 30 days. In complex cases, we may extend this period by an additional two months and will notify you of the extension.
There is no fee for exercising your rights, except where requests are manifestly unfounded or excessive, in which case we may charge a reasonable fee or refuse to act on the request.
Data Retention
We retain your personal information as described in the Data Retention section.
Right to Lodge a Complaint
If you believe that our processing of your personal information violates the GDPR, the UK GDPR, or the FADP, you have the right to lodge a complaint with a supervisory authority. The competent supervisory authority is the data protection authority in the EU member state where your habitual residence, place of work, or the alleged violation occurred.
For UK residents, the supervisory authority is the Information Commissioner’s Office (ICO) at ico.org.uk.
For Swiss residents, the supervisory authority is the Federal Data Protection and Information Commissioner (FDPIC) at edoeb.admin.ch.
We encourage you to contact us first so we can address your concerns.
Data Retention
We retain personal information for as long as necessary to provide our Services and to comply with our legal, tax, accounting, and regulatory obligations:
- Transactional and financial records (invoices, payment records, tax documents) are retained for at least seven (7) years for tax, audit, and regulatory purposes
- Resume drafts, intake materials, and audio recordings are retained for as long as you may reasonably expect to use them as a returning client, or until you request deletion
- Marketing communication records are retained until you unsubscribe
You may request earlier deletion of your information at any time, subject to our legal obligation to retain certain records.
Data Security
We use commercially reasonable safeguards to protect your personal information against loss, theft, unauthorized access, disclosure, alteration, and destruction. We use Secure Sockets Layer (SSL) encryption to transmit sensitive information.
No method of transmission over the internet or electronic storage is 100% secure. While we make every effort to protect your information, we cannot guarantee absolute security.
Children’s Privacy
Our Services are not directed to children under 18. We do not knowingly collect personal information from children under 18. If you believe we have collected information from a child under 18, please contact us, and we will delete the information.
External Links
Our Site may contain links to third-party websites and services. We are not responsible for the privacy practices or content of those sites. We encourage you to review the privacy policies of any third-party site you visit.
International Users
Our Site is operated from the United States. Information we collect is stored and processed in the United States. If you are located outside the United States, you should be aware that the United States may have data protection laws that differ from those in your country. By using our Site or Services, you consent to the transfer of your information to the United States.
If you are located in the European Union, the United Kingdom, the European Economic Area, or Switzerland, please review the European Privacy Rights (GDPR and UK GDPR) section above for additional protections that apply to your information.
Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other reasons. When we update the Policy, we will revise the “Last revised” date at the bottom of this page. Your continued use of the Site or Services after we post changes constitutes your acceptance of the updated Policy.
Contact Us
If you have questions about this Privacy Policy or about how we handle your personal information, please contact us.
Our mailing address:
LinkedIn Profile and Resume Writing Services LLC, d/b/a Klaxos
15044 Sandpiper Ln, Unit 7 #129
Naples, FL 34114