Privacy Policy

XEO CO ("Company," "we," "our," or "us") is committed to protecting the privacy and security of your personal information. This Privacy Policy describes how we collect, use, store, and safeguard information when you visit our website (www.xeoco.net), engage with our services, or communicate with our team.

We encourage you to read this policy carefully. By using our website or engaging our services, you acknowledge that you have read and understood the practices described in this policy.

1. Information We Collect

We may collect the following categories of information depending on how you interact with us.

Personal Information Provided Directly by You

Full name, job title, and company name provided through contact forms, service inquiries, or engagement agreements. Email address and phone number submitted for communication purposes. Project requirements, technical specifications, or business information shared during consultations or service delivery. Billing and payment information necessary to process invoices and service fees.

Information Collected Automatically

IP address and general geographic location derived from your IP address. Browser type, version, operating system, and device information. Pages visited, time spent on each page, referring URL, and click behavior. Cookies and similar tracking identifiers as described in our Cookies Policy.

Information from Third Parties

We may receive limited information from analytics providers, advertising networks, or business partners to help improve our services and website performance. We do not purchase or acquire personal data from third-party data brokers.

2. How We Use Your Information

We use the information we collect for the following purposes.

To respond to inquiries, schedule consultations, and communicate about potential or active engagements. To deliver, manage, and improve our professional services. To process payments and maintain accurate financial records. To operate, maintain, and improve our website and digital infrastructure. To analyze website traffic, usage patterns, and performance metrics. To send relevant service updates or communications you have opted into. To comply with applicable laws, regulations, and legal obligations. To detect, prevent, and address fraud, security issues, or technical problems.

We do not use your personal information for automated decision-making or profiling.

3. Legal Basis for Processing

Where applicable law requires a legal basis for processing personal data, we rely on the following.

Contractual necessity when processing is required to fulfill our obligations under a service agreement. Legitimate interest when processing is necessary for our business operations, provided your rights do not override those interests. Consent when you have provided explicit consent for a specific processing activity, which you may withdraw at any time. Legal obligation when processing is necessary to comply with applicable laws or regulations.

4. Sharing and Disclosure of Information

We do not sell, rent, or trade your personal information to third parties for their marketing purposes.

We may share information with the following categories of recipients, strictly on a need-to-know basis.

Trusted Service Providers who assist with hosting, analytics, payment processing, customer relationship management, or other operational functions, and who are contractually obligated to protect your data. Professional Advisors including legal counsel, auditors, and accountants as necessary to operate our business. Law Enforcement and Regulatory Authorities when required to comply with applicable law, respond to legal process, or protect the rights, property, or safety of XEO CO, our clients, or the public. Business Transfers in connection with a merger, acquisition, reorganization, or sale of assets, in which case personal information may be transferred to the successor entity.

5. Data Retention

We retain personal information only for as long as necessary to fulfill the purposes described in this policy, comply with our legal and contractual obligations, resolve disputes, and enforce agreements. When personal data is no longer required, we securely delete or anonymize it in accordance with our data retention schedule.

6. Data Security

We implement appropriate technical and organizational measures to protect personal information against unauthorized access, alteration, disclosure, or destruction. These measures include encrypted data transmission (TLS/SSL), access controls, secure hosting infrastructure, regular security assessments, and employee training on data handling.

No method of electronic transmission or storage is completely secure. While we strive to protect your data, we cannot guarantee absolute security.

7. Your Rights and Choices

Depending on your location and applicable law, you may have the following rights regarding your personal data.

Right to Access. You may request a copy of the personal data we hold about you.
Right to Correction. You may request correction of inaccurate or incomplete data.
Right to Deletion. You may request that we delete your personal data, subject to legal retention requirements.
Right to Restrict Processing. You may request that we limit how we process your data under certain circumstances.
Right to Data Portability. You may request a copy of your data in a structured, commonly used, machine-readable format.
Right to Object. You may object to processing based on legitimate interest.
Right to Withdraw Consent. Where processing is based on consent, you may withdraw consent at any time without affecting the lawfulness of prior processing.
Right to Non-Discrimination. We will not discriminate against you for exercising your privacy rights.

To exercise any of these rights, please contact us at info@xeoco.net. We will respond to verified requests within the timeframe required by applicable law.

8. International Data Transfers

If you are located outside the United States, please be aware that your information may be transferred to and processed in the United States, where our servers and operations are located. We take appropriate measures to ensure that international data transfers comply with applicable data protection laws.

9. Children's Privacy

Our website and services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If we become aware that we have inadvertently collected data from a child, we will take steps to delete it promptly.

10. Third-Party Links

Our website may contain links to external websites, tools, or services operated by third parties. We are not responsible for the privacy practices, content, or security of those third-party sites. We encourage you to review their privacy policies before providing any personal information.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, services, or applicable law. When we make material changes, we will update the "Last Updated" date at the top of this page. Continued use of our website or services after such changes constitutes your acceptance of the updated policy.

12. Contact Us

If you have questions, concerns, or requests related to this Privacy Policy or our data practices, please contact us at:

XEO CO
1401 21st Street STE R, Sacramento, CA 95811, United States
Email: info@xeoco.net