Privacy Policy

1.1 Information You Provide Directly

We collect personal information that you voluntarily provide to us through the following interactions:

• Contact Form: First name, last name, email address, phone number, company name, role/title, referral source, project start date, and project details. This information is stored in our database to facilitate our response to your inquiry.
• Resource Downloads: When you download certain gated resources (such as the R.O.T. Framework Guide or AI Readiness Checklist), we collect your email address along with the resource you downloaded and a timestamp. This information is stored in our database.
• Scheduling a Discovery Call: When you book a call through our embedded scheduling tool (powered by Cal.com), Cal.com collects your name, email address, and selected time slot. This data is processed and stored by Cal.com, not on our servers. See Section 3 for details.
• R.O.T. Cost Calculator to Scheduling Flow: If you use our R.O.T. Cost Calculator and then click “Schedule a Diagnostic Call,” your calculator inputs (such as app count and cost estimates) are passed to Cal.com as pre-filled meeting notes along with your booking details. This allows our team to prepare for your call. These calculator inputs are not stored on our servers but are transmitted to Cal.com as part of the booking.
• Direct Communications: Any information you include in emails to info@evilgenius.io, phone calls to 877-EVIL-PRO, or other direct communications with our team.

1.2 Information Collected Automatically

Our Site collects minimal technical information automatically:

• Server Logs: Our hosting provider (Vercel) processes all HTTP requests and maintains server logs that may include IP addresses, request timestamps, URLs accessed, and HTTP headers (such as browser type and referring URL). These logs are maintained by Vercel in accordance with their privacy policy.
• No Analytics or Tracking: We do not use analytics, tracking pixels, tag managers, or any behavioral tracking tools. No analytics services (such as Google Analytics, Mixpanel, or similar) are integrated into the Site.
• No Cookies: Our application code does not set cookies, use localStorage, or use sessionStorage. However, our embedded Cal.com scheduling widget may set its own cookies when loaded. We do not control Cal.com’s cookies. See Cal.com’s privacy policy for details.

1.3 Information We Do Not Collect

To be clear about our practices: we do not collect payment or billing information through the Site, we do not use device fingerprinting or any form of device identification, and we do not use advertising networks, social media tracking pixels (such as LinkedIn Insight Tag or Meta Pixel), or retargeting tools.

We use the information we collect for the following purposes:

• To Respond to Inquiries: Processing contact form submissions and communicating with you about your analytics challenges and our services.
• To Deliver Resources: Fulfilling resource download requests and understanding which resources are most useful to our audience.
• To Prepare for Consultations: Using information provided through the contact form or calculator-to-scheduling flow to prepare for discovery calls and engagement scoping.
• To Operate the Site: Maintaining the security, performance, and availability of the Site through standard server logging.
• To Protect Our Business: Detecting abuse, enforcing our Terms of Service, and complying with legal obligations.

We do not use your information for advertising, behavioral profiling, or automated decision-making.

We use a small number of third-party services to operate the Site. Each service receives only the data necessary for its function:

Cal.com (Scheduling)

Cal.com provides the embedded scheduling tool on our Site. When you book a discovery call, Cal.com receives and processes your name, email address, selected time slot, and (if booking from the R.O.T. Cost Calculator) your calculator inputs as meeting notes. Cal.com processes this data according to its own privacy policy: cal.com/privacy.

Supabase (Database)

Supabase provides the database infrastructure where we store contact form submissions and resource download records. Data is transmitted securely to Supabase’s hosted PostgreSQL database. Supabase processes this data according to its own privacy policy: supabase.com/privacy.

Vercel (Hosting)

Vercel provides web hosting and content delivery for the Site. Vercel processes all HTTP requests and has access to server logs, which may include IP addresses. Vercel processes this data according to its own privacy policy: vercel.com/legal/privacy-policy.

Google Fonts (Limited Use)

Google Fonts are loaded at build time and self-hosted for the main Site, meaning Google does not receive visitor data during normal browsing. However, if you download a PDF report from the R.O.T. Cost Calculator, the report HTML references Google Fonts directly, which may transmit your IP address to Google when the report is opened. Google’s privacy policy: policies.google.com/privacy.

We do not use any other third-party services, analytics tools, advertising networks, marketing platforms, or AI/LLM integrations on the Site.

We do not sell your personal information. We share your information only in the following limited circumstances:

• Third-Party Service Providers: As described in Section 3, we share information with Cal.com, Supabase, and Vercel solely as necessary for them to provide their services to us.
• Professional Engagements: If you become a client, information you provide during the inquiry process may be used in connection with engagement scoping, project delivery, and ongoing account management.
• Legal Requirements: We may disclose your information if required by law, regulation, legal process, or governmental request, or to protect the rights, property, or safety of Evil Genius MindWorks, our clients, or others.
• Business Transfers: In the event of a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change via the Site or email.

• Contact form submissions are retained for the duration of our business relationship and for a reasonable period thereafter to support follow-up communications and legal compliance.
• Resource download records (email address, resource identifier, and timestamp) are retained to understand content engagement and for a reasonable period thereafter.
• Scheduling data is retained by Cal.com according to their data retention policies.
• Server logs are retained by Vercel according to their data retention policies.

You may request deletion of your personal information at any time by contacting us at info@evilgenius.io. Upon receiving a verified request, we will delete your information from our database and request deletion from applicable third-party providers where feasible.

Our application code does not set any cookies, use localStorage, or use sessionStorage. We do not use analytics, tracking pixels, or behavioral tracking of any kind.

The Cal.com scheduling embed loaded on our Site may set its own cookies. These cookies are controlled by Cal.com, and we encourage you to review Cal.com’s cookie policy for details.

7.1 California Residents (CCPA/CPRA)

If you are a California resident, you have the right to: know what personal information we collect, use, and disclose about you; request deletion of your personal information, subject to certain exceptions; opt out of sale or sharing of your personal information (we do not sell or share personal information for cross-context behavioral advertising); and non-discrimination for exercising your privacy rights.

To exercise these rights, contact us at info@evilgenius.io or call 877-EVIL-PRO.

7.2 Other U.S. State Privacy Laws

Residents of states with applicable consumer privacy legislation (including but not limited to Virginia, Colorado, Connecticut, Texas, and Oregon) may have similar rights to access, correct, delete, or opt out of certain data processing activities. Contact us to exercise any applicable rights.

7.3 European Economic Area and United Kingdom (GDPR/UK GDPR)

If you are located in the EEA or UK, our legal basis for processing your personal information is your consent (when you voluntarily submit a form or book a call) and our legitimate interests in operating and improving our business. You have the right to access, rectify, erase, restrict processing, data portability, and to object to processing. You also have the right to lodge a complaint with your local data protection authority. To exercise these rights, contact us at info@evilgenius.io.

We implement reasonable administrative, technical, and physical safeguards to protect your personal information. These include encrypted data transmission (all traffic served over HTTPS via Vercel), server-side-only database access keys, and limiting data access to necessary personnel. However, no method of electronic transmission or storage is completely secure, and we cannot guarantee absolute security.

The Site contains links to third-party websites, including LinkedIn and Qlik. This Privacy Policy does not apply to those websites. We encourage you to review the privacy policies of any third-party sites you visit.

The Site is intended for business professionals and is not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If we become aware that we have inadvertently collected information from a child under 16, we will take steps to delete such information promptly. If you believe a child has provided us with personal information, please contact us at info@evilgenius.io.

Evil Genius MindWorks is based in the United States. If you access the Site from outside the United States, your information may be transferred to, stored, and processed in the United States through our service providers (Vercel, Supabase, and Cal.com), where data protection laws may differ from those in your jurisdiction. By using the Site, you consent to the transfer of your information to the United States.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make material changes, we will update the “Last Updated” date at the top of this page. We encourage you to review this Privacy Policy periodically.

If you have questions about this Privacy Policy or wish to exercise any of your rights, please contact us:

Evil Genius MindWorks LLC
11 Herbert P Almgren Dr, Suite A10
Agawam, MA 01001

Email: info@evilgenius.io
Phone: 877-EVIL-PRO (877-384-5776)