Introduction
Valeris Advisory Group (“Valeris,” “we,” “us,” or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website valerisadvisorygroup.com (the “Site”). Please read this policy carefully. By using the Site, you consent to the practices described herein.
Information We Collect
Information You Provide
We may collect personal information that you voluntarily provide when you:
- Submit a contact form or inquiry through our Site
- Subscribe to our newsletter or email communications
- Engage with us through email, phone, or other direct communication
- Request information about our advisory or fractional executive services
- Create an account or log in to the Site
This information may include your name, email address, phone number, company name, job title, and the content of your message or inquiry.
Information Collected Automatically
When you visit our Site, certain information is collected automatically, including:
- Device and Browser Information: IP address, browser type and version, operating system, device type, and screen resolution
- Usage Data: Pages visited, time spent on pages, referring URLs, click patterns, and navigation paths
- Location Data: General geographic location based on IP address
- Security Data: Login attempts, failed authentication events, and session activity for security monitoring purposes
Cookies and Tracking Technologies
Our Site uses cookies and similar tracking technologies to enhance your experience. These include:
- Essential Cookies: Required for the Site to function properly, including session management, login authentication, and security features (such as CAPTCHA verification and session tracking)
- Analytics Cookies: Help us understand how visitors interact with our Site so we can improve its performance and content
- Performance Cookies: Used by our content delivery network (Cloudflare) to optimize site speed and security
- Caching Cookies: Used by WP-Optimize to cache page content for faster load times
You can control cookie preferences through your browser settings. Disabling certain cookies may affect your ability to use some features of the Site.
How We Use Your Information
We use the information we collect for the following purposes:
- To respond to your inquiries and provide the services you request
- To send you newsletters and communications you have opted into
- To improve and optimize our Site’s performance, content, and user experience
- To analyze Site usage trends and visitor behavior in aggregate
- To protect the security and integrity of our Site, including monitoring for unauthorized access, brute force attacks, and malicious activity
- To maintain automated backups of the Site and its data for disaster recovery
- To comply with legal obligations and enforce our terms
Third-Party Services
Our Site integrates with the following third-party services that may collect or process data:
Content Delivery and Security
- Cloudflare: Content delivery, performance optimization, DNS, and security protection. Cloudflare may process visitor IP addresses and traffic data. See Cloudflare’s Privacy Policy.
- Cloudflare Turnstile: CAPTCHA challenge on our login form to prevent automated attacks. Turnstile processes your IP address and browser data to verify you are human. See Cloudflare’s Privacy Policy.
Site Functionality
- Contact Form 7: Processes contact form submissions. Form data is stored on our server and is not transmitted to third parties by the plugin itself.
- Elementor: Page builder used to create our Site’s pages. May load fonts from Google Fonts. Does not independently collect visitor data.
- Google Fonts: Web fonts loaded from Google’s servers to display text on our Site. Google may collect your IP address and browser information when fonts are loaded. See Google’s Privacy Policy.
- Rank Math SEO: Helps optimize our Site for search engines. This plugin does not collect personal visitor data.
- Zevonix Search: Provides on-site search functionality. Search queries may be logged for improving search relevance.
Communications
- Zevonix Communications: Manages newsletter subscriptions, email campaigns, and subscriber data. Stores subscriber email addresses, names, and subscription preferences. Subscriber data is stored on our server.
Security
- Zevonix Security: Provides firewall protection, login monitoring, two-factor authentication (2FA), malware scanning, and brute force prevention. This plugin logs IP addresses, login attempts (successful and failed), session activity, and security events. If you enable 2FA, your authenticator app secret and backup codes are stored securely on our server. IP addresses of blocked or suspicious visitors may be temporarily stored for security purposes.
Backup and Recovery
- Zevonix Backup: Creates automated backups of our Site’s files and database. Backups are encrypted and stored on IDrive e2 cloud storage.
- IDrive e2: S3-compatible cloud storage service used to store Site backups. Backup data may include database records containing user information. Backups are retained according to our retention policy and automatically deleted after the configured retention period. See IDrive’s Privacy Policy.
Performance
- WP-Optimize: Database optimization, image compression, and page caching. Processes are performed locally on our server and do not transmit data to third parties.
External API Calls
- QR Server API (api.qrserver.com): Used to generate QR codes for two-factor authentication setup. Your authenticator app details (app name and account identifier) are sent to this service to generate the QR image. No passwords or authentication secrets are transmitted.
- WordPress.org API: Used to check for plugin and theme updates and to verify WordPress core file integrity. Your site URL and server information may be included in update check requests.
Data Retention
We retain personal information only for as long as necessary to fulfill the purposes for which it was collected, including to satisfy any legal, accounting, or reporting requirements.
- Contact form submissions: Retained for up to 24 months unless you request earlier deletion
- Newsletter subscriptions: Remain active until you unsubscribe
- Security logs: IP addresses, login attempts, and security events are retained for up to 90 days
- Site backups: Retained on IDrive e2 according to configured retention policy (default 30 days), then automatically deleted
- 2FA data: Authentication secrets and backup codes are retained while 2FA is enabled on your account and deleted if you disable 2FA or your account is removed
Data Security
We implement appropriate technical and organizational measures to protect your personal information, including:
- SSL/TLS encryption for all data transmitted between your browser and our Site
- Cloudflare Web Application Firewall (WAF) and Zevonix Security firewall for threat protection
- Brute force login protection with automatic IP lockouts
- Two-factor authentication (2FA) available for user accounts
- Automated malware scanning and file integrity monitoring
- Regular automated backups stored on encrypted cloud storage
- Security headers (HSTS, CSP, X-Frame-Options) to prevent common web attacks
- Regular security monitoring and updates managed by Zevonix
- Access controls limiting who can view personal data
While we strive to use commercially acceptable means to protect your personal information, no method of transmission over the Internet or electronic storage is 100% secure.
Your Rights
Depending on your location, you may have the following rights regarding your personal information:
- Access: Request a copy of the personal data we hold about you
- Correction: Request that we correct inaccurate or incomplete data
- Deletion: Request that we delete your personal data, subject to legal retention requirements
- Opt-Out: Unsubscribe from marketing communications at any time
- Portability: Request your data in a structured, machine-readable format
To exercise any of these rights, please contact us at [email protected].
Children’s Privacy
Our Site is not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have inadvertently collected such information, please contact us immediately and we will take steps to delete it.
Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, or legal requirements. The “Last updated” date at the top of this page indicates when the policy was most recently revised. We encourage you to review this page periodically.
Contact Us
If you have questions or concerns about this Privacy Policy or our data practices, please contact us:
Valeris Advisory Group
Email: [email protected]
Website: valerisadvisorygroup.com/contact-us