Privacy Policy

Last Updated: March 7, 2026

This Privacy Policy describes how CADA Partners LLC, a Delaware limited liability company ("CADA," "we," "us," or "our"), handles personal information in connection with our professional grant consulting services ("Services") and our website at getcada.com (the "Site"). In this policy, "you" and "your" refer to individuals or entities that visit our Site, use our Services, or otherwise interact with us. Where provisions apply specifically to paying clients ("Clients"), this is noted.

We are a professional services firm, not a software company. We collect information to deliver consulting services to you, process payments, and communicate about your engagement. This policy explains what we collect, why, and what choices you have.

1. Information We Collect

1.1 Client Information

When you purchase our Services, we collect information necessary to deliver them, including:

• Contact and business details: Your name, email address, company name, company website, and billing address.
• Engagement materials: Business descriptions, technical documentation, team backgrounds, market information, and other materials you provide during intake or throughout the engagement.
• Communications: Information exchanged over email or video calls during the course of our work together.

1.2 Payment Information

We use a third-party payment processor to handle payments. When you complete a purchase, our payment processor collects your payment card details and billing information directly. We receive transaction confirmations and limited billing details but do not store your full card number.

1.3 Website Data

When you visit our Site, we and our third-party service providers may automatically collect technical information such as your IP address, browser type, device information, pages visited, and referring URLs. Our Site uses the following categories of tracking technologies:

• Site hosting and analytics: Our hosting platform collects standard server logs and site analytics data.
• Advertising measurement: We use tracking pixels provided by social media and advertising platforms that collect information about your visit, including page URLs and metadata, and may associate your visit with your profile on those platforms if you are logged in. This data is used to measure the effectiveness of our advertising campaigns and to understand the professional demographics of our Site visitors.
• Visitor identification: We use business intelligence tools that may identify business visitors to our Site using IP address and publicly available business data. This data is used to understand which companies are visiting our Site for sales and marketing purposes.

We use this data to understand Site traffic, measure advertising effectiveness, and support our business development efforts.

1.4 Information from Third Parties

We may obtain business contact information (such as names, email addresses, job titles, and company names) from third-party data enrichment and prospecting services to support our marketing and business development activities. This information is used for targeted advertising and outreach to potential clients.

2. How We Use Your Information

• Delivering Services: Researching your technology and market, preparing grant pitches, proposals, and related Deliverables (as defined in our Terms of Service).
• Processing transactions: Completing purchases, issuing refunds, and managing invoices.
• Communicating with you: Sending order confirmations, project updates, and responding to your questions.
• Improving our Services: Using anonymized, aggregated insights from engagements to refine our methodologies and processes, as described in our Terms of Service (Section 7.4). Anonymized insights derived from engagement data may be retained indefinitely even after the underlying engagement files are deleted, as these insights cannot be used to identify you or your company.
• AI-assisted preparation: We may use artificial intelligence tools to assist in researching, drafting, and refining Deliverables. When we do, portions of your engagement materials may be processed by third-party AI systems. We use AI tools under agreements or configurations that restrict the provider from training on client data. Our use of AI tools does not change our confidentiality obligations to you under our Terms of Service (Section 8).
• Marketing and advertising: Creating targeted advertising audiences on social media and advertising platforms using business contact information, and conducting outreach to potential clients.
• Legal and compliance purposes: Maintaining records as required by tax, accounting, or other legal obligations.

Our deposit and refund terms are described in our Terms of Service and are based on service delivery commitments, not on the provision of personal information. We do not offer financial incentives in exchange for personal information.

3. How We Share Your Information

We do not sell your personal information. We may share limited personal information with advertising platforms for targeted advertising as described in Section 3.9. Otherwise, we share personal information only in these circumstances:

3.1 Service Providers

We work with third-party service providers, including payment processors, cloud storage providers, email platforms, and video conferencing tools, to support our operations. These providers access your information only as needed to perform services on our behalf, under contracts that restrict their use and disclosure of your personal information consistent with applicable law.

3.2 Contractors and Subcontractors

We may engage qualified contractors or subcontractors to assist in delivering the Services. All contractors who access client information are bound by written agreements that include confidentiality obligations, restrictions on the use and disclosure of personal information to the purposes of the engagement, and data protection requirements consistent with applicable law.

3.3 Professional Advisors

We may share information with our legal counsel, accountants, or other professional advisors as needed for business operations, subject to their professional confidentiality obligations.

3.4 Government Agencies

Information included in grant applications is submitted to the relevant funding agency (such as NSF) at your direction and on your behalf. Grant applications may contain proprietary technology descriptions, trade secrets, and competitive intelligence. While federal agencies generally protect proprietary and confidential commercial information from public disclosure under applicable exemptions (such as FOIA Exemption 4), we cannot guarantee how an agency will handle your information once submitted. Review panels include external evaluators who are subject to confidentiality requirements but are outside your or our control. Certain information about funded awards, including abstracts, is made publicly available by the agency.

3.5 At Your Direction

If you instruct us to share information with a third party (for example, a teaming partner or co-applicant on a grant), we will do so in accordance with your instructions.

3.6 Legal Requirements

We may disclose your information when required by law, subpoena, court order, or valid legal process. We may also disclose information when necessary to enforce our Terms of Service or protect the safety of any person, provided such disclosure is limited to what is reasonably necessary in the circumstances.

3.7 Business Transfers

If CADA is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify affected Clients by email before or promptly after the transfer takes effect. The acquiring entity will be bound by this Privacy Policy with respect to information collected prior to the transfer, unless you are notified of changes and given an opportunity to opt out.

3.8 Aggregated Data

We may share aggregated, anonymized data that cannot reasonably identify you, such as general statistics about grant success rates or industry trends.

3.9 Advertising Platforms

We may share or upload personal information, including names, email addresses, and company information, to social media and advertising platforms for the purpose of creating matched or custom audiences for targeted advertising campaigns. This information may include data obtained from third-party sources (see Section 1.4) and is not limited to current Clients. Most advertising platforms provide opt-out controls in their privacy settings.

4. How We Protect Your Information

We handle sensitive business information, including proprietary technology descriptions and competitive intelligence, as part of our Services. We take this seriously.

We implement reasonable administrative, technical, and organizational safeguards appropriate for a professional services firm handling confidential client information. These include access controls limiting who within our organization can view your data, encryption of data in transit, and secure storage practices.

All CADA team members and contractors with access to client information are bound by confidentiality obligations, as described in our Terms of Service (Section 8).

No method of transmission or storage is completely secure. While we take reasonable steps to protect your information, we cannot guarantee absolute security.

4.1 Data Breach Notification

In the event of a data breach involving your personal information, we will notify you in accordance with applicable state law. Our notification will describe the nature of the breach, the types of information involved, and steps you can take to protect yourself.

5. Data Retention

We retain your information based on the type of data and our obligations:

• Engagement files (intake materials, pitch documents, communications): For the duration of the engagement plus three (3) years, consistent with the confidentiality survival period in our Terms of Service (Section 8.6).
• Financial and transaction records (payment confirmations, invoices, refund and deposit records): Seven (7) years, as required by tax and accounting regulations.
• Strategic advisory fee records (application status, award tracking, engagement materials necessary to verify fee obligations): Until the later of twenty-four (24) months after application submission or resolution of any outstanding fee obligations. We retain sufficient information to verify and enforce Strategic Advisory Fee obligations under our Terms of Service, including records that allow us to determine whether a subsequent application involves substantially similar technology to a Project Pitch we prepared.
• Website and analytics data (visitor logs, tracking pixel data, IP addresses): Thirteen (13) months from collection, unless associated with an active engagement or sales inquiry.

Notwithstanding the foregoing retention periods, we may retain information for longer periods when required by law, regulation, or a legal hold in connection with actual or anticipated litigation, government investigation, or dispute resolution.

If your engagement is terminated before completion, the retention periods described above begin from the date of termination. Upon termination, we will cease active use of your information for service delivery but will retain it as described in this section for record-keeping, compliance, and enforcement of surviving obligations.

You may request earlier deletion of your engagement files, provided there are no outstanding or potential Strategic Advisory Fee obligations (including during the twenty-four-month period following application submission) and the data is not required for legal or regulatory compliance. To make a request, contact us at justin@getcada.com.

6. Your Privacy Rights

You have the following rights regarding your personal information:

• Access: You may request a summary of the personal information we hold about you.
• Correction: You may request that we correct inaccurate information.
• Deletion: You may request that we delete your personal information, subject to our retention obligations described in Section 5.
• Opt out of marketing: You may opt out of promotional emails at any time by following the unsubscribe instructions in the email or by contacting us. Transactional communications related to active engagements (such as project updates, fee notices, and award-related correspondence) are not marketing and cannot be opted out of.
• Limit use of sensitive information: If we collect sensitive personal information as defined under applicable state law, we use it only for the purposes of delivering the Services you have requested and not for profiling or advertising purposes.

We do not sell personal information. We may share limited personal information with advertising platforms for targeted advertising as described in Section 3.9. We do not use Client engagement data for cross-context behavioral advertising.

To exercise any of these rights, email us at justin@getcada.com. We will verify your identity by confirming the request originates from the email address associated with your engagement, or by requesting additional information sufficient to match our records. We may decline requests we cannot reasonably verify. We will respond within forty-five (45) days. If we need additional time, we will notify you and may extend the response period by up to forty-five (45) additional days.

7. State Privacy Disclosures

7.1 California (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act. In the preceding twelve months:

• Categories collected: Identifiers (name, email), commercial information (transaction history), professional information (company, role), internet or other electronic network activity information (site visits, page views, interactions with tracking technologies), and information you provide in intake materials.
• Sources: Directly from you, from our payment processor, from third-party data enrichment and prospecting services (see Section 1.4), and automatically through tracking technologies on our Site (see Section 1.3).
• Purpose: Delivering professional services, processing payments, communicating about engagements, and marketing and advertising (see Section 2).
• Sale or sharing: We do not sell personal information. We share limited personal information (business contact details) with social media and advertising platforms for targeted advertising purposes, as described in Section 3.9. California residents may opt out of this sharing by contacting us at justin@getcada.com.

CADA collects and processes personal information as a business for CCPA purposes. You have the right to know, delete, and correct your information, and the right to non-discrimination for exercising these rights. Contact us at justin@getcada.com to make a request.

7.2 Other States

Residents of states with comprehensive consumer privacy laws (including Colorado, Connecticut, Delaware, Indiana, Iowa, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Tennessee, Texas, and Virginia) have rights that may include access, correction, deletion, and opt-out of the sale of personal data, as applicable under their state's law.

If we decline a request, you may appeal by emailing us at justin@getcada.com with "Privacy Appeal" in the subject line. We will respond to appeals within sixty (60) days. If we deny your appeal, we will provide you with information about how to contact your state attorney general to submit a complaint.

8. Cookies and Tracking

Our Site uses cookies and similar tracking technologies. These include:

• Functional cookies: Used by our hosting platform for basic site functionality such as navigation and form submission.
• Analytics and advertising cookies: Advertising measurement pixels and visitor identification tools (described in Section 1.3) place cookies or use similar technologies to collect information about your visit. Some of these tools may enable cross-site tracking if you are logged in to the associated platform.

You may control or block cookies through your browser settings, though doing so may affect Site functionality. Most advertising platforms provide opt-out controls in their privacy settings.

We honor Global Privacy Control (GPC) signals. When we detect a GPC signal, we treat it as a request to opt out of any sale or sharing of personal information associated with that browser, consistent with applicable state law.

9. Children

Our Services are designed for businesses and their authorized representatives. We do not knowingly collect personal information from individuals under 16 in their individual capacity. If you believe we have inadvertently collected such information, contact us at justin@getcada.com and we will delete it promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last Updated" date at the top and post the revised version on our Site. Material changes will take effect thirty (30) days after posting for active Clients. We will notify active Clients of material changes by email.

11. Contact

Questions about this Privacy Policy or our data practices:

Email: justin@getcada.com
Mail: CADA Partners LLC, 1603 Capitol Ave Ste 415 PMB 971343, Cheyenne, WY 82001