LowCode Agency Privacy Policy

LowCode Agency LLC ("LowCode," "we," "us," or "our") respects your privacy. This Privacy Policy describes how we collect, use, share, and protect personal information when you visit our websites, including https://lowcode.agency and any related subdomains (collectively, the "Site"), or use any tools, calculators, forms, downloads, or other interactive features offered on the Site (the "Services").

This Privacy Policy applies to information collected through the Site and Services. It does not apply to information you provide to us, or that we collect about you, in connection with services we deliver under a separately signed Master Services Agreement, Statement of Work, or other engagement contract — those engagements are governed by the data-handling terms of those contracts.

By accessing the Site or using the Services, you agree to this Privacy Policy. If you do not agree, do not use the Site or Services.

1. Information We Collect

1.1 Information you provide directly

We collect information you submit to us, including:

• Contact information: name, email address, phone number, company name, job title, and country.
• Project inquiry information: project descriptions, requirements, budgets, timelines, and any other information you include in contact forms, scoping calls, or project briefs.
• Free-tool inputs: information you enter into our free tools, including the AI Readiness Scorecard, AI Readiness Voice Audit, MVP Assessment, ROI Calculator, Development Cost Calculator, and similar interactive tools.
• Newsletter and content signups: email address and any preferences you indicate when subscribing.
• Communications: the content of emails, messages, scheduled calls, and other communications you send to us.

1.2 Information collected automatically

When you visit the Site, we and our third-party providers automatically collect:

• Usage data: pages viewed, links clicked, scroll depth, time on page, referring URL, exit URL, and similar interaction data.
• Device data: IP address, approximate location derived from IP, device type, operating system, browser type and version, screen size, language, and time zone.
• Session data: mouse movements, clicks, scrolls, and recordings of interactions with the Site, captured by session-replay and heat-mapping technologies described in Section 2.
• Cookies and similar identifiers: see Section 2.

2. Tracking Technologies

The Site uses the following categories of tracking technologies. The specific tools listed below reflect our current configuration and are subject to change; we will update this Section when we add or remove tools.

2.1 Analytics

• Google Analytics 4 (Google LLC) — page-level traffic analytics, conversion tracking, and audience reporting. Data is transmitted to Google servers, which may be located outside your country of residence.
• PostHog (PostHog Inc.) — product analytics, event tracking, and behavioral analytics for the Site and any tools that capture user interactions.

2.2 Session replay and heat-mapping

• Microsoft Clarity (Microsoft Corporation) — captures session recordings, heat-maps, and behavioral analytics including mouse movements, clicks, scrolls, and the content of pages you view on the Site. Recordings may be replayed by us for product, design, and conversion-rate analysis.

2.3 Tag management

• Google Tag Manager (Google LLC) — used to load and manage some or all of the tracking technologies described in this Section. Tag Manager itself does not collect personal information but enables the loading of tools that do.

2.4 Advertising and attribution

We may use third-party advertising and conversion-tracking pixels, including but not limited to Meta (Facebook) Pixel, LinkedIn Insight Tag, and Google Ads conversion tracking, to measure the effectiveness of advertising and to retarget visitors. Where active, these tools may collect IP address, page-view information, and persistent identifiers. The active set of advertising pixels at any time may vary; current configuration is reflected in our Google Tag Manager container.

2.5 Email and CRM tracking

• Brevo (Sendinblue SA) — email delivery, list management, and engagement tracking (open events and click events) for newsletters and transactional email sent from the Site.

Marketing and sales emails sent from us may include open-tracking and click-tracking pixels embedded in the email body. These pixels record when an email is opened and when links are clicked.

2.6 Embedded third-party content

The Site embeds content and tools provided by third parties, including without limitation Calendly (scheduling), YouTube (video), and similar embedded providers. Use of those embeds is subject to the privacy policies of those providers.

2.7 Consent and opt-out

By accessing the Site and continuing to use it, you consent to the use of cookies and the tracking technologies described in this Section, and to the collection, transmission, and processing of data as described in this Privacy Policy. If you do not consent, do not use the Site. A notice on the Site informs you of this use when you first visit.

You may limit certain tracking through the following opt-out mechanisms:

• Standard browser controls, including cookie blocking and Global Privacy Control / Do Not Track signals (we honor GPC for residents of jurisdictions that recognize it).
• Third-party opt-outs:
  • Google Analytics: https://tools.google.com/dlpage/gaoptout
  • Microsoft Clarity: https://privacy.microsoft.com/privacystatement
  • PostHog: opt-out via your browser's Do Not Track signal or by blocking PostHog at the network level.
  • Meta: https://www.facebook.com/help/568137493302217
  • LinkedIn: https://www.linkedin.com/help/linkedin/answer/62931
  • Google Ads: https://adssettings.google.com

Limiting tracking through the above controls does not affect your ability to use the Site, but some functionality (e.g., conversion tracking on forms) may be reduced.

3. How We Use Information

We use the information described above to:

• Operate, maintain, secure, and improve the Site and Services.
• Respond to inquiries, provide quotes, and manage prospective and current client relationships.
• Send newsletters, content, and marketing communications when you have opted in (and offer a working unsubscribe in every such message).
• Score and qualify leads and route them to the appropriate team member.
• Measure the performance of marketing channels, ad campaigns, and content.
• Conduct internal product, design, and conversion-rate research, including reviewing session recordings.
• Detect, investigate, and prevent fraud, abuse, and security incidents.
• Comply with legal obligations and enforce our Terms of Service.

We do not use the information collected through the Site to make automated decisions that produce legal or similarly significant effects about you.

4. How We Share Information

We share information only as described below.

• Service providers and processors. With third parties that perform services on our behalf, including hosting (Webflow, Vercel, Supabase), analytics (Google, PostHog, Microsoft), email and CRM (Brevo, our internal CRM), scheduling (Calendly), customer support tools, and similar providers. These providers are contractually limited to using the information for the purposes for which we engaged them.
• Affiliates and team. Within LowCode Agency LLC, our affiliates, and our authorized contractors and personnel, in each case under confidentiality obligations.
• Legal and safety. Where required by law, valid legal process, or to protect the rights, property, or safety of LowCode, our clients, our personnel, or the public.
• Business transfers. In connection with a merger, acquisition, financing, reorganization, sale of assets, bankruptcy, or similar transaction, in which case we will require the recipient to honor this Privacy Policy or provide notice and an opportunity to opt out.
• With your direction. To any other party with your consent or at your direction.

We do not sell personal information as the term "sell" is defined under California law, and we do not "share" personal information for cross-context behavioral advertising as that term is defined under California law, except that the use of advertising and analytics cookies described in Section 2 may be considered "sharing" or "selling" under some interpretations of the CCPA/CPRA. California residents have the right to submit a request as described in Section 11.

5. Cookies and Similar Technologies

The Site uses cookies, web beacons, pixels, local storage, and similar technologies for the purposes described in Section 2. Cookies fall into the following categories:

• Strictly necessary — required for the Site to function (e.g., session management, security).
• Analytics and performance — measure traffic and Site performance.
• Functional — remember preferences and personalize the experience.
• Advertising — measure ad performance and enable retargeting.

By using the Site, you consent to the use of all categories described above. You may limit non-essential categories using the browser controls and third-party opt-outs listed in Section 2.7.

6. Data Retention

We retain personal information for as long as needed to fulfill the purposes described in this Policy, to comply with legal obligations, to resolve disputes, and to enforce agreements. Typical retention periods:

• Lead and inquiry data: up to 36 months from last interaction.
• Newsletter subscriber data: until unsubscribe, plus a suppression record retained indefinitely to honor the unsubscribe.
• Analytics data: as configured in the relevant tool (Google Analytics: up to 14 months by default; Microsoft Clarity: up to 13 months; PostHog: as configured).
• Session recordings: up to 30 days unless flagged for product or fraud-investigation review.
• Communications: up to 7 years where retention is necessary for tax, legal, or regulatory reasons.

Retention periods may be extended where required by applicable law or where information is subject to a legal hold.

7. Security

We use administrative, technical, and physical safeguards designed to protect personal information, including encryption in transit, access controls, vendor due diligence, and staff training. No system is perfectly secure, and we cannot guarantee that information will never be accessed without authorization. If we become aware of a security incident affecting your personal information, we will notify you to the extent and in the manner required by applicable law.

8. International Data Transfers

We are based in the United States, and the Site and Services are hosted on infrastructure located in the United States. If you access the Site from outside the United States, your information will be transferred to, processed in, and stored in the United States, where data-protection laws may differ from those of your country. Where required by law, we use appropriate safeguards for international transfers, including Standard Contractual Clauses approved by the European Commission for transfers from the EEA, the United Kingdom, or Switzerland.

9. Children's Privacy

The Site and Services are not directed to children under 13. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, contact us at the address in Section 13 and we will delete it.

10. Disputes Regarding Data Handling

Any dispute, claim, or controversy arising under or relating to the collection, use, sharing, processing, or retention of data under this Privacy Policy is governed by the dispute-resolution provisions, including the pre-dispute notice requirements, governing law, venue, and class-action waiver, set forth in our Terms of Service (the "Terms of Service"). By using the Site, you agree that any such dispute will proceed in accordance with those provisions and will not be brought as a class, collective, consolidated, or representative action.

Substantiation of Data-Handling Claims

If you believe your data has been collected, used, shared, or processed in violation of this Privacy Policy or applicable law, you must provide us with all of the following as part of your pre-dispute notice under the Terms of Service:

(a) a complete, unedited copy of the data forming the basis of your claim;

(b) a detailed written explanation specifying the nature of the alleged violation, the date(s) on which it occurred, the URLs accessed, the device and browser used, and the IP address(es) used to access the Site if known;

(c) the legal theory or theories on which the claim is based; and

(d) a description of the harm alleged.

This requirement is intended to enable a meaningful investigation of any alleged violation and shall not be construed to limit any rights you have under applicable law.

11. California Residents

If you are a California resident, you may have rights under the California Consumer Privacy Act regarding your personal information. To submit a request related to access, deletion, or correction of your data, email privacy@lowcode.agency with the subject "California Privacy Request." We will respond to verifiable requests to the extent required by applicable law.

12. International Visitors

This Site is operated from the United States and is intended primarily for users located in the United States. If you are located outside the United States, please be aware that your information will be transferred to, processed, and stored in the United States. Data protection laws in the United States may differ from those of your country. By using the Site, you consent to this transfer and processing. If you have questions or requests related to your personal information, contact us at privacy@lowcode.agency.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. The "Last updated" date at the top reflects the most recent change. Material changes will be communicated through a notice on the Site for a reasonable period before they take effect, or as otherwise required by law. Your continued use of the Site after a change takes effect constitutes acceptance of the updated Privacy Policy, except where additional consent is required by law.

14. Contact Us

To exercise rights, ask questions, or report privacy concerns, contact us:

LowCode Agency LLC
30 N Gould St
Sheridan, WY 82801
United States
Email: privacy@lowcode.agency