Privacy Policy

Last Modified: July 13, 2026

This Privacy Policy applies to the websites and platforms operated by CompliSun, Inc. ("CompliSun" or "Company"), including complisun.com, complisunguardian.com, cms.complisun.com, complisunlegal.com, colindarkesolutions.com, and fintechprotected.net (collectively, the "Sites"), and to the CompliSun Guardian compliance platform (the "Platform"). Legal services referenced on the Sites are provided exclusively by CompliSun Legal, PLC, a Michigan professional limited liability company and law firm, as described in the "Legal Services - CompliSun Legal, PLC" section below. Throughout this Policy, the terms "we," "us," and "our" refer to CompliSun, Inc. and, where the context concerns legal services, CompliSun Legal, PLC.

At CompliSun, we are committed to respecting your privacy and protecting the personal information you share with us ("personal information" means any information by which you can be contacted or personally identified, such as your name, mailing address, email address, or telephone number). This Policy explains what information we collect, how we use and protect it, where it is stored, and the choices and rights you have. By using our Sites or Platform or providing your information to us, you accept and consent to the practices described in this Privacy Policy.

Information We Collect

We collect personal information you voluntarily provide when you request a consultation, subscribe to a service, register for the Platform, complete an onboarding or intake form, attend a webinar, or otherwise communicate with us. This may include your name, business contact information, email address, telephone number, company name and role, billing information, and information relevant to the services you request.

Providing this information is your choice; however, if you choose not to provide requested information, you may be unable to access certain services or features. We may need to contact you regarding your account or engagement even if you have opted out of marketing communications.

In general, you can visit our Sites without identifying yourself. We may automatically collect technical information about your visit, including IP address, browser type, device information, pages visited, and usage patterns, which we analyze for site performance, security, and service improvement.

How We Use Your Information

We use your personal information to: provide, administer, and improve our services and the Platform; confirm and manage your account, subscription, or engagement; communicate with you about services, updates, and offerings that may be of interest to you; analyze usage, preferences, and trends; and comply with legal and professional obligations. We contact you only in ways compatible with your communication choices.

We may engage trusted service providers to perform functions on our behalf, such as payment processing, identity verification and screening, data hosting, analytics, and communications. We provide these service providers only the information needed to perform their services, and they are obligated to protect it. We do not sell your personal information. We may disclose personal information where we believe in good faith that disclosure is required by law or legal process, or is necessary to protect the rights, property, or safety of CompliSun, our clients, or others.

Legal Services - CompliSun Legal, PLC

Legal services described or offered through our Sites are provided exclusively by CompliSun Legal, PLC, a law firm organized under Michigan law. CompliSun Legal, PLC is a separate entity from CompliSun, Inc., and legal services are subject to the Michigan Rules of Professional Conduct.

Your use of the Sites, submission of information through any form, or communication with us does not create an attorney-client relationship with CompliSun Legal, PLC. An attorney-client relationship is formed only through a signed engagement agreement. Please do not send confidential or sensitive information through the Sites before an engagement is established; information submitted prior to engagement may not be treated as privileged or confidential.

Once an attorney-client relationship is established, information you provide in connection with legal services is protected by attorney-client privilege and professional confidentiality obligations under applicable rules of professional conduct, which provide protections beyond those described in this Privacy Policy. Where this Policy conflicts with our professional obligations as to client information, our professional obligations control.

Attorney Advertising Notice: Portions of the Sites may constitute attorney advertising. Prior results do not guarantee a similar outcome.

Data Storage and Location

Personal information you provide to us is stored securely on Amazon Web Services (AWS) infrastructure located in the United States. Data collected and processed through our compliance management platform (cms.complisun.com) is stored and encrypted within our secured AWS environment. For visitors and users of complisunguardian.com, we store only your email address, maintained in a secured database; no other personal information collected through complisunguardian.com is retained.

We retain personal information only as long as necessary to fulfill the purposes described in this Policy, to provide our services, or as required by applicable law, professional obligations, or contractual commitments.

Data Protection Officer

CompliSun has designated a Data Protection Officer ("DPO") responsible for overseeing our data protection program and compliance with applicable privacy laws. The DPO's roles and responsibilities include: monitoring compliance with this Privacy Policy and applicable data protection laws; overseeing data protection practices, policies, and personnel training; serving as the primary point of contact for privacy-related questions, requests, and complaints; coordinating the investigation of and response to data security incidents together with our operations and technology leadership; and cooperating with regulators and supervisory authorities as required.

Privacy inquiries are received through a dedicated, monitored channel and processed through an automated intake and tracking system overseen by the DPO and our technical team to ensure every request is logged, assigned, and resolved on a timely basis.

Rajesh Damarapati, Data Protection Officer

CompliSun, Inc.

(313) 510-6077, ext. 314

Data Breach Response

CompliSun maintains a documented internal incident response process for security incidents involving personal information, executed jointly by our Head of Operations and our Chief Technology Officer under the coordination of the Data Protection Officer. Upon identification of a potential incident, our first step is a prompt investigation to determine the materiality of the incident and whether the associated risk can be mitigated or remediated. Based on that assessment, we will:

  1. Contain and remediate the incident;
  2. Evaluate the nature and scope of the information involved and the risk of harm to affected individuals;
  3. Where the incident is determined to be material or notification is required, notify affected individuals without undue delay and within the timeframes required by applicable law, using the contact information we have on file;
  4. Notify regulators or other authorities where required by applicable law; and
  5. Implement corrective measures designed to prevent recurrence.

Any notification to affected individuals will describe, to the extent known, the nature of the incident, the categories of information involved, the steps we have taken in response, and measures individuals can take to protect themselves.

Cookies

When you visit our Sites, we may place "cookies" on your device - small data files used to improve service quality, remember your preferences, analyze traffic, support security, and tailor content. "Session cookies" expire when you close your browser; "persistent cookies" remain until they expire or are deleted. Certain service providers may set cookies on our behalf, including for analytics and advertising purposes. You can set your browser to refuse cookies or alert you when cookies are being sent; however, some features of our Sites and Platform may not function properly without them.

Security

We maintain administrative, technical, and physical safeguards designed to protect the confidentiality and security of your personal information, including encryption of data in transit (TLS/SSL) and at rest within our AWS environment. While we strive to protect your personal information, no method of transmission or storage is completely secure, and we cannot guarantee absolute security. We urge you to protect any password associated with your account, not to share it, and to log out of your account after each session, particularly on shared devices.

Protecting Children

Our Sites, Platform, and services are intended for business use by adults and are not directed to children. We do not knowingly collect personal information from anyone under the age of 18. If you are under 18, please do not use our Sites or services or provide any information to us. If we learn that we have inadvertently collected personal information from a child under the age of 18, we will promptly delete that information from our records. If you believe we may have collected information from a child, please contact us at dataprotection@complisun.com so we can take appropriate action.

California users under the age of 18 may request the removal of content or information they have publicly posted on our Sites by emailing dataprotection@complisun.com.

Your Choices; Accessing, Updating, and Deleting Your Information

We want to communicate with you only if you want to hear from us. If you prefer not to receive marketing communications from us, or prefer that your contact information not be shared with third parties for their marketing purposes, email us at support@complisun.com with your full name, email address, and your specific request. You may also use the unsubscribe link included in our marketing emails. To access, update, correct, or request deletion of your personal information, contact us at dataprotection@complisun.com. Please allow up to ten (10) business days for us to process requests.

Questions and Complaints

If you have questions, concerns, or complaints about this Privacy Policy or our handling of your personal information, contact us at support@complisun.com. We take every privacy complaint seriously and will acknowledge your complaint promptly, investigate it through our tracked intake process, and respond with our findings and any corrective action within thirty (30) days. If you are not satisfied with our response, you may have the right to lodge a complaint with your state Attorney General or other applicable supervisory or regulatory authority.

Links to Third-Party Sites

Our Sites may contain links to websites operated by third parties over which we have no control. Privacy practices on linked sites may differ from ours, and you access them at your own risk. We encourage you to review the privacy policy of any linked site before providing your information.

Changes to This Privacy Policy

We may change this Privacy Policy at any time. If we make changes, we will post the revised Privacy Policy on complisun.com and complisunguardian.com, with the effective date noted above. Changes apply to all current and past users of our Sites and replace any prior inconsistent policies. Your continued use of our Sites or services constitutes acceptance of the revised Policy.

Contact Us

General inquiries: support@complisun.com

Privacy inquiries and requests: dataprotection@complisun.com

CompliSun, Inc.
Detroit, Michigan