AWS Ventures LLC – Privacy Policy
Last updated: 9 July 2025
1. Who we are
AWS Ventures LLC (“AWS Ventures,” “we,” “us,” or “our”) is a technology-strategy and AI-consulting firm headquartered in Wilmette, Illinois, USA. We operate the website awsventures.com (the “Site”) and related digital properties. AWS Ventures is the data controller for personal information collected through the Site and in the course of providing our services.
Contact for privacy inquiries
Email: privacy@awsventures.com | Postal: Attn Privacy, AWS Ventures LLC, 1225 Central Ave. #123, Wilmette IL 60091, USA
2. Scope
This Policy explains how we collect, use, disclose, and safeguard information about:
-
Visitors to the Site
-
Prospective and current clients, partners, and suppliers
-
Individuals who communicate with us by email, phone, or social media
It does not cover employee or contractor data, which is governed by separate notices.
3. Information we collect
| Category | Examples | Source | Legal basis * |
|---|---|---|---|
| Identifiers | Name, email, postal address, phone, employer, job title | You (web forms, email, events, proposals) | Consent; contract |
| Technical data | IP address, browser type, device ID, referring URL, pages visited, error logs | Your device; cookies; server logs | Legitimate interest (Site security, analytics) |
| Commercial info | Inquiry details, project requirements, purchase history, invoices | You; our billing systems | Contract; legitimate interest |
| Marketing preferences | Opt-in/opt-out status, email engagement | You (sign-up forms, email footer links) | Consent |
| User-generated content | Comments on blog posts, uploaded files or images | You | Consent; legitimate interest |
| Sensitive data | We do not intentionally collect special-category data. If you voluntarily provide it, you consent to our processing for the relevant purpose. | You | Consent |
* EEA/UK: GDPR Art. 6; California: CCPA/CPRA “business purposes.”
4. How we collect data
-
Directly from you – Contact forms, newsletter sign-up, event registrations, proposals, contracts, phone calls.
-
Automated means – Cookies, pixels, server logs, and similar technologies.
-
Third-party sources – Business networks (e.g., LinkedIn), conference attendee lists (where lawful), referral partners, publicly available databases.
5. Cookies & tracking technologies
We use first- and third-party cookies and similar tools to:
-
Remember your settings (e.g., language, font size)
-
Enable authentication and session management
-
Analyse Site traffic and performance (e.g., Google Analytics 4 with IP-anonymisation)
-
Deliver and measure marketing emails (e.g., Mailchimp)
Most browsers let you refuse or delete cookies; certain features may not function without them. You can opt out of Google Analytics here: tools.google.com/dlpage/gaoptout.
6. Use of personal information
We process personal data to:
-
Provide and improve our services – respond to inquiries, prepare proposals, perform contracts, manage projects, and maintain the Site.
-
Communicate – send service messages, updates, and administrative notices.
-
Marketing (with consent) – send newsletters, event invites, and thought-leadership content; you can unsubscribe anytime.
-
Security and fraud prevention – monitor logs, block malicious traffic, and ensure platform integrity.
-
Legal compliance – fulfill tax, accounting, and regulatory obligations, and defend our legal rights.
We do not sell personal information and have not sold or shared personal information in the preceding 12 months in the meaning of the California Consumer Privacy Act (CCPA) as amended by the CPRA.
7. Disclosure to third parties
We disclose data only as needed:
| Recipient type | Purpose | Safeguards |
|---|---|---|
| Service providers (hosting, analytics, email, CRM, accounting, payment processors) | Operate Site and business functions | DPAs and confidentiality clauses |
| Professional advisers (lawyers, accountants) | Compliance, audits, dispute resolution | Professional duties of confidentiality |
| Business partners / subcontractors | Fulfil client projects under our supervision | Written contracts; limited to project scope |
| Legal authorities | Respond to lawful requests, protect rights or safety | Verified legal basis |
| Business transferees | In connection with a merger, acquisition, or asset sale | Prior notice where legally required |
Some recipients are located outside your jurisdiction (incl. the USA, India, and the EU). Where applicable, we rely on (i) adequacy decisions, or (ii) Standard Contractual Clauses plus supplementary measures.
8. Data retention
We keep personal data only as long as necessary for the purpose collected, plus any statutory retention period. Typical retention:
-
Marketing lists – until you withdraw consent (max 3 years from last engagement).
-
Contract files and invoices – 7 years (US tax).
-
Support tickets and project artifacts – 3 years after project end.
-
Blog comments – indefinitely, unless you request deletion.
9. Security
We implement administrative, technical, and physical controls tailored to the sensitivity of the data, including:
-
TLS 1.3 encryption in transit
-
Network firewalls and brute-force protection
-
Principle of least privilege and multi-factor authentication for admin accounts
-
Regular backups and patch management
-
Data-processing agreements with all vendors
No internet transmission is 100 % secure, and we cannot guarantee absolute security. In the event of a data breach, we will notify affected individuals and regulators as required by law.
10. Your rights
Depending on your jurisdiction, you may have the right to:
| Right | Region |
|---|---|
| Access a copy of your data | GDPR, UK GDPR, CCPA |
| Correct inaccurate data | GDPR, UK GDPR |
| Delete data (“right to be forgotten”) | GDPR, UK GDPR, CCPA |
| Restrict or object to processing | GDPR, UK GDPR |
| Data portability | GDPR, UK GDPR |
| Opt out of sale/share of data | CCPA/CPRA |
| Limit use of sensitive data | CPRA |
| Lodge a complaint with a supervisory authority | GDPR, UK GDPR |
To exercise any rights, email privacy@awsventures.com with the subject “Privacy Request.” We will verify your identity and respond within the statutory timeframe (30 days for GDPR; 45 days for CCPA, extendable once).
11. Children’s privacy
Our Site and services are not directed to children under 16. We do not knowingly collect personal data from minors. If you believe we have done so in error, contact us to delete the information.
12. Third-party links & embedded content
Our Site may include links to external sites or embed content (videos, podcasts, social posts). Interacting with that content is governed by the privacy policy of the hosting provider, not AWS Ventures.
13. Changes to this Policy
We may update this Policy to reflect legal, technical, or business changes. We will post the revised version and update the “Last updated” date. Material changes will be highlighted on the Site or communicated directly where legally required.
By using the Site or providing information to us, you acknowledge that you have read and understood this Privacy Policy.