This Privacy Policy explains how Cynthia Sittig (“Cynthia Sittig,” “we,” “our,” or “us”) collects, uses, discloses, and safeguards your personal information when you access our website or engage with our services, including any communications via phone, SMS, or email. Your privacy and data security are protected by the highest industry standards. By accessing or using our services, you consent to the practices described in this policy. .

1. Information We Collect

We collect information in one primary way: information you provide directly.
This may include, but is not limited to: Full name, email address, phone number, postal address, state, etc...

Demographic or contact information submitted through web forms

Browser, device, IP address, operating system, referral URLs, and activity data collected through cookies or analytics

We do not knowingly collect information from individuals under 18 years of age.

We collect information in two primary ways: information you provide directly and information collected automatically.
This may include, but is not limited to:

Full name, email address, phone number, and postal address

Demographic or contact information submitted through web forms or consultations

Browser, device, IP address, operating system, referral URLs, and activity data collected through cookies or analytics

We do not knowingly collect information from individuals under 18 years of age.

2. How We Use Your Information

Your information is used strictly for lawful purposes, including:

Delivering requested services, educational resources, or consultations

Verifying identity and securing account access

Customizing and improving website performance and user experience

Communicating updates, offers, or relevant content (only with your consent)

Complying with legal, regulatory, or contractual obligations

BrightPath will never request or store sensitive financial data (credit card numbers, bank logins, SSNs) through unsecured forms or SMS.

3. Data Protection & Security

We maintain bank-grade security and layered encryption to safeguard your data against unauthorized access, disclosure, alteration, or destruction.
Measures include but are not limited to:

AES-256 encryption of stored data

SSL-secured transmission for all data exchanges

Restricted employee access and continuous security monitoring

Periodic audits for GDPR, CCPA, and TCPA compliance

In plain terms: your information is protected by an iron gate — both digitally and procedurally.

4. SMS, Email, and Communication Consent

By submitting your information, you authorize BrightPath Retirement to contact you via SMS, phone call, or email. Message and data rates may apply. You can opt out at any time:

Reply STOP to any text message to cancel SMS communications.

Reply HELP for assistance or contact our support team directly.

Unsubscribe links are included in every promotional or educational email.

We do not sell, rent, or share your mobile information with any third party for marketing purposes.
Text messaging originator opt-in data and consent will never be shared except with service providers that enable messaging delivery.

5. Disclosure of Information

We do not sell or trade your personal information.
Information may be shared only in the following limited cases:

With trusted vendors or partners who assist in fulfilling services under strict confidentiality agreements

To comply with legal requests or protect our rights and the safety of users

During mergers or business transfers, only under equal or stricter privacy protections

Every vendor relationship is governed by written agreements requiring full compliance with this policy and applicable privacy laws.

6. Your Data Rights

You have the right to:

Access the personal information we hold about you

Request corrections to inaccurate or incomplete data

Withdraw consent for communications at any time

Request deletion of your information where legally permissible

Requests can be submitted via email, phone, or postal mail (see Section 8).
We verify all requests before acting to ensure account integrity and protect against fraud.

7. Retention Policy

We retain personal data only as long as necessary to fulfill the purposes outlined above or as required by law.
When data is no longer required, it is securely deleted or anonymized using industry-approved protocols.

8. Contact Information

Cynthia Sittig
Email: [email protected] (Subject: ATTN – Privacy Request)
Phone: [email protected]
Mailing Address: Available upon verified written request for security purposes.

9. Policy Updates

We reserve the right to amend this Privacy Policy at any time to reflect updates in law, technology, or business practices.
Any changes will be posted to this page with a revised effective date. Continued use of our site or services constitutes acceptance of the updated policy.

10. Liability & Enforcement Clause

Cynthia Sittig maintains zero tolerance for unauthorized data access or misuse.
Any entity or individual found violating this policy or attempting to extract, distribute, or misuse consumer data will face immediate legal action under state, federal, and international privacy laws. We consider your information a secured asset, guarded by encryption, contractual control, and active monitoring.

11. SMS Consent & Messaging Practices

How SMS Consent Is Obtained

We only send SMS or MMS messages to individuals who have affirmatively provided prior express consent to receive such messages. Consent is obtained through one or more of the following methods:

• Completing an online form, survey, landing page, or application that includes a clear SMS disclosure
• Selecting or checking an unchecked box indicating agreement to receive text messages
• Submitting contact information where SMS consent language is displayed directly adjacent to the submission action
• Opting in through keyword-based text enrollment
• Providing consent during a recorded call or digital interaction where SMS disclosure is presented

In all cases, the consent language clearly discloses:

• That the individual is agreeing to receive SMS or MMS messages
• The purpose of the messages (such as account updates, educational content, appointment reminders, or promotional information)
• That message frequency may vary
• That message and data rates may apply
• That consent is not a condition of purchase

Consent is explicit, voluntary, and specific, and is never assumed based on silence, inactivity, or prior business relationships.

How SMS Information Is Used

When consent is provided, we may use SMS messaging to:

• Deliver requested information or educational content
• Provide service-related updates, confirmations, or reminders
• Share follow-up communications related to a user’s inquiry or enrollment
• Send promotional or informational messages related to our products or services, where permitted

SMS messages are sent using automated or manual systems in compliance with applicable laws and carrier regulations.

We do not sell, rent, or share SMS consent or phone numbers with unaffiliated third parties for their own marketing purposes.

Opt-Out & User Control

Every SMS message includes clear instructions on how to opt out.

• Users may opt out at any time by replying STOP
• Users may request assistance by replying HELP
• Opt-out requests are processed immediately or within a reasonable operational timeframe

Once a user opts out, they will no longer receive SMS messages unless they later re-subscribe.

Consent Recordkeeping & Compliance

We maintain records of:

• The date, time, and source of SMS consent
• The consent language presented at the time of opt-in
• The method by which consent was obtained

These records are retained in accordance with applicable laws and are used solely to demonstrate compliance and protect user rights.

Message Frequency & Charges

Message frequency may vary based on user interaction and program engagement.
Standard message and data rates may apply depending on the user’s mobile carrier and plan.

Changes To SMS Practices

We reserve the right to update or modify our SMS messaging practices to remain compliant with evolving laws, carrier requirements, and platform standards. Any material changes will be reflected in this Privacy Policy.

12. Mobile Information Sharing Statement

Collection of Mobile Information

When individuals provide a mobile phone number through our websites, landing pages, applications, advertisements, surveys, forms, or other digital or offline interactions, that information is collected only when voluntarily submitted by the user.

Mobile information may be collected through:

• Online forms and lead capture pages
• Surveys, quizzes, and applications
• Educational or informational content access
• Appointment scheduling tools
• Customer service interactions
• SMS keyword opt-ins
• Recorded or digital consent interactions

Mobile phone numbers are collected solely for purposes disclosed at the point of collection and in accordance with applicable privacy and communications laws.

Use of Mobile Information

Mobile phone numbers and related mobile information may be used to:

• Deliver requested content, services, or information
• Provide educational materials, reminders, confirmations, or follow-ups
• Communicate regarding inquiries, applications, or account-related activity
• Send promotional or informational messages where legally permitted and consent has been obtained
• Facilitate customer support and service communications

Mobile information is used only in a manner consistent with the purpose for which it was provided and applicable legal requirements.

Mobile Information Sharing & Disclosure

We do not sell, rent, trade, or lease mobile phone numbers or SMS consent to third parties for their own marketing purposes.

Mobile information may be shared only in the following limited circumstances:

• With service providers, vendors, or technology platforms that assist in operating our business, communication systems, CRM platforms, messaging infrastructure, analytics, or customer support
• With affiliates or partners acting on our behalf and under contractual obligations to use the information solely for authorized purposes
• When required by law, legal process, subpoena, court order, or regulatory request
• To protect the rights, safety, or property of users, the public, or our organization

All parties with access to mobile information are required to maintain confidentiality and comply with applicable privacy, data security, and communications regulations.

No Third-Party Marketing Use

Mobile information, including phone numbers and SMS consent, will never be shared with unaffiliated third parties for independent marketing, advertising, or promotional use.

Any messaging sent using mobile information is conducted by us or by authorized service providers operating strictly under our direction.

Data Security & Protection

We implement reasonable administrative, technical, and physical safeguards designed to protect mobile information from unauthorized access, disclosure, misuse, or alteration.

Access to mobile information is restricted to authorized personnel and systems with a legitimate business purpose.

User Rights & Control

Users maintain control over their mobile information at all times.

• Users may opt out of SMS communications by replying STOP
• Users may request assistance by replying HELP
• Users may request access, correction, or deletion of their mobile information where legally applicable

Opt-out requests are honored promptly in accordance with applicable laws and carrier requirements.

Message Frequency & Carrier Disclosures

Message frequency may vary based on user interaction, engagement, and services requested.

Standard message and data rates may apply depending on the user’s wireless carrier and mobile plan. Carriers are not responsible for delayed or undelivered messages.

Children’s Privacy

Mobile information is not knowingly collected from individuals under the age of 13. If such information is inadvertently collected, it will be promptly deleted upon discovery.

Policy Updates

This Mobile Information Sharing Statement may be updated periodically to reflect changes in legal requirements, operational practices, or technology platforms. Any updates will be posted within this Privacy Policy.