BrighterBranding Privacy Policy
Last updated: 20 April 2025
1. Introduction
BrighterBranding ("BB", "we", "us", or "our") is committed to protecting the privacy of everyone who visits brighterbranding.com or interacts with us offline. This Policy explains what personal information we collect, why we collect it, how we use it, and the rights you have under the General Data Protection Regulation ("GDPR"), the California Consumer Privacy Act and CPRA ("CCPA"), and other global privacy laws.
2. Who we are
BrighterBranding is a domain-brokerage and advisory service operated by Simple Garden LLC DBA BrighterBranding, a U.S. company based in Wyoming.
Controller contact: [email protected] | 30 N Gould St Ste N, Sheridan, WY 82801, USA.
3. Information we collect
| Category | Examples | Source | Purpose |
|---|---|---|---|
| Contact details | Name, email address, company, phone (optional) | Directly from you via the contact form, email or phone | Responding to enquiries; negotiating sales or leases |
| Domain-portfolio data | Domain names you own, pricing expectations, registrar account ID | Directly from seller clients | Confidential valuation, listing, & transaction support |
| Transaction data | Billing address, tax ID, escrow account ID, payment history | You; payment processors; escrow partners | Contract fulfilment; invoicing; anti-fraud |
| Communications | Emails, chat messages, call notes | You; automated recording tools | Client support; dispute resolution |
| Technical data | IP address, device/browser type, cookies, usage logs | Your device; analytics providers | Site security; analytics; service improvement |
We do not collect or infer sensitive personal data. We never knowingly collect data from children under 16.
4. Why & how we use your data
| Legal basis (GDPR) | Activity |
|---|---|
| Contract performance | Negotiating, concluding, and administering domain purchase, lease, or sale agreements |
| Legitimate interests (balanced with your rights) |
|
| Consent | Optional marketing emails; non-essential cookies |
| Legal obligation | Tax, accounting, or regulatory reporting |
You may withdraw consent at any time.
5. Client Privacy & Domain Portfolio Confidentiality
Your privacy as a domain portfolio owner is our highest priority.
As a domain brokerage service, we understand that our clients trust us with valuable domain portfolios and their personal information. We maintain absolute confidentiality in all client relationships:
- We recognize that you, the client, are the sole owner of your domain portfolio
- Your identity and contact information are kept strictly confidential
- Your domain portfolio details, valuations, and pricing strategies are never shared without explicit authorization
- We act solely as your authorized agent in domain transactions
- All employees and contractors are bound by strict confidentiality agreements
Information Protection:
- Portfolio details and ownership information are stored in secure, encrypted systems
- Access to client data is strictly limited to essential personnel
- We never publish or list domains without explicit client approval
- Client identities are protected during all stages of negotiation
- We use anonymous escrow services to maintain privacy during transactions
Data Sharing Restrictions:
- We share client information ONLY when:
- You explicitly authorize us to disclose specific information to a potential buyer
- It's necessary for completing an authorized transaction (e.g., with escrow services or registrars)
- Required by law or court order (we will notify you unless legally prohibited)
We do not sell, trade, rent, or publicly disclose client identities or portfolio details under any circumstances. Our business is built on trust and confidentiality, and we take this responsibility seriously.
6. Sharing & disclosure
We disclose personal information only when necessary:
- Escrow & payment processors (e.g., Escrow.com, Stripe) – to settle transactions.
- Domain registrars / registries – to push or transfer a domain.
- Service providers (hosting, email delivery, analytics) bound by confidentiality agreements.
- Authorities & regulators – when required to comply with law, court order, or to protect rights.
We never sell or "share" personal data for cross-context behavioural advertising as defined by the CCPA.
7. International transfers
Our servers are in the United States. If you are outside the U.S., your data may be transferred here. We rely on Standard Contractual Clauses (SCCs) or UK Addendum where required to ensure an adequate level of protection.
8. Data retention
We keep personal information only as long as necessary:
- Prospective enquiries – 24 months after last contact if no contract is signed.
- Transaction records – 7 years (tax & accounting).
- Marketing opt-in – until you unsubscribe or after 3 years of inactivity.
Data scheduled for deletion is placed in a secure queue and irreversibly erased or anonymised.
9. Your rights
| Region | Your rights include… |
|---|---|
| GDPR / UK GDPR | Access, rectification, erasure, restriction, portability, objection, withdrawal of consent, lodge a complaint with your Supervisory Authority |
| CCPA / CPRA | Know, access, delete, correct, opt-out of sale/share, limit use of sensitive data, non-discrimination |
| Other jurisdictions | Similar rights under PIPEDA (Canada), LGPD (Brazil), PDPA (Singapore), etc. |
Send requests to [email protected]. We will verify your identity and respond within the legally required time-frame (30 days for GDPR; 45 days for CCPA, extendable as permitted).
10. Cookies & similar technologies
We use essential cookies for site functionality and optional analytics cookies (e.g., Google Analytics) only with your prior consent in the EEA/UK. You can manage preferences via our cookie banner or browser settings.
11. Security measures
- TLS 1.3 encryption in transit; AES-256 at rest
- Role-based access, MFA for all admin accounts
- Regular vulnerability scans and penetration testing
- Incident-response plan aligned with NIST SP 800-61
Despite our efforts, no online service is 100% secure; please notify us immediately if you suspect a breach.
12. Children's privacy
Our services target professionals and businesses. We do not knowingly collect data from anyone under 16. Parents who believe their child has provided data may contact us for deletion.
13. Changes to this Policy
We may update this Policy to reflect legal, technical, or business changes. Material changes will be announced on our website or via email before they take effect. Continued use of our services after the effective date constitutes acceptance.
14. Contact us
Questions, concerns, or complaints?
Simple Garden LLC DBA BrighterBranding30 N Gould St Ste N
Sheridan, WY 82801 USA
[email protected]
By using our website or engaging our brokerage services, you acknowledge that you have read and understood this Privacy Policy.