Privacy Policy

PART 1: TERMS OF SERVICE

1. Introduction and Acceptance of Terms

These Terms of Service (hereinafter “Terms”) govern your access to and use of the website operated by Carolina Melendez, Business Marketing Agency & SEO Specialist (hereinafter “we,” “us,” “our,” or “the Company”), accessible at carolinamelendez.co and all associated subdomains (hereinafter “the Website”).

By accessing, browsing, or using this Website, you acknowledge that you have read, understood, and agree to be bound by these Terms, our Privacy Policy, and our Cookie Policy. If you do not agree with any part of these documents, you must immediately discontinue use of the Website.

We reserve the right to modify these Terms at any time. Material changes will be posted on this page with an updated “Effective Date.” Your continued use of the Website after any modification constitutes your acceptance of the revised Terms.

2. Eligibility

You must be at least 18 years of age, or the age of legal majority in your jurisdiction, to use this Website or to submit any personal data through our forms. By using this Website, you represent and warrant that you meet this eligibility requirement.

3. Description of Services

The Website provides information about our marketing consulting services, including but not limited to Search Engine Optimization (SEO), Pay-Per-Click (PPC) Campaign Management, Email Marketing & Newsletter Strategy, and Business Marketing Consultancy (Fractional CMO services). The Website also provides educational and informational content related to digital marketing strategy.

The Website is informational and lead-generation in nature. No binding service agreement is formed through the Website itself. Formal service engagements are governed by separate, individually executed service agreements or statements of work.

4. Intellectual Property Rights

All content on this Website, including but not limited to text, graphics, logos, images, downloadable materials (such as lead magnets, whitepapers, and guides), page layouts, design elements, and software, is the exclusive property of Carolina Melendez or its content suppliers and is protected by international copyright, trademark, and other intellectual property laws.

You are granted a limited, non-exclusive, non-transferable, revocable license to access and use the Website and its content for personal, non-commercial informational purposes only. You may not reproduce, distribute, modify, create derivative works from, publicly display, or commercially exploit any content from this Website without our prior written consent.

5. User Conduct and Prohibited Activities

When using this Website, you agree not to:

  • Use the Website for any unlawful purpose or in violation of any applicable local, national, or international law or regulation.
  • Submit false, misleading, or fraudulent information through any form on the Website.
  • Attempt to gain unauthorized access to any portion of the Website, its servers, or any connected systems or networks.
  • Use automated systems (bots, scrapers, crawlers) to access, collect, or extract data from the Website without our express written permission.
  • Introduce malware, viruses, or any other harmful or disruptive technology.
  • Interfere with or disrupt the integrity or performance of the Website or its infrastructure.
  • Impersonate any person or entity or misrepresent your affiliation with any person or entity.

6. Forms, Lead Magnets, and User Submissions

The Website contains forms that collect personal data (such as name, email address, industry, website URL, and business metrics) for the purpose of lead generation, delivering downloadable resources (lead magnets), and initiating business consultations. By submitting information through these forms:

  • You consent to receiving the requested resource and related follow-up communications, including automated email sequences, as described in our Privacy Policy.
  • You represent that all information provided is accurate, current, and complete.
  • You acknowledge that submission of a form does not create a client-consultant relationship, nor does it obligate either party to enter into a service agreement.

EU-Specific Consent: If you are located in the European Economic Area (EEA), the United Kingdom, or Switzerland, your submission of personal data through our forms will be processed on the basis of your freely given, specific, informed, and unambiguous consent, as further described in our Privacy Policy. You may withdraw your consent at any time.

7. Third-Party Advertising and Sponsored Content

This Website may display advertisements served by third-party advertising platforms (such as Google Ads, Microsoft Advertising, or other programmatic ad networks). These advertisements may use cookies, web beacons, and similar tracking technologies to serve ads based on your prior visits to this Website or other websites. We do not control the content of third-party advertisements displayed on the Website.

Please refer to our Cookie Policy (Part 3 of this document) for complete details on the tracking technologies used by advertising platforms and your rights regarding opt-out.

Disclosure: In accordance with the U.S. Federal Trade Commission (FTC) guidelines, any sponsored or paid content on this Website will be clearly identified and labeled as such.

8. External Links and Third-Party Websites

This Website may contain links to external websites or third-party services that are not operated or controlled by us. We are not responsible for the content, privacy policies, or practices of any third-party websites. We encourage you to review the terms and policies of any third-party site you visit. The inclusion of any link does not imply endorsement, approval, or affiliation.

9. Disclaimers

No Professional Advice: The information provided on this Website is for general informational purposes only. It does not constitute professional financial, legal, or tax advice. You should consult with a qualified professional regarding your specific business situation before making decisions based on the content of this Website.

“As Is” Basis: THE WEBSITE AND ALL CONTENT, MATERIALS, AND SERVICES PROVIDED THEREIN ARE PROVIDED ON AN “AS IS” AND “AS AVAILABLE” BASIS WITHOUT WARRANTIES OF ANY KIND, EITHER EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, TITLE, AND NON-INFRINGEMENT.

No Guarantee of Results: Past marketing performance results referenced on this Website (including testimonials or case studies) do not guarantee future results. Individual outcomes will vary depending on numerous factors including industry, market conditions, competition, and the quality of strategic execution.

10. Limitation of Liability

TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, IN NO EVENT SHALL CAROLINA MELENDEZ, HER AFFILIATES, OFFICERS, EMPLOYEES, AGENTS, OR LICENSORS BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES, INCLUDING WITHOUT LIMITATION, LOSS OF PROFITS, DATA, USE, GOODWILL, OR OTHER INTANGIBLE LOSSES, RESULTING FROM:

  • Your access to, use of, or inability to access or use the Website.
  • Any conduct or content of any third party on or through the Website, including third-party advertisements.
  • Any content obtained from or through the Website.
  • Unauthorized access to, use of, or alteration of your transmissions or content.

IN NO EVENT SHALL OUR TOTAL AGGREGATE LIABILITY EXCEED THE GREATER OF ONE HUNDRED U.S. DOLLARS (USD $100.00) OR THE AMOUNT YOU HAVE PAID US, IF ANY, IN THE PRECEDING TWELVE (12) MONTHS.

EU Users: Nothing in these Terms shall exclude or limit liability for death or personal injury resulting from negligence, fraud, or fraudulent misrepresentation, or any other liability that cannot be excluded or limited under mandatory applicable law, including EU consumer protection regulations.

11. Indemnification

You agree to defend, indemnify, and hold harmless Carolina Melendez, her affiliates, agents, and licensors from and against any claims, liabilities, damages, losses, and expenses, including reasonable attorneys’ fees, arising out of or in connection with your violation of these Terms, your use of the Website, or your violation of any rights of a third party.

12. Governing Law and Dispute Resolution

For Users Located in the United States: These Terms shall be governed by and construed in accordance with the laws of the State of New York, without regard to its conflict of laws provisions. Any dispute arising from these Terms shall be resolved exclusively in the state or federal courts located in [INSERT COUNTY], [INSERT STATE].

For Users Located in the European Economic Area (EEA), United Kingdom, or Switzerland: These Terms shall be governed by and construed in accordance with the laws of your country of habitual residence, to the extent required by mandatory consumer protection legislation. You retain the right to bring proceedings in the courts of your country of habitual residence. Nothing in these Terms affects your statutory rights as a consumer under applicable EU or national law.

EU Online Dispute Resolution (ODR): In accordance with Regulation (EU) No. 524/2013, if you are an EU consumer, you may use the European Commission’s Online Dispute Resolution platform, available at https://ec.europa.eu/consumers/odr, to resolve disputes arising from online contracts.

13. Severability

If any provision of these Terms is found to be invalid, illegal, or unenforceable by a court of competent jurisdiction, such invalidity shall not affect the validity of the remaining provisions, which shall continue in full force and effect.

14. Entire Agreement

These Terms, together with the Privacy Policy and Cookie Policy, constitute the entire agreement between you and Carolina Melendez regarding your use of the Website and supersede all prior agreements, understandings, and communications, whether written or oral.

15. Contact Information

For any questions or concerns regarding these Terms of Service, please contact:

Carolina Melendez

Business Marketing Agency & SEO Specialist

Email: [INSERT EMAIL ADDRESS]

Website: carolinamelendez.co

PART 2: PRIVACY POLICY

Effective Date: [INSERT DATE]

Last Updated: [INSERT DATE]

1. Introduction and Data Controller Information

This Privacy Policy describes how Carolina Melendez, Business Marketing Agency & SEO Specialist (hereinafter “we,” “us,” “our,” or the “Data Controller”) collects, uses, stores, shares, and protects your personal data when you visit our Website at carolinamelendez.co, interact with our advertisements on third-party advertising platforms, or communicate with us via email or our contact forms.

This Privacy Policy is drafted in compliance with the European Union General Data Protection Regulation (GDPR – Regulation (EU) 2016/679), the ePrivacy Directive (Directive 2002/58/EC), the California Consumer Privacy Act as amended by the California Privacy Rights Act (CCPA/CPRA), the U.S. CAN-SPAM Act of 2003, and other applicable data protection and privacy laws.

Data Controller:

Carolina Melendez

Email: [INSERT EMAIL ADDRESS]

Address: [INSERT PHYSICAL ADDRESS – Required by GDPR & CAN-SPAM]

2. Personal Data We Collect

We collect and process the following categories of personal data:

2.1 Data You Provide Directly

When you voluntarily submit information through our Website forms (consultation requests, lead magnet downloads, newsletter sign-ups, or forensic audit applications), we may collect:

  • Full name
  • Business email address
  • Industry / business sector
  • Website URL
  • Current email list size
  • Primary business goal
  • Monthly advertising spend
  • Target CPA / ROAS metrics
  • Description of current marketing challenges

2.2 Data Collected Automatically

When you visit our Website, certain data is collected automatically through cookies, web beacons, and similar tracking technologies (as further described in our Cookie Policy):

  • IP address (which may be anonymized or truncated for EU users)
  • Browser type and version
  • Operating system
  • Device type (desktop, mobile, tablet)
  • Referring URL and exit pages
  • Pages viewed and time spent on each page
  • Date and time of your visit
  • Geographic location (country/region level, derived from IP address)
  • Language preference

2.3 Data Collected via Third-Party Advertising and Analytics Platforms

We run traffic advertisements on third-party ad platforms (such as Google Ads, Microsoft Advertising, and/or programmatic display networks). These platforms may collect data through their own tracking technologies (cookies, click identifiers, and similar mechanisms) when you interact with our ads or visit our Website after clicking an ad. This may include:

  • Ad click and impression data
  • Conversion events (e.g., form submission after ad click)
  • Audience segment identifiers (pseudonymized)
  • Device and browser fingerprinting data (platform-dependent)
  • Interaction data with advertisements (click-through rates, time of interaction)

Important: We do not use social media tracking pixels (such as Meta/Facebook Pixel or TikTok Pixel). The tracking technologies deployed on this Website are limited to those used by advertising platforms and web analytics services as described in our Cookie Policy.

3. Legal Bases for Processing (GDPR – Article 6)

We process your personal data only when we have a valid legal basis to do so. The legal bases we rely on include:

Legal BasisGDPR ArticleApplication
ConsentArt. 6(1)(a)Submitting forms, downloading lead magnets, subscribing to newsletters, placement of non-essential cookies and advertising tracking technologies.
Legitimate InterestArt. 6(1)(f)Website analytics for performance improvement, fraud prevention, network security, ensuring the Website functions properly.
Contractual NecessityArt. 6(1)(b)Processing data necessary to respond to your consultation request or deliver a requested service.
Legal ObligationArt. 6(1)(c)Compliance with tax, accounting, or other regulatory requirements.

4. How We Use Your Personal Data

We use the personal data we collect for the following purposes:

  • To deliver requested resources (lead magnets, whitepapers, audit checklists) to your email address.
  • To send automated email drip sequences related to the resource you requested (a maximum of three follow-up emails, as described in the download flow).
  • To send periodic newsletters or marketing emails, only where you have provided explicit opt-in consent.
  • To respond to your consultation requests and schedule discovery calls.
  • To analyze Website traffic and user behavior for the purpose of improving Website content, structure, and performance.
  • To measure the effectiveness of our advertising campaigns on third-party platforms (conversion tracking).
  • To comply with legal obligations and enforce our Terms of Service.
  • To prevent fraud, abuse, and unauthorized access to our Website.

5. Email Marketing and Automated Sequences (CAN-SPAM & GDPR Compliance)

When you submit your email address through one of our forms, you may receive:

  1. The requested resource (e.g., a lead magnet PDF) delivered immediately to your email.
  1. An automated email drip sequence of up to three (3) emails over three (3) days, directly related to the topic of the resource you downloaded.
  2. Periodic newsletter communications, only if you have provided separate, explicit opt-in consent for ongoing marketing emails.

Your Rights Under CAN-SPAM (United States):

  • Every commercial email we send will clearly identify the sender and include our valid physical mailing address.
  • Every email will include a clear and conspicuous unsubscribe mechanism.
  • Unsubscribe requests will be honored within ten (10) business days.
  • We will never use deceptive subject lines or misleading header information.

Your Rights Under GDPR (EU/EEA/UK):

  • We will only send you marketing emails if you have given your prior, explicit, affirmative consent (opt-in). Pre-checked boxes are never used.
  • You may withdraw your consent at any time by clicking the “Unsubscribe” link in any email or by contacting us directly.
  • Withdrawal of consent does not affect the lawfulness of processing carried out prior to withdrawal.
  • We implement a double opt-in process for EU subscribers where technically feasible to verify consent.

6. Third-Party Data Sharing and Processors

We do not sell, rent, or trade your personal data. We may share your personal data with the following categories of third-party service providers (data processors) who process data on our behalf and under our instructions:

  • Email Service Provider (ESP): Mailchimp, ConvertKit, ActiveCampaign – for delivering emails and managing subscriber lists.
  • Web Analytics: Google Analytics 4 – for measuring Website traffic and user behavior.
  • Advertising Platforms: Google Ads, Microsoft Advertising – for conversion tracking and campaign optimization.
  • Website Hosting: Hostinger – for hosting and delivering our Website.
  • Scheduling Tools: Calendly – for booking consultations.

EU Data Processing Agreements: We ensure that all third-party processors that handle personal data of EU residents have entered into Data Processing Agreements (DPAs) that comply with Article 28 of the GDPR.

7. International Data Transfers

Your personal data may be transferred to, stored, and processed in countries outside of the European Economic Area (EEA), including the United States, where our business and certain third-party service providers are located.

When transferring personal data outside the EEA, we ensure adequate protection through one or more of the following safeguards:

  • EU-U.S. Data Privacy Framework (DPF): Where the recipient is certified under the EU-U.S. Data Privacy Framework, per the European Commission’s adequacy decision.
  • Standard Contractual Clauses (SCCs): We use the European Commission’s Standard Contractual Clauses (as adopted under Commission Implementing Decision (EU) 2021/914) to ensure appropriate safeguards for transfers.
  • Adequacy Decisions: Transfers to countries that have received an adequacy decision from the European Commission under Article 45 of the GDPR.

You have the right to request information about the specific safeguards applied to the transfer of your personal data by contacting us at the address provided in Section 15 below.

8. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable law:

  • Lead and Contact Form Data: Retained for up to 24 months after your last interaction, unless you request earlier deletion or we have an ongoing business relationship.
  • Email Marketing Subscriber Data: Retained for as long as you remain subscribed. Data is deleted or anonymized within 30 days of unsubscribing.
  • Analytics and Advertising Data: Retained in accordance with the retention policies of the respective analytics and advertising platforms (typically 14–26 months for Google Analytics). We configure the shortest retention period available.
  • Legal and Financial Records: Retained as required by applicable tax, accounting, and regulatory requirements (typically 5–7 years).

After the applicable retention period expires, your personal data will be securely deleted or anonymized.

9. Your Rights Under the GDPR (EU/EEA/UK Users)

If you are located in the EEA, UK, or Switzerland, you have the following rights under the GDPR:

  • Right of Access (Art. 15): You have the right to obtain confirmation of whether we process your personal data and to receive a copy of that data.
  • Right to Rectification (Art. 16): You have the right to request correction of any inaccurate or incomplete personal data.
  • Right to Erasure / Right to Be Forgotten (Art. 17): You have the right to request deletion of your personal data, subject to applicable legal exceptions.
  • Right to Restriction of Processing (Art. 18): You have the right to request restriction of processing in certain circumstances.
  • Right to Data Portability (Art. 20): You have the right to receive your personal data in a structured, commonly used, machine-readable format and to transmit it to another controller.
  • Right to Object (Art. 21): You have the right to object to the processing of your personal data based on legitimate interests, including processing for direct marketing purposes. Upon objection to direct marketing, processing will cease immediately.
  • Right to Withdraw Consent (Art. 7(3)): Where processing is based on consent, you have the right to withdraw your consent at any time.
  • Right to Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority in your EU/EEA Member State. A list of data protection authorities is available at: https://edpb.europa.eu/about-edpb/about-edpb/members_en

How to Exercise Your Rights: To exercise any of these rights, please submit a verifiable request to us at [INSERT EMAIL]. We will respond to verified requests within 30 days (extendable by two additional months for complex requests, with notification). We will not charge a fee for processing your request unless it is manifestly unfounded or excessive.

10. Your Rights Under the CCPA/CPRA (California Residents)

If you are a California resident, you have the following rights under the California Consumer Privacy Act, as amended by the California Privacy Rights Act (CCPA/CPRA):

  • Right to Know: You have the right to request that we disclose the categories and specific pieces of personal information we have collected about you, the sources of collection, the business purpose for collecting, and the categories of third parties with whom we share it.
  • Right to Delete: You have the right to request deletion of your personal information, subject to certain exceptions.
  • Right to Correct: You have the right to request correction of inaccurate personal information.
  • Right to Opt-Out of Sale or Sharing: We do not sell your personal information. We do not “share” your personal information for cross-context behavioral advertising as defined under the CPRA. If this changes, we will provide a “Do Not Sell or Share My Personal Information” link on our Website.
  • Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA/CPRA rights.

How to Exercise Your Rights: Submit a verifiable consumer request to [INSERT EMAIL]. We will verify your identity before processing and respond within 45 days.

11. Children’s Privacy

This Website is not directed at individuals under the age of 18 (or the age of legal majority in their jurisdiction). We do not knowingly collect personal data from children. If we become aware that a child under the age of 16 (per GDPR requirements) or under 13 (per U.S. COPPA requirements) has provided personal data, we will promptly delete such data. If you believe a child has submitted personal data to us, please contact us immediately.

12. Security Measures

We implement appropriate technical and organizational measures to protect your personal data against unauthorized or unlawful processing, accidental loss, destruction, or damage, in accordance with Article 32 of the GDPR. These measures include:

  • SSL/TLS encryption for all data transmitted through the Website.
  • Access controls limiting personal data access to authorized personnel only.
  • Regular review of data processing practices and security protocols.
  • Secure storage of data with reputable hosting and service providers that maintain industry-standard security certifications.

While we take reasonable steps to protect your data, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security.

13. Do Not Track (DNT) Signals

Some web browsers transmit “Do Not Track” (DNT) signals. There is no uniform standard for interpreting DNT signals. We currently do not alter our data collection or tracking practices in response to DNT signals. We will update this policy if a uniform DNT standard is adopted.

However, EU users can manage their tracking preferences through our Cookie Consent Banner (see Cookie Policy).

14. Global Privacy Control (GPC)

We honor Global Privacy Control (GPC) signals as a valid opt-out request under the CCPA/CPRA for California residents. If your browser sends a GPC signal, we will treat it as a request to opt out of the sale or sharing of personal information.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable law. We will notify you of material changes by posting the updated policy on this page with a revised “Effective Date.” We encourage you to review this Privacy Policy periodically.

16. Contact Information and Data Protection Inquiries

For questions, concerns, or requests relating to this Privacy Policy or the exercise of your data protection rights, please contact:

Carolina Melendez

Business Marketing Agency & SEO Specialist

Email: [INSERT EMAIL ADDRESS]

Physical Address: [INSERT ADDRESS – Required by GDPR & CAN-SPAM]

EU Representative (Article 27 GDPR): If required under Article 27 of the GDPR (i.e., if you do not have an establishment in the EU but offer goods/services to EU data subjects), you should appoint an EU-based representative. [INSERT EU REPRESENTATIVE NAME AND CONTACT or state: “To be designated.”]

PART 3: COOKIE POLICY

Effective Date: [INSERT DATE]

1. What Are Cookies?

Cookies are small text files placed on your device (computer, tablet, or smartphone) when you visit a website. Cookies are widely used to make websites function properly, improve their efficiency, and provide reporting and analytics information to the website owner. Similar technologies, such as web beacons, tracking pixels, and local storage, are used for comparable purposes and are collectively referred to as “cookies” or “tracking technologies” in this policy.

2. Cookie Consent (EU ePrivacy Directive Compliance)

In accordance with the EU ePrivacy Directive (Directive 2002/58/EC) and applicable national implementations (such as the German TTDSG, the French Loi Informatique, and the UK PECR), we obtain your prior, informed, and freely given consent before placing any non-essential cookies on your device.

Our Cookie Consent Banner:

  • Appears on your first visit to the Website, before any non-essential cookies are loaded.
  • Clearly describes each category of cookies and their purposes.
  • Provides granular control, allowing you to accept or reject each category individually.
  • Does not use pre-checked boxes or “accept all” as the only prominently displayed option. “Reject All” (or equivalent) is equally accessible.
  • Records and stores your consent preferences for audit purposes.
  • Allows you to change or withdraw your consent at any time through the Cookie Settings accessible via a persistent link in the Website footer.

Strictly Necessary Cookies do not require consent and are loaded by default, as they are essential for the Website to function.

3. Categories of Cookies We Use

3.1 Strictly Necessary Cookies

These cookies are essential for the Website to function and cannot be disabled. They include cookies that manage your cookie consent preferences, maintain session state, and enable core security features.

Cookie NameProviderPurposeDuration

[e.g., cookie_consent]

carolinamelendez.co

Stores your cookie consent preferences

12 months

[e.g., session_id]

carolinamelendez.co

Maintains user session state

Session

3.2 Analytics Cookies

Purpose: These cookies collect information about how visitors use the Website (pages visited, time spent, traffic sources). This data is aggregated and used to improve the Website’s performance, content, and user experience. Analytics cookies are only loaded after you have provided consent.

Cookie NameProviderPurposeDuration
_gaGoogle AnalyticsDistinguishes unique users by assigning a randomly generated pseudonymous identifier2 years (configurable)
_ga_[ID]Google AnalyticsMaintains session state for GA42 years (configurable)

[UPDATE THIS TABLE: Add or remove cookies depending on the analytics provider you use. If you use a privacy-focused analytics provider like Plausible or Fathom that does not use cookies, remove this section and note that no analytics cookies are used.]

3.3 Advertising / Marketing Cookies

Purpose: These cookies are placed by third-party advertising platforms to track the effectiveness of our advertising campaigns, measure conversions (e.g., whether a user who clicked an ad submitted a form), and may be used to build an audience profile for targeted advertising across the platform’s network. These cookies are only loaded after you have provided consent.

Cookie NameProviderPurposeDuration
_gcl_auGoogle AdsStores conversion data from Google Ads clicks90 days
_gcl_awGoogle AdsStores ad click information (GCLID) for conversion attribution90 days
MUIDMicrosoft AdvertisingIdentifies unique web browsers visiting Microsoft sites for advertising13 months
_uetsidMicrosoft Advertising (UET)Tracks visitor session data for Bing Ads conversion tracking1 day
_uetvidMicrosoft Advertising (UET)Stores a unique visitor identifier for cross-session tracking13 months

[UPDATE THIS TABLE: Add or remove cookies based on the exact advertising platforms you use. If you only use Google Ads, remove the Microsoft rows. If you use additional programmatic platforms, add their specific cookies here.]

Note on Social Media Pixels: This Website does not deploy social media tracking pixels (such as Meta/Facebook Pixel, TikTok Pixel, LinkedIn Insight Tag, or X/Twitter Pixel). No personal data is shared with social media platforms through this Website.

4. How to Manage Your Cookie Preferences

You have full control over the cookies placed on your device:

4.1 Via Our Cookie Consent Banner

You can accept or reject non-essential cookie categories when you first visit the Website. You can update your preferences at any time by clicking the “Cookie Settings” link in the Website footer.

4.2 Via Your Browser Settings

Most web browsers allow you to manage cookies through their settings. You can configure your browser to block or delete cookies. Please note that disabling certain cookies may impact the functionality of the Website.

  • Google Chrome: Settings > Privacy and Security > Cookies
  • Mozilla Firefox: Settings > Privacy & Security > Cookies
  • Safari: Preferences > Privacy
  • Microsoft Edge: Settings > Cookies and Site Permissions

4.3 Via Industry Opt-Out Tools

You can opt out of interest-based advertising from participating companies through:

  • Google Ads Settings: https://adssettings.google.com
  • Network Advertising Initiative (NAI): https://optout.networkadvertising.org
  • Digital Advertising Alliance (DAA): https://optout.aboutads.info
  • European Interactive Digital Advertising Alliance (EDAA): https://www.youronlinechoices.eu

5. Google Analytics Specific Disclosures

[Include this section if you use Google Analytics; remove if using a cookieless alternative.]

This Website uses Google Analytics 4 (GA4), a web analytics service provided by Google Ireland Limited (for EEA users) and Google LLC (for non-EEA users).

We have configured Google Analytics with the following privacy-enhancing settings:

  • IP anonymization is enabled by default in GA4.
  • Data retention is set to the minimum available period (2 months, or 14 months – specify your actual setting).
  • Google Signals is [enabled/disabled] – specify your actual setting.
  • Data sharing with Google is [limited/disabled] – specify your actual setting.
  • We have entered into Google’s Data Processing Terms, which include Standard Contractual Clauses for international data transfers.

Google’s privacy policy is available at: https://policies.google.com/privacy

6. Google Ads Conversion Tracking Disclosures

[Include this section if you use Google Ads; adjust if using another platform.]

When you click on a Google ad and arrive at our Website, a temporary conversion tracking cookie may be placed on your device (subject to your cookie consent). This cookie helps us measure whether the ad click led to a desired action (such as a form submission). We receive aggregated, non-personally-identifiable conversion data from Google. We do not receive information that personally identifies the individual user.

You can opt out of Google Ads personalization at: https://adssettings.google.com

7. Changes to This Cookie Policy

We may update this Cookie Policy from time to time. Any material changes will be reflected on this page with a revised Effective Date. We encourage you to review this policy periodically.

8. Contact

For any questions regarding this Cookie Policy, please contact:

Carolina Melendez

Email: [INSERT EMAIL ADDRESS]

Website: carolinamelendez.co

PART 4: ADVERTISING DISCLOSURE (FTC COMPLIANCE)

This Website displays advertisements served by third-party advertising networks and platforms. Ads are clearly labeled and distinguishable from editorial content.

In accordance with the U.S. Federal Trade Commission (FTC) Guides Concerning Use of Endorsements and Testimonials in Advertising (16 CFR Part 255):

  • Any testimonials or endorsements displayed on this Website reflect the honest opinions, findings, or experiences of the individuals quoted.
  • Results described in testimonials or case studies are not guaranteed and may not be typical. Individual results will vary.
  • Any material connection between the endorser and Carolina Melendez (such as a client relationship) will be clearly disclosed.
  • Any sponsored or paid content on this Website will be clearly identified and labeled as “Sponsored,” “Ad,” or “Partner Content.”

IMPLEMENTATION CHECKLIST

IMPORTANT: Before publishing these legal documents on your Website, complete the following action items:

  1. Fill in all [BRACKETED PLACEHOLDERS] throughout each document (email address, physical address, state, county, EU representative, platform names, etc.).
  1. Choose your U.S. governing law state and county for the Terms of Service (Section 12).
  2. Determine if you need an EU Representative under Article 27 GDPR. If you do not have an EU establishment but target EU users, you are required to appoint one.
  3. Update the Cookie Tables with the exact cookies deployed by your specific analytics and advertising platforms. Audit your Website with a cookie scanner tool (such as Cookiebot, CookieYes, or OneTrust) to identify all cookies.
  4. Implement a GDPR-compliant Cookie Consent Banner (CMP) that blocks non-essential cookies until the user provides affirmative consent. Recommended tools: Cookiebot, CookieYes, OneTrust, Osano, or Complianz.
  5. Ensure your email service provider (ESP) supports double opt-in for EU subscribers.
  6. Configure Google Analytics 4 with IP anonymization, minimum data retention, consent mode (Google Consent Mode v2), and restricted data sharing.
  7. Implement Google Consent Mode v2 to ensure ad and analytics tags fire only after consent is granted by the Cookie Banner. This is required by Google for EEA traffic as of March 2024.
  8. Add persistent “Cookie Settings” and “Privacy Policy” links in the Website footer on every page.
  9. Add the CAN-SPAM-required physical mailing address to the footer of every commercial email you send. A P.O. Box or registered agent address is acceptable.
  10. Review these documents with a licensed attorney in your jurisdiction (and an EU-qualified data protection lawyer if targeting EU residents) before publishing.

Disclaimer: This document was drafted as a comprehensive template based on publicly available regulatory requirements and best practices. It does not constitute legal advice. Carolina Melendez should consult with a qualified attorney to ensure these documents are tailored to her specific business activities, jurisdictions, and legal obligations.