Privacy Policy
for Zana Holding LLC DBA Local Advantage
Last Updated: June 24, 2025
At Zana Holding LLC DBA Local Advantage (“Company,” “we,” “us,” or “our”), we are committed to protecting your privacy and handling your personal information with transparency, care, and respect. This Privacy Policy explains how we collect, use, disclose, store, and protect information when you visit our website at localadvantage.us, contact us, or engage us for any of our marketing services.
By accessing our website or using our services, you agree to the terms of this Privacy Policy. If you do not agree with this policy, please do not use our website or services.
This Privacy Policy is designed to comply with applicable privacy laws, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), and other applicable U.S. state and federal privacy regulations. It is also aligned with the data handling expectations of our payment processors, Stripe (stripe.com) and Wise (wise.com).
1. Who We Are
The data controller responsible for your personal information is:
Zana Holding LLC DBA Local Advantage
Website: localadvantage.us
Email: [email protected]
Phone: +1 201 255 7711
Address: 1207 DELAWARE AVE 1215 19806 Wilmington, Delaware,USA
If you have any questions, concerns, or requests relating to this Privacy Policy or your personal data, please contact us using the information above. We will respond to all legitimate privacy inquiries within 30 days.
2. Information We Collect
We collect information in the following ways and categories:
2.1 Information You Provide Directly. When you contact us, request a quote, sign a service agreement, or communicate with us, we collect:
— Full name and business name
— Email address and phone number
— Billing and mailing address
— Payment information (processed securely through Stripe or Wise — we do not store full card numbers)
— Business details, goals, and any information you share in onboarding forms or consultations
— Login credentials for platforms you grant us access to (e.g., Google Ads, Meta Business Manager, WordPress)
— Any communications, messages, or files you send to us
2.2 Information Collected Automatically. When you visit our website, we automatically collect certain technical information, including:
— IP address and general geographic location
— Browser type, version, and operating system
— Device type and screen resolution
— Pages visited, time spent on pages, and navigation paths
— Referring URL (the site you came from)
— Date and time of your visit
— Cookies and similar tracking technologies (see Section 7)
2.3 Information from Third-Party Platforms. When we manage advertising or marketing accounts on your behalf, we may access and process data provided by third-party platforms, including:
— Google Analytics and Google Ads performance data
— Meta (Facebook/Instagram) Ads Manager data and audience insights
— Google Business Profile data and customer reviews
— Social media account analytics and engagement data
— Website traffic and conversion data from your website’s tracking tools
2.4 Information About the Client’s Customers. In delivering services such as Social Media Advertising, SEO, and Google Ads Management, we may access data about the Client’s end-customers (e.g., website visitors, advertising audiences, contact lists). This data is processed solely on behalf of the Client and only for the purpose of delivering the agreed services. The Client is the data controller for their customers’ data; Local Advantage acts as a data processor in this context.
2.5 Information from Payment Processors. When you make payments through Stripe or Wise, those platforms process your payment information directly and may share limited transaction details with us (e.g., payment status, amount, and billing name) as necessary for billing and accounting purposes. We do not store full credit card numbers. For more information, review Stripe’s Privacy Policy at stripe.com/privacy and Wise’s Privacy Policy at wise.com/privacy-policy.
3. How We Use Your Information
We use the information we collect for the following purposes, relying on the legal bases indicated:
3.1 To Deliver Our Services (Contractual Necessity). We use your information to provide, manage, and improve the services you have engaged us for, including Web Design, Social Media Management, Social Media Advertising, Google My Business Optimization, Google Search Ads Management, and SEO. This includes communicating with you about your project, accessing your accounts, creating content and campaigns, and generating reports.
3.2 To Process Payments (Contractual Necessity). We use billing and payment information to invoice you, process payments through Stripe or Wise, manage outstanding balances, and maintain financial records as required by law.
3.3 To Communicate With You (Legitimate Interest / Contractual Necessity). We use your contact information to respond to inquiries, send project updates, deliver reports, provide support, and communicate changes to our services or these policies.
3.4 To Send Marketing Communications (Consent / Legitimate Interest). With your consent or where permitted by applicable law, we may send you newsletters, promotional offers, case studies, or information about new services. You may opt out of marketing communications at any time by clicking “unsubscribe” in any email or by contacting us directly. Opting out of marketing communications will not affect your receipt of transactional service communications.
3.5 To Improve Our Services (Legitimate Interest). We use aggregated, anonymized performance data and feedback to analyze trends, improve our service quality, develop new offerings, and train our team. Individual client data is never shared publicly for this purpose.
3.6 To Comply With Legal Obligations (Legal Obligation). We may use and retain your information to comply with applicable laws, regulations, tax requirements, accounting obligations, and lawful requests from government authorities or courts.
3.7 To Protect Our Rights (Legitimate Interest). We may use your information to detect and prevent fraud, enforce our Terms and Conditions, resolve disputes, and protect the security of our business and systems.
4. Legal Basis for Processing (GDPR)
If you are located in the European Economic Area (EEA), United Kingdom, or another jurisdiction subject to GDPR, we process your personal data on the following legal bases:
Performance of a Contract: Processing necessary to fulfill our service agreement with you, including delivering services, processing payments, and communicating about your project.
Legitimate Interests: Processing necessary for our legitimate business interests, including improving our services, preventing fraud, communicating with prospective clients, and protecting our legal rights — provided these interests are not overridden by your fundamental rights and freedoms.
Legal Obligation: Processing required to comply with applicable laws and regulations, including tax, accounting, and record-keeping requirements.
Consent: Processing based on your freely given, specific, and informed consent — primarily for marketing communications and the use of non-essential cookies. You have the right to withdraw consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
If you have questions about the legal basis we rely on for a specific processing activity, please contact us at the address provided in Section 1.
5. How We Share Your Information
We do not sell your personal information. We do not trade or rent your personal data to third parties for their own marketing purposes. We may share your information only in the following limited circumstances:
5.1 Service Providers & Subprocessors. We share information with trusted third-party service providers who assist us in delivering our services and running our business. These providers are contractually required to protect your information and use it only for the specified purpose. Our current categories of service providers include:
— Payment Processors: Stripe (stripe.com) and Wise (wise.com) for processing client payments
— Advertising Platforms: Google LLC and Meta Platforms Inc. for managing paid advertising campaigns on your behalf
— Analytics Tools: Google Analytics for website performance tracking
— Project Management & Communication: Tools such as email providers, project management platforms, and CRM software
— Cloud Storage: Secure cloud storage providers for storing project files and deliverables
— Accounting Software: For financial record-keeping and invoicing
5.2 Third-Party Advertising Platforms. When managing advertising campaigns on your behalf, we share necessary campaign data (such as audience targeting parameters, creative assets, and tracking pixels) with platforms including Google and Meta. These platforms have their own privacy policies governing how they handle data.
5.3 Legal Requirements. We may disclose your information if required to do so by law, regulation, court order, or government authority, or if we believe in good faith that such disclosure is necessary to protect the rights, property, or safety of Local Advantage, our clients, or the public.
5.4 Business Transfers. In the event of a merger, acquisition, business sale, or restructuring of Local Advantage, your information may be transferred to the successor entity as part of the transaction. We will notify you of any such transfer and any choices you may have regarding your information.
5.5 With Your Consent. We may share your information with third parties if you provide explicit consent for us to do so, such as in the context of a case study, testimonial, or referral partnership.
6. Data Retention
We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, including for the satisfaction of any legal, accounting, or reporting requirements.
Client Records: We retain client account information, contracts, and correspondence for a minimum of 5 years following the termination of our business relationship, or longer if required by applicable law.
Financial Records: Billing records, invoices, and payment history are retained for a minimum of 7 years to comply with tax and accounting obligations.
Marketing Communications: If you opt out of marketing emails, we retain your email address on a suppression list to ensure we do not contact you again.
Website Visitor Data: Log files and analytics data are typically retained for 12 to 24 months, depending on the tools used.
Advertising & Campaign Data: Performance data and campaign assets are retained for the duration of the service agreement and for up to 2 years after termination to assist with reporting, audits, or disputes.
When data is no longer needed, we securely delete or anonymize it so it can no longer be associated with you.
7. Cookies & Tracking Technologies
Our website uses cookies and similar tracking technologies to enhance your browsing experience and gather information about how our site is used.
7.1 What Are Cookies. Cookies are small text files placed on your device when you visit a website. They help the website remember your preferences, understand how you navigate the site, and serve relevant content.
7.2 Types of Cookies We Use:
Essential Cookies: These are strictly necessary for the website to function correctly. They enable core functionality such as security, network management, and accessibility. You cannot opt out of these cookies as the website cannot function properly without them.
Analytics Cookies: We use tools such as Google Analytics to collect anonymized information about how visitors use our website, including which pages are visited most often and how users navigate the site. This helps us improve the website experience. Google Analytics uses cookies to track user interactions. You can opt out of Google Analytics tracking by installing the Google Analytics Opt-Out Browser Add-on at tools.google.com/dlpage/gaoptout.
Marketing & Remarketing Cookies: We may use cookies from platforms such as Google and Meta to serve targeted advertisements to users who have previously visited our website. These cookies track your browsing activity across websites to deliver relevant ads.
Preference Cookies: These cookies remember your settings and preferences (such as language preferences) to provide a more personalized experience.
7.3 Managing Cookies. You can control and manage cookies through your browser settings. Most browsers allow you to refuse or delete cookies. Please note that disabling cookies may affect the functionality of our website. For more information on managing cookies, visit allaboutcookies.org.
7.4 Do Not Track. Some browsers include a “Do Not Track” feature that signals to websites that you do not want to be tracked. Our website does not currently respond to Do Not Track signals, but you may use the cookie management options described above to limit tracking.
8. Your Privacy Rights
Depending on your location, you may have the following rights regarding your personal information. We honor these rights for all clients and website visitors regardless of jurisdiction, to the extent practicable.
8.1 Right to Access. You have the right to request a copy of the personal information we hold about you, including information about how it is used and with whom it is shared.
8.2 Right to Rectification. You have the right to request that we correct any inaccurate or incomplete personal information we hold about you.
8.3 Right to Erasure (“Right to Be Forgotten”). You have the right to request that we delete your personal information, subject to certain exceptions (e.g., where we are required to retain data by law or to fulfill a contract).
8.4 Right to Restrict Processing. You have the right to request that we limit or restrict how we process your personal information in certain circumstances, such as while a dispute about accuracy is being resolved.
8.5 Right to Data Portability. You have the right to receive a copy of the personal information you have provided to us in a structured, commonly used, machine-readable format, and to transmit that data to another controller where technically feasible.
8.6 Right to Object. You have the right to object to our processing of your personal information where we rely on legitimate interests as our legal basis. You also have an unconditional right to object to processing for direct marketing purposes.
8.7 Right to Withdraw Consent. Where we rely on your consent to process your information (e.g., for marketing emails or non-essential cookies), you may withdraw your consent at any time. Withdrawal of consent does not affect the lawfulness of processing carried out before the withdrawal.
8.8 Right to Non-Discrimination (CCPA/CPRA). California residents have the right not to be discriminated against for exercising their privacy rights. We will not deny services, charge different prices, or provide a lower quality of service because you exercised a privacy right.
8.9 Right to Lodge a Complaint. If you believe we have not handled your personal information lawfully, you have the right to lodge a complaint with the relevant supervisory authority. In the EU/EEA, this is your local Data Protection Authority. In California, you may contact the California Privacy Protection Agency (CPPA).
How to Exercise Your Rights. To exercise any of the rights described above, please contact us in writing at [your contact email] with the subject line “Privacy Rights Request.” We will respond within 30 days (or as required by applicable law). We may need to verify your identity before processing your request. We will not charge a fee for reasonable requests but reserve the right to charge a fee or decline requests that are manifestly unfounded or excessive.
9. California Privacy Rights (CCPA / CPRA)
This section applies specifically to California residents and supplements the information provided elsewhere in this Privacy Policy.
9.1 Categories of Personal Information Collected. In the past 12 months, we have collected the following categories of personal information as defined by the CCPA:
— Identifiers (name, email address, phone number, IP address)
— Commercial information (service history, payment records, transaction data)
— Internet or electronic network activity (website usage, cookies, browsing data)
— Professional or employment-related information (business name, industry, role)
— Geolocation data (general location derived from IP address)
— Inferences drawn from the above categories (service preferences, business needs)
9.2 Purposes for Collection. We collect this information for the business purposes described in Section 3 of this Privacy Policy.
9.3 Categories of Sources. We collect personal information directly from you, automatically from your device when you visit our website, and from third-party platforms used to deliver our services.
9.4 Categories of Third Parties We Share With. We share personal information with service providers, advertising platforms, and payment processors as described in Section 5 of this Privacy Policy.
9.5 We Do Not Sell or Share Personal Information. Local Advantage does not sell personal information for monetary or other valuable consideration, nor do we share personal information with third parties for cross-context behavioral advertising, as defined under the CPRA.
9.6 Sensitive Personal Information. We do not collect, use, or disclose sensitive personal information beyond what is necessary to provide our services and as permitted by the CCPA/CPRA without offering the right to limit its use.
9.7 Your CCPA Rights. California residents may submit requests to Know, Delete, Correct, or Opt Out of Sale/Sharing by contacting us at [your contact email]. We will verify your identity and respond within 45 days, with a possible extension of an additional 45 days when reasonably necessary.
10. International Data Transfers
Local Advantage is based in the United States. If you are located outside the United States, please be aware that your personal information will be transferred to, stored, and processed in the United States, where data protection laws may differ from those in your country.
Where we transfer personal data from the European Economic Area, United Kingdom, or Switzerland to countries not recognized as providing an adequate level of data protection, we rely on appropriate safeguards, including Standard Contractual Clauses (SCCs) approved by the European Commission, to ensure your data receives adequate protection.
Our primary third-party processors, including Stripe and Wise, have established mechanisms for lawful international data transfers and are compliant with applicable cross-border data transfer requirements. For details, please review their respective privacy policies.
By using our services or providing us with your personal information, you acknowledge that your information may be transferred to and processed in the United States and other countries in connection with the delivery of our services.
11. Data Security
We take the security of your personal information seriously and implement commercially reasonable technical and organizational measures to protect it against unauthorized access, disclosure, alteration, or destruction. Our security practices include:
— Encrypted transmission of data using SSL/TLS protocols on our website
— Secure payment processing through PCI-DSS compliant processors (Stripe and Wise)
— Limited access to personal data on a need-to-know basis among our team
— Use of strong password policies and multi-factor authentication for our business accounts and platforms
— Regular review of our security practices and third-party service providers
— Secure storage of electronic records with access controls
However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your personal information, we cannot guarantee its absolute security. In the event of a data breach that affects your rights and freedoms, we will notify affected individuals and relevant authorities as required by applicable law.
You are also responsible for maintaining the security of your own accounts and credentials. Please notify us immediately if you suspect any unauthorized access to accounts managed by Local Advantage.
12. Children's Privacy
Our services are intended solely for business clients and are not directed at individuals under the age of 16 (or under 18 in jurisdictions where this applies). We do not knowingly collect personal information from children. If you are a parent or guardian and believe that your child has provided us with personal information, please contact us immediately at [email protected] and we will take steps to delete such information.
Our advertising campaigns managed on behalf of clients are also subject to the age-targeting policies of the respective advertising platforms. We will not knowingly create or target advertising campaigns directed at minors on behalf of clients, and the Client is responsible for ensuring their products and services are appropriate for the audiences being targeted.
13. Third-Party Websites & Links
Our website may contain links to third-party websites, platforms, or services, including but not limited to Google, Meta, Stripe, and Wise. These links are provided for your convenience and informational purposes only. Local Advantage is not responsible for the privacy practices, content, or security of any third-party websites or services.
We encourage you to read the privacy policies of any third-party platform you visit or use. In particular, the following policies are relevant to our services:
— Google Privacy Policy: policies.google.com/privacy
— Meta Privacy Policy: facebook.com/privacy/policy
— Stripe Privacy Policy: stripe.com/privacy
— Wise Privacy Policy: wise.com/privacy-policy
The inclusion of a link does not constitute our endorsement of the linked site or its operators.
14. Payment Processing & Financial Data
All payment transactions are processed securely through our payment processors. Local Advantage does not directly collect, store, or process full credit card numbers, bank account numbers, or other sensitive financial payment information. This information is handled entirely by our PCI-DSS compliant payment processors.
Stripe: When you pay via Stripe, your payment information is collected and processed by Stripe, Inc. Stripe is a certified PCI Service Provider Level 1, the highest level of certification in the payments industry. Your card data is encrypted and tokenized by Stripe. Local Advantage receives only a token representing your payment method, along with non-sensitive details such as the last four digits of your card, card brand, and billing name. Stripe’s Privacy Policy is available at stripe.com/privacy.
Wise: When payments are processed through Wise (formerly TransferWise), your payment and banking information is handled directly by Wise. Wise is a licensed payment institution regulated in multiple jurisdictions including the Financial Conduct Authority (FCA) in the UK and FinCEN in the United States. Local Advantage receives only confirmation of payment status and basic transaction details. Wise’s Privacy Policy is available at wise.com/privacy-policy.
We retain billing records, invoice history, and payment confirmations (excluding raw card data) for a minimum of 7 years for accounting, tax compliance, and dispute resolution purposes. If you have concerns about a payment transaction, please contact us directly before initiating a dispute with your payment provider.
15. Marketing Communications
15.1 Opting In. By providing us with your email address in connection with our services or by subscribing to our newsletter or updates, you consent to receive marketing communications from Local Advantage. These may include newsletters, service updates, promotional offers, case studies, and digital marketing tips.
15.2 Opting Out. You may opt out of marketing communications at any time by:
— Clicking the “Unsubscribe” link at the bottom of any marketing email
— Contacting us directly at [your contact email] with the subject “Unsubscribe”
Please note that even after opting out of marketing communications, you will continue to receive transactional and service-related emails necessary for the delivery of your services (e.g., invoices, project updates, password resets).
15.3 CAN-SPAM Compliance. All marketing emails from Local Advantage comply with the CAN-SPAM Act. We clearly identify ourselves as the sender, include our physical mailing address, and honor opt-out requests within 10 business days.
15.4 Testimonials & Case Studies. If we wish to feature you or your business in a case study, testimonial, or portfolio piece, we will request your explicit written consent before doing so. You may withdraw this consent at any time.
16. Data Processor Obligations (Client Data)
When Local Advantage processes personal data on behalf of a Client — for example, when managing advertising audiences, email marketing lists, or website analytics — Local Advantage acts as a data processor and the Client acts as the data controller.
In this capacity, Local Advantage agrees to:
— Process personal data only on the Client’s documented instructions and for no other purpose
— Implement appropriate technical and organizational security measures to protect the data
— Assist the Client in fulfilling their obligations to respond to data subject rights requests
— Not engage sub-processors without prior authorization from the Client (our standard sub-processors include the advertising and analytics platforms described in Section 5)
— Delete or return the Client’s personal data upon termination of the service agreement
— Notify the Client without undue delay upon becoming aware of a personal data breach affecting their data
Clients who require a formal Data Processing Agreement (DPA) — for example, to comply with GDPR Article 28 — may request one by contacting us at [your contact email]. We will provide a DPA upon request at no additional charge.
17. Changes to This Privacy Policy
We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our practices, services, legal requirements, or for other operational reasons. When we make material changes, we will:
— Update the “Last Updated” date at the top of this page
— Post the updated policy on our website at localadvantage.us/privacy-policy
— Send an email notification to active clients at least 14 days before the changes take effect
Your continued use of our website or services after the effective date of the updated Privacy Policy constitutes your acknowledgment and acceptance of the changes. If you do not agree with the updated policy, you should discontinue using our services and notify us in writing.
We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information.
18. Contact Us & Data Requests
If you have any questions, concerns, or requests related to this Privacy Policy or the handling of your personal information, please contact us:
Zana Holding LLC DBA Local Advantage
Website: localadvantage.us
Email: [email protected]
Phone: +1 201 255 7711
Address: 1207 DELAWARE AVE 1215 19806 Wilmington, Delaware,USA
For privacy rights requests (access, deletion, correction, portability, or objection), please email us with the subject line “Privacy Rights Request” and include your full name, the email address associated with your account, and a description of your request. We will verify your identity and respond within 30 days (or within the timeframe required by applicable law).
For data breach notifications or security concerns, please contact us immediately at [email protected] so we can investigate and respond promptly.
For Data Processing Agreement (DPA) requests, contact us at [your contact email] with the subject line “DPA Request.”
We are committed to resolving privacy concerns promptly and transparently. Thank you for trusting Local Advantage with your business and your data.
