Privacy Policy

Vertical GTM LLC | Last updated: April 2, 2026

Vertical GTM LLC ("Vertical GTM," "we," "our," or "us") is a Delaware-registered company that provides outbound lead-generation and go-to-market services. We are committed to protecting your personal data and respecting your privacy rights.

1. Who We Are

Controller: Vertical GTM LLC, 611 South DuPont Highway Suite 102, Dover, DE 19901 | +1 210 307 6950

2. Personal Data We Collect

We collect the following categories of personal data:

Identity & Contact — Name, job title, business email, phone, LinkedIn URL. Source: You, publicly available B2B directories, data-provider partners.

Professional Data — Company name, industry, headcount, tech stack. Source: Same as above.

Transactional — Purchase history, invoices, support tickets. Source: Generated during your dealings with us.

Usage — IP address, browser type, pages visited, time-on-page, clicks. Source: Cookies & similar tech.

Marketing Preferences — Newsletter, event, or demo sign-ups. Source: You.

We do not intentionally collect special-category data (GDPR Art. 9) or data about children under the age of 16.

3. Why & How We Use Your Data (Legal Bases – GDPR Art. 6)

Provide and bill for our Services — Contract (Art. 6(1)(b)) — 7 years after last invoice.

Respond to enquiries & support — Legitimate interest (Art. 6(1)(f)) — 2 years from last interaction.

Direct B2B marketing (cold email, LinkedIn) — Legitimate interest (Art. 6(1)(f)) + CAN-SPAM compliance — Until you opt out or data becomes outdated (max 2 years).

Email newsletters & downloadable content — Consent (Art. 6(1)(a)) — Until withdrawal.

Website analytics & cookies — Consent where required; otherwise Legitimate interest — See Section 9.

Whenever Legitimate Interest is our basis, we have balanced our marketing and business needs against your privacy rights and concluded they are not overridden. You may object at any time (see Section 7).

4. Sharing & International Transfers

We share data only when necessary with the following categories of recipients:

• Email & CRM platforms (e.g., HubSpot, SendGrid)

• Analytics & optimisation tools (e.g., Google Analytics, Google Tag Manager)

• Payment processors (Stripe)

• Professional advisers (lawyers, accountants)

Because we are U.S.-based, data may be stored or processed outside the European Economic Area (EEA). Where EU personal data is transferred to third countries, we rely on Standard Contractual Clauses (SCCs) and other GDPR-approved safeguards.

5. Data Security

We implement appropriate technical and organisational measures to protect your personal data, including:

• Role-based access controls

• Multi-factor authentication (MFA)

• Encryption in transit (TLS) and at rest

• Annual security reviews

In the event of a data breach affecting your rights and freedoms, we will notify the relevant supervisory authority within 72 hours and affected individuals without undue delay, as required by GDPR Art. 33–34.

6. How Long We Keep Data

We keep data only as long as necessary for the purpose for which it was collected, then securely delete or anonymise it. Key retention periods are set out in Section 3. Financial records are held for at least seven (7) years to satisfy U.S. tax law requirements.

Upon termination of a services agreement, client personal data will be deleted or anonymised within 90 days unless a longer retention period is required by law.

7. Your Rights

7.1 EU/UK Residents (GDPR / UK GDPR)

• Access your data (Art. 15)

• Rectify inaccurate data (Art. 16)

• Erase your data — "right to be forgotten" (Art. 17)

• Restrict or object to processing (Art. 18, 21)

• Port data to another service (Art. 20)

• Withdraw consent at any time (does not affect past processing)

To exercise any of these rights, email privacy@verticalgtm.com. We will respond within 30 days. You may also lodge a complaint with your local supervisory authority in your EU or UK country of residence.

7.2 California Residents (CCPA/CPRA)

If you are a California resident, you have the right to:

• Know what personal information we collect and how it is used

• Delete your personal information (subject to certain exceptions)

• Opt out of the sale or sharing of your personal information

• Non-discrimination for exercising your privacy rights

We do not sell personal information to third parties. To submit a CCPA request, email privacy@verticalgtm.com with the subject line "CCPA Request."

8. CAN-SPAM Compliance & Opt-Outs

• We never use deceptive headers or subject lines.

• Every marketing email clearly states it is an advertisement and contains our physical address (611 South DuPont Highway Suite 102, Dover, DE 19901).

• Each message provides a one-click unsubscribe link or equivalent instructions.

• Opt-out requests are honoured within 10 business days.

• We do not transfer unsubscribed addresses to third parties except for compliance purposes.

9. Cookies & Similar Technologies

We may use cookies and other tracking technology to track activity on our website and collect information. You can instruct your browser to refuse all cookies, or to indicate when a cookie is being sent.

10. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for their content or privacy practices. We encourage you to review their privacy policies before providing any personal data.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated by email or displayed prominently in-app at least 14 days before taking effect.

12. Contact Us

Email: privacy@verticalgtm.com
Phone: +1 210 307 6950
Mail: Vertical GTM LLC, 611 South DuPont Highway Suite 102, Dover, DE 19901