Who we are
Method Data Science LLC
Newport Beach, California, USA
Email: privacy@methoddatascience.com
If you are in the EEA/UK, the "controller" of your personal data for the website and direct marketing is Method Data Science LLC. For client projects, we generally act as a processor/service provider to our clients (the "controller/business").
Scope
- Website & marketing. Visitors, prospective customers, and newsletter subscribers.
- Client services. Data processed on behalf of clients under a contract or Data Processing Agreement (DPA).
Information we collect
Information you provide
- Contact details (name, email, phone, company, role).
- Inquiry content, meeting notes, and correspondence.
- Billing details (handled via third-party payment processors).
- Recruiting information (resumes, portfolios, interview notes).
Information collected automatically
- Device and usage data (IP address, browser type, pages viewed, timestamps, referring URLs).
- Cookies and similar technologies for analytics, preferences, and site performance. See Cookies & Tracking.
Information we receive from third parties
- Business contact data providers, social networks (e.g., LinkedIn), and advertising platforms.
- Service partners and vendors supporting our operations.
How we use information
- Provide, operate, and improve our website, products, and services.
- Respond to inquiries, provide proposals, and deliver client work.
- Send service communications and, with your consent or as permitted, marketing.
- Personalize content and measure campaign performance.
- Detect and prevent fraud, abuse, and security incidents.
- Comply with legal obligations and enforce agreements.
Lawful bases (EEA/UK)
- Contract. To provide requested services.
- Consent. Cookies, analytics, and marketing where required.
- Legitimate interests. Site security, analytics, and B2B outreach, balanced with your rights.
- Legal obligation. Tax, accounting, and regulatory compliance.
How we share information
We do not sell personal information. We may share with:
- Service providers and processors that support hosting, analytics, CRM/marketing, payments, communication, and security (examples may include Google Analytics, HubSpot or similar CRM, Stripe, QuickBooks, Snowflake, AWS, email/SMS providers, error monitoring, and security/CDN providers).
- Professional advisors (legal, accounting, insurance) under confidentiality.
- Business transfers in connection with mergers, acquisitions, or asset sales.
- Legal compliance to meet applicable law or respond to valid requests.
When acting as a processor for a client, we only process and disclose data as instructed in the applicable contract/DPA.
Cookies & tracking
We use cookies and similar technologies to operate our site, remember preferences, and analyze usage. Where required, we show a consent banner that lets you manage categories (e.g., analytics, marketing). You can also control cookies via your browser settings.
- Analytics & performance. To understand site usage and improve content.
- Functional. To remember settings and enhance features.
- Advertising (if used). To measure campaigns and avoid irrelevant ads.
Do Not Track: our site does not currently respond to DNT signals.
Data retention
- Website analytics data: typically 14 to 26 months, or as configured.
- Marketing contacts: until you unsubscribe or after a reasonable inactivity period.
- Contract and billing records: kept as needed for legal and tax obligations, usually 7 years in the U.S.
- Client project data (as processor): retained per the client contract, then securely deleted or returned.
Security
We use administrative, technical, and physical safeguards appropriate to the risk, including access controls, encryption in transit, and vendor diligence. No method is 100% secure; if we become aware of a breach affecting you, we will notify you as required by law or contract.
International data transfers
We may process data in the United States and other countries. Where required, we use appropriate safeguards such as Standard Contractual Clauses (SCCs) for EEA/UK data.
Children's privacy
Our website and services are not directed to children under 13 (or under 16 in the EEA). We do not knowingly collect such data. If you believe a child provided personal information, contact us to request deletion.
Your rights & choices
- Marketing. Unsubscribe via footer links or by emailing privacy@methoddatascience.com.
- Cookies. Use the cookie banner (where shown) and your browser settings.
- Access, correction, deletion. Request via privacy@methoddatascience.com.
EEA/UK (GDPR)
You may have the right to access, rectify, erase, restrict, or object to processing, and data portability. Where we rely on consent, you can withdraw it at any time. You also have a right to lodge a complaint with your local supervisory authority.
U.S. state privacy laws (e.g., California/CPRA)
Depending on your state, you may have rights to know/access, correct, delete, and opt out of certain processing (e.g., "sale," "sharing" for cross-context behavioral advertising, targeted advertising, and profiling). We do not sell personal information for money. We may "share" for advertising only if such tools are enabled; you can opt out below.
Categories of personal information (CPRA)
| Category | Examples | Collected | Disclosed for business purposes |
|---|---|---|---|
| Identifiers | Name, email, IP address | Yes | Yes (service providers) |
| Commercial information | Service history, invoices | Yes | Yes (billing/accounting) |
| Internet activity | Pages viewed, device data, cookies | Yes | Yes (analytics, security) |
| Geolocation (coarse) | Approximate location from IP | Possible | Yes (analytics/security) |
| Sensitive data | None expected via site | No | No |
Analytics & advertising choices
- Google Analytics. You can learn about Google's practices and opt out at tools.google.com/dlpage/gaoptout.
- Interest-based ads. Visit optout.networkadvertising.org and optout.aboutads.info.
If we later add or change analytics/ads vendors, we will update this page and, where legally required, our consent banner.
Client data (processor role)
When clients provide us with data to process on their behalf (e.g., datasets for analytics or ML), we act as their processor or service provider and only process that data under the client's instructions and contract/DPA. Clients are responsible for providing any required notices and obtaining necessary consents from their end users.
Exercising your rights
To submit a request (access, correction, deletion, portability, or to opt out of sharing or targeted advertising), email privacy@methoddatascience.com. We may need to verify your identity and, where applicable, your authority to make the request. Authorized agents may submit requests consistent with applicable law.
Third-party links
Our site may link to third-party websites or services that we do not control. Their privacy practices are governed by their own policies.
Changes to this policy
We may update this Privacy Policy from time to time. The "Effective date" above shows when it was last updated. Material changes will be communicated as required by law, for example via a notice on our site or by email.
Contact us
If you have questions about this Privacy Policy or our data practices, contact:
Method Data Science LLC
Email: privacy@methoddatascience.com
This page is for general informational purposes and reflects our current practices for methoddatascience.com and associated marketing. For project-specific terms, see your Master Services Agreement and Data Processing Agreement.