LegacyStar Privacy Policy

Effective Date: December 23, 2025

LegacyStar Leadership Development Corp. (“LegacyStar,” “we,” “us,” or “our”) provides leadership development, education, training, coaching, and related services. This Privacy Policy explains how we collect, use, share, and protect information when you use our websites, platforms, communications, and services (collectively, the “Services”).

This Privacy Policy is designed to be transparent, comprehensive, and aligned with industry security and privacy frameworks.

1. Information We Collect

We collect information in three primary ways: (a) information you provide to us, (b) information collected automatically, and (c) information obtained from third-party service providers.

1.1 Information You Provide Directly

You may provide information when you:

  • Visit our website

  • Register for programs or events

  • Enroll in training or coaching

  • Communicate with us

  • Subscribe to marketing communications

  • Make payments

This information may include:

  • Name

  • Email address

  • Phone number

  • Mailing and billing address

  • Account credentials

  • Program participation details

  • Communications and support requests

1.2 Payment Information

Payments for LegacyStar Services are processed by Stripe, a third-party payment processor that is PCI-DSS Level 1 compliant.

  • LegacyStar does not store full credit card numbers

  • Stripe processes payment information directly

  • LegacyStar receives limited transaction details necessary for accounting, support, and compliance

Stripe’s processing of payment data is governed by Stripe’s own privacy policy and security controls.

1.3 CRM, Marketing & Messaging Data

LegacyStar uses GoHighLevel as its centralized platform for:

  • Customer Relationship Management (CRM)

  • Email marketing

  • SMS/text messaging

  • WhatsApp Business messaging

  • Marketing automation and workflows

Information processed through GoHighLevel may include:

  • Contact details

  • Communication preferences

  • Marketing consent records

  • Message history (email, SMS, WhatsApp)

  • Engagement and interaction data

LegacyStar does not operate or control GoHighLevel’s underlying infrastructure. GoHighLevel maintains its own security, compliance, and privacy controls.

1.4 Training & Learning Data

If you participate in LegacyStar training or coaching programs, we may collect:

  • Enrollment records

  • Course progress and completion

  • Certifications

  • Coaching notes and assessments

  • Learning engagement data

1.5 Information Collected Automatically

When you access our Services, we may collect:

  • IP address

  • Browser and device information

  • Operating system

  • Referring URLs

  • Pages viewed and interactions

  • Cookies and similar technologies

This information helps us operate, secure, and improve our Services.

2. How We Use Information

We use information to:

  • Provide and operate our Services

  • Deliver leadership development and training programs

  • Manage accounts, memberships, and enrollments

  • Process payments and subscriptions

  • Send transactional and marketing communications

  • Improve our website, content, and offerings

  • Maintain security and prevent fraud

  • Meet legal, regulatory, and audit requirements

3. Marketing Communications

3.1 Email, SMS & WhatsApp

With your consent, LegacyStar may send communications via:

  • Email

  • SMS/text messages

  • WhatsApp Business messaging

All marketing communications:

  • Require opt-in consent where required by law

  • Include opt-out instructions

  • Comply with applicable laws (CAN-SPAM, TCPA, GDPR)

Message delivery and infrastructure are provided by GoHighLevel and its integrated messaging providers.

4. How We Share Information

LegacyStar does not sell personal information.

We may share information with:

4.1 Service Providers

Including:

  • Stripe (payment processing)

  • GoHighLevel (CRM, marketing, messaging)

  • Hosting, analytics, and LMS providers

These providers process data under their own privacy policies and security controls and are responsible for the security of their systems.

4.2 Legal & Regulatory Authorities

When required to comply with law, regulation, court order, or lawful request.

4.3 Business Transfers

In connection with a merger, acquisition, reorganization, or sale of assets.

5. Security & Compliance

LegacyStar’s security and privacy practices are aligned with industry frameworks, including:

  • PCI-DSS (via Stripe)

  • SOC 2 Trust Services Criteria

  • ISO/IEC 27001 principles

  • GDPR

  • CCPA / CPRA

  • Texas Data Privacy and Security Act (TDPSA)

LegacyStar implements reasonable administrative, technical, and organizational safeguards, while relying on certified third-party providers for infrastructure-level security.

6. Data Retention

We retain information only as long as necessary to:

  • Provide Services

  • Maintain records

  • Meet legal and regulatory obligations

  • Resolve disputes

Data is deleted or anonymized when no longer required.

7. International Data Transfers

If you access our Services from outside the United States, your information may be transferred to and processed in the United States, where data protection laws may differ.

8. Your Privacy Rights

Depending on your location, you may have rights to:

  • Access your information

  • Request correction or deletion

  • Withdraw consent

  • Opt out of marketing communications

Requests can be submitted to privacy@legacystar.com.

9. Children’s Privacy

Our Services are intended for adults. We do not knowingly collect personal information from children under 13.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Updates will be posted with a revised effective date.

11. Contact Us

LegacyStar Leadership Development Corp.
315 S Jupiter Rd
Allen, TX 75002
United States

📧 privacy@legacystar.com