1. Introduction 

This Privacy Policy explains how [Organization Name] (“we,” “our,” or “the Company”) collects, stores, uses, and protects personal and organizational data. This policy applies to all data stored and processed using Google Drive, which operates on Google Cloud’s distributed infrastructure, and does not apply to data stored on private, on‑premises servers. 

We are committed to maintaining compliance with applicable U.S. privacy laws, including but not limited to: 

• The California Consumer Privacy Act (CCPA) 

• The California Privacy Rights Act (CPRA) 

• The Virginia Consumer Data Protection Act (VCDPA) 

• Other state‑level privacy regulations as they become applicable 

​

2. Data We Collect 

We may collect and store the following categories of information: 

• Personal Identifiers: Name, email address, phone number, mailing address. 

• Account Information: Login credentials, authentication logs, access permissions. 

• Operational Data: Documents, images, reports, spreadsheets, and other files uploaded to Google Drive. 

• Usage Data: Metadata, timestamps, file access logs, and activity history. 

• Third‑Party Information: Data provided to us by clients, partners, or vendors for operational purposes. 

We collect data directly from users, through automated systems, and through third‑party integrations approved by the organization. 

 

3. How We Store Data (Google Drive / Google Cloud Infrastructure) 

All data is stored exclusively on Google Drive, which is hosted on Google Cloud’s multi‑region, redundant infrastructure. Key characteristics include: 

• Redundant Storage: Files are replicated across multiple geographically distributed data centers to prevent data loss. 

• Encryption at Rest: Google encrypts stored data using AES‑256 or equivalent standards. 

• Encryption in Transit: All data transmitted to and from Google Drive is encrypted using TLS. 

• Zero‑Trust Access Controls: Access requires authenticated Google Workspace accounts with enforced security policies. 

We do not store data on private cloud servers, local servers, or unmanaged storage systems. 

 

4. How We Use Data 

We use collected data for the following purposes: 

• Providing services to clients and users 

• Internal operations, documentation, and workflow management 

• Compliance with legal and regulatory requirements 

• Security monitoring and fraud prevention 

• Communication and customer support 

• Improving service delivery and operational efficiency 

We do not sell personal information. 

 

5. Third‑Party Access and Sharing 

We may share data with third parties only under the following conditions: 

• Service Providers: Vendors who support our operations (e.g., Google, communication platforms, analytics tools). 

• Legal Compliance: When required by law, subpoena, or government request. 

• Client‑Authorized Sharing: When a client explicitly requests or authorizes data sharing. 

• Security and Fraud Prevention: When necessary to detect or prevent malicious activity. 

All third‑party service providers must comply with contractual confidentiality and data‑protection obligations. 

 

6. Data Security Measures 

We implement administrative, technical, and physical safeguards to protect stored data, including: 

• Multi‑factor authentication (MFA) 

• Role‑based access controls (RBAC) 

• Google Workspace security policies 

• Continuous monitoring and audit logging 

• Least‑privilege access enforcement 

• Regular security reviews and configuration audits 

While Google Cloud provides robust infrastructure‑level security, we maintain responsibility for access control, file permissions, and internal data governance. 

 

7. Data Breach and Exposure Risks 

Although Google Cloud provides enterprise‑grade security, data stored on cloud platforms may still be exposed due to: 

• Misconfigured sharing permissions 

• Compromised user accounts 

• Unauthorized third‑party integrations 

• Human error 

• Malicious insider activity 

• External cyberattacks targeting user credentials 

If a breach occurs, we will: 

1. Investigate and contain the incident 

1. Notify affected individuals as required by U.S. state breach‑notification laws 

1. Cooperate with regulatory authorities 

1. Implement corrective measures to prevent recurrence 

 

8. Data Retention and Deletion 

We retain data only as long as necessary to fulfill operational, contractual, and legal obligations. When data is no longer required: 

• Files are deleted from Google Drive 

• Deleted files follow Google’s secure deletion lifecycle 

• Backups and redundant copies are purged according to Google’s retention schedule 

Users may request deletion of their personal information where applicable under state privacy laws. 

 

9. User Rights (U.S. State Privacy Laws) 

Depending on your state of residence, you may have the right to: 

• Access the personal information we hold about you 

• Request correction of inaccurate information 

• Request deletion of your data 

• Opt out of certain types of data processing 

• Request a copy of your data in a portable format 

• Limit the use of sensitive personal information 

Requests can be submitted to: [Contact Email / Privacy Officer] 

 

10. Children’s Privacy 

We do not knowingly collect or store information from children under the age of 13. If such data is discovered, it will be deleted promptly. 

 

11. Changes to This Policy 

We may update this Privacy Policy periodically. Changes will be posted with a revised “Last Updated” date. Continued use of our services constitutes acceptance of the updated policy. 

 

12. Contact Information 

For questions, concerns, or privacy requests, contact: 

LINE OF SIGHT INVESTIGATIONS INC. 
Stephen Cantone 
S.cantone@Lineofsightinvestigations.com 
P.O. Box 191, Laurel FL 34275 
(941) 999-7552