Effective [09/23/2025]
Signet Innovations (“we,” “our,” “us”) values privacy as a core element of the trust placed in us by our clients, partners, and website visitors. This Privacy Policy provides a high-level overview of how we approach privacy, security, and data stewardship both through our website and in the course of our professional consulting engagements. Our goal is to give clarity and assurance about our practices while recognizing that the specific handling of data in consulting engagements is always governed by individual contracts or statements of work that reflect the priorities of each client.
1. Scope and Purpose
This policy applies to information collected directly through the Signet Innovations website and to general practices regarding how we view and treat data in the context of consulting engagements. It does not supersede or replace the terms of any individual client contract. Where there is any difference between this policy and a signed contract or statement of work, the contractual terms will govern.
We recognize that each institution we serve operates within its own regulatory, cultural, and operational context. Our work with a private university may raise different privacy considerations than our work with a financial services client or a nonprofit organization. This Privacy Policy provides a baseline statement of principles while ensuring that specific commitments are always tailored and formalized within client agreements.
2. Information Collected Through the Website
When visitors use our website, we may collect limited information, such as:
-Contact details voluntarily submitted through inquiry or scheduling forms (e.g., name, email address, phone number).
-General, non-identifiable information related to site usage (such as standard server logs or analytics tools) to improve the quality of the website experience.
We use this information only for business purposes such as responding to inquiries, maintaining communication with potential or current clients, and improving website usability. We do not sell, rent, or exchange this information with outside parties for marketing or commercial gain.
3. Consulting Engagements
The consulting work of Signet Innovations is highly customized and project-specific. Any client-related data that may be accessed, analyzed, or temporarily stored as part of an engagement is handled in accordance with the governing contract or statement of work. Each engagement defines the scope of data use, the purpose for which it is accessed, and the limits of our retention.
Key principles include:
-Client ownership and control: All institutional or proprietary data remains the property of the client.
-Use limitation: Data is used only for the purposes agreed upon in the engagement.
-Contractual priority: Contracts and statements of work take precedence over this policy when governing specific practices.
4. Contractors and Subprocessors
Signet Innovations engages senior consultants and subject-matter experts as independent contractors to help deliver high-quality advisory services. These individuals are bound by written confidentiality and nondisclosure agreements and are held to the same standards of care as our core team. Contractors may be located internationally, but they are contractually obligated to follow Signet Innovations’ privacy and security expectations as well as any specific requirements outlined in client agreements.
We do not use subprocessors to host, manage, or operate shared client platforms. When technology tools are employed, such as project management or communication software, those tools are used only for engagement-related collaboration.
5. Data Security Practices
Signet Innovations uses commercially reasonable administrative, technical, and physical safeguards to protect the information within our control. This includes:
-Secure storage within reputable platforms (e.g., Google Workspace, ClickUp).
-Encryption of data at rest and in transit, to the extent supported by the platform.
-Access restricted to those with a business need, consistent with client agreements.
While no security framework can eliminate all risks, our approach reflects an emphasis on data minimization: we access and store only what is necessary to complete the agreed-upon work, and we maintain strict boundaries around its use.
6. International Considerations
Although headquartered in the United States, Signet Innovations may work with consultants located internationally. Regardless of location, contractors are bound by the same confidentiality agreements and contractual requirements as U.S.–based staff. Any data handled by these consultants remains under the same protections and is not transferred for unrelated purposes.
7. Regulatory Alignment
Our engagements may touch industries governed by specific regulations, such as higher education, financial services, or healthcare-adjacent programs. We recognize these frameworks and tailor our practices accordingly:
-GLBA (Gramm-Leach-Bliley Act): We avoid sharing institutional data with third parties outside the contractual scope.
-FERPA (Family Educational Rights and Privacy Act): We treat education records with care and ensure they are accessed only as directed by the institution.
-GDPR/PIPL/CCPA and similar regulations: When engagements involve data covered by these or similar laws, Signet Innovations will follow client-directed requirements and ensure appropriate contractual terms are in place.
8. Privacy-by-Design Philosophy
Signet Innovations applies a “privacy-by-design” approach in its advisory work. This means we consider privacy impacts early, limit unnecessary exposure of personal or institutional data, and ensure human review of any technology-enabled outputs before they are shared.
We do not operate automated decision-making systems that act on client data without human involvement. Any optional use of artificial intelligence or automation tools is client-directed, consultant-reviewed, and subject to the same boundaries of confidentiality and limited retention.
9. Updates and Evolution
As privacy expectations and regulatory requirements continue to evolve, Signet Innovations periodically reviews this Privacy Policy to ensure it reflects current practices. Any updates will be posted to this page with a new effective date. Material changes will be clearly indicated.
