Privacy Policy
Effective Date: 10/25/2025
Company: Blacksuit Consulting LLC
1. Information We Collect
We may collect personal information from clients, prospective clients, and website visitors when you:
Contact us for investigative or consulting services
Request due diligence, background, or cybersecurity assessments
Communicate with us by email, phone, or in person
Subscribe to updates, submit inquiries, or participate in surveys
Categories of data collected may include:
Identifiers (name, phone, email, business affiliation)
Professional information (employment history, litigation records, business ownership)
Technical information (IP address, device/browser details, cookies)
Information provided voluntarily during the course of an investigation or consultation
We do not knowingly collect personal data from children under 16.
2. How We Use Your Information
We will use and retain the collected personal information as needed to:
Provide and improve our services
Conduct background and cyber investigations
Perform due diligence, threat assessments, or litigation support
Respond to inquiries and communicate with clients
Comply with applicable laws and regulatory requirements
We do not sell personal information.
3. Sharing of Information
We may share personal information only with:
Service providers bound by confidentiality agreements
Attorneys or authorized representatives, at the client’s direction
Law enforcement or regulatory bodies when legally required
We do not disclose or sell personal information for marketing purposes.
4. Your Rights (U.S. Residents)
Depending on your state of residence (including California and Virginia), you may have rights to:
Request access to the personal information we hold about you
Request deletion of your information, subject to legal exceptions
Correct inaccurate data
Request details of categories of data collected and shared
Opt out of any future sharing or sale of information (we currently do not sell data)
Appeal if a request is denied (Virginia residents)
To exercise these rights, contact us using the “contact us” form.
5. International Clients & GDPR Rights
If you are located in the European Union, United Kingdom, or another jurisdiction with comprehensive data protection laws, you are entitled to additional rights under the General Data Protection Regulation (GDPR) and similar frameworks:
Right of Access – Request confirmation of whether we process your personal data and obtain a copy of it.
Right to Rectification – Correct inaccurate or incomplete personal data.
Right to Erasure ("Right to be Forgotten") – Request deletion of your personal data, subject to legal and investigative exceptions.
Right to Restrict Processing – Request limits on how we use your personal data.
Right to Data Portability – Receive a copy of your data in a structured, machine-readable format.
Right to Object – Object to processing of your data, including for profiling or legitimate interests.
Right to Withdraw Consent – Withdraw previously given consent at any time.
If you are dissatisfied with how we handle your personal data, you have the right to lodge a complaint with your local supervisory authority.
Legal Basis for Processing
We process personal data based on:
Performance of a contract (to provide requested services)
Legal obligations (compliance with investigative or regulatory requirements)
Legitimate interests (investigations, cybersecurity, risk management)
Consent (where required, such as email subscriptions or certain data transfers)
International Transfers
As a U.S.-based company, your personal information may be transferred and processed outside your country of residence. We take reasonable steps to ensure such transfers comply with applicable law and are protected by appropriate safeguards.
6. Verification Process
We may request sufficient information to verify your identity before fulfilling your request. We will not use verification data for any purpose other than confirming identity and fulfilling legal obligations.