Last Updated: April 8, 2026
We review and update this Policy at least annually and whenever there are material changes to our data practices or applicable law.
FrankCrum and/or our affiliate companies (“Company,” “we,” “our,” or “us”) respect your privacy and are committed to protecting it through our compliance with this Privacy Policy (“Policy”). This Policy describes how we collect, process, retain, sell/share and disclose personal information when you interact with our websites and other online or offline services that link to or reference this Policy or by using our services. It also explains your privacy rights and how to exercise them. This Policy also incorporates our California Residents: Notice at Collection and disclosures required under the California Consumer Privacy Act of 2018 as amended by the California Privacy Rights Act (“CCPA”).
By accessing or using our Site or using our Services, you acknowledge this Policy and agree to the collection and use of information as described herein. This Policy may change from time to time (see Changes to Our Privacy Policy).
This Policy does not cover information collected from job applicants in connection with their employment applications or candidacy, nor does it apply to data related to Internal Employees or Worksite Employees.
Please refer to the following policies if needed:
Based on your specific transactions and interactions with us or our website, we will or may collect, and we have in the last 12 months collected the following categories of Personal Information about you. For each category of information, the categories of third parties and service providers to whom we have disclosed the information in the last 12 months are referenced below. In jurisdictions where required by law, we limit our collection of Personal Information to what is reasonably necessary and proportionate to provide or maintain the services you have requested or reasonably expect in the context of your relationship with us. The examples provided for each category are not intended to be an exhaustive list or an indication of all specific pieces of information we collect from or about you in each category, but rather the examples are to provide you with a meaningful understanding of the types of information that may be collected within each category.
|
Categories of Personal Information Collected and Source |
Business Purpose |
Third parties with whom personal information is disclosed, shared, or sold |
Retention Criteria
|
|
Identifiers. e.g. a real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, Social Security number, Client ID. Source: Directly from you, automatically through Cookies |
|
Disclosed:
Sold or Shared: For data in this category collected through our website, we sell certain information (not for monetary consideration but for other valuable consideration) to data analytics vendors, behavior analytics vendors, social media platforms, video content hosts and platforms, Ad Trackers, and other marketing, tracking, and retargeting vendors or providers, including, for example, Google Analytics, Google, Google Ads, Bing, Facebook, LinkedIn, and ZoomInfo, and we also share the data with these third parties for cross-context behavioral advertising. For all other data in this category collected through other sources (not through this website), this data is neither sold for monetary or other valuable consideration, nor shared for cross-context behavioral advertising. |
Retained for the duration of our relationship and as needed for security, fraud prevention, and recordkeeping. |
|
Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)) ("California Customer Records"). e.g. name, signature, Social Security number, physical characteristics or description, photograph, address, telephone number, passport number, driver's license or state identification card number, insurance policy number, education, employment, employment history, membership in professional organizations, professional licenses and certifications, bank account number, credit card number, debit card number, or any other financial information, medical information, or health insurance information. Some personal information included in this category may overlap with other categories. Source: Directly from you |
|
Disclosed:
Sold or Shared: For data in this category collected through our website, we sell certain information (not for monetary consideration but for other valuable consideration) to data analytics vendors, behavior analytics vendors, social media platforms, video content hosts and platforms, Ad Trackers, and other marketing, tracking, and retargeting vendors or providers, including, for example, Google Analytics, Google, Google Ads, Bing, Facebook, LinkedIn, and ZoomInfo, and we also share the data with these third parties for cross-context behavioral advertising. For all other data in this category collected through other sources (not through this website), this data is neither sold for monetary or other valuable consideration, nor shared for cross-context behavioral advertising. |
Retained for the duration of our relationship and as needed for security, fraud prevention, and recordkeeping. |
|
(Not Collected) Protected classification characteristics under California or federal law ("Protected Classes"). e.g. age (40 years or older), race, color, ancestry, national origin, citizenship, religion or creed, marital status, medical condition, physical or mental disability, sex (including gender, gender identity, gender expression, pregnancy or childbirth and related medical conditions), sexual orientation, reproductive health decision-making, military and veteran status, or genetic information (including familial genetic information). Source: None |
Not Applicable |
Disclosed:
Sold or Shared:
|
Not Applicable |
|
Commercial Information. e.g. information regarding Services provided. Source: Directly from you |
|
Disclosed:
|
Retained for the life of the account and for a reasonable period thereafter to comply with security and legal obligations. |
|
Internet or other similar network activity. e.g. date and time of your visit to this website; webpages visited; links clicked on the website; session identifiers; browser ID; browser type and characteristics; device ID and characteristics or attributes; referring URLs; mobile phone make, model and serial number; mobile service provider; operating system; form information downloaded; domain name from which our site was accessed; search history; interaction-level telemetry; cookies; and internet or other electronic network activity information related to usage of FrankCrum networks, servers, intranet, or shared drives, as well as FrankCrum-owned computers and electronic devices, including system and file access logs, security clearance level, browsing history, search history, and usage history. Source: Automatically through cookies |
|
Disclosed:
Sold or Shared: For data in this category collected through our website, we sell certain information (not for monetary consideration but for other valuable consideration) to data analytics vendors, behavior analytics vendors, social media platforms, video content hosts and platforms, Ad Trackers, and other marketing, tracking, and retargeting vendors or providers, including, for example, Google Analytics, Google, Google Ads, Bing, Facebook, LinkedIn, and ZoomInfo, and we also share the data with these third parties for cross-context behavioral advertising. For all other data in this category collected through other sources (not through this website), this data is neither sold for monetary or other valuable consideration, nor shared for cross-context behavioral advertising. |
Retained only as necessary for security (e.g., logs), debugging, and analytics/advertising controls. |
|
Geolocation data. e.g. physical location or movements, such as your zip code, the time and physical location related to use of our internet website or mobile application, or other information about your location or locations you visited. IP addresses are mapped to inferred geographic attributes. Source: Automatically through cookies |
|
Disclosed:
Sold or Shared: For data in this category collected through our website, we sell certain information (not for monetary consideration but for other valuable consideration) to data analytics vendors, behavior analytics vendors, social media platforms, video content hosts and platforms, Ad Trackers, and other marketing, tracking, and retargeting vendors or providers, including, for example, Google Analytics, Google, Google Ads, Bing, Facebook, LinkedIn, and ZoomInfo, and we also share the data with these third parties for cross-context behavioral advertising. For all other data in this category collected through other sources (not through this website), this data is neither sold for monetary or other valuable consideration, nor shared for cross-context behavioral advertising. |
Retained only as needed to provide/measure services and advertising controls, consistent with user preferences and our retention schedule. |
|
Sensory data. e.g. your image when recorded or captured in surveillance camera footage or pictures of you taken on our premises or that you share with us; audio recordings of calls and virtual meetings as disclosed to you at the time of the call. Source: At our Physical Locations, Directly from you |
|
Disclosed:
Sold or Shared:
|
Security/call recordings are kept only as necessary for security, quality assurance, investigations, and compliance. |
|
(Not Collected) Professional or employment-related information. e.g. current or past job history Source: None
|
Not Applicable |
Disclosed:
Sold or Shared:
|
Not Applicable |
|
(Not Collected) Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99)) ("FERPA Information"). e.g. Education records directly related to a student maintained by an educational institution or party acting on its behalf, such as grades, transcripts, class lists, student schedules, student identification codes, student financial information, or student disciplinary records. Source: None |
Not Applicable |
Disclosed:
Sold or Shared:
|
Not Applicable |
|
Form and other Electronic Submission Data. e.g. data submitted through the Site, including Contact Us forms, and search bar queries. Source: Directly by you |
|
Disclosed:
Sold or Shared:
|
Retained to fulfill the inquiries and records management. |
|
Credit/Financing Application Data. e.g. information collected through financing or consumer reports. Source: Directly by you |
Disclosed:
Sold or Shared:
|
Retained as required for credit decisions, audit, and regulatory compliance. |
|
|
Financial Information and Payment Information. e.g. billing contact details, payment records, bank account or wire transfer information, credit card or other payment method details (where provided for payment), and other information necessary to process payments for legal services or related expenses including information necessary to process reimbursements, retainers, or client matter expenses. Source: Directly by you |
|
Disclosed:
Sold or Shared:
|
Retained for the life of the account and for a reasonable period thereafter to comply with security and legal obligations. |
|
Inferences drawn from other personal information. e.g. profile reflecting a person's preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes. Source: Automatically Through Our Site |
|
Disclosed:
|
Retained to ensure analytics/advertising controls pursuant to our schedule and user choices. |
Personal information does not include:
Sensitive personal information (“SPI”) is a subtype of personal information consisting of the specific information categories listed in the chart below. Importantly, the CCPA only treats this information as SPI when we collect or use it to infer characteristics about a consumer. Of the above categories of Personal Information, the following are categories of SPI FrankCrum may collect from or about consumers:
|
Sensitive Personal Information Category |
Collected to Infer Characteristics? |
Retention Criteria |
|
Government identifiers. e.g. as your Social Security number (SSN), driver's license, state identification card, or passport number |
No |
N/A |
|
Complete account access credentials. e.g. usernames, account logins, account numbers, or card numbers combined with required access/security code or password. |
No |
N/A |
|
Precise geolocation. e.g. GPS data from a consumer's mobile device that can provide its location in a geographic area, with an approximate radius of 1,850 feet. |
No |
N/A |
|
Racial or ethnic origin. |
No |
N/A |
|
Citizenship or immigration status. |
No |
N/A |
|
Religious or philosophical beliefs. |
No |
N/A |
|
Union membership. |
No |
N/A |
|
Mail, email, or text messages not directed to the Company. |
No |
N/A |
|
Genetic data. |
No |
N/A |
|
Neural Data. e.g. information generated by measuring a consumer's central or peripheral nervous system's activity that is not inferred from nonneural information. |
No |
N/A |
|
Unique identifying biometric information. |
No |
N/A |
|
Health information. |
No |
N/A |
|
Sex life or sexual orientation information. |
No |
N/A |
|
Children's personal information (under age 16). |
No |
N/A |
We process SPI only for the limited purposes permitted under Civil Code §1798.121(a):
We will not collect additional categories of personal information or use the personal information we collected for materially different, unrelated, or incompatible purposes without providing you notice. If required by law, we will also seek your consent before using your personal information for a new or unrelated purpose.
We may collect, process, and disclose aggregated or deidentified information about our Worksite Employee for any purpose, without restriction. When we collect, process, or disclose this aggregated or deidentified information, we will maintain and use it in deidentified form and will not attempt to reidentify the information, except to determine whether our deidentification processes satisfies any applicable legal requirements.
If you are a California resident, the CCPA grants you the following rights regarding your personal information:
We do not use or disclose your SPI for purposes that give rise to a right to limit the use and disclosure of your SPI under CCPA. Because we do not use SPI for purposes that trigger the right to limit under California law, a “Limit the Use of My Sensitive Personal Information” link is not applicable currently. If our practices change, we will provide that link and update this Policy.
We do not and will not sell or share your Personal Information in exchange for monetary consideration. However, we may sell or share some of your information to third parties for other valuable consideration, as noted in the table above.
We may sell or share your Personal Information for the following business or commercial purposes:
Other than these exceptions, we do not and will not disclose your Personal Information to any third party in exchange for monetary or other valuable consideration or share your Personal Information for cross-context behavioral advertising.
To exercise your rights described above, please submit a verifiable request to us by either:
If you are a California resident, you can authorize someone else as an authorized agent who can submit a request on your behalf. To do so, you must either:
We will confirm receipt of your request within ten business days. If you do not receive confirmation within the ten-day timeframe, please reach out to privacy@frankcrum.com. We endeavor to substantively respond to a verifiable request within 45 days of its receipt. If we require more time (up to another 45 days), we will inform you of the reason and extension period in writing. We will deliver our written response to your verified email address. Our substantive response will tell you whether we have complied with your request. If we cannot comply with your request in whole or in part, we will explain the reason, subject to any legal or regulatory restrictions. Applicable law may allow or require us to refuse to provide you with access to some or all the personal information that we hold about you, or we may have destroyed, deleted, or made your personal information anonymous in compliance with our record retention policies and obligations.
Any disclosures we provide will cover information for the 12-month period preceding the request receipt date. We will consider requests to provide longer disclosure periods that do not extend past January 1, 2022, unless providing a longer timeframe would be impossible or involves disproportionate effort.
For data portability requests, we will select a format to provide your personal information that is readily useable and should allow you to transmit the information from one entity to another entity without hindrance.
We do not charge a fee to process or respond to your verifiable request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.
In response to your request to opt-out, we will process your request, as soon as feasibly possible, but no later than 15 business days from the date we receive the request. We will only use personal information provided from your request to comply with the request.
We will also notify our service providers, contractors, and certain other downstream recipients of your request to opt-out and instruct them to both:
We may deny opt-out requests if we have a good-faith, reasonable, and documented belief that the request is fraudulent and will clearly explain our denial decision to the requestor.
You can confirm that we processed your request to opt-out by going to our website and clicking where we will have a toggle button showing what Cookies are active. However, you may change your mind and opt back in at any time by re-toggling your .
The California Civil Code permits California residents with whom we have an established business relationship to request that we provide you with a list of certain categories of personal information that we have disclosed to third parties for their direct marketing purposes during the preceding calendar year. To make such a request, please send an email to privacy@frankcrum.com or write to us at the address listed below. Please mention that you are making a “California Shine the Light” inquiry.
We may collect your personal information from the following sources:
We will only share your information with the third parties listed below for the purposes described above unless otherwise noted at the point of collection:
Trusted third-party agents and service providers who assist us in providing our website to you and are only permitted to use your information according to the purposes specified in their agreement with us. We contractually require these third parties to keep personal information confidential and use it only for the purposes for which we disclose it to them.
These third parties may use tracking technologies to collect information about you when you use our website. The information they collect may be associated with your personal information, or they may collect information, including personal information, about your online activities over time and across different Site, apps, platforms, and other online Services. They may use this information to provide you with interest-based (behavioral) advertising or other targeted content. We do not control these third parties' tracking technologies or how they may be used. If you have any questions about an advertisement or other targeted content, you should contact the provider responsible directly.
We use information that we collect about you or that you provide to us, including any personal information, to:
Independent Contractors and Business-to-Business Purpose, to:
The use of information we collect, whether connected to your personal information or not, helps us improve our website and delivers a better and more personalized experience by enabling us to:
Depending on the state where you reside, you may have the right to tell us not to sell or share your Personal Information. You have the full and free right to opt-out of our disclosure of your Personal Information to any third parties where the disclosure constitutes “selling” or “sharing” as defined by specific state laws.
You may exercise your right to opt-out without fear of discrimination for doing so. To opt-out of our selling and sharing of your information, meaning we will not disclose your information to third parties for any monetary or other valuable consideration, you can do any of the following: Click Your Privacy Choices to be taken to an online opt-out submission form.
You can have an authorized agent submit a request on your behalf. To submit an opt-out through use of an authorized agent, you must provide that agent with written permission signed by you to submit an opt-out on your behalf, except when using an opt-out preference signal.
A request to opt-out need not be a verifiable consumer request. However, we may deny a request to opt-out if we have good faith, reasonable, and documented belief that a request to opt-out is fraudulent. If we deny your request to opt-out, we shall inform you of our decision not to comply and provide an explanation as to why we believe the request is fraudulent.
Our website may store or retrieve information on your browser, mostly in the form of cookies. A cookie is a small piece of data (text file) that a website – when visited by a user – places on the user’s device to remember information about the user, such as the user’s language preference or login information. This type of cookie is set by us and is referred to as a “first-party cookies.” Our website uses first-party cookies primarily to make the website work as you expect it to. For example, we use the information we collect through first-party cookies to allow you to navigate between pages efficiently, analyze how well our website is performing, and understand the content that you spent most of your time reviewing. We use first party cookies for website functionality and measurement, and we use third-party cookies and tracking technologies (such as advertising or analytics pixels) to support interest based and cross context behavioral advertising including advertising platforms, analytics providers, and retargeting partners. We also incorporate cookies and similar technologies, such as pixels, tags, and web beacons, from outside our website’s domain (“third-party cookies”). Third-party cookies gather information to enable our vendors to provide a range of services to us, including targeted advertising and measuring the success of our advertising campaigns.
Cross‑context behavioral advertising means targeted advertising based on personal information obtained across businesses, websites, applications, or services with which the consumer interacts. Below is a detailed list of the categories of first and third-party cookies we use on our website. You can prevent the collection of data by non-essential performance, functionality, and marketing cookies by clicking on our which controls the collection of preferences on our website.
We make use of cookies under the following circumstances and for the following reasons:
Essential Cookies
Non-Essential Cookies
For information on some of the cookies we use on our site and apps, please review the policies from some of our vendors:
You can control and manage cookies associated with your browser. If you are interested in controlling and managing cookies from your browser including any set by our website, please refer to http://www.allaboutcookies.org/manage-cookies/index.html for information on different ways to configure your browser’s cookie settings.
If you want to clear all cookies left behind by the websites you have visited, here are links where you can download three third party programs that clean out tracking cookies.
You may delete cookies from your web browser at any time or block cookies on your equipment, but this may affect the functioning of or even blocking the website. You can prevent saving cookies (disable and delete them) by changing your browser settings accordingly at any time. It is possible that some functions will not be available on our website when use of cookies is deactivated. Check the settings of your browser. Below you can find some guidance:
Do Not Track (DNT) is a privacy preference that users can set if they do not want web services to collect information about their online activity. We do not respond to DNT signals (except for Global Privacy Controls as explained above in the section of this policy on “Opt-Out Preference Signals”).
You can adjust your advertising preferences on mobile devices through your device settings. Below you can find some guidance based on your type of mobile device:
DAA
Many advertising companies that collect information for interest-based advertising are members of the Digital Advertising Alliance (DAA) which maintains self-regulatory programs along with websites where people can opt out of interest-based advertising from their members. To opt-out of website interest-based advertising visit the DAA’s opt-out portal available at http://optout.aboutads.info/. To opt-out data collection for interest-based advertising across mobile applications by participating companies, download the DAA’s AppChoices mobile application opt-out offering found here: https://youradchoices.com/appchoices.
Non-Participant Opt-Out Options
When you receive an email from us, we may use tracking technologies to gather certain information about your interaction with the email. Specifically, we may collect whether you open the email; the time and date when you open it; and the Internet Protocol (IP) address of the device used to open the email.
We use this information to help us understand how our emails are received and used, so we can improve content, deliverability, and relevance. This tracking is done automatically using a small, often invisible image (sometimes called a “tracking pixel” or “pixel”) embedded in the email or similar methods.
If you prefer not to have this information tracked, you may disable automatic image loading in your email client or use settings/tools that block tracking pixels. Additionally, unsubscribing from our email list will stop further emails (and thus tracking) from us.
Opt-out preference signals provide consumers with a simple and easy-to-use method by which to exercise the right to opt-out of the selling and sharing of their information. Global Privacy Controls (“GPC”) or Universal Opt-Out Mechanism (“UOOM”) are user-enabled opt-out preference signals which can communicate a user’s “Do Not Sell or Share” request on behalf of the person or device. We will process opt-out preferences from GPC and UOOM signals which are in formats commonly used and recognized by businesses, such as an HTTP field header. We will treat a consumer’s use of GPCs or UOOMs as a valid request to opt-out of the selling and sharing of information for that browser. We currently do not connect browser use to consumers and, as such, you will need to use GPCs or UOOMs on all browsers in which you access our website and use our opt-out form to opt-out of offline sales.
Do Not Track (DNT) is a privacy preference that users can set if they do not want web services to collect information about their online activity. We do not respond to DNT signals or other mechanisms (except for GPCs and UOOMs) that provide a choice regarding the collection of Personal Information about activities over time and across different websites or online services. We encourage users who have DNTs to use GPCs or UOOMs.
Depending on your state of residence, you may have the right to opt out of targeted advertising and selling of your data. You may submit a request to exercise this right by clicking Your Privacy Choices or emailing privacy@frankcrum.com.
Depending on your state of residency, you may have certain rights related to your personal information, including:
Important: The exact scope of these rights vary by state. There are also several exceptions where we may not have an obligation to fulfill your request.
To exercise your rights, please submit a verifiable request to us by either:
If you are a California resident, additional information applies to you. Please see above California Residents: Notice of Collection
We maintain retention schedules aligned to legal, regulatory, tax, and contractual requirements and delete or de‑identify data when no longer needed. We keep the categories of personal information described in this Policy for as long as reasonably necessary to fulfill the purposes described or for as otherwise legally permitted or required, such as maintaining the Services, operating our organization, complying with our legal obligations, resolving disputes, and for safety, security, and fraud prevention. This means that we consider our legal and business obligations, potential risks of harm, and nature of the information when deciding how long to retain personal information. At the end of the retention period, personal information will be deleted, destroyed, or deidentified. We align retention to data minimization and reasonable expectations for each purpose, and we honor opt‑outs for at least 12 months before seeking reauthorization.
We limit our collection, use, and retention of personal information to what is reasonably necessary and proportionate for the purposes described in this Policy or disclosed to you at the time of collection.
Our website contains links to other websites. We are not responsible for the privacy practices or the content of such websites. To help ensure the protection of your privacy, we recommend that you review the Policy of any website you visit via a link from our website. If you access our website through a mobile device, your device or browser may prompt you to grant permission for features such as location, push notifications, or camera access. You can revoke these permissions at any time through your device settings.
The personal information record created MyFrankCrum can only be accessed with the unique password associated with that record. To protect the integrity of the information contained in this record, you should not disclose or otherwise reveal your password to third parties.
We do not use automated decision‑making systems, including machine learning or AI tools to make decisions that produce legal or similarly significant effects about you. This includes decisions relating to eligibility for, or access to, credit, employment, housing, financial services, essential or federally regulated services, or other outcomes that could meaningfully affect your rights or opportunities. If any automated output could influence how we present content or offer to you on the website, those outputs operate within pre‑defined parameters and are either reviewed or overseen by people or constrained so they do not produce legal or similarly significant effects.
We do not engage in profiling in furtherance of decisions that produce legal or similarly significant effects. If we ever begin using profiling in a way that implicates additional rights (for example, under the laws of states that provide opt‑out rights for certain profiling), we will update this Policy and provide any required opt‑out mechanisms.
If we materially change how we use automated decision‑making, profiling, or AI—including if future law requires additional disclosures, access, appeal, or opt‑out rights for such processing—we will update this Policy and provide any required tools, disclosures, and instructions at or before the time those changes take effect.
We may disclose specific personal and/or SPI based on a good faith belief that such disclosure is necessary to comply with or conform to the law or that such disclosure is necessary to protect our employees or the public.
We use commercially reasonable administrative, physical, and technical measures designed to protect your personal information from accidental loss or destruction and from unauthorized access, use, alteration, and disclosure. However, no website, mobile application, system, electronic storage, or online service is completely secure, and we cannot guarantee the security of your personal information transmitted to, through use, or in connection with the Services. Email, texts, and chats sent to or from the Services may not be secure, and you should carefully decide what information you send to us via such communications channels. Any transmission of personal information is at your own risk. The safety and security of your information also depend on you. You are responsible for taking steps to protect your personal information against unauthorized use, disclosure, and access.
We do not knowingly sell or share the personal information of consumers under the age of 16. No one under 16 may provide personal information to or on the website. We do not knowingly collect personal information from children under 16. If you are under 16, do not use or provide any information on this website or through its features, create an account, or provide any information about yourself, including your name, address, telephone number, email address, or any username or screen name. If we learn that we have collected or received personal information from a child under 16 without the required consent, we will delete that information. If you believe we might have information from or about a child under 16, please contact us at privacy@frankcrum.com.
We may contact you with marketing information that may be of interest to you. You may opt out of receiving any or all these marketing communications from us by following the Your Privacy Choices link or instructions provided in any email we send or by contacting us. Please note that we may still send you transactional, administrative messages, or product updates related to the Service even after you have opted out of receiving marketing communications.
By using this website, you consent to all terms and conditions expressed in this Policy.
We may update this Policy from time to time, and we will provide notice of any such changes to the Policy as required by law. The date the Policy was last updated is identified at the top of the page. We will notify you of changes to this Policy by updating the "last updated" date and posting the updated Policy on the Services. We may email or otherwise communicate reminders about this Policy, but you should check our Services periodically to see the current Policy and any changes we have made to it.
This Policy is in the form that is accessible to consumers with disabilities
To exercise your rights or ask questions or comment about this Policy or our privacy practices, contact us at: privacy@frankcrum.com or via our toll-free number: 1-800-393-0815, Option 21.