Privacy Policy

Effective Date: June 29, 2025

Active Threat Preparedness Group LLC (“ATPG,” “we,” “our,” or “us”) respects your privacy and is committed to protecting the personal information you share with us. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, enroll in our courses, engage us for consulting services, interact with us at training events, or otherwise communicate with us (collectively, the “Services”).

Please read this Privacy Policy carefully. By accessing or using the Services, you acknowledge that you have read, understood, and agree to the terms of this Policy. If you do not agree with our practices, please do not use the Services.

1. Scope

This Policy applies to personal information processed by ATPG in connection with the Services, both online and offline, and covers individuals in the United States and, where applicable, abroad.

2. Information We Collect

We collect information in several ways:

2.1 Information You Provide to Us

  • Contact Details: Name, mailing address, email address, telephone number.
  • Professional Information: Organization, job title, credentials, and training prerequisites.
  • Account Credentials: Username, password, and security questions when you register on our platforms.
  • Payment Information: Credit/debit card numbers, billing address (processed by PCI‑DSS‑compliant payment processors; ATPG does not store full card numbers).
  • Training Records: Course attendance, assessment scores, certifications, post‑course evaluations.
  • Health & Safety Information: Voluntary disclosures of medical conditions or physical limitations relevant to hands‑on drills (e.g., bleeding‑control training). We collect the minimum necessary and protect it in accordance with applicable privacy and security standards.
  • Communications: Information contained in emails, phone calls, surveys, or other correspondence.

2.2 Information We Collect Automatically

When you visit our websites or use our digital platforms, we automatically collect certain information through cookies, pixels, and similar technologies, including:

  • IP address, browser type, device identifiers, and operating system.
  • Pages viewed, links clicked, and time spent on pages.
  • Referring website or origin of your visit. You can manage cookie preferences via your browser settings. For more details, see Section 6 – Cookies & Similar Technologies.

2.3 Information from Third Parties

We may receive information about you from:

  • Your employer or sponsoring organization (e.g., roster of trainees).
  • Background‑check providers (for certain government‑contract projects requiring vetting).
  • Publicly available sources and social‑media platforms.

3. Legal Bases for Processing (GDPR & CTDPA)

Where the EU/UK General Data Protection Regulation (“GDPR”) or the Connecticut Data Privacy Act (“CTDPA”) applies, our legal bases include:

  1. Performance of a Contract – To deliver training or consulting services you request.
  2. Legitimate Interests – To improve our Services, market to existing customers, and protect security, provided our interests are not overridden by your rights.
  3. Consent – For optional marketing emails or processing sensitive health data you choose to share. You may withdraw consent at any time.
  4. Legal Obligation – To comply with laws, court orders, or regulatory requirements.

4. How We Use Your Information

We use personal information to:

  1. Provide, manage, and improve the Services.
  2. Register you for courses and maintain training records.
  3. Process payments and issue invoices.
  4. Communicate important updates, confirmations, and administrative messages.
  5. Send newsletters, promotions, and event invitations (with your consent where required).
  6. Perform data analytics to enhance course content and website performance.
  7. Detect, prevent, and respond to fraud, abuse, security risks, and legal claims.

5. Sharing & Disclosure

We do not sell personal information. We may disclose information:

  • Service Providers & Vendors that perform services on our behalf (e.g., payment processors, learning‑management systems, cloud hosting, email delivery, analytics). They are bound by contractual confidentiality and security obligations.
  • Government Agencies & Law Enforcement when required to meet legal or contractual obligations (e.g., DHS grant reporting) or to protect public safety.
  • Business Transfers: In connection with a merger, acquisition, or asset sale, your information may be transferred, provided the recipient upholds this Policy.
  • With Your Consent: We may share testimonial quotes or photos publicly only if you have given explicit permission.

6. Cookies & Similar Technologies

We use first‑party and third‑party cookies, web beacons, and analytics tools (such as Google Analytics) to:

  • Recognize repeat visitors and remember preferences.
  • Analyze site traffic and interaction patterns.
  • Measure the effectiveness of marketing campaigns. You can disable cookies through your browser, but some features may not function properly.

7. Data Security

We employ reasonable administrative, technical, and physical safeguards designed to protect personal information, including:

  • TLS/SSL encryption in transit and AES‑256 encryption at rest.
  • Role‑based access controls and multi‑factor authentication for staff.
  • Regular security training and background checks for employees and instructors.
  • Vendor due‑diligence and data‑processing agreements. No method of transmission over the Internet or storage is 100% secure; we cannot guarantee absolute security.

8. Data Retention

We retain personal information only as long as necessary to fulfill the purposes outlined in this Policy, meet contractual or legal obligations, resolve disputes, and enforce our agreements. Typical retention periods:

  • Training records: 7 years (or longer if required by contract or accreditation bodies).
  • Financial records: 7 years per IRS guidelines.
  • Marketing preferences: Until you opt out or 2 years after last interaction.

9. Your Privacy Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal information we hold about you.
  • Correct inaccurate or incomplete information.
  • Delete certain information (subject to legal exceptions).
  • Opt Out of targeted advertising, data sales, or profiling.
  • Portability – receive a copy of your data in a structured, machine‑readable format.
  • Restrict or Object to certain processing.

9.1 Exercising Your Rights

To submit a request, email privacy@atpg‑ct.com or write to the address in Section 14. We will verify your identity and respond within the timeframe required by law (typically 30–45 days). You may also designate an authorized agent to act on your behalf where permitted by law.

9.2 Marketing Communications

You may unsubscribe from promotional emails at any time by clicking the “unsubscribe” link or contacting us. Transactional or service‑related emails (e.g., course confirmations) are not subject to opt‑out.

10. Children’s Privacy

Our Services are not directed to children under 13. We do not knowingly collect personal information from children without verifiable parental consent. If we learn that we have collected such information inadvertently, we will delete it promptly.

11. International Data Transfers

If you are located outside the United States, your information will be transferred to and processed in the U.S., which may have data‑protection laws different from your jurisdiction. We rely on appropriate safeguards (e.g., Standard Contractual Clauses) for such transfers where required.

12. Third‑Party Links & Services

Our website may contain links to third‑party sites or integrate third‑party tools. This Policy does not apply to those services, and we are not responsible for their privacy practices. We encourage you to review their policies.

13. Changes to This Privacy Policy

We may update this Policy periodically to reflect changes in law, technology, or our practices. We will post the revised Policy on our website with a new “Effective Date” and, where legally required, notify you via email or prominent notice.

14. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact:

Privacy Officer
Active Threat Preparedness Group LLC
Email: info@activethreatpreparednessgroup.org

15. Acknowledgment

By using our Services, you acknowledge that you have read and understood this Privacy Policy.