1. Who is responsible for your information
Murphy Web Services Inc., an Arkansas corporation doing business as Murphy Consulting ("Murphy," "we," "us," or "our"), is the controller of personal information collected through this website and in our direct business relationships, unless a contract says we process information only on a customer's instructions.
For privacy questions or requests, email support@murphyconsulting.us. Please write "Privacy request" in the subject line so we can route it correctly.
2. Information we collect
- Information you provide: name, agency or company, email, phone number, service interests, budget or project details, messages, project briefs, account information, service assets, billing records, and support communications.
- Business relationship information: proposals, contracts, invoices, project status, approvals, delivery records, and communications with agency partners or their authorized contacts.
- Technical information: IP address, browser and device information, request timestamps, security and server logs, and basic diagnostics generated when the site is delivered.
- Consent and session information: your privacy choices and information temporarily stored in your browser while you complete a quote or estimate.
- Optional third-party interactions: if you allow external media and scheduling, Vimeo and HighLevel/LeadConnector may receive technical and interaction information when their video, calendar, or chat tools load.
Please do not submit sensitive personal information or end-client information that is not needed for the requested service.
3. Why we use information and our legal bases
| Purpose | Typical GDPR legal basis |
|---|---|
| Respond to inquiries, prepare quotes, schedule calls, and take steps requested before a contract | Contract or steps before a contract (Article 6(1)(b)) |
| Deliver, manage, support, and bill for services | Performance of a contract (Article 6(1)(b)) |
| Secure the site, prevent abuse, maintain records, and improve reliable operations | Our legitimate interests (Article 6(1)(f)), balanced against your rights |
| Meet accounting, tax, court, regulatory, or other legal requirements | Legal obligation (Article 6(1)(c)) |
| Load optional external video, scheduling, analytics, or marketing technology | Your consent (Article 6(1)(a)); optional technology remains off until you choose |
Where we rely on legitimate interests, those interests include operating a secure business website, responding to business communications, documenting delivery, preventing fraud, and improving service reliability. You may object as described below.
5. International transfers
Murphy is based in the United States and works with service providers and production resources in more than one country. If you are in the European Economic Area, United Kingdom, or Switzerland, your information may therefore be transferred outside your country.
Where applicable law requires a transfer safeguard, we use an available lawful mechanism appropriate to the recipient and transfer, such as an adequacy decision, contractual safeguards, or another legally recognized mechanism. Contact us if you would like information about safeguards relevant to your data.
6. How long we keep information
We keep information only for as long as needed for the purpose collected, an active business relationship, security, dispute handling, or legal obligations. Our ordinary criteria are:
- Inquiry and unsuccessful quote records: while we respond and typically up to 24 months after the last meaningful interaction.
- Customer, contract, billing, and transaction records: for the relationship and applicable statutory periods, which may be up to seven years.
- Project files and support records: for delivery and the period reasonably needed for support, quality review, or a contractual claim.
- Security and server logs: ordinarily 30 to 90 days unless needed to investigate an incident or comply with law.
- Your site consent choice: 180 days, after which the site asks again.
When retention is no longer justified, information is deleted, anonymized, or securely archived where immediate deletion is not technically practical.
7. Your data protection rights
Depending on where you live and subject to legal limits, you may ask us to access, correct, erase, or restrict personal information; receive portable information you supplied; object to processing based on legitimate interests; and withdraw consent at any time. Withdrawing consent does not affect processing that was lawful before withdrawal.
Email support@murphyconsulting.us to exercise a right. We may need to verify your identity and clarify the scope of a request. We will respond within the period required by applicable law.
If you are in the EEA or UK, you may also complain to the data protection authority where you live, work, or believe an infringement occurred. We would appreciate the opportunity to address the issue first, but you are not required to contact us before a regulator.
9. Security, children, and policy updates
We use reasonable administrative, technical, and organizational safeguards and limit access according to operational need. No internet system can be guaranteed completely secure, so please use an appropriate secure channel before sharing credentials or sensitive project materials.
This business-to-business site is not directed to children, and we do not knowingly collect personal information from children. If you believe a child submitted information, contact us so we can review and delete it where appropriate.
We may update this notice when our practices, providers, or legal duties change. The date at the top identifies the current version. Material changes will be highlighted on the site or communicated directly where required.