Privacy Policy

ATLANTIC TECH, LLC (operating as Tidal Tech)
Effective Date: June 20, 2026
Last Updated: June 20, 2026

ATLANTIC TECH, LLC, a Maine limited liability company operating under the brand name Tidal Tech, is committed to protecting the privacy of individuals who interact with our website, services, and communications. This Privacy Policy explains what information we collect, how we use it, with whom we share it, and the choices available to you regarding that information.

By accessing our website at https://tidaltech.lat or by engaging our services, you acknowledge that you have read and understood the practices described in this Privacy Policy.

1. Information We Collect

1.1 Information You Provide Directly

We collect information that you voluntarily provide when you interact with us. This includes:

• Contact and identification information: your full name, email address, phone number, company name, and job title, submitted through our contact form, email correspondence, or telephone calls.
• Project and service inquiry details: descriptions of your technical infrastructure, systems architecture, business requirements, and goals that you share when requesting our services or engaging in pre-engagement discussions.
• Communications content: the full content of any messages, attachments, and correspondence you send to us via email, contact form, telephone, or other communication channels.
• Engagement information: information related to active or past client relationships, including project specifications, service agreements, billing information, and communication records.
• Payment information: billing address, payment method details, and transaction records. Payment card numbers are processed exclusively by our third-party payment processors and are not stored on our systems.

1.2 Information Collected Automatically

When you visit our website, certain information is collected automatically through standard web technologies:

• Log data: your IP address, browser type and version, operating system, referring URL, pages visited, date and time stamps, and time spent on each page. This information is collected via standard web server logs.
• Device information: device type, screen resolution, language preferences, and other technical attributes transmitted by your browser.
• Usage data: navigation patterns, links clicked, scroll depth, and interaction events on our website, collected through our self-hosted analytics.

1.3 Cookies and Similar Technologies

Our website uses minimal cookies for essential functionality and performance measurement:

• Essential cookies: session identifiers required for the proper functioning of the website. These are strictly necessary and do not require consent under applicable privacy laws.
• Analytics cookies: anonymous usage measurement to understand how visitors interact with our site. We use privacy-respecting, self-hosted analytics that does not track individuals across websites.

We do not use advertising cookies, third-party tracking pixels, social media widgets that track users, or cross-site tracking technologies.

2. How We Use Your Information

We use the information we collect for the following purposes, each grounded in a lawful basis under applicable data protection laws:

2.1 Service Delivery (Contractual Necessity)

• To respond to your inquiries and provide information about our services that you have requested.
• To prepare proposals, statements of work, and service agreements.
• To deliver the computer systems design, cloud architecture, infrastructure, security, and managed operations services for which you have engaged us.
• To communicate with you about your project, including status updates, deliverables, milestones, and administrative matters.
• To process payments, invoices, and related financial transactions.

2.2 Legitimate Business Interests

• To improve our website and service offerings based on aggregated, anonymized usage patterns.
• To protect the security and integrity of our systems, detect and prevent fraud, and defend against malicious or unauthorized activity.
• To maintain business records required for legal compliance, tax purposes, and audit readiness.
• To enforce our Terms of Service and other contractual agreements.
• To conduct internal business analysis, capacity planning, and resource allocation.

2.3 Legal Obligations

• To comply with applicable laws, regulations, legal processes, and governmental requests.
• To respond to lawful subpoenas, court orders, or other legal demands for information.
• To establish, exercise, or defend legal claims.

2.4 Consent

We will obtain your explicit consent before using your information for any purpose not described in this Privacy Policy. You may withdraw your consent at any time by contacting us at privacy@tidaltech.lat. Withdrawal of consent does not affect the lawfulness of processing conducted prior to withdrawal.

3. How We Share Your Information

We do not sell, rent, trade, or lease your personal information to third parties. We share information only in the following circumstances:

3.1 Service Providers and Subcontractors

We engage trusted third-party service providers to perform functions on our behalf, including cloud hosting, email services, payment processing, accounting, and legal services. These providers are contractually bound to:

• Process data only according to our documented instructions.
• Implement appropriate technical and organizational security measures.
• Not retain, use, or disclose the data for any purpose other than providing services to us.
• Delete or return all data upon termination of the service agreement.

3.2 Legal and Safety Disclosures

We may disclose information when we have a good-faith belief that disclosure is necessary to:

• Comply with applicable law, regulation, legal process, or governmental request.
• Protect the rights, property, or safety of ATLANTIC TECH, LLC, our clients, or the public.
• Detect, prevent, or otherwise address fraud, security, or technical issues.
• Enforce our Terms of Service, including investigation of potential violations.

3.3 Business Transfers

If ATLANTIC TECH, LLC is involved in a merger, acquisition, reorganization, sale of assets, or bankruptcy proceeding, your information may be transferred as part of that transaction. You will be notified via email and/or a prominent notice on our website of any change in ownership or use of your personal information, as well as any choices you may have.

3.4 Aggregated or De-Identified Data

We may share aggregated, anonymized, or de-identified information that cannot reasonably be used to identify you, for purposes such as industry analysis, benchmarking, or demonstrating service capabilities to prospective clients.

4. Data Retention

We retain personal information only for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable law. Our retention practices are as follows:

• Inquiry and correspondence data: retained for up to twenty-four (24) months from the date of last contact, after which it is deleted or anonymized unless an ongoing client relationship exists.
• Active client data: retained for the duration of the client relationship plus seven (7) years following termination, consistent with applicable statutes of limitations, tax record-keeping requirements, and professional liability considerations.
• Financial and transaction records: retained for seven (7) years, consistent with Internal Revenue Service requirements and generally accepted accounting practices.
• Website log data: retained in identifiable form for thirty (30) days, after which it is aggregated or deleted.
• Analytics data: retained in anonymized, aggregated form indefinitely for trend analysis.

Upon expiration of the applicable retention period, we securely delete or irreversibly anonymize the data. You may request earlier deletion of your data by contacting privacy@tidaltech.lat, subject to any legal obligations that require us to retain certain information.

5. Data Security

We implement and maintain administrative, technical, and physical safeguards designed to protect the confidentiality, integrity, and availability of your personal information. These measures include:

• Transport Layer Security (TLS) encryption for all data transmitted between your browser and our servers.
• Encryption at rest for stored personal data using industry-standard algorithms (AES-256).
• Strict access controls limiting data access to authorized personnel with a legitimate business need, enforced through unique credentials, role-based permissions, and multi-factor authentication where supported.
• Regular security assessments, vulnerability scanning, and penetration testing of our infrastructure.
• Security awareness training for all personnel with access to personal data.
• Incident response procedures, including a commitment to notify affected individuals and relevant authorities without undue delay in the event of a data breach, as required by applicable law.
• Physical security controls at all facilities where data is stored, including access-restricted server environments and visitor logging.

No method of transmission over the Internet or electronic storage is absolutely secure. While we strive to protect your personal information, we cannot guarantee its absolute security. We encourage you to take steps to protect your own information, including using strong, unique passwords and keeping your devices and software updated.

6. Children's Privacy

Our website and services are not directed to individuals under the age of 18, and we do not knowingly collect personal information from children. If we become aware that a child under the age of 18 has provided us with personal information without verifiable parental consent, we will take prompt steps to delete such information from our systems. If you believe that we may have collected information from a child, please contact us immediately at privacy@tidaltech.lat.

7. Your Rights and Choices

Depending on your jurisdiction, you may have certain rights regarding your personal information. We honor all applicable data subject rights regardless of your location. These rights include:

7.1 Right to Access

You have the right to request confirmation of whether we process your personal information and, if so, to obtain a copy of that information along with details about how it is used, with whom it is shared, and how long it is retained. We will provide this information in a portable, machine-readable format upon request.

7.2 Right to Rectification

You have the right to request correction of inaccurate or incomplete personal information we hold about you. We will make corrections promptly and notify any third parties with whom we have shared the data, where feasible.

7.3 Right to Erasure

You have the right to request deletion of your personal information in certain circumstances, such as when the data is no longer necessary for the purpose for which it was collected, when you withdraw consent (where consent is the legal basis for processing), or when the data has been unlawfully processed. This right is subject to legal obligations that may require us to retain certain data.

7.4 Right to Restrict Processing

You have the right to request that we limit the processing of your personal information in certain circumstances, such as when you contest the accuracy of the data, when the processing is unlawful but you oppose erasure, or when we no longer need the data but you require it for legal claims.

7.5 Right to Data Portability

You have the right to receive your personal information in a structured, commonly used, and machine-readable format, and to transmit that data to another controller without hindrance, where the processing is based on consent or contract and is carried out by automated means.

7.6 Right to Object

You have the right to object to the processing of your personal information based on our legitimate interests. We will cease processing unless we demonstrate compelling legitimate grounds that override your interests, rights, and freedoms, or where the processing is necessary for the establishment, exercise, or defense of legal claims.

7.7 Right to Withdraw Consent

Where processing is based on your consent, you have the right to withdraw that consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.

7.8 Right to Non-Discrimination

We will not discriminate against you for exercising any of your privacy rights, including by denying services, charging different rates, or providing a different quality of service.

7.9 Exercising Your Rights

To exercise any of these rights, please contact us at privacy@tidaltech.lat or by mail at the address listed in Section 10. We will acknowledge your request within ten (10) business days and respond substantively within thirty (30) calendar days. We may need to verify your identity before processing your request. If we are unable to fulfill your request, we will provide a written explanation of the reasons.

8. International Data Transfers

ATLANTIC TECH, LLC is based in the United States, and our servers and operations are located within the United States. If you are accessing our website or services from outside the United States, your information will be transferred to, stored, and processed in the United States, where data protection laws may differ from those in your jurisdiction.

By providing us with your personal information, you acknowledge and consent to this transfer. We take appropriate safeguards to ensure that your information receives an adequate level of protection consistent with this Privacy Policy, including the use of Standard Contractual Clauses where applicable.

9. Third-Party Links and Services

Our website may contain links to third-party websites, applications, or services that are not owned or controlled by ATLANTIC TECH, LLC. This Privacy Policy does not apply to those third-party services. We encourage you to review the privacy policies of any third-party services before providing them with your personal information. We assume no responsibility for the content, privacy practices, or data handling of any third-party sites or services.

10. Contact Information

ATLANTIC TECH, LLC is the data controller responsible for your personal information. If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

11. Supervisory Authority

If you believe that our processing of your personal information violates applicable law, you have the right to lodge a complaint with the appropriate data protection supervisory authority in your jurisdiction. In the United States, you may contact the Federal Trade Commission or your stateʼs Attorney General. We encourage you to contact us first so that we may address your concerns directly.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or operational needs. When we make material changes, we will:

• Post the revised Privacy Policy on this page with an updated Effective Date.
• Provide notice on our website for at least thirty (30) days before material changes take effect.
• Notify active clients directly via email if the changes materially affect how we handle their data.

We encourage you to review this Privacy Policy periodically. Your continued use of our website or services after the effective date of any changes constitutes your acceptance of the revised policy.

13. State-Specific Disclosures

13.1 California Privacy Rights

Under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), California residents have specific rights regarding their personal information, including the right to know what personal information is collected, disclosed, or sold; the right to delete personal information; the right to correct inaccurate information; the right to limit use of sensitive personal information; and the right to non-discrimination for exercising these rights. ATLANTIC TECH, LLC does not sell personal information as defined under California law. To exercise your California privacy rights, please contact us at privacy@tidaltech.lat with the subject line California Privacy Rights Request.

13.2 Maine Privacy Rights

As a Maine-based company, we comply with the Maine Notice of Risk to Personal Data Act (10 M.R.S.A. § 1346 et seq.). In the event of a breach of the security of our systems that affects your personal information, we will provide notice in accordance with Maine law and any other applicable breach notification statutes.

13.3 European Economic Area and United Kingdom

If you are located in the European Economic Area (EEA), Switzerland, or the United Kingdom, you have additional rights under the General Data Protection Regulation (GDPR) and UK GDPR, including the rights of access, rectification, erasure, restriction, portability, and objection as described in Section 7. You also have the right to lodge a complaint with your local data protection authority. Our lawful bases for processing personal data include contractual necessity, legitimate interests (as described in Section 2.2), compliance with legal obligations, and consent where applicable.

14. Contact Our Data Protection Officer

For privacy-specific inquiries or to escalate concerns, you may contact our designated privacy contact at:

Email: privacy@tidaltech.lat

Mail: ATLANTIC TECH, LLC, Attn: Privacy, 484 Cumberland Ave APT 2, Portland, ME 04101-2248, United States