Privacy Policy

Last updated: May 21, 2026

Graphite Financial, Inc. (“Graphite,” “we,” “us,” or “our”) respects your privacy. This Privacy Policy explains how we collect, use, disclose, retain, and protect personal information when you visit our website, submit a form, communicate with us, engage with our marketing, become a client, or otherwise interact with Graphite.

By using our website or submitting information to us, you acknowledge that we may collect and use information as described in this Privacy Policy.

Information We Collect

We may collect personal information directly from you, automatically through our website and marketing technologies, from your company, and from third-party sources.

Information you provide to us

We may collect information you choose to provide, including:

  • Name

  • Email address

  • Phone number

  • Company name

  • Job title

  • Business contact details

  • Company size, industry, funding stage, revenue range, or other business information

  • Information submitted through forms, demo requests, contact requests, referral forms, event registrations, surveys, or downloadable content

  • Messages, emails, meeting notes, call details, and other communications with our team

  • Billing, contracting, onboarding, service, support, and account-related information

  • Information needed to evaluate, provide, or manage Graphite services

Information collected automatically

When you visit our website or interact with our digital properties, we may collect information automatically through cookies, pixels, tags, scripts, web beacons, server logs, and similar technologies.

This may include:

  • IP address

  • Browser type

  • Device type

  • Operating system

  • Approximate location derived from IP address

  • Pages viewed

  • Referring pages

  • Links clicked

  • Time spent on pages

  • Form interactions

  • Ad interactions

  • Email engagement

  • Session activity

  • Website performance data

  • Other online activity related to our website, content, ads, or emails

Information from third parties

We may receive information from third-party sources, including:

  • CRM, analytics, advertising, and marketing platforms

  • Business partners

  • Referral sources

  • Event partners

  • Publicly available sources

  • Data enrichment providers

  • Social media and professional networking platforms

  • Service providers

  • Your company, employer, or authorized representatives

How We Use Information

We may use personal information to:

  • Operate, maintain, and improve our website

  • Respond to inquiries, referrals, demo requests, and form submissions

  • Provide, manage, support, and improve our services

  • Communicate with prospects, clients, partners, and website visitors

  • Manage sales, marketing, customer success, onboarding, billing, contracting, and support activity

  • Evaluate whether Graphite may be a fit for your company

  • Personalize website, email, sales, and marketing communications

  • Measure website activity, campaign performance, and content engagement

  • Route inquiries to the right team

  • Send service, educational, event, product, or marketing communications

  • Administer referral programs, partner programs, events, and promotions

  • Maintain internal records and business operations

  • Protect our website, systems, users, clients, and business

  • Detect, investigate, and prevent fraud, misuse, security incidents, or unauthorized activity

  • Comply with legal, regulatory, contractual, and operational obligations

  • Enforce agreements, policies, and legal rights

Website Tracking, Cookies, Analytics, and Advertising

Graphite uses cookies, pixels, tags, scripts, web beacons, and similar technologies to operate our website, understand how visitors interact with our pages, measure marketing performance, improve our services, and support sales and marketing follow-up.

We use tools such as HubSpot, Google Analytics, Google Search Console, Google Ads, LinkedIn, and similar analytics, advertising, CRM, website, and marketing technologies we may add, remove, or change from time to time.

These tools may collect or process information such as IP address, browser type, device type, operating system, referring pages, pages viewed, time spent on pages, form interactions, ad interactions, email engagement, approximate location, and other website or marketing activity.

We may use this information to understand website performance, improve user experience, measure campaign effectiveness, personalize communications, route inquiries, support sales outreach, and show or measure Graphite advertising on third-party platforms.

Some of these technologies may allow third parties to place or read cookies or similar technologies on your device. Depending on how these tools are configured and how applicable law defines terms such as “sale,” “sharing,” or “targeted advertising,” some website tracking or advertising activity may be considered a sale, sharing, or targeted advertising under certain privacy laws.

Graphite does not sell personal information for money.

Cookie Choices and Opt-Outs

Where available, you can manage cookie preferences through our cookie banner or cookie preference tools. You can also manage cookies through your browser settings.

Some technologies may operate differently from traditional browser cookies, so browser settings may not control every tracking method.

Where required by law, eligible visitors may opt out of sale, sharing, or targeted advertising by:

  • Using our cookie preference tools

  • Enabling a recognized browser-based opt-out preference signal, including Global Privacy Control

  • Contacting us at hello@graphitefinancial.com

If you opt out, we will take reasonable steps to stop using your personal information for sale, sharing, or targeted advertising as required by applicable law. Some technologies may remain active where necessary for website functionality, security, fraud prevention, analytics, legal compliance, service delivery, or other permitted business purposes.

Additional Advertising Opt-Out Tools

You may also manage certain interest-based advertising preferences through industry tools, including the Digital Advertising Alliance’s WebChoices tool and the European Interactive Digital Advertising Alliance’s Your Online Choices tool.

These tools apply only to participating companies and may not control all cookies, pixels, tags, or tracking technologies used on our website.

Graphite’s primary opt-out methods are our cookie preference tools, recognized browser-based opt-out signals where required by law, and privacy requests submitted to hello@graphitefinancial.com.

How We Share Information

We may disclose personal information to the following categories of recipients:

  • Service providers that help us operate our business, website, CRM, analytics, advertising, marketing, communications, billing, security, and customer support functions

  • Technology platforms and vendors used to provide, manage, measure, or improve our website and services

  • Professional advisors, including legal, tax, accounting, insurance, compliance, and audit advisors

  • Business partners, referral partners, or event partners where relevant to the relationship or request

  • Advertising, analytics, and marketing platforms, where used to measure performance, improve communications, or support advertising

  • Government authorities, regulators, courts, law enforcement, or other parties when required by law or necessary to protect our rights

  • Successors or potential successors in connection with a merger, acquisition, financing, reorganization, sale of assets, diligence process, or similar business transaction

  • Other parties with your direction, consent, or as reasonably necessary to provide services or complete a transaction

We require service providers to handle personal information in accordance with applicable law and their contractual obligations.

Retention of Information

We retain personal information for as long as reasonably necessary to fulfill the purposes described in this Privacy Policy.

Retention periods may vary based on the type of information, the nature of our relationship with you, legal requirements, contractual obligations, operational needs, security needs, dispute resolution, audit requirements, and business recordkeeping practices.

We may retain information for longer where required or permitted by law, including to comply with legal obligations, enforce agreements, resolve disputes, maintain security, prevent fraud, or protect our rights.

Your Privacy Choices

Depending on where you live and the laws that apply, you may have the right to:

  • Request access to personal information we have collected about you

  • Request a copy of certain personal information

  • Request correction of inaccurate personal information

  • Request deletion of personal information

  • Opt out of sale, sharing, targeted advertising, or certain profiling activities

  • Limit certain uses or disclosures of sensitive personal information, where applicable

  • Withdraw consent where processing is based on consent

  • Appeal a privacy request decision, where applicable

  • Exercise your rights without being discriminated against

To submit a privacy request, contact us at hello@graphitefinancial.com.

We may need to verify your identity before completing your request. We may also deny or limit requests where permitted by law, including where information is needed to provide services, complete transactions, comply with legal obligations, maintain security, prevent fraud, resolve disputes, or protect our rights.

California Privacy Notice

This section applies to California residents and is intended to provide additional disclosures under the California Consumer Privacy Act, as amended by the California Privacy Rights Act.

Categories of personal information we may collect

In the past 12 months, we may have collected the following categories of personal information:

  • Identifiers: Examples include name, email address, phone number, IP address, company name, business contact information, and online identifiers.
  • Commercial information: Examples include services requested, services purchased, referral activity, billing details, contract details, and client relationship information.
  • Internet or electronic network activity: Examples include website activity, pages viewed, referring pages, browser type, device information, form interactions, ad interactions, and email engagement.
  • Professional or employment-related information: Examples include job title, company, business email, business phone number, role, industry, and employer.
  • Geolocation information: Examples include approximate location derived from IP address.
  • Inferences: Examples include likely business interests, service interests, marketing segments, referral source, or engagement level based on website activity, form submissions, or communications.
  • Sensitive personal information: Graphite may collect limited sensitive personal information when you provide it to us or when it is necessary for specific services, including tax, payroll, HR, accounting, finance, compliance, onboarding, or client service purposes. We use sensitive personal information only for permitted business purposes and as reasonably necessary to provide services, comply with legal obligations, maintain security, or support business operations.

Sources of personal information

We may collect personal information from:

  • You directly

  • Your company or employer

  • Your authorized representatives

  • Website activity and cookies

  • HubSpot and other CRM, website, marketing, analytics, and advertising tools

  • Google Analytics, Google Search Console, Google Ads, LinkedIn, and similar tools

  • Service providers

  • Referral sources

  • Business partners

  • Publicly available sources

  • Communications with our team

Business or commercial purposes for collection

We collect and use personal information for the purposes described in this Privacy Policy, including:

  • Providing services

  • Responding to inquiries

  • Managing customer relationships

  • Supporting sales and marketing activity

  • Operating and improving our website

  • Measuring analytics and campaign performance

  • Personalizing communications

  • Managing referrals, events, and partnerships

  • Maintaining security

  • Preventing fraud or misuse

  • Complying with legal and contractual obligations

  • Supporting business operations

Categories of third parties that may receive personal information

We may disclose personal information to:

  • CRM, website, analytics, and marketing platforms

  • Advertising and measurement platforms

  • Cloud hosting, communications, and productivity tools

  • Customer support and operations systems

  • Billing, payment, and contracting providers

  • Professional advisors

  • Legal, regulatory, or government authorities

  • Business partners where relevant to the relationship

  • Successors or potential successors in a business transaction

Sale, sharing, and targeted advertising

Graphite does not sell personal information for money.

Certain privacy laws define “sale,” “sharing,” and “targeted advertising” broadly. Depending on how our analytics, advertising, and marketing technologies are configured, some website activity may be considered sale, sharing, or targeted advertising.

In the past 12 months, Graphite may have shared identifiers, internet or electronic network activity, geolocation information, commercial information, and inferences with analytics, advertising, CRM, and marketing platforms to measure performance, improve communications, or support advertising.

Eligible California residents may opt out of sale or sharing by using our cookie preference tools, enabling a recognized browser-based opt-out preference signal, including Global Privacy Control, or contacting us at hello@graphitefinancial.com.

California privacy rights

California residents may have the right to request:

  • The categories of personal information we collected

  • The categories of sources from which we collected personal information

  • The purposes for collecting, using, selling, or sharing personal information

  • The categories of third parties to whom we disclosed personal information

  • The specific pieces of personal information we collected

  • Deletion of personal information

  • Correction of inaccurate personal information

  • Opt-out of sale or sharing of personal information

  • Limitation of the use or disclosure of sensitive personal information, where applicable

  • Non-discrimination for exercising privacy rights

To exercise these rights, contact us at hello@graphitefinancial.com.

Authorized agents

California residents may use an authorized agent to submit a privacy request. We may require proof that the agent is authorized to act on your behalf and may ask you to verify your identity directly with us.

Non-discrimination

We will not discriminate against you for exercising your privacy rights. This means we will not deny services, charge different prices, provide a different level of service, or suggest that you may receive a different price or level of service because you exercised your rights, except where permitted by law.

Privacy Rights for Other U.S. Residents

Residents of certain states may have privacy rights similar to those described above. Depending on where you live and the laws that apply, you may have the right to access, correct, delete, obtain a copy of, or opt out of certain uses of personal information.

To submit a request, contact us at hello@graphitefinancial.com.

Email and Marketing Communications

You may unsubscribe from marketing emails by using the unsubscribe link included in those emails or by contacting us at hello@graphitefinancial.com.

Even if you opt out of marketing communications, we may still send transactional, service-related, legal, security, billing, account, or administrative communications.

Security

We use reasonable administrative, technical, and organizational measures designed to protect personal information.

No website, system, platform, or transmission method can be guaranteed to be fully secure. We cannot guarantee absolute security of personal information.

Children’s Privacy

Our website and services are intended for business users and are not directed to children under 13. We do not knowingly collect personal information from children under 13.

Third-Party Websites

Our website may contain links to third-party websites, platforms, or services. Those third parties are responsible for their own privacy practices. We encourage you to review their privacy policies before providing information to them.

International Visitors

Graphite is based in the United States. If you access our website or provide information from outside the United States, your information may be processed in the United States or other locations where our service providers operate.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. The updated version will be posted on this page with a new “Last updated” date.

Your continued use of our website or services after an update means the revised Privacy Policy applies going forward.

Contact Us

For questions about this Privacy Policy or to submit a privacy request, contact us at:

Graphite Financial, Inc.
[Mailing address]
[City, State ZIP]
Email: hello@graphitefinancial.com

The NAI’s opt-out platform

The EDAA’s opt-out platform

The DAA’s opt-out platform