Security

Data Protection Policy

Last updated: June 19, 2026  ยท  Raw Marketers

Attorney Review Required: This document was generated as a template based on standard security and privacy practice for a digital marketing agency. It is NOT a substitute for review by a licensed attorney or qualified cybersecurity professional.

Raw Marketers is committed to protecting the data of our website visitors, prospects, and clients. This policy describes the specific measures we take to secure your information and what happens if something goes wrong.

๐Ÿ”
HTTPS Encryption
All data transmitted through our website is encrypted via HTTPS/TLS.
๐Ÿ‘ค
Minimal Access
Client and prospect data is accessed only by RaShaad Williams. No team members have access.
๐Ÿšซ
No Payment Storage
We do not store payment card data. Payments are processed by Stripe under PCI-DSS compliance.
๐Ÿ“‹
Certified Platforms
All third-party platforms we use (Airtable, Make.com, GHL) maintain their own security certifications.

1. How We Protect Your Data

Transmission Security

All data transmitted between your browser and rawmarketers.com is encrypted using HTTPS (TLS). Form submissions, including your name, email, phone number, and business information, are encrypted in transit. We do not operate any web pages over unencrypted HTTP.

Access Control

Access to client and prospect data is strictly limited to RaShaad Williams. Raw Marketers currently operates without employees or contractors who have access to client data. If this changes, we will update this policy and implement appropriate access controls before granting any additional access.

Third-Party Platform Security

We use the following platforms to store and process data, each of which maintains their own security programs:

  • Airtable: SOC 2 Type II certified. Data is encrypted at rest and in transit.
  • Make.com (Integromat): ISO 27001 certified. Processes automation workflows only.
  • GoHighLevel (GHL): Enterprise-grade security for CRM, email, and SMS. Data encrypted at rest.
  • Formspree: Processes form submissions with HTTPS encryption.
  • Stripe (if applicable): PCI-DSS Level 1 certified. We never see or store your card data.

No Payment Card Storage

Raw Marketers does not store, process, or transmit payment card data through our own systems. All payment processing is handled directly by Stripe, which is PCI-DSS Level 1 compliant. We have no access to your full card number, CVV, or other sensitive payment information.

Password and Credential Security

Raw Marketers uses unique, strong passwords for all service accounts and enables two-factor authentication (2FA) wherever available. We do not store your passwords โ€” any passwords you create to access services we manage on your behalf are held only in secure credential management systems.

2. Ad Account Data and Client Assets

You own your ad account. Always. When Raw Marketers manages your advertising campaigns, you retain admin-level access to your own ad accounts (Meta Business Manager, Google Ads, etc.) at all times. We operate as a user with appropriate permissions โ€” we do not take ownership of your ad accounts.

Specific data protection practices for client ad accounts:

  • Raw Marketers requests only the minimum permissions necessary to manage your campaigns
  • You retain admin access at all times and can revoke Raw Marketers' access at any point
  • When our engagement ends, we remove our access from your accounts โ€” we do not retain copies of your campaign data, audiences, or pixel data
  • We do not share your ad account data, creative assets, or performance data with other clients or third parties
  • All creative files produced for your campaigns are delivered to you โ€” they are your property

Client intelligence reports (competitive analysis, hook classifications, performance briefs) are your property. We retain copies for our own records during the engagement period but do not share them with other clients or use your competitive intelligence to benefit other clients in the same niche.

3. Data Breach Response Procedure

In the unlikely event of a security incident involving personal data, Raw Marketers will:

  • Within 24 hours of discovery: Contain the breach and assess its scope and likely impact
  • Within 72 hours of discovery: Notify all affected individuals via email with: a description of what happened, what data was involved, what we are doing about it, and what you can do to protect yourself
  • Within 72 hours of discovery: Notify relevant authorities if required by applicable law (including Illinois state law requirements)
  • Following the incident: Conduct a full review of how the breach occurred and implement measures to prevent recurrence

To report a suspected security incident or data breach involving Raw Marketers, contact us immediately at williamsrashaad02@gmail.com with "SECURITY INCIDENT" in the subject line.

4. Vulnerability Disclosure

If you discover a security vulnerability in our website or systems, we ask that you report it responsibly to us at williamsrashaad02@gmail.com before disclosing it publicly. We commit to responding within 5 business days and working with you to understand and address the issue.

5. Limitations

While we implement industry-standard security measures, no security system is perfect. We cannot guarantee that our website, systems, or data storage will be completely secure at all times. By using our services, you acknowledge this inherent risk of internet-based communication and data storage.

6. Changes to This Policy

We may update this Data Protection Policy as our security practices evolve or as legal requirements change. We will update the "Last updated" date at the top when changes are made.

7. Contact

For data protection questions, security concerns, or to exercise your data rights:

Raw Marketers / RaShaad Williams
South suburbs of Chicago, Illinois
Email: williamsrashaad02@gmail.com
Phone: (708) 539-1811

For full details on what data we collect and your rights, see our Privacy Policy.

RM
Raw Marketers AI
Ask anything about our approach