Last updated: December 13, 2025
ERC Enterprises, LLC ("Company," "we," "us," or "our") operates The Notary Guide application, browser extension, website, and related services (collectively, the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.
We are committed to protecting your privacy and handling your data with transparency and care. Please read this Privacy Policy carefully. By using the Service, you consent to the data practices described in this policy.
ERC Enterprises, LLC makes the following unequivocal commitment:
WE WILL NEVER SELL, RENT, LEASE, OR OTHERWISE COMMERCIALLY TRANSFER YOUR PERSONAL DATA TO THIRD PARTIES FOR THEIR MARKETING OR ADVERTISING PURPOSES.
This commitment is absolute and without exception. Your trust is fundamental to our business, and we will never monetize your personal information through data sales.
When you create an account or use the Service, you may provide:
| Data Type | Purpose | Required |
|---|---|---|
| Email Address | Account creation, authentication, communication | Yes |
| Password | Account security (stored as secure hash only) | Yes (if using email/password) |
| Full Name | Account personalization | Optional |
| Commissioned State(s) | Provide state-specific compliance information | Yes |
| Commission Expiration Date | Commission tracking and renewal reminders | Optional |
| Subscription Selection | Service tier and billing | For paid tiers |
When you use the Service, we automatically collect:
Device and Technical Information:
Usage Information:
Session Information:
We want to be explicitly clear about what we do NOT collect or have access to:
| Data Type | Collected? | Explanation |
|---|---|---|
| Documents you notarize | NO | We never see, access, or store any documents |
| Signer information | NO | We have no access to names, addresses, or IDs of people you notarize for |
| Transaction details | NO | We do not record what notarial acts you perform |
| Precise geolocation | NO | We do not track GPS coordinates or precise location |
| Contacts or address books | NO | We do not access your device contacts |
| Browsing history | NO | We do not track websites you visit outside our Service |
| Financial account details | NO | Payment processing is handled entirely by Stripe |
| Credit card numbers | NO | We never see or store your payment card information |
| Social Security numbers | NO | We do not collect government ID numbers |
| Notary journal entries | NO | Your official notary records remain private |
| Commission certificate data | NO | We do not access your actual commission documents |
| Biometric data | NO | We do not collect fingerprints, facial recognition, or similar data |
We use the information we collect for the following purposes:
We work with carefully selected third-party service providers to operate the Service. Each provider has been chosen for their strong privacy and security practices.
Purpose: User authentication, account management, and data storage
Data Shared:
Their Privacy Policy: https://supabase.com/privacy
Data Location: United States (AWS infrastructure)
Security: SOC 2 Type II certified, AES-256 encryption at rest, TLS 1.3 in transit
Purpose: Subscription billing and payment processing
Data Shared:
Data Stripe Collects Directly (not through us):
IMPORTANT: We never see, receive, or store your payment card numbers. All payment information is collected and processed directly by Stripe.
Their Privacy Policy: https://stripe.com/privacy
PCI Compliance: Stripe is a PCI Level 1 Service Provider
Purpose: Website and API hosting, content delivery, DDoS protection
Data Shared:
Their Privacy Policy: https://www.cloudflare.com/privacypolicy/
Data Location: Global edge network with data processed in region closest to user
Purpose: Application monitoring, error tracking, and anonymous usage analytics
Data Shared:
Their Privacy Policy: https://axiom.co/privacy
Data Retention: 30 days for log data
Note: All data sent to Axiom is anonymized and cannot be used to identify individual users.
Purpose: Optional single sign-on authentication
Data Shared (only if you choose Google Sign-In):
Their Privacy Policy: https://policies.google.com/privacy
Note: Google Sign-In is entirely optional. You can use email/password or magic link authentication instead.
| Provider | Data Shared | Purpose | Do They Receive PII? |
|---|---|---|---|
| Supabase | Email, preferences, state | Auth, storage | Yes (email only) |
| Stripe | Email, plan selection | Payments | Yes (email only) |
| Cloudflare | IP address, requests | Hosting, security | Minimal |
| Axiom | Anonymous usage data | Analytics | No |
| Email (if using OAuth) | Authentication | Yes (if opted in) |
We retain your information only as long as necessary for the purposes described in this policy:
| Data Type | Retention Period |
|---|---|
| Account information | Until account deletion or 2 years after last activity |
| Usage analytics | 30 days (anonymized) |
| Error logs | 30 days |
| Subscription records | 7 years (for tax/legal compliance) |
| Support communications | 3 years |
After account deletion:
We implement industry-standard security measures to protect your information:
Depending on your location, you may have the following rights:
To exercise any of these rights, contact us at:
We will not discriminate against you for exercising your privacy rights.
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):
You have the right to request disclosure of:
You have the right to request deletion of personal information, subject to certain exceptions.
We do not sell personal information. Therefore, there is no need to opt out, but we honor this right regardless.
We will not discriminate against you for exercising your CCPA rights.
You may designate an authorized agent to make requests on your behalf.
| Category | Collected | Sold | Business Purpose |
|---|---|---|---|
| Identifiers (email, name) | Yes | Never | Account management |
| Commercial Information | Yes (subscription) | Never | Billing |
| Internet Activity | Yes (usage data) | Never | Service improvement |
| Geolocation | No (only country) | Never | N/A |
| Professional Information | Yes (commission state) | Never | Service delivery |
If you are in the European Economic Area (EEA), United Kingdom, or Switzerland, you have rights under the General Data Protection Regulation (GDPR):
We process your data under the following legal bases:
| Purpose | Legal Basis |
|---|---|
| Account creation and service delivery | Contract performance |
| Billing and payments | Contract performance |
| Service improvement and analytics | Legitimate interests |
| Security and fraud prevention | Legitimate interests |
| Marketing communications | Consent (opt-in) |
| Legal compliance | Legal obligation |
Your data may be transferred to the United States where our service providers are located. We ensure appropriate safeguards through:
For GDPR-related inquiries, contact our Data Protection point of contact:
You have the right to lodge a complaint with your local data protection supervisory authority.
The Service uses minimal cookies and local storage:
| Type | Purpose | Duration |
|---|---|---|
| Authentication token | Keep you signed in | Session/30 days |
| Session ID | Anonymous analytics | Session |
| Device ID | Anonymous device recognition | Persistent |
| User preferences | Remember your settings | Persistent |
| Cached compliance data | Offline functionality | 24 hours |
You can clear local storage and cookies through your browser settings. Note that this will sign you out and reset preferences.
The Service is not intended for children under 18 years of age. We do not knowingly collect personal information from children under 18. If you believe we have collected information from a child under 18, please contact us immediately at privacy@notaryguide.app, and we will promptly delete such information.
Some browsers include a "Do Not Track" (DNT) feature. We currently do not respond to DNT signals because there is no industry standard for handling them. However, we do not engage in cross-site tracking regardless of DNT settings.
We may update this Privacy Policy from time to time. We will notify you of any material changes by:
We encourage you to review this Privacy Policy periodically. Your continued use of the Service after changes become effective constitutes acceptance of the revised policy.
In the event of a data breach that affects your personal information, we will:
The Service is operated from the United States. If you access the Service from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States where our servers are located.
By using the Service, you consent to the transfer of your information to the United States, which may have different data protection laws than your country of residence.
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
ERC Enterprises, LLC
General Inquiries:
Data Protection Requests:
Mailing Address: ERC Enterprises, LLC Attn: Privacy 1309 Coffeen Avenue STE 12701 Sheridan, WY 82801
Response Time: We aim to respond to all privacy-related inquiries within 30 days.
For your convenience, here are the key points of our Privacy Policy:
| Topic | Summary |
|---|---|
| Data Sales | We NEVER sell your data |
| Documents | We never access your notarized documents |
| Payment Info | Handled entirely by Stripe - we never see card numbers |
| Third Parties | Supabase, Stripe, Cloudflare, Axiom, Google (OAuth optional) |
| Analytics | Anonymous usage data only |
| Retention | Deleted within 30 days of account deletion |
| Security | Industry-standard encryption and security measures |
| Your Rights | Access, correct, delete, or export your data anytime |
| Children | Service not intended for users under 18 |
| Changes | We'll notify you of material policy changes |
© 2025 ERC Enterprises, LLC. All Rights Reserved.