// Data protection and information security protocols
PRIVACY POLICY
Effective Date: January 27, 2026
Last Updated: January 27, 2026
Frame of Reference Solutions, LLC ("we," "us," "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you use our services, including:
• Notary Public Services (mobile, in-person, RON)
• Cybersecurity Services (vulnerability assessments, penetration testing)
• OSINT & Digital Footprint Analysis
• Due Diligence Investigations
• Corporate Security Assessments
═══════════════════════════════════════════════════
TL;DR - THE QUICK VERSION
// Nobody reads the whole thing. Here's what matters:
FOR NOTARY SERVICES:
✓ We collect: Name, ID info, address (Maryland law requires it)
✓ Keep records: 10 years (Maryland legal requirement)
✓ Payment: Via Stripe/Square (we don't store card numbers)
✓ RON sessions: Encrypted, recorded, stored securely
FOR CYBERSECURITY & OSINT SERVICES:
✓ We collect: Business info, system access, public records data
✓ Strict NDA: All findings 100% confidential
✓ Keep records: 7 years (credentials deleted immediately)
✓ Security: Encrypted storage, air-gapped systems, need-to-know only
✓ Your data: Reports are yours, we retain our methodology
PRIVACY HIGHLIGHTS:
• We don't sell your data (ever)
• No tracking cookies on our site
• Third parties: Formspree (forms), payment processors only
• Your rights: Access, correct, or delete your data (email us)
• Contact: [email protected]
→ Read full policy below for legal details
═══════════════════════════════════════════════════
[1] INFORMATION WE COLLECT
FOR NOTARY SERVICES:
• Name, email address, phone number
• Physical address (as appears on government-issued ID)
• ID document details:
- Document number
- Issue date
- Expiration date
- Date of birth
• Other information required by Maryland notary law
→ We collect ONLY information required by Maryland law for
notarization services. No additional data is collected.
FOR CYBERSECURITY & OSINT SERVICES:
• Business contact information (name, title, company, email, phone)
• Network credentials/passwords (with explicit authorization)
• System access logs and audit trails
• Vulnerability scan results and security findings
• Public records and open-source intelligence data
• Personal identifiable information (PII) from public sources
• Digital footprint data (social media, public databases, etc.)
• Corporate structure and business relationship data
• IP addresses, domain names, and technical infrastructure details
Note: Access to client systems and credentials is granted under
strict Non-Disclosure Agreements (NDAs) and used solely for
authorized security assessments.
Payment Information:
• Processed through third-party payment processors (Stripe, Square)
• We do not store credit/debit card numbers directly
═══════════════════════════════════════════════════
[2] HOW WE USE YOUR INFORMATION
For Notary Services:
• Schedule and confirm notary appointments
• Perform notarial acts in compliance with Maryland law
• Maintain notarial records as required by law
• Process payments for services
• Communicate about your appointment or service
For Cybersecurity & OSINT Services:
• Conduct authorized security assessments and vulnerability scans
• Perform OSINT research and digital footprint analysis
• Generate due diligence investigation reports
• Provide litigation support research and documentation
• Conduct corporate security assessments and threat intelligence
• Monitor personal reputation and online presence (when authorized)
• Deliver final reports and findings to clients
• Maintain engagement records and work product documentation
For All Services:
• Process payments and invoicing
• Communicate with clients about services
• Comply with legal obligations and regulatory requirements
• Improve our services and client experience
═══════════════════════════════════════════════════
[3] THIRD-PARTY SERVICES
We use the following third-party services that may process
your data:
Formspree: Contact form processing
Payment Processors: Stripe, Square (credit/debit cards)
Payment Apps: Venmo, CashApp, Zelle
Email Service Provider: Appointment confirmations and
document delivery
These third parties have their own privacy policies governing
their use of your information.
═══════════════════════════════════════════════════
[4] DATA RETENTION
Notary Services:
We retain notarial records and client information for
10 years from the date of service, as required by Maryland law.
This retention period ensures compliance with:
• Maryland notary record-keeping requirements
• Statute of limitations for legal disputes
• Professional standards and best practices
Cybersecurity & OSINT Services:
We retain engagement records, reports, and findings for
7 years from project completion, unless:
• Client requests earlier deletion (subject to legal requirements)
• Engagement agreement specifies different retention period
• Legal or regulatory requirements mandate longer retention
Sensitive Data Handling:
• Client system credentials are securely deleted immediately
after engagement completion
• Vulnerability findings are retained only as long as necessary
for client remediation and verification
• PII from OSINT research is anonymized or deleted per agreement
═══════════════════════════════════════════════════
[5] RECORD KEEPING
We maintain both electronic and physical notarial journals
as required by Maryland law:
Electronic Records: For Remote Online Notarization (RON)
Physical Journal: For in-person notarizations
All records are stored securely and maintained in compliance
with Maryland notary regulations.
═══════════════════════════════════════════════════
[6] DATA SECURITY & CONFIDENTIALITY
We implement reasonable security measures to protect your
personal information from unauthorized access, disclosure,
alteration, or destruction.
For RON Services:
• End-to-end encrypted video sessions
• Full audio/visual recording of notarial acts
• Secure storage in compliance with Maryland RON requirements
• Credential analysis and identity proofing
• Knowledge-based authentication (KBA)
For Cybersecurity & OSINT Services:
• Strict Non-Disclosure Agreements (NDAs) with all clients
• Encrypted storage of vulnerability findings and security reports
• Secure credential management (credentials deleted post-engagement)
• Air-gapped systems for sensitive assessments
• Access controls and need-to-know basis for team members
• Secure file transfer protocols for report delivery
• Physical and digital access controls to work product
Confidentiality Commitment:
All cybersecurity findings, vulnerability reports, OSINT research,
and client business information are treated as strictly
confidential unless:
• Disclosure is required by law or court order
• Client provides explicit written authorization
• Information is already publicly available
For All Services:
• Secure document transmission (TLS/SSL encryption)
• Limited access to sensitive information
• Regular internal security assessments
• Compliance with industry standards and best practices
• Incident response procedures for data breaches
═══════════════════════════════════════════════════
[7] YOUR RIGHTS
You have the right to:
Access: Request access to your notarial records
Correction: Request corrections to inaccurate information
Deletion: Request deletion of data (subject to legal
retention requirements)
To exercise these rights, contact us at:
[email protected]
Note: We may be unable to delete information that we are
legally required to retain under Maryland notary law.
═══════════════════════════════════════════════════
[8] COOKIES AND TRACKING
Our website does not use cookies for tracking purposes.
We use Cloudflare Insights for basic analytics only:
• Page views and visitor statistics
• No personally identifiable information collected
• No behavioral tracking or profiling
═══════════════════════════════════════════════════
[9] INFORMATION SHARING
We do NOT sell, rent, or trade your personal information.
We may share information only when:
• Required by law or legal process
• Necessary to comply with Maryland notary regulations
• To protect the rights, property, or safety of our business
• With your explicit consent
═══════════════════════════════════════════════════
[10] CHILDREN'S PRIVACY
Our services are not directed to individuals under 18 years
of age. We do not knowingly collect personal information from
minors.
═══════════════════════════════════════════════════
[11] CHANGES TO THIS POLICY
We may update this Privacy Policy periodically to reflect
changes in our practices or legal requirements.
Changes will be posted on this page with an updated
"Last Updated" date. Your continued use of our services
after changes constitutes acceptance of the updated policy.
═══════════════════════════════════════════════════
[12] CALIFORNIA RESIDENTS
If you are a California resident, you may have additional
rights under the California Consumer Privacy Act (CCPA).
Contact us for information about exercising your CCPA rights.
═══════════════════════════════════════════════════
[13] CONTACT US
For questions about this Privacy Policy or our data practices:
Frame of Reference Solutions, LLC
Email: [email protected]
Website: frameofreferencesolutions.com
═══════════════════════════════════════════════════
[PRIVACY_POLICY_EOF]