YES Factory Privacy Policy
Effective Date: November 1, 2025
This Privacy Policy (“Policy”) sets forth the policies and procedures under which YES Factory, LLC (“YES Factory,” “we,” “our,” or “us”) collects, uses, stores, processes, and protects information in connection with the marketing, automation, and customer relationship management (“CRM”) services we provide to our clients (collectively, the “Services”).
By engaging YES Factory or utilizing our Services, you acknowledge that you have read, understood, and agreed to the terms of this Policy.
1. Scope and Applicability
This Policy applies to all information collected or processed by YES Factory in the course of providing the Services, including data collected via websites, forms, electronic communications, or through the YES Factory CRM platform, which operates as a white-labeled implementation of the third-party systems GoHighLevel and LeadConnector.
This Policy does not apply to information collected or processed independently by third parties, including GoHighLevel, LeadConnector, or any other integrated applications or vendors utilized by those platforms.
2. Collection of Information
2.1 Personal Information
YES Factory may collect personally identifiable information voluntarily provided by clients, prospective clients, and their authorized representatives, including but not limited to names, company names, physical and email addresses, telephone numbers, and other relevant identifiers.
Such data is typically obtained through client onboarding, CRM configuration, form submissions, contractual documentation, or other voluntary interactions.
2.2 Non-Personal Information
We may also collect non-identifiable information such as demographic statistics, browser types, device data, usage metrics, and aggregated analytical information to monitor system performance and improve user experience.
2.3 Cookies and Tracking Technologies
YES Factory and certain third-party service providers may utilize cookies, web beacons, and similar tracking mechanisms for authentication, analytics, and service enhancement. Data collected through these technologies may include IP addresses, device characteristics, referring URLs, and session data. Users may restrict or disable cookies via browser settings, though certain features of our Services may become limited as a result.
3. Use of Information
YES Factory uses collected information solely for legitimate business purposes, including:
To deliver, administer, and improve our Services;
To communicate with clients and authorized users;
To manage accounts, billing, and technical support;
To ensure compliance with legal obligations and contractual commitments; and
To evaluate and optimize the performance of marketing or CRM initiatives.
Information shall not be used for any purpose inconsistent with this Policy or the contractual direction of our clients.
4. Role of YES Factory as Data Processor
YES Factory acts exclusively as a data processor within the meaning of applicable data protection laws. Our clients act as data controllers and determine the purpose and lawful basis for the collection and processing of personal data within their accounts.
YES Factory processes personal data only under the direction of the controller and only when there exists a lawful basis for such processing, including performance of a contract, legitimate business interest, or express consent of the data subject.
YES Factory does not independently sell, share, or otherwise utilize client or customer data for its own commercial purposes.
5. CRM Platform, Third-Party Systems, and Allocation of Responsibility
5.1 Use of White-Labeled Systems
YES Factory provides access to its CRM Services through the third-party software platforms GoHighLevel and LeadConnector, which are licensed, white-labeled, and rebranded collectively as YES Factory CRM. These systems are designed, developed, owned, and operated solely by their respective companies and are governed by their own Privacy Policies and Terms of Service.
All data transmitted through YES Factory CRM is technically hosted and maintained within the GoHighLevel and LeadConnector infrastructures.
5.2 Platform Responsibility and Limitation of Liability
YES Factory does not own, control, or manage the servers, data centers, storage environments, or security infrastructures of GoHighLevel or LeadConnector. Accordingly, YES Factory expressly disclaims and shall bear no responsibility or liability whatsoever for any data breach, unauthorized access, data loss, corruption, or misuse arising from, within, or relating to the GoHighLevel or LeadConnector platforms or any third-party integration utilized in conjunction therewith.
Responsibility for maintaining the security, confidentiality, and integrity of such systems resides solely with the respective platform providers and their integrated service partners.
YES Factory’s role is strictly limited to configuring, customizing, and facilitating client access to these platforms pursuant to a white-label agreement. Any security incident originating within the underlying GoHighLevel or LeadConnector environments is the legal and operational responsibility of those entities.
5.3 Data Isolation and Jurisdictional Transfers
Information collected and processed through YES Factory CRM is collected for the exclusive benefit of the applicable client. Data will not be transferred, shared, or made accessible between separate client accounts, sub-accounts, or unrelated business entities under any circumstances, except where the client provides express written authorization or where such disclosure is required by applicable law.
YES Factory will not knowingly transmit or process personal data outside of the client’s primary jurisdiction without prior written consent from the data controller or as otherwise mandated by law.
5.4 Third-Party Vendors
YES Factory may engage limited third-party vendors and subprocessors to support essential operational functions such as hosting, analytics, or communications. All such parties are contractually bound by confidentiality, data protection, and security obligations consistent with this Policy.
6. Data Retention and Security
6.1 Retention
YES Factory retains personal information only for so long as necessary to fulfill the specific purposes for which it was collected, or as required by applicable law, regulation, or contract. Data no longer required shall be securely deleted, anonymized, or otherwise rendered permanently unrecoverable.
6.2 Security Safeguards
YES Factory employs commercially reasonable administrative, technical, and physical safeguards to protect information under its direct control. These measures may include encryption, access restriction, monitoring, and personnel training. However, no electronic transmission or storage system can be guaranteed to be entirely secure, and YES Factory disclaims any absolute warranty as to security.
6.3 Payment Information
YES Factory does not collect, store, or process credit card or financial account information. All payments are processed exclusively through third-party payment processors that maintain PCI-DSS (Payment Card Industry Data Security Standards) compliance. Responsibility for the security of such transactions lies with the payment processors and not with YES Factory.
6.4 Access Controls
Access to personal data within YES Factory’s possession is restricted to authorized personnel who require access to perform their duties. All employees and contractors are subject to confidentiality obligations and receive periodic data protection training.
7. Marketing Communications and Analytics
Communications distributed via YES Factory CRM may contain embedded tracking technologies used to measure engagement, including but not limited to email open rates, link clicks, and form submission metrics. Such analytical information is used solely for campaign evaluation and performance reporting and is not employed for personal profiling beyond the scope of the client’s authorized use.
8. International Compliance
YES Factory complies with applicable U.S. federal and state privacy laws and, where relevant, with international frameworks including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA), to the extent such laws govern our processing activities.
Personal data may be transferred across borders only when permitted by law, with appropriate safeguards in place, and solely at the direction or authorization of the data controller.
9. Children’s Data
YES Factory does not knowingly solicit or process personal information from individuals under eighteen (18) years of age. Should such information be inadvertently collected, it will be permanently deleted upon discovery.
10. Data Breach Notification
In the event of a confirmed security incident involving personal data under YES Factory’s direct control, we will notify affected clients and, where legally required, competent regulatory authorities within a commercially reasonable period.
Any breach occurring within the GoHighLevel or LeadConnector environments shall be managed exclusively by those platform providers in accordance with their respective legal obligations and published incident-response procedures.
11. External Links
The YES Factory website, CRM interfaces, or other communications may contain links to external websites or third-party services. YES Factory is not responsible for the content, accuracy, or privacy practices of such entities and disclaims liability for any damages arising from their use. Users are encouraged to review third-party privacy policies before providing personal information.
12. Amendments and Updates
YES Factory reserves the right, in its sole discretion, to amend, modify, or replace this Policy at any time and without prior notice. The revised Policy shall become effective immediately upon posting with an updated “Effective Date.” Continued use of the Services following such posting constitutes acceptance of the revised Policy.
13. Governing Law and Venue
This Policy and any dispute arising from it shall be governed by and construed in accordance with the laws of the State of Oklahoma, without regard to conflict-of-law principles. Any legal proceeding arising under this Policy shall be brought exclusively in the state or federal courts located in Oklahoma County, Oklahoma.
14. Contact Information
Questions or concerns regarding this Privacy Policy, or any data protection inquiry, may be directed to:
YES Factory, LLC
Email: [email protected]
By using YES Factory’s Services, you acknowledge that you have reviewed and understood this Privacy Policy and agree to its terms. You further acknowledge that all data hosted within the GoHighLevel and LeadConnector platforms is governed by their respective policies, which may be accessed here:
