Effective date: September 4, 2025
Last updated: August 26, 2025

This Privacy Policy explains how OMNI Breakthrough (“OMNI”, “we”, “us”, “our”) collects, uses, shares, and protects personal information when you use our website and services.

Controller / Business:
Breakthrough with OMNI
560 Carroll Street Apt. 3D, Brooklyn, NY 11215, USA
Email: privacy@omnibreakthrough.com

If you do not agree with this policy, please do not use the website.

1) Scope

This policy applies to information we collect:

Through our website and contact forms
Through email or phone when you contact us
From cookies and similar technologies on our site

It includes additional disclosures for EU/UK users (GDPR/UK GDPR) and for US users (California and other state privacy laws).

2) What we collect

Identifiers: name, email address, phone (if provided), IP address

Interaction/usage data: pages viewed, time on page, referral URLs, device/browser data

Form data: content of your inquiry or booking request

Preferences: cookie choices, marketing opt-ins

We do not intentionally collect sensitive personal information. Our site and services are not intended for children under 13.

3) Sources

Directly from you (e.g., when you submit a form or send an email)

Automatically from your device/browser via cookies or similar technologies

From service providers that help us run the site (e.g., analytics, hosting)

4) How we use information (purposes)

Respond to inquiries and provide requested information

Operate, secure, debug, and improve the website

Run analytics (only where consent is required and granted)

Send marketing updates if you opt in

Comply with legal requirements and enforce our terms

We use analytics to understand site usage. In the EU and UK, we only run analytics with your consent. We do not sell or share personal information for cross-context behavioral advertising.

EU/UK legal bases (GDPR/UK GDPR): contract or legitimate interests for responding and running the site; consent for non-essential cookies/analytics and marketing; legal obligation where applicable.

5) Cookies and consent

We use essential cookies to run the site. In the EU/UK, we only set non-essential cookies (like analytics) after you give opt‑in consent. You can accept, reject, or manage settings and change your choices at any time via Cookie Settings in the footer. See our Cookie Policy for details.

In the US, we honor relevant state opt-out models for targeted advertising and “sale”/“sharing” where applicable and will provide a Your Privacy Choices link if needed.

6) Sharing your information

We share limited personal information with:

Service providers/processors who host our site, provide analytics, security, and email tools, under contracts that bind them to use data only on our instructions
Authorities if required by law

We do not sell personal information, and we do not share personal information for cross‑context behavioral advertising. If this changes, we will update this policy and add a clear Do Not Sell or Share My Personal Information / Your Privacy Choices link.

7) International data transfers

Because we are US‑based and may work with EU/UK users, personal data may be transferred to the United States. For transfers from the EU/UK to US service providers, we rely on the EU‑US Data Privacy Framework for certified providers or, otherwise, on Standard Contractual Clauses and the UK IDTA/Addendum.

8) Retention

Inquiries: up to 24 months from last contact
Cookie preferences: per the cookie’s lifetime
Analytics data: per provider settings (typically up to 14 months)

We may retain aggregated or anonymized data for longer.

9) Your privacy rights

EU/UK (GDPR/UK GDPR): You have the right to access, correct, delete, restrict, object, and data portability, and to withdraw consent. You may complain to a supervisory authority (e.g., your local DPA or the UK ICO). We aim to respond within one month. If we appoint an EU/UK representative (Article 27), we will add those contact details here.

United States (California and other states): Depending on your state, you may have rights to access, delete, correct, and opt out of sale, sharing, and targeted advertising. California: we honor Global Privacy Control (GPC) signals as a valid opt‑out of sale/sharing. Colorado and Connecticut: we recognize universal opt‑out mechanisms for targeted advertising (Colorado from July 1, 2024; Connecticut from January 1, 2025). If we deny your request, you may appeal by replying to our decision; we will review and respond within the required timeframe.

10) Exercising your rights

Email privacy@omnibreakthrough.com. Please state your location (state/country). We may verify your request (e.g., by confirming control of your email address). You may use an authorized agent where state law allows; we may request proof of authorization and identity verification.

11) Children

Our site and services are not intended for children under 13 and we do not knowingly collect their personal information. If you believe a child has provided personal information, please contact us so we can delete it.

12) Security

We use appropriate technical and organizational measures to protect personal information. No method of transmission or storage is completely secure.

13) Changes

We may update this policy from time to time. The updated version will be effective when posted.

14) Jurisdiction‑Specific Disclosures

California (CPRA): California residents have the right to know, access, delete, correct, and to opt out of sale, sharing, and targeted advertising. We do not sell or share personal information for cross‑context behavioral advertising. We honor GPC signals where required. We do not discriminate against you for exercising your rights.

Colorado & Connecticut: We recognize universal opt‑out signals for targeted advertising (Colorado from July 1, 2024; Connecticut from January 1, 2025).

EU/UK (GDPR/UK GDPR): Our legal bases include legitimate interests to respond to inquiries and operate the site, and consent for non‑essential cookies and marketing. Where we transfer data to the US, we rely on the EU‑US Data Privacy Framework for certified providers or Standard Contractual Clauses (and the UK Addendum) otherwise. Your GDPR rights are set out above.

Appeals & authorized agents (US states): If we decline a request, you can appeal by replying to our decision email. You may use an authorized agent; we may request proof of authorization and identity verification.

Notice at Collection (California and similar US laws)

We collect the categories of personal information below for the purposes shown. We do not sell or share personal information for cross‑context behavioral advertising.

Category;  Sources ; Purposes ; Disclosed to ; Retention ; Sale/Share

Identifiers (name, email, IP) ; You; your device ; Respond to inquiries; security; records ; Service providers (hosting, email, CRM) ; Inquiries up to 24 months; IP per security logs ; Internet / device data ; Your browser/device ; Site operation; analytics (if consented) ; Analytics/hosting providers ; Up to 14 months for analytics ; Approximate geolocation (from IP) ; Your device ; Security; localization ; Hosting/analytics.

15) Contact

OMNI Breakthrough
560 Carroll Street Apt. 3D, Brooklyn, NY 11215, USA
Email: privacy@omnibreakthrough.com