Privacy Policy

1. Company Information

Legal Entity: ADER MEDIA WORKS SRL
Registration Number (CUI): 50991287
Registered Address: Bd Iuliu Maniu 11A, Sector 6, Bucharest, Romania 061073
Email (GDPR requests): privacy@adermedia.com
Phone: +1 855-512-7408

Websites:

• https://adermedia.com
• https://offer.adermedia.com
• https://go.adermedia.com

We operate as a B2B marketing and automation services provider serving dental and healthcare clinics located in the United States.

2. Whose Data We Collect

We collect personal information from:

• Visitors to our websites
• Dental and healthcare clinic owners, managers, and representatives
• Individuals who submit forms requesting information about our services
• Clients and prospective clients
• Vendors and business partners

Our services are strictly B2B and not directed toward children.

3. Types of Information We Collect

A. Information You Voluntarily Provide

When you complete a form, book a call, or contact us, we may collect:

• Full name
• Email address
• Phone number
• Business name
• Business role/title
• Business address
• Information submitted via application forms
• Communication history

We do not collect financial card data directly through our website.

B. Information Processed on Behalf of Clients

In providing marketing services to U.S. based dental clinics, we may process personal data of clinic patients strictly as a data processor/service provider under contractual agreements and executed BAAs where applicable.

We do not determine the purposes of processing patient data; we act under the instructions of our client clinics.

We do not use patient data for our own marketing purposes.

C. Automatically Collected Information

When you visit our website, we may collect:

• IP address
• Browser type
• Device type
• Pages visited
• Time spent on pages
• Referral source

This information is collected via cookies and tracking technologies, including:

• Google Analytics
• Meta Pixel
• Google Ads conversion tracking

You may disable cookies through your browser settings.

D. SMS & Text Messaging Program

How You Opt In

By providing your mobile phone number through one of our website forms, booking pages, or intake questionnaires, you expressly consent to receive text messages from Ader Media. Opt-in methods include:

• Submitting a web form that includes a phone number field with an SMS consent checkbox or disclosure
• Booking a consultation or discovery call through our scheduling pages (OnceHub / Calendly)
• Completing a client onboarding or intake form that includes an SMS consent statement

Consent to receive SMS messages is not a condition of purchasing any service. You will not be charged for opting in.

Types of Messages

Once you have opted in, you may receive the following types of text messages from us:

• Follow-up messages related to your inquiry or application
• Appointment confirmations and reminders
• Missed-call text-back notifications
• Service-related updates and onboarding communications
• Operational notifications relevant to your engagement with Ader Media

We do not send unsolicited cold SMS. All messages are sent in response to an existing interaction or consent event.

Message Frequency

Message frequency varies depending on the nature and stage of your interaction with us. As a general guide:

• Initial inquiry follow-ups: up to 3—5 messages over the first 7 days
• Appointment reminders: typically 1—2 messages per scheduled appointment
• Ongoing client communications: as needed, generally no more than 4—6 messages per month

We do not send bulk promotional SMS campaigns.

Opt-Out & Help

You may opt out of SMS communications at any time by replying STOP to any message you receive from us. You will receive a one-time confirmation that your opt-out has been processed, after which no further messages will be sent to that number.

To request assistance, reply HELP or contact us directly at privacy@adermedia.com.

Standard message and data rates from your mobile carrier may apply. SMS opt-in data and consent records are never shared with third parties for their own marketing purposes.

4. How We Use Personal Information

We use information to:

• Respond to inquiries
• Provide marketing automation services
• Manage client relationships
• Improve website performance
• Send service-related communications
• Comply with legal obligations

We do not sell personal data.

We do not engage in automated decision-making that produces legal or similarly significant effects.

5. Legal Basis for Processing (GDPR)

For individuals located in the European Union:

We process personal data based on:

• Legitimate interest (B2B communications)
• Contractual necessity
• Legal obligations
• Consent (where applicable, including SMS opt-in)

6. Data Retention

We retain personal data:

• For as long as necessary to fulfill the purposes described above
• Generally up to 12 months for prospect data
• Longer where required by contract or law
• Until deletion is requested, where legally permissible

You may request deletion at any time by contacting privacy@adermedia.com.

7. Data Sharing

We may share data with service providers strictly as necessary to operate our business, including:

• GoHighLevel
• Make.com
• OnceHub / Calendly
• Stripe
• Google (Analytics, Ads)
• Meta (Facebook Pixel)
• Cloudflare
• Supabase / Firebase
• Termly
• WordPress / Elementor
• Slack
• WhatsApp Business
• Instantly.ai
• MillionVerifier

We do not sell personal data.

We require service providers to maintain appropriate security safeguards.

8. International Data Transfers

We are based in Romania and serve U.S.-based clients.

Data may be processed in:

• The European Union
• The United States

Where required, we rely on:

• Standard Contractual Clauses (SCCs)
• Contractual safeguards
• Executed BAAs for HIPAA-regulated data

9. HIPAA Compliance

Where applicable, we operate under executed Business Associate Agreements (BAA) with client clinics.

We implement reasonable administrative, technical, and organizational safeguards to protect Protected Health Information (PHI) processed under such agreements.

10. Your Rights

Under GDPR (EU Residents)

You have the right to:

• Access your data
• Correct inaccurate data
• Request deletion
• Restrict processing
• Object to processing
• Data portability
• Lodge a complaint with your supervisory authority

Contact: privacy@adermedia.com

Under CCPA (California Residents)

You have the right to:

• Know what personal information we collect
• Request deletion
• Request disclosure of data categories
• Non-discrimination for exercising rights

We do not sell personal information.

Requests may be submitted to: privacy@adermedia.com

11. Data Security

We take the security of your personal information seriously and implement a layered approach to data protection across administrative, technical, and organizational dimensions.

Technical Safeguards

1. Encryption in transit: All data transmitted between your browser and our systems is encrypted using TLS (Transport Layer Security) protocols.

2. Encryption at rest: Sensitive data stored in our systems and with third-party processors is encrypted at rest where supported by the platform.

3. Access controls: Access to personal data is restricted on a need-to-know basis using role-based access control (RBAC) to limit data exposure to authorized personnel only.

4. Authentication: We require strong passwords and, where available, multi-factor authentication (MFA) on platforms that process personal data.

5. Firewall and network security: Our web infrastructure is protected by Cloudflare’s Web Application Firewall (WAF), DDoS mitigation, and bot detection.

6. Platform security: We rely on established SaaS platforms (GoHighLevel, Supabase/Firebase, Stripe, Google, Meta) that maintain their own rigorous security certifications, including SOC 2 and PCI-DSS where applicable.

Administrative Safeguards

1. Internal data handling policies govern how team members collect, store, access, and dispose of personal information.
2. Third-party vendors are evaluated for security practices before onboarding, and we use Data Processing Agreements (DPAs) and Standard Contractual Clauses (SCCs) with relevant providers.
3. BAAs are executed with applicable vendors prior to any processing of Protected Health Information (PHI).
4. Access to client data is reviewed periodically and revoked promptly when no longer required.

Organizational Safeguards

1. Team members with access to personal data are trained on data handling expectations and privacy obligations.
2. We maintain records of data processing activities consistent with GDPR Article 30 requirements.
3. In the event of a data breach, we follow a defined incident response process and will notify affected individuals and relevant supervisory authorities as required by applicable law.

While we take appropriate and commercially reasonable measures to protect your personal information, no method of transmission over the internet or electronic storage system is completely secure. We cannot guarantee absolute security.

12. Children’s Privacy

Our services are intended for business professionals and are not directed to children under 18.

We do not knowingly collect personal data from minors.

13. Changes to This Policy

We may update this Privacy Policy from time to time.

The updated version will be posted on our website with a revised “Last Updated” date.

14. Contact