Privacy Policy

Last updated: June 14, 2026

CRE 8, LLC, doing business as cre8 (“cre8,” “we,” “us,” or “our”), operates the website cre8.agency (the “Site”). This Privacy Policy explains what personal information we collect, how we use and share it, and the choices and rights you have. It applies to information we collect through the Site and through our marketing and client-services activities.

We are the data controller for the personal information described in this Policy.

Contact: [email protected]
CRE 8, LLC
910 W Van Buren St, Suite 100 #302
Chicago, IL 60607-3572, USA

---

1. Scope

This Policy covers personal information about visitors to the Site, prospects, newsletter subscribers, and individuals who contact us. It does not cover personal information we process on behalf of our clients as a service provider/processor — that data is governed by the relevant client agreement and the client’s own privacy policy.

2. Information we collect

Information you provide to us:

• Identity and contact details — first and last name, email address, phone number, company name.
• Message content — anything you include in a contact form, support request, or email to us.
• Subscription preferences — when you opt in to our insights or company news.

Information collected automatically:

• Device and usage data — IP address, browser type, operating system, referring URLs, pages viewed, and interaction patterns.
• Cookies and similar technologies — see Section 5 and our Cookie Policy.

We do not intentionally collect special categories of data (e.g., health, biometric, or precise geolocation) through the Site.

3. How we use your information, and our legal bases

Purpose	Legal basis (GDPR Art. 6)
Respond to inquiries and provide requested services	Performance of a contract / pre-contract steps; legitimate interests
Send insights, company news, and marketing you’ve opted into	Consent; legitimate interests
Operate, secure, and improve the Site (analytics, fraud/bot prevention)	Legitimate interests; consent where required for non-essential cookies
Advertising and remarketing through third-party platforms	Consent
Comply with legal obligations and enforce our terms	Legal obligation; legitimate interests

Where we rely on consent (e.g., non-essential cookies, marketing), you may withdraw it at any time — see Section 7.

4. How we share information

We do not sell your personal information for money. We share it only as follows:

• Service providers / processors acting on our behalf — hosting and CDN, email delivery, analytics, CRM, and form tooling — under contracts that restrict their use of the data.
• Advertising partners — when you consent to advertising cookies, certain identifiers may be shared with platforms such as Google and LinkedIn for measurement and remarketing. Under California law this may be considered “sharing” for cross-context behavioral advertising (see Section 9).
• Legal and safety — when required by law, to protect our rights, or in connection with a business transfer (e.g., merger or acquisition).

5. Cookies and tracking technologies

The Site uses cookies and similar technologies for essential functions, analytics, and advertising. Non-essential cookies load only after you consent through our consent banner, which is managed via a Consent Management Platform (CookieYes) and Google Consent Mode v2. For the full list of categories and tools, see our Cookie Policy.

6. Data retention

We keep personal information only as long as needed for the purposes above: inquiry and client-prospect records for the duration of the relationship plus a reasonable follow-up period; marketing data until you unsubscribe; and analytics data per the retention settings of each tool. We then delete or anonymize it.

7. Your choices and withdrawing consent

• Cookie consent: Open the “Cookie Settings” link in the Site footer (or the consent banner) at any time to change or withdraw your cookie choices.
• Marketing email: Use the unsubscribe link in any message, or email [email protected].
• Browser controls: Most browsers let you block or delete cookies; doing so may affect Site functionality.

8. Your rights in the EEA and UK (GDPR / UK GDPR)

If you are in the European Economic Area or the United Kingdom, you have the right to: access your data; request rectification or erasure; restrict or object to processing; data portability; and withdraw consent. Where we rely on legitimate interests, you may object based on your particular situation.

To exercise any of these, email [email protected]. We will respond within the time required by law (generally one month). You also have the right to lodge a complaint with your local supervisory authority.

9. Your California rights (CCPA / CPRA)

As a courtesy to California residents — and regardless of whether we meet the CCPA/CPRA business thresholds — we summarize your rights here. You may request to know what personal information we collect and how we use or disclose it, to access and delete it, and to correct inaccuracies. We do not discriminate against you for exercising these rights.

We do not sell personal information for monetary consideration. Our Site uses an opt-in consent model: advertising and analytics cookies are denied by default and load only after you affirmatively accept them. As a result, personal information is not shared for cross-context behavioral advertising unless you have consented, and you can revoke that consent at any time.

• Categories collected (last 12 months): identifiers (name, email, phone, IP), commercial/inquiry information, and internet activity (usage and device data).
• To withdraw consent or opt out: open “Cookie Settings” in the Site footer and reject advertising cookies at any time, or email [email protected].

10. Security

We use reasonable administrative, technical, and physical safeguards (including a web application firewall and HTTPS) to protect personal information. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

11. International data transfers

We are based in the United States, and our service providers may process data in the US and elsewhere. Where we transfer personal information from the EEA/UK, we rely on appropriate safeguards such as Standard Contractual Clauses.

12. Children’s privacy

The Site is not directed to, and we do not knowingly collect personal information from, children under 16. If you believe a child has provided us personal information, contact us and we will delete it.

13. Third-party links

The Site may link to third-party websites. We are not responsible for their privacy practices; review their policies before providing personal information.

14. Changes to this Policy

We may update this Policy from time to time. The “Last updated” date above reflects the most recent revision. Material changes will be highlighted on this page.

15. Contact us

Questions or requests: [email protected], CRE 8, LLC, 910 W Van Buren St, Suite 100 #302, Chicago, IL 60607-3572, USA.