PRIVACY POLICY

Sheridan St of Florida LLC  |  BrainVaultAI

Effective Date: May 17, 2026  |  Last Updated: May 17, 2026

 

1. Introduction and Scope

Sheridan St of Florida LLC (“Company,” “we,” “us,” or “our”) operates the BrainVaultAI platform, including the BrainVaultAI 12 Week Cohort program, associated websites, mobile applications, online courses, community portals, and all related services (collectively, the “Services”). This Privacy Policy explains how we collect, use, disclose, retain, and protect your personal information when you interact with our Services.

 

By accessing or using our Services, registering for a program, or submitting information to us, you acknowledge that you have read, understood, and agree to the practices described in this Privacy Policy. If you do not agree, you must discontinue use of the Services immediately.

 

This Policy applies to all users, including prospective students, enrolled participants, coaches, administrators, and visitors to our websites.

 

2. Information We Collect

We collect several categories of personal information, depending on how you interact with our Services.

 

2.1 Information You Provide Directly

• Identity data: full name, date of birth, business name, job title, and professional background.

• Contact data: email address, phone number, mailing address, and social media handles.

• Account credentials: username, password (stored in encrypted form), and security questions.

• Payment and billing data: credit or debit card details, billing address, and transaction history. Payment card data is processed exclusively by PCI-DSS-compliant third-party processors; we do not store raw card numbers.

• Program and course data: assessment responses, coursework submissions, progress records, feedback, and communications with instructors or coaches.

• Communications: emails, chat messages, support tickets, survey responses, and any other content you send to us.

• Profile and preferences: profile photo, bio, time zone, notification preferences, and learning goals.

 

2.2 Information Collected Automatically

• Device and technical data: IP address, browser type and version, operating system, device identifiers, screen resolution, and language settings.

• Usage data: pages visited, features used, clickstream data, search queries within the platform, session duration, and referring URLs.

• Cookies and tracking technologies: we use cookies, pixel tags, web beacons, and similar technologies as described in Section 7 below.

• Log data: server logs capturing access times, error logs, and system events.

 

2.3 Information from Third Parties

• Payment processors (e.g., Stripe) may share transaction confirmation and fraud-screening data with us.

• Single sign-on providers (e.g., Google, Apple) may share your name, email, and profile photo when you choose to authenticate via those services.

• Marketing and analytics partners may provide aggregated or de-identified data to help us understand our audience.

• Referral sources: if you were referred by an affiliate or partner, we may receive your name and contact information from that party.

 

2.4 Sensitive Information

We do not intentionally collect sensitive personal information such as government-issued identification numbers, medical records, or financial account numbers beyond what is strictly necessary for billing. Do not submit sensitive information unless expressly requested.

 

3. How We Use Your Information

We use the information we collect for the following purposes, each of which rests on a valid legal basis (contractual necessity, legitimate interest, compliance with law, or your consent):

 

3.1 Service Delivery

• Creating and managing your account.

• Processing enrollment and payments for the BrainVaultAI 12 Week Cohort and any other programs.

• Delivering course content, live sessions, recordings, AI tools, and coaching resources.

• Tracking your progress and issuing certificates of completion.

• Providing customer support and responding to inquiries.

 

3.2 Communication

• Sending transactional messages: enrollment confirmations, payment receipts, schedule reminders, and account alerts.

• Sending program-related updates, curriculum changes, and important notices.

• With your consent, sending promotional emails, newsletters, and marketing communications. You may opt out at any time (see Section 9).

 

3.3 Improvement and Analytics

• Analyzing usage patterns to improve course design, platform features, and user experience.

• Conducting internal research and developing new programs.

• Generating aggregated, de-identified statistics that do not identify you personally.

 

3.4 Safety, Security, and Legal Compliance

• Detecting, investigating, and preventing fraudulent transactions, abuse, and security incidents.

• Enforcing our Terms of Service and other agreements.

• Complying with applicable laws, regulations, and legal processes, including responding to lawful government requests.

• Protecting the rights, property, and safety of the Company, our users, and the public.

 

3.5 Business Operations

• Processing refunds, chargebacks, and billing inquiries.

• Administering affiliate and referral programs.

• Evaluating potential mergers, acquisitions, or financing transactions (see Section 5.5).

 

4. Legal Bases for Processing (GDPR / EEA Users)

If you are located in the European Economic Area, United Kingdom, or Switzerland, we process your personal data under the following legal bases:

 

• Contractual necessity: processing required to perform the contract between you and us (e.g., delivering the program you purchased).

• Legitimate interests: processing necessary for our legitimate business interests (e.g., fraud prevention, security, product improvement), provided those interests are not overridden by your rights.

• Legal obligation: processing required to comply with applicable law (e.g., tax record-keeping).

• Consent: processing based on your freely given, specific, informed, and unambiguous consent (e.g., marketing emails). You may withdraw consent at any time without affecting the lawfulness of processing before withdrawal.

 

5. Disclosure of Your Information

We do not sell, rent, or trade your personal information for monetary compensation. We may share your information in the following circumstances:

 

5.1 Service Providers

We engage vetted third-party vendors who process data on our behalf under written data processing agreements. These include payment processors, email delivery services, video hosting platforms, learning management systems, cloud infrastructure providers, customer relationship management tools, and analytics services. These parties are contractually prohibited from using your data for any purpose other than providing services to us.

 

5.2 Coaches and Instructors

Program coaches and instructors have access to participant progress data, submissions, and communications to the extent necessary to deliver coaching, grade assignments, and provide feedback within the program.

 

5.3 Legal Requirements

We may disclose your information if required to do so by law, subpoena, court order, or governmental authority, or if we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request.

 

5.4 Protection of Rights

We may disclose information to enforce our Terms of Service, to investigate potential violations, or to protect the rights, property, or safety of the Company, our users, or the public.

 

5.5 Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, your personal information may be transferred to the acquiring entity. We will provide notice via email or prominent notice on our website before your information is transferred and becomes subject to a different privacy policy.

 

5.6 Aggregated or De-Identified Data

We may share aggregated or de-identified information that cannot reasonably be used to identify you with partners, advertisers, or the public for research, marketing, or other purposes.

 

6. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. Our general retention standards are:

 

• Account data: retained for the duration of your active account plus three (3) years after account closure.

• Transaction and billing records: retained for seven (7) years to comply with Florida and federal tax and accounting requirements.

• Program completion records and certificates: retained indefinitely unless you request deletion.

• Support communications: retained for two (2) years after resolution.

• Marketing consent records: retained for the duration of the marketing relationship plus three (3) years.

 

When data is no longer required, we delete or anonymize it in a secure manner. Backup copies may persist for up to ninety (90) days in encrypted archival storage before permanent deletion.

 

7. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience on our platform. Cookies are small text files placed on your device. We use the following types:

 

• Strictly necessary cookies: required for the platform to function (e.g., session authentication, shopping cart). These cannot be disabled.

• Performance and analytics cookies: help us understand how users interact with our Services (e.g., Google Analytics). Data collected is aggregated and anonymized where possible.

• Functionality cookies: remember your preferences (e.g., language, time zone, notification settings).

• Marketing and targeting cookies: used to deliver relevant advertisements and measure campaign effectiveness. These are only placed with your consent.

 

You may control cookie preferences through your browser settings or our cookie consent manager. Disabling certain cookies may affect the functionality of the Services. For more information, see your browser’s help documentation.

 

8. Data Security

We implement commercially reasonable administrative, technical, and physical safeguards designed to protect your personal information against unauthorized access, disclosure, alteration, or destruction. Our security measures include:

 

• Encryption of data in transit using TLS 1.2 or higher.

• Encryption of sensitive data at rest using AES-256 or equivalent standards.

• Role-based access controls limiting employee access to personal data on a need-to-know basis.

• Regular security assessments and vulnerability testing.

• Incident response procedures with mandatory breach notification timelines.

 

No method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security. If you believe your account has been compromised, contact us immediately at the address provided in Section 14.

 

9. Your Rights and Choices

Depending on your jurisdiction, you may have the following rights with respect to your personal information. We will respond to verified requests within thirty (30) days, or as required by applicable law.

 

9.1 Access and Portability

You may request a copy of the personal information we hold about you in a structured, commonly used, machine-readable format.

 

9.2 Correction

You may request that we correct inaccurate or incomplete personal information. You may also update most information directly within your account profile.

 

9.3 Deletion

You may request that we delete your personal information, subject to certain exceptions (e.g., where retention is required by law, for fraud prevention, or to fulfill a contract with you). Note that deletion of your account will result in loss of access to program materials and certificates.

 

9.4 Opt-Out of Marketing

You may unsubscribe from marketing emails at any time by clicking the “Unsubscribe” link in any marketing message or by contacting us at the address in Section 14. Transactional communications related to your active enrollment cannot be suppressed.

 

9.5 Restriction and Objection (EEA/UK Users)

You may request restriction of processing or object to processing based on legitimate interests. If you object to processing for direct marketing purposes, we will cease such processing immediately.

 

9.6 Withdrawal of Consent

Where processing is based on consent, you may withdraw that consent at any time. Withdrawal does not affect the lawfulness of processing prior to withdrawal.

 

9.7 California Privacy Rights (CCPA/CPRA)

California residents have the right to: (i) know the categories of personal information collected, the purposes for collection, and the categories of third parties with whom it is shared; (ii) delete personal information subject to certain exceptions; (iii) correct inaccurate personal information; (iv) opt out of the sale or sharing of personal information for cross-context behavioral advertising; and (v) non-discrimination for exercising privacy rights. We do not sell personal information as defined by the CCPA. To exercise California rights, contact us at the address in Section 14 or submit a request through our website.

 

9.8 Florida Privacy Rights

Florida residents may have additional rights under the Florida Digital Bill of Rights (FDBR) and other applicable Florida statutes. We process personal data in accordance with applicable Florida law. To exercise your rights under Florida law, please contact us using the information in Section 14.

 

10. Children’s Privacy

Our Services are not directed to individuals under the age of eighteen (18). We do not knowingly collect personal information from children under 18. If we become aware that we have inadvertently collected personal information from a child under 18, we will take prompt steps to delete such information. If you believe we have collected information from a minor, please contact us immediately at the address in Section 14.

 

11. Third-Party Links and Integrations

Our Services may contain links to third-party websites, tools, or AI platforms. We are not responsible for the privacy practices of those third parties. We encourage you to review the privacy policies of any third-party services you use in connection with your BrainVaultAI experience, including any AI tools, productivity software, or automation platforms recommended in the program curriculum. This Privacy Policy applies solely to information collected by Sheridan St of Florida LLC.

 

12. International Data Transfers

Sheridan St of Florida LLC is based in the State of Florida, United States. If you access our Services from outside the United States, your information will be transferred to, stored, and processed in the United States, where data protection laws may differ from those in your jurisdiction. For transfers from the EEA, UK, or Switzerland, we rely on appropriate safeguards such as Standard Contractual Clauses approved by the European Commission, or other lawful transfer mechanisms.

 

13. Changes to This Privacy Policy

We reserve the right to update or modify this Privacy Policy at any time. When we make material changes, we will notify you by: (i) posting the updated Policy on our website with a new “Last Updated” date; (ii) sending an email notification to the address associated with your account; and/or (iii) displaying a prominent notice within the platform. Your continued use of the Services after the effective date of the revised Policy constitutes your acceptance of the changes. If you do not agree to the revised Policy, you must discontinue use of the Services.

 

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

 

Sheridan St of Florida LLC

BrainVaultAI — Privacy Officer

Fort Lauderdale, Florida, United States

Email: [email protected]

Website: www.brainvaultai.com

 

For EEA or UK residents exercising data subject rights, please include “Data Subject Request” in the subject line of your email. We will respond within thirty (30) days of receipt of a verified request.

 

15. Entire Agreement

This Privacy Policy, together with our Terms of Service and any applicable program agreements, constitutes the entire agreement between you and Sheridan St of Florida LLC regarding the collection, use, and disclosure of your personal information. In the event of a conflict between this Policy and any other agreement, the terms of this Policy shall control with respect to privacy matters.

 

 

© 2026 Sheridan St of Florida LLC. All rights reserved.

Confidential  |  BrainVaultAI — 12 Week CohortPage