Operum Group LLC

Privacy Policy

Version: 5. Published May 14, 2026 at operumgroup.com/privacy. Past versions are available at operumgroup.com/privacy/history.

Effective Date: May 14, 2026

Last Updated: May 14, 2026

Summary (Plain English)

This plain-English summary is provided for convenience only. The formal terms below are the legally binding policy. In the event of any conflict between this summary and the formal terms, the formal terms govern.

This is the privacy policy for Operum Group LLC (“we,” “our,” or “Operum Group”). It describes what information we collect about you, how we use it, who we share it with, and what choices you have.

Who we are. Operum Group is an operational and business consulting firm. We are not a law firm and do not provide legal advice.

Who this covers. This policy applies to visitors to operumgroup.com, people who submit forms to us, people who subscribe to our Self-Serve, Guided, or Fractional COO offerings, and people who join our marketing email list.

What we collect. Information you give us through forms (your name, email, firm, message), information your subscription generates (billing information through Stripe, member-space activity through Circle), and basic website analytics through Squarespace. We do not run third-party advertising or marketing pixels at this time.

Why we collect it. To deliver the services you signed up for, to communicate with you about your subscription, to send marketing communications you have opted into, to comply with our legal obligations, and to improve our website.

Who we share it with. Service providers who run parts of our operation — Stripe (billing), Circle (member space), Squarespace (website hosting), and our email service provider when we add one. We do not sell your personal information. We do not share your personal information for cross-context behavioral advertising.

Your choices. You can ask us what we have, ask us to correct it, ask us to delete it, ask us to give you a copy in a portable format, and opt out of marketing communications at any time. If we deny a request, you may appeal the denial within thirty (30) days. Subscribers can access their billing information through the Stripe Customer Portal. To request a copy of other personal information Operum Group holds about you, contact info@operumgroup.com.

How long we keep it. Subscriber data is retained through your active subscription plus up to 90 days afterward for billing and audit purposes. Form submission data from people who never become subscribers is retained for up to 12 months. Marketing list data is retained until you opt out. Billing and tax records are retained for the period required by law (typically seven years for federal tax records).

US only at launch. Operum Group’s services are currently offered to subscribers in the United States. We do not knowingly accept subscriptions from outside the United States.

Changes. We may update this policy. Material changes will be communicated by email to active subscribers and posted to operumgroup.com at least 30 days before they take effect. Past versions are available at operumgroup.com/privacy/history.

Questions. Email us at info@operumgroup.com.

The full policy follows.

1. Who We Are

Operum Group LLC is a Florida limited liability company (Florida Document Number L26000232689; EIN 42-2260021) providing operational and business consulting services to law firms. Our registered agent address is 7901 4th St N, STE 300, St. Petersburg, FL 33702. The contact email for privacy inquiries is info@operumgroup.com.

Operum Group is an operational and business consulting firm. Operum Group is not a law firm, does not practice law, and nothing in this Policy or in any communication from Operum Group constitutes legal advice.

2. Scope of This Policy

This Privacy Policy applies to:

  • Visitors to operumgroup.com and any related Operum Group subdomain (including members.operumgroup.com and webhooks.operumgroup.com)
  • Individuals who submit forms to Operum Group, including the contact form, the cancellation form at operumgroup.com/cancel, any strategy-session request form, and any future newsletter or lead-magnet signup form
  • Subscribers to Operum Group’s Self-Serve subscription products (Foundation, Practitioner, Cohort)
  • Seat-holders added to a Cohort-tier subscription under Section 8.3 of the Subscription Agreement (up to five leadership-team members at the Subscriber's firm); seat-holder personal information is treated as Subscriber personal information under this Policy for all purposes, including data collection, use, sharing, retention, and exercise of rights
  • Clients engaged under a Master Services Agreement or Statement of Work (Guided and Fractional COO)
  • Members of the Operum Group marketing email list

This Privacy Policy does not apply to third-party websites linked from operumgroup.com or to the privacy practices of Operum Group’s service providers, each of which is governed by its own privacy policy.

For clients engaged under a Master Services Agreement or Statement of Work, that agreement governs the handling of any confidential business information shared in the course of the engagement to the extent it conflicts with this Policy. This Policy governs personal information about individuals (as defined above) in all cases.

3. Information We Collect

3.1 Information You Provide Directly

When you interact with Operum Group, you may provide the following categories of information:

  • Contact information: name, email address, telephone number, firm name, job title, and any other information you choose to include in a form submission.
  • Subscription information: at Stripe Checkout, your billing email and the payment information required to process the transaction. Operum Group does not store payment card numbers; payment processing is handled by Stripe and is governed by Stripe’s privacy policy and PCI compliance posture.
  • Member-space information: when you access the Operum Group member space at members.operumgroup.com (currently delivered through Circle), your account profile, your participation in member discussions and sessions, and any content you contribute to the member space.
  • Cancellation information: when you submit the cancellation form at operumgroup.com/cancel, the email address associated with your subscription and any reason you choose to share.
  • Marketing communications information: when you sign up for the Operum Group marketing email list, your email address and any preferences you indicate.
  • Communication content: the content of emails, messages, support requests, and other communications you send to Operum Group.

3.2 Information Collected Automatically

When you visit operumgroup.com or use the member space, certain information is collected automatically:

  • Squarespace built-in analytics: Operum Group’s website is hosted on Squarespace. Squarespace collects visitor analytics (page views, referring source, browser type, device type, approximate geographic location based on IP address) using first-party cookies. Operum Group has not enabled, and does not currently use, any third-party analytics provider (Google Analytics, Hotjar, Microsoft Clarity, or any equivalent) on operumgroup.com.
  • Squarespace essential cookies: cookies required to operate the site (session, security, form submission). These cannot be disabled without breaking site functionality.
  • Circle member-space analytics: Circle collects activity information about your interactions with the member space (session login times, content accessed, posts made). This information is governed by Circle’s privacy policy.
  • Stripe payment processing data: Stripe collects information necessary to process payments and detect fraud. This information is governed by Stripe’s privacy policy.
  • Cloudflare Worker logs: when you submit the operumgroup.com/cancel form, the request is processed by a Cloudflare Worker that logs the request for operational and audit purposes. Logs are retained for 24 hours by default. Operum Group does not currently configure longer-term audit log retention beyond Cloudflare’s default settings.

3.3 Marketing and Advertising Trackers

Operum Group does not currently install or operate any third-party marketing or advertising tracking pixels (LinkedIn Insight Tag, Meta Pixel, Google Ads, TikTok Pixel, or any equivalent) on operumgroup.com. If Operum Group adds any such tracker in the future, this Policy will be updated and communicated to active subscribers by email, and posted to operumgroup.com/privacy/history, at least thirty (30) days before the change takes effect.

3.4 California CCPA/CPRA Category Disclosure

For California residents, the categories of personal information we collect, as defined under Cal. Civ. Code § 1798.140, include:

  • Identifiers: name, email address, telephone number, billing email.
  • Professional or employment-related information: firm name, job title.
  • Commercial information: subscription tier, billing history.
  • Internet or other electronic network activity information: Squarespace analytics data, member-space activity logs, Cloudflare Worker logs.
  • Communications content: emails and messages submitted to Operum Group.

3.5 Sensitive Personal Information

Operum Group does not knowingly collect, use, or disclose sensitive personal information as defined under the California Consumer Privacy Act/California Privacy Rights Act, the Virginia Consumer Data Protection Act, the Colorado Privacy Act, or any other applicable state privacy law. Where a consumer voluntarily includes information that would otherwise constitute sensitive personal information in an inbound email or electronic communication, including a contact-form submission or cancellation-form submission, directed to Operum Group, the content of that communication is treated as ordinary personal information under this Policy in Operum Group's capacity as the intended recipient of the communication (Cal. Civ. Code § 1798.140(ae)(1)(E)), not as sensitive personal information.

4. How We Use Information

Operum Group uses the information described above for the following purposes:

  • To deliver the services you have subscribed to or requested, including provisioning member-space access, delivering recurring content (the Monthly Operating Brief, Quarterly Working Webinar, and Quarterly Cohort Townhall), processing billing, and providing customer support.
  • To communicate with you about your subscription, including transactional notifications (billing receipts, scheduling notices, member-space announcements, cancellation confirmations).
  • To send marketing communications you have opted into, if you join the Operum Group marketing email list. You may opt out of marketing communications at any time through the unsubscribe link in each marketing email.
  • To respond to inquiries submitted through the contact form or sent to info@operumgroup.com.
  • To process cancellation requests submitted through the operumgroup.com/cancel form or by email.
  • To comply with legal obligations, including tax reporting, recordkeeping requirements, and responses to lawful legal process.
  • To improve operumgroup.com and the member space, using website and member-space analytics from Squarespace and Circle.
  • To protect the integrity of the service, including fraud detection, abuse prevention, and enforcement of the Subscription Agreement.

Operum Group collects only the personal information reasonably necessary for the purposes described above and does not use personal information in ways incompatible with those purposes without prior notice.

Operum Group processes personal information on the basis of: (a) contract performance, for information necessary to deliver subscription services and to enforce the Subscription Agreement; (b) legal obligation, for records required by tax and regulatory law; (c) legitimate interest, for website analytics, fraud prevention, and service improvement; and (d) consent, for marketing communications. This description is provided as a transparency measure and does not constitute a claim of compliance with any jurisdiction’s legal-basis requirements.

5. How We Share Information

Operum Group shares personal information only as described in this Section 5.

5.1 Service Providers

Operum Group engages the following third-party service providers to operate parts of its business. These providers process information on Operum Group’s behalf and under contractual confidentiality and data protection obligations:

  • Stripe, Inc. — payment processing and subscription management. See stripe.com/privacy for Stripe’s privacy practices.
  • Circle.so, Inc. — member-space hosting (member-space content, profile information, member discussion activity). See circle.so/privacy for Circle’s privacy practices.
  • Squarespace, Inc. — website hosting (operumgroup.com), form submission processing, built-in website analytics. See squarespace.com/privacy for Squarespace’s privacy practices.
  • Google LLC (Google Workspace) — Operum Group’s business email infrastructure (info@operumgroup.com is hosted as a Google Workspace alias).
  • Cloudflare, Inc. — operates the cancellation request webhook at webhooks.operumgroup.com.
  • Email service provider (TBD at launch). When Operum Group launches its marketing email list, an email service provider will process marketing-list emails. This Policy will be updated to identify the provider before the provider begins processing any personal information, whether for marketing or transactional purposes.

If Operum Group adds a service provider after this Policy is published, the addition will be communicated by email to active subscribers and reflected in an updated version of this Policy posted to operumgroup.com/privacy/history, at least thirty (30) days before the new provider begins processing personal information.

5.2 Legal Compliance

Operum Group may disclose personal information when it has a good-faith belief that disclosure is required to comply with applicable law, regulation, valid legal process (subpoena, court order, or similar), or governmental request, or to protect the rights, property, or safety of Operum Group, its subscribers, or others.

To the extent permitted by law, Operum Group will attempt to provide notice to affected subscribers before disclosing personal information in response to legal process.

5.3 Business Transfers

If Operum Group is involved in a merger, acquisition, financing, sale of all or a substantial portion of its assets, or similar corporate transaction, personal information may be transferred to the acquiring or successor entity. Operum Group will provide notice by email to active subscribers before personal information is transferred and becomes subject to a materially different privacy policy.

5.4 No Sale of Personal Information

Operum Group does not sell personal information for monetary or other valuable consideration, and does not intend to do so. Any future change to this practice will be disclosed in a material update to this Policy under Section 12.

Because Operum Group does not sell or share personal information for cross-context behavioral advertising, Operum Group is not required to provide a “Do Not Sell or Share My Personal Information” link under Cal. Civ. Code § 1798.135.

5.5 No Cross-Context Behavioral Advertising

Operum Group does not share personal information with third parties for the purpose of cross-context behavioral advertising. Operum Group does not currently operate any retargeting, advertising-network, or behavioral-advertising programs.

6. Cookies and Similar Technologies

Operum Group uses two categories of cookies and similar technologies on operumgroup.com:

  • Essential cookies required to operate the site, including session cookies, security cookies, and form-submission cookies. These are set by Squarespace and cannot be disabled without breaking site functionality.
  • First-party analytics cookies set by Squarespace’s built-in analytics, which collect visitor information for Operum Group’s own use. Operum Group has not enabled any third-party analytics on operumgroup.com.

Operum Group does not use advertising cookies, marketing pixels, or third-party tracking on operumgroup.com at this time. Most browsers allow you to refuse cookies through browser settings. Refusing cookies may affect your ability to use parts of operumgroup.com.

The member space at members.operumgroup.com (delivered through Circle) uses cookies and similar technologies as described in Circle’s privacy policy and cookie policy.

Global Privacy Control and Do Not Track Signals. Operum Group recognizes and honors Global Privacy Control (GPC) and similar universal opt-out preference signals transmitted by a consumer's browser or device. Operum Group does not engage in targeted advertising, the sale of personal data, cross-context behavioral advertising, or profiling that produces legally or similarly significant effects; accordingly, the receipt of a GPC signal does not change the processing activities Operum Group conducts, but Operum Group will record the signal as a confirmation of the consumer's preference and will continue to refrain from any of the foregoing activities. If Operum Group adds any processing activity for which a GPC opt-out would be operative in the future, Operum Group will update this Policy in accordance with Section 12 and implement recognition through an independent mechanism if its website platform does not natively process the signal.

7. Your Rights and Choices

Subscribers and visitors have the following rights with respect to their personal information:

  • Access. You may request a copy of the personal information Operum Group holds about you.
  • Correction. You may request that Operum Group correct inaccurate personal information.
  • Deletion. You may request that Operum Group delete personal information, subject to retention requirements imposed by law (e.g., billing and tax records).
  • Portability. You may request a copy of your information in a structured, commonly used format.
  • Object to processing / withdraw consent. You may object to the processing of your personal information for marketing purposes and withdraw any consent you have given for processing based on consent.
  • Opt-out of marketing. You may opt out of Operum Group’s marketing communications at any time, either through the unsubscribe link in each marketing email or by emailing info@operumgroup.com. Opting out of marketing communications does not affect transactional communications (billing, scheduling, member-space announcements) necessary to deliver the subscription.

Marketing email list — opt-in basis. Operum Group’s marketing email list is opt-in only. No individual is added to the marketing list without affirmatively requesting to be included. Operum Group will process opt-out requests within ten (10) business days of receipt. Following a valid opt-out request, Operum Group will not send commercial email to the opted-out address. A suppression record will be retained as described in Section 8. Each commercial email sent by Operum Group will include Operum Group’s valid physical postal address as required by applicable law.

No right to opt-out of sale or sharing — none applicable. Because Operum Group does not sell personal information or share personal information for cross-context behavioral advertising as described in Section 5, there is currently no personal information about which to exercise a right to opt out of sale or sharing.

Non-discrimination. Operum Group will not discriminate against you for exercising any of these rights.

To exercise any of these rights, contact info@operumgroup.com. Operum Group will respond to verifiable requests within thirty (30) days. Operum Group may extend the response period by an additional thirty (30) days where necessary due to the complexity or volume of requests, in which case Operum Group will notify you of the extension and the reason within the initial response period. Operum Group may need to verify your identity before fulfilling a request — typically by confirming the request from the email address associated with your account.

Cohort seat-holders — separate data subjects. For Cohort-tier seat-holders exercising rights under this Section, Operum Group will process the request directly with the seat-holder based on their individual identity verification, consistent with the seat-holder’s status as a separate data subject.

Appeal mechanism. If Operum Group denies a rights request in whole or in part, Operum Group will notify you of the reason for the denial within the response period. You may appeal the denial by emailing info@operumgroup.com with the subject line “Privacy Rights Appeal” within thirty (30) days of receiving the denial. Operum Group will respond to a timely appeal within sixty (60) days of receipt. If your appeal is denied, you may contact your state attorney general or applicable data protection authority.

US residents in states with applicable privacy laws (currently including but not limited to California, Colorado, Connecticut, Delaware, Indiana, Iowa, Montana, New Hampshire, New Jersey, Oregon, Tennessee, Texas, Utah, and Virginia) have additional rights under state law. Operum Group will honor those rights to the extent applicable. To exercise a state-law right, identify your state of residence in your request to info@operumgroup.com.

Texas residents. This paragraph supplements the state-law commitment above and applies unconditionally to Texas residents, regardless of any threshold-based applicability analysis. The Texas Data Privacy and Security Act (Tex. Bus. & Com. Code § 541.001 et seq.) does not impose annual-revenue or consumer-volume thresholds on its applicability. Operum Group will honor all rights conferred by the TDPSA on Texas residents who interact with Operum Group’s services. To exercise a TDPSA right, identify your state of residence as Texas in your request to info@operumgroup.com.

Oregon residents. Oregon residents may request a list of the specific third parties to which Operum Group has disclosed their personal information. To make this request, contact info@operumgroup.com and identify your state of residence as Oregon.

Operum Group reviews this list periodically as new state privacy laws take effect. The most current version of this list is available at operumgroup.com/privacy. If your state is not listed and you believe applicable state law grants you privacy rights, please contact us at info@operumgroup.com and Operum Group will evaluate your request under applicable law.

8. Data Retention

Operum Group retains personal information only as long as needed for the purposes described in this Policy, plus the period required by applicable law:

  • Subscriber account information and member-space activity: retained for the duration of the active subscription plus up to ninety (90) days after termination, consistent with Section 8.6 of the Subscription Agreement.
  • Form submission information from individuals who do not become subscribers: retained for up to twelve (12) months from the date of the submission, after which it is deleted unless the individual has separately joined the marketing email list or otherwise consented to longer retention.
  • Marketing email list: retained until the individual opts out, after which the email address is removed from the active marketing list (a suppression record will be retained to prevent re-sending).
  • Billing, tax, and accounting records: retained for the period required by federal and Florida law (typically seven years for tax records).
  • Cancellation request logs (Cloudflare Worker): retained for 24 hours by default. Operum Group does not currently configure longer-term audit log retention beyond Cloudflare’s default settings. Where a Subscriber voluntarily submits a cancellation reason in the free-text field of the operumgroup.com/cancel form, the reason text is written to the corresponding Stripe subscription metadata and retained on the same billing, tax, and accounting record schedule described in the bullet above (typically seven years per federal and Florida law).

When Operum Group fulfills a deletion request, Operum Group will delete personal information within its direct control and will request deletion from its service providers where contractually feasible. Operum Group cannot guarantee the deletion of information held in service providers’ systems where those providers’ own legal obligations require retention (e.g., Stripe’s fraud prevention and financial recordkeeping obligations, or Circle’s retention of member-space content).

Operum Group may retain de-identified or aggregated information indefinitely; such information no longer reasonably identifies any individual.

9. Security

Operum Group implements reasonable administrative, technical, and physical safeguards designed to protect personal information against unauthorized access, alteration, disclosure, and destruction. These safeguards include:

  • Encrypted transmission of personal information (HTTPS for operumgroup.com and the member space)
  • Strong password requirements and multi-factor authentication on all administrative accounts
  • Access controls that limit personal information to personnel and service providers who need it to perform their functions
  • PCI-compliant payment processing through Stripe (Operum Group does not store payment card numbers directly)

These safeguards are reviewed and updated as Operum Group’s operations and industry standards evolve. The enumeration above reflects Operum Group’s current posture as of the Effective Date.

No system is perfectly secure. Operum Group cannot guarantee that personal information will never be accessed, used, or disclosed in a manner inconsistent with this Policy.

If a security incident occurs that requires notification under applicable law, Operum Group will notify affected individuals as promptly as practicable and in any event within the timeframe required by applicable law (under the Florida Information Protection Act, Fla. Stat. § 501.171(4)(a), this is within thirty (30) days of determining that unauthorized access to personal information has occurred). Notifications will include, at a minimum, the date or estimated date range of the incident, a description of the personal information accessed or reasonably believed to have been accessed, and contact information for inquiries, consistent with Fla. Stat. § 501.171(4)(e). If a breach affects five hundred (500) or more individuals in Florida, Operum Group will provide notice to the Florida Department of Legal Affairs as required under Fla. Stat. § 501.171(3)(a)-(b).

10. Children

Operum Group’s services are intended for business use by adult professionals (typically law firm owners, managing partners, and operations leaders). Operum Group does not knowingly collect personal information from individuals under the age of eighteen (18). If Operum Group becomes aware that personal information of an individual under 18 has been collected, Operum Group will delete that information.

Operum Group’s services are not directed at children under the age of thirteen (13), and Operum Group does not knowingly collect personal information from children under 13 within the meaning of the Children’s Online Privacy Protection Act (COPPA), 15 U.S.C. § 6501 et seq. If Operum Group becomes aware that a child under 13 has submitted personal information, Operum Group will delete that information promptly.

11. International Users

Operum Group’s services are currently offered to subscribers and visitors located in the United States. Operum Group does not knowingly accept subscriptions from individuals or firms located outside the United States, and operumgroup.com is not directed at individuals located in the European Economic Area, the United Kingdom, Canada, or other jurisdictions with comprehensive data protection regimes that may be more restrictive than US law.

If Operum Group expands its services to subscribers in other jurisdictions, this Policy will be updated to address the additional disclosures and rights required under those jurisdictions’ laws (including the EU General Data Protection Regulation, the UK GDPR, and the Personal Information Protection and Electronic Documents Act in Canada).

If you are visiting operumgroup.com from outside the United States, you are doing so at your own direction. Operum Group’s services are not offered to individuals or entities located outside the United States, and any personal information submitted from outside the United States will be processed in the United States under US law.

12. Updates to This Policy

Operum Group may update this Privacy Policy from time to time. Material updates will be communicated by email to subscribers and posted to operumgroup.com at least thirty (30) days before they take effect. Non-material updates (typographical corrections, clarifying edits, updated contact information) take effect immediately on posting.

A version history of this Policy is maintained at operumgroup.com/privacy/history. The version of this Policy in effect at the time you accept the Subscription Agreement (or, in the case of a renewal, at the time of renewal) is the version that binds you until updated. This mechanism is parallel to Section 8.7 of the Subscription Agreement.

A material update to this Privacy Policy that would constitute a “material amendment” under Section 14.2 of the Subscription Agreement (an update that increases your payment obligations (other than price changes that take effect at renewal under Section 7.5 of the Subscription Agreement), reduces the Deliverables, materially limits your rights or remedies, or materially expands your obligations or liability) will not take effect during your active Minimum Term unless you affirmatively accept the update in writing.

13. Contact Us

For privacy questions, requests, or concerns, contact:

Operum Group LLC c/o Northwest Registered Agent LLC 7901 4th St N, STE 300 St. Petersburg, FL 33702 info@operumgroup.com operumgroup.com

For rights requests, see Section 7 for response timelines and required information.