🚨 Are you tired of paying maintenance fees? GET OUT NOW — Free Consultation Available! START FREE REVIEW →
Nexus Law Group

Privacy Policy

This Privacy Policy explains what information we collect, how we use and store it, how we contact you by phone, text message, email, and AI-assisted communications, how our advertising and attribution technology works, and the privacy rights you have under U.S. federal and state law.

Last updated: June 11, 2026

Information We Collect

We collect the following categories of information:

Information you give us

  • Contact & identity data: name, email address, and phone number.
  • Inquiry details: resort or brand, ownership details, and any message or information you provide.
  • Consent records: the consent choices you make, the consent language shown to you, and your communication preferences.
  • Sensitive & financial information (clients only): if you become a client, we may collect, with your authorization, information such as date of birth, the last four digits of a Social Security number, mailing address, timeshare contract and ownership details, and payment information (such as card or bank details). We collect this only as needed to provide services and we store it encrypted.

Information we collect automatically

  • Device & technical data: IP address, browser type and user agent, device and screen characteristics, operating system, language, and time zone.
  • Usage & interaction data: pages viewed, referring URL, scroll depth, clicks, time on page, and similar engagement events.
  • Approximate location: city, region, and country derived from your IP address.
  • Advertising & attribution identifiers: click IDs and parameters such as Google gclid, Microsoft msclkid, Meta fbclid, and UTM campaign parameters.

How We Collect It

We collect information directly from you (through our forms, calls, texts, and emails); automatically through cookies and similar technologies (described below); from our hosting and server logs; through call- and text-delivery providers; and from advertising and analytics platforms that help us measure campaigns.

Cookies & DevBytes DNA

We use cookies, local storage, IndexedDB, ETag/cache identifiers, and similar first-party technologies. Our first-party attribution and consent-record system ("DevBytes DNA") connects a visitor session to a submitted inquiry so we can accurately attribute leads, maintain consent records, prevent fraud, and improve follow-up. After you make a consent choice on our cookie banner, these technologies may use device and browser signals, interaction events, and advertising identifiers as described here.

You can decline non-essential cookies and tracking through our banner. Essential security, fraud-prevention, and diagnostic logging may still occur as needed to operate and protect the site. We also honor recognized opt-out signals such as Global Privacy Control (GPC) — see "Your Choices" below.

How We Use Information

  • Respond to your consultation requests and route and manage your inquiry.
  • Contact you by phone, text message, AI-assisted communications, and email about your inquiry and related services (see the next section).
  • Measure and attribute advertising and landing-page performance.
  • Create and maintain consent records and audit logs.
  • Detect, investigate, and prevent fraud, spam, abuse, and security incidents.
  • Operate, maintain, and improve our CRM, services, and customer support.
  • Comply with legal obligations and enforce our Terms.

Calls, Text Messages, AI & Email

When you provide your phone number and consent, we and our authorized partners and service providers may contact you about your inquiry using live agents, autodialers, automated or prerecorded voice messages, SMS/MMS text messages, AI-generated or AI-assisted voice calls and text messages, and email. Where an AI-generated voice or message is used, it will be identified as such, consistent with FCC rules under the TCPA.

Consent is not a condition of purchase. Message and data rates may apply, and message frequency varies. You can opt out at any time by replying STOP to a text, requesting placement on our internal do-not-contact list, or emailing privacy@exitmyresort.com. Full SMS terms and consent details appear in our Terms of Service.

How We Share Information

We share information only as needed and do not sell it for money in the everyday sense. We may share with:

  • Service providers / processors that operate on our behalf — hosting, analytics, telephony and SMS delivery, AI calling/texting providers, email/SMTP, CRM, and similar — under contracts limiting their use of the data.
  • Advertising and measurement platforms (such as Google, Microsoft/Bing, and Meta) to measure conversions and improve campaigns. To protect your privacy, identifiers like email and phone are hashed before being used for enhanced conversion measurement.
  • Professional and legal partners involved in evaluating or providing the services you request.
  • Legal, safety, and compliance recipients when required by law, subpoena, or to protect rights, property, or safety.
  • Business transfers — in connection with a merger, acquisition, or sale of assets, subject to this Policy.

Some sharing with advertising platforms may be considered a "sale" or "sharing" for targeted advertising under certain state laws. You can opt out as described in "Your Choices" and "State-Specific Disclosures" below.

Advertising & Analytics Partners

Depending on configuration, this site may use Google Ads and Google Analytics, Microsoft Advertising (Bing UET), Meta Pixel, TikTok Pixel, Microsoft Clarity, and call-tracking tools. These partners may set their own cookies and process data under their own privacy policies. We use consent and hashing controls to limit data shared for measurement, and we honor GPC and cookie-banner opt-outs for non-essential advertising technologies.

Data Storage & Security

We use reasonable administrative, technical, and physical safeguards to protect your information. Sensitive personal and financial fields are encrypted at rest using AES-256-GCM, data is transmitted over encrypted TLS/HTTPS connections, and access to lead and client records is restricted to authorized personnel with audit logging. No method of transmission or storage is 100% secure, but we work to protect your information and to limit access to those who need it.

Data Retention

We retain inquiry records, consent proof, client records, and related data for as long as needed to provide services and to meet our legal, regulatory, accounting, audit, and security obligations, after which we delete or de-identify it. Non-lead tracking and analytics data may be anonymized or deleted on a shorter schedule. Retention periods vary by data type and applicable law.

Your Privacy Rights

Depending on where you live, you may have some or all of the following rights regarding your personal information:

  • Know / Access the categories and specific pieces of personal information we hold about you.
  • Correct inaccurate personal information.
  • Delete personal information we have collected.
  • Portability — obtain a copy of your information in a portable format.
  • Opt out of the "sale" or "sharing" of personal information and of targeted advertising.
  • Opt out of profiling in furtherance of decisions that produce legal or similarly significant effects.
  • Limit the use of sensitive personal information to permitted purposes.
  • Non-discrimination for exercising your rights, and the right to appeal a decision where state law provides one.

To exercise your rights, email privacy@exitmyresort.com or call (888) 750-5559, and include the email or phone number used in your submission so we can verify your identity and locate your record. You may use an authorized agent where permitted by law. We will respond within the timeframe required by applicable law.

State-Specific Disclosures

As of 2026, comprehensive consumer-privacy laws are in effect in California, Colorado, Connecticut, Delaware, Florida, Indiana, Iowa, Kentucky, Maryland, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Rhode Island, Tennessee, Texas, Utah, and Virginia, with more states following. Residents of these states may exercise the rights listed above to the extent the applicable law provides.

California (CCPA/CPRA)

California residents have the rights to know, delete, correct, and to opt out of the sale or sharing of personal information and the use of sensitive personal information, and the right to non-discrimination. We disclose the categories of information we collect, use, and share in this Policy. To opt out, use our cookie banner, a recognized opt-out preference signal (GPC), or the contact methods above. California's "Shine the Light" law and notice-at-collection requirements are addressed by this Policy.

Telephone consumer protection

In addition to federal TCPA rules, several states (for example, Florida and others) have their own telephone-solicitation and texting laws. We obtain prior express written consent before marketing calls or texts, honor opt-out requests, and maintain consent records as described above.

Your Choices & Global Privacy Control (GPC)

You can: decline non-essential cookies through our banner; reply STOP to opt out of texts; ask to be added to our internal do-not-call/do-not-text list; unsubscribe from emails using the link in any marketing email; and adjust browser settings to limit cookies. We honor recognized browser opt-out signals, including Global Privacy Control (GPC), as a valid request to opt out of sale/sharing and targeted advertising where required by law.

Children's Privacy

This site and our services are intended for adults and are not directed to children. We do not knowingly collect personal information from anyone under 18 (or under 16 where applicable). If you believe a minor has provided information, contact us and we will delete it.

Changes To This Policy

We may update this Privacy Policy from time to time. The "Last updated" date above reflects the most recent version. Material changes will be posted on this page and, where required, communicated to you.

Contact Us

For privacy questions or to exercise your rights, contact Nexus Law Group at privacy@exitmyresort.com or (888) 750-5559.

This page is a general template provided for informational purposes and should be reviewed and finalized by the firm's licensed counsel to confirm it reflects current law and the firm's actual data practices in each state where it operates.