GDPR Policy

Companies featured here may provide compensation for click throughs. This is how I maintain free research for consumers. My full disclosure of who I invested with is on this page for transparency.

Tim Schmidt By Tim Schmidt Sr.
Accredited Investor and Gold IRA Specialist

At Best Gold IRA Company (“we”, “us”, “our”), we are committed to protecting your privacy and handling your personal data in a transparent, lawful, and secure manner. This General Data Protection Regulation (GDPR) Policy explains how we collect, use, and protect the personal data of individuals located in the European Economic Area (EEA) and the United Kingdom when they visit our website https://www.bestgoldiracompany.org/ (“Website”).

1. Our Commitment to Data Protection

We comply with the EU General Data Protection Regulation (Regulation (EU) 2016/679) (“GDPR”) and, where applicable, the UK GDPR.
We process personal data fairly, lawfully, and transparently, and only for legitimate purposes.

2. Data We Collect

We may collect and process the following categories of personal data:

  • Contact Information: name, email address, phone number, etc.

  • Technical Data: IP address, browser type, operating system, and cookies (see our Cookie Policy).

  • Usage Data: how you interact with our Website, pages visited, time spent, and other analytical information.

  • Communication Data: any correspondence you send us, including inquiries through contact forms or email.

We do not intentionally collect or process sensitive personal data unless explicitly provided with consent.

3. How We Use Your Personal Data

We use your data for the following lawful purposes:

  • To operate and maintain our Website

  • To respond to inquiries, requests, or messages

  • To provide information about our services and products

  • To improve user experience and website performance

  • To comply with legal obligations

  • To send marketing communications (only where consent has been given)

  • To detect, prevent, and address technical issues or fraudulent activity

4. Lawful Basis for Processing

We process personal data under one or more of the following legal bases:

  • Consent – when you have given explicit permission (e.g., subscribing to a newsletter)

  • Contractual necessity – to fulfill an agreement or provide requested services

  • Legal obligation – to comply with applicable laws or regulations

  • Legitimate interests – to improve our services, maintain security, or prevent misuse of our Website

5. Data Retention

We retain personal data only as long as necessary for the purposes stated above, or as required by law.
When personal data is no longer needed, it is securely deleted or anonymized.

6. Sharing and Disclosure of Data

We do not sell or rent your personal information.
However, we may share your data with:

  • Service Providers who perform services on our behalf (e.g., hosting, analytics, email delivery).

  • Legal authorities if required by law or in response to valid legal processes.

  • Business transfers, in case of merger, acquisition, or sale of assets (your data may be transferred to the new entity).

All third-party processors are bound by confidentiality and GDPR-compliant data protection agreements.

7. International Data Transfers

If your personal data is transferred outside the EEA or UK (for example, to servers in the United States), we ensure that adequate safeguards are in place—such as Standard Contractual Clauses (SCCs) or equivalent legal mechanisms—to protect your data to the GDPR standard.

8. Your Rights Under GDPR

You have the following rights regarding your personal data:

  • Right to Access – You can request a copy of your personal data.

  • Right to Rectification – You can request correction of inaccurate or incomplete data.

  • Right to Erasure (“Right to be Forgotten”) – You can request deletion of your personal data under certain conditions.

  • Right to Restrict Processing – You can request that we limit how we process your data.

  • Right to Data Portability – You can request that your data be transferred to another controller.

  • Right to Object – You can object to processing based on legitimate interests or for direct marketing.

  • Right to Withdraw Consent – Where processing is based on consent, you can withdraw it at any time.

To exercise these rights, please contact us (see Section 11 below). We may require verification of your identity before responding to your request.

9. Data Security

We use appropriate technical and organizational measures to protect personal data against unauthorized access, alteration, disclosure, or destruction.
These include encryption, firewalls, secure servers, and limited access controls.
However, no online system is completely secure, and users share information at their own risk.

10. Automated Decision-Making

We do not use personal data for automated decision-making or profiling that has legal or significant effects on individuals.

11. Contact Information

For any questions, data requests, or complaints regarding this GDPR Policy or our data practices, please contact us:

Best Gold IRA Company
Website: https://www.bestgoldiracompany.org/
Email: hello@bestgoldiracompany.org
Address: 135 Weston Road, Suite 144, Weston, FL 33326
Phone: 954-494-9217

If you are located in the EEA or UK and are unsatisfied with our response, you also have the right to lodge a complaint with your local Data Protection Authority (DPA).

12. Updates to This Policy

We may update this GDPR Policy periodically to reflect changes in our data processing practices or legal requirements.
The revised version will be posted on this page with a new “Last Updated” date.
We encourage you to check this page regularly for updates.