Privacy Policy

Home
Privacy Policy

Privacy Policy for Top Level Benefits 

Effective Date: August 13, 2025

Top Level Benefits (referred to as “Company,” “we,” “us,” or “our”), operates the website www.toplevelbenefits.com (“Site”). This Privacy Policy explains how we collect, use, share, and protect personal information when you use our Site and services. By using our Site, you agree to the practices described in this Privacy Policy. Our services are intended for adults and businesses, not for children under 13 (see Children’s Privacy below). If you have any questions or requests regarding this Policy, please contact us using the information in the Contact Information section.

Information We Collect

We collect various types of information from and about users of our Site:

  • Information You Provide: When you fill out forms, contact us, or use our services, you may give us personal information such as your name, email address, phone number, job title, and employer or company name. You might also provide details related to your employer (e.g. company size, industry) or any inquiries you submit (for example, information about the benefits or Section 125 plans you are interested in). Any communication with us (emails, form messages, feedback) may include whatever information you choose to share. Please only provide personal data that you have the right to provide.

     

  • Information Collected Automatically: When you visit our Site, we automatically collect certain data about your device and how you use the Site, through cookies, pixels, and similar tracking technologies. This can include your device type, browser type, operating system, and IP address (which may give a general location like city or state). We also gather website usage information such as pages you viewed, the time and date of visits, the page you came from, and your interactions on the Site. Tracking tools may assign unique IDs or drop cookies that log actions (for example, recording if you clicked an ad or filled out a form). We use analytics services (like Google Analytics) to collect data on how long you stay on pages and what links you click. This automatically collected data helps us understand and improve how our Site is used.

     

  • Information from Third Parties: In general, we collect information directly from you or through your use of the Site. We do not usually obtain personal data from third-party sources without your knowledge. However, if you were referred to our Site by a marketing partner or referral link, we might receive a code or referral identifier that helps us understand how you found us (this generally doesn’t include personal details). If you engage with one of our partner service providers (such as a Section 125 plan provider) through us, that provider might share certain information back to us (for example, that you signed up for a plan or feedback on the process). We treat any information from third parties with the same care as information you give us directly.

     

How We Use Your Information

We use the information we collect for the following purposes:

  • To Provide Services and Respond to Requests: We use your information to operate our business and deliver the services you request. For example, if you fill out a form seeking a Section 125 plan or other benefits information, we will use the details you provided (like your contact information, company name, and benefits needs) to connect you with appropriate third-party partners and to facilitate setting up the plan. In other words, we process your data to fulfill the purpose for which you submitted it. This includes sending your inquiry to our trusted partners who can assist with Section 125 plans and making sure they have the details needed to provide you with quotes or information.

     

  • To Communicate with You: We may use your contact details (email, phone number) to contact you about your inquiries, requests, or account. This means if you ask a question or request a quote, we will reach out with answers or updates. We also might send confirmations when you submit forms and notify you of important information related to the services (for example, status updates, or changes to our terms or this Privacy Policy). In short, we’ll use your data to respond to you and keep you informed of matters related to your use of our Site and services.

     

  • Marketing and Offers: We may use your information to send you promotional content or recommendations we believe could be of interest to you, if it aligns with your preferences and applicable law. For instance, if you provide your email to learn about benefit plans, we might send newsletters or tips about optimizing employee benefits or let you know about new services we offer. We do not bombard you with marketing – and you can always opt out (unsubscribe instructions will be in any marketing email, or you can contact us to be removed from our mailing list). We will not send you marketing communications if you tell us not to. (Note: Non-marketing communications, such as those about an ongoing service or policy update, may still be sent as needed.)

     

  • Advertising and Retargeting: We (or our advertising partners) may use cookies and tracking pixels to show you targeted advertisements on other platforms. For example, if you visited our Site or showed interest in our services, you might later see an advertisement for Top Level Benefits or related services on sites like Facebook or LinkedIn. This kind of retargeting uses data about your visit to tailor the ads you see, so they’re more relevant to you. We also use information like which ad you clicked or which campaign brought you to our Site to measure the effectiveness of our advertising (this helps us understand what marketing efforts work). These activities involve analyzing usage data and may use automated processes to identify what content or offers might interest you.

     

  • Analytics and Personalization: We analyze how users interact with our Site and services in order to improve them. For example, we look at aggregated usage patterns to fix navigation issues or decide what new features to develop. We may also employ AI-based data analysis tools to gain insights from usage data or to personalize your experiencevalidity.com. This could include using algorithms to recommend content, or to automatically route your inquiry to the best resource. Any AI or automated decision tools we use are intended to enhance your experience and our services, not to make adverse decisions about you.

     

  • Legal Compliance and Protection: We may use your information as necessary to comply with our legal and regulatory obligations. For instance, we might retain transaction records for tax and accounting purposes, or use your data to fulfill reporting requirements. We also may use and disclose information as needed to protect our rights, enforce our Terms of Service, prevent fraud or cyber attacks, or comply with law enforcement requests. This means if we are required by law to produce records (such as a subpoena) or if we need to investigate potential fraud, your information could be used or shared for those purposes (see Sharing Your Information below for more on such disclosures).

     

Note: If we intend to use your personal information for any purpose materially different from the above, we will update this Privacy Policy or seek your consent as required by law. We will not use your data in new ways that are incompatible with these purposes without notifying you.

Cookies and Tracking Technologies

Like most websites, we use cookies and similar tracking technologies to improve functionality, analyze usage, and support marketing. Cookies are small text files placed on your device that remember your preferences and activities on our Site. For example, cookies help us keep you logged in (if applicable), remember form inputs, or understand whether you are a new or returning visitor. You can control cookies through your browser settings – you have the ability to refuse or delete cookies. Please note that if you disable cookies, some features of our Site may not function properly.

We also use pixels and tags – pieces of code on our Site (sometimes referred to as tracking pixels or “Super Pixel” technology) – that communicate with third-party platforms. These include tools such as Google Analytics (for site analytics) and advertising pixels from Facebook (Meta), LinkedIn, and other platforms. For example, we have implemented the Facebook/Meta Pixel and LinkedIn Insight Tag on our Site to help us measure ad conversions and build custom audiences for our ads. These pixels allow those platforms to note that you visited our Site and to possibly match site usage information with your profile on their service, so that, for instance, Facebook can help us show you a relevant ad later. The data collected via these trackers may include information like which pages you visited, actions you took on the Site, or technical details about your session. This information is used for analytics and advertising purposes, as described in How We Use Your Information.

  • Google Analytics: We use Google Analytics to collect information about how visitors use our Site (e.g., which pages are viewed, how long users stay, how they arrived at our Site). Google Analytics uses cookies and similar technologies to generate reports for us. The information collected is generally aggregated and does not identify you personally. It helps us understand user behavior and improve our Site’s performance. Google may also collect your IP address (truncated or anonymized in some regions). If you wish to opt out of Google Analytics tracking, Google provides an Opt-Out Browser Add-on you can install.

     

  • Advertising Cookies/Pixels: We use advertising partners (like Google Ads, Facebook/Meta, LinkedIn, and others) that set cookies or pixels on your device when you visit our Site. These trackers help deliver ads that are more relevant to you on those platforms and elsewhere. For example, the Facebook and LinkedIn pixels allow us to re-target visitors with ads on Facebook or LinkedIn, and to measure when an ad results in a user action on our Site (such as filling a form). Similarly, if we use Google advertising cookies, they help show our ads on other sites you browse. These third-party tools may collect device identifiers and usage data under their own privacy policies.

     

Your Choices (Cookies & Ads): You can control or limit the use of cookies and trackers. Most browsers let you refuse new cookies or delete existing ones. You can also usually opt out of interest-based advertising through industry programs. For example, you can visit the Network Advertising Initiative (NAI) or Digital Advertising Alliance (DAA) websites to opt out of many advertising cookies from participating companies. Additionally, specific platforms like Facebook and LinkedIn offer privacy settings where you can adjust your ad preferences to limit targeted ads. Keep in mind, opting out of targeted ads doesn’t mean you won’t see any ads – you will, but they may be less tailored to your interests.

Our Site currently does not respond to “Do Not Track” signals from web browsers, because there is no consistent industry standard for DNT signals yet. If a universal standard for DNT is adopted in the future, we will revisit our practices. In the meantime, you can use the opt-out methods described above to control personalized advertising and tracking.

Sharing Your Information

We understand your personal information is important, and we share it only in the ways described here or as otherwise disclosed to you. We do not sell your personal data to unrelated third parties for their own marketing, and we only share data with others to operate our business, to provide you with services, or as required by law. The types of third parties with whom we may share information include:

  • Trusted Partner Service Providers: A core aspect of our service is connecting you with third-party partners who provide Section 125 plans or related business benefits services. When you request information or services through our Site, we share relevant details with these partners so they can assist you. For example, if you fill out a form on our Site to learn about Section 125 plans, we might forward your contact information, employer details, and the specifics of your request to one or more vetted plan providers or benefits administrators. These partners use your information to reach out to you with quotes or information about the services you inquired about. We share your data with such third parties only to fulfill your request and facilitate the services you asked for. Our partners are expected to handle your information responsibly and in accordance with their own privacy policies. (We encourage you to review any partner’s privacy policy when engaging with them.)

     

  • Service Providers (Vendors): We employ other companies and individuals to perform functions on our behalf in support of our operations. This includes hosting our website and databases, providing IT infrastructure, sending out emails or other communications, analyzing data, marketing our services, and providing customer service. These third-party service providers are given access to personal information only as needed to perform their services for us, and they are contractually obligated to protect it and use it only for those purposes. Examples include cloud hosting services, email delivery services, analytics providers (such as Google Analytics), or advertising networks that distribute our ads (such as Facebook/Meta or LinkedIn, via the tracking pixels integrated on our Site). We require all service providers to safeguard personal data according to this Policy and applicable law.

     

  • Business Transfers: If our Company ever undergoes a business transaction such as a merger, acquisition, corporate reorganization, or sale of assets, your information may be transferred to the successor or new owner as part of that deal. For instance, if another company acquires Top Level Benefits or its parent entity, the personal information we have (including user data) would likely be one of the assets transferred to that company. In such cases, we will ensure that the new entity is bound to the protections outlined in this Privacy Policy (unless and until this Policy is updated or you are notified otherwise). Likewise, if we are involved in a bankruptcy or restructuring, personal data could be considered an asset subject to transfer. We would only make such transfers in compliance with applicable laws.

     

  • Legal Compliance and Protection: We may disclose your information when required to do so by law or when we, in good faith, believe disclosure is necessary to protect our rights, your safety or the safety of others, or to investigate fraud. This includes responding to valid legal processes (e.g. subpoenas, court orders) or government requests, and sharing information as needed to enforce our Terms of Service or to detect and prevent illegal or harmful activities. For example, if required by law enforcement due to an investigation, or if a user’s actions threaten our network security, we might share relevant data with authorities. We only share what is reasonably necessary in such circumstances.

     

  • Affiliates: If A4 Digital LLC has affiliate companies or subsidiaries in the future, we may share your information with those related entities for purposes consistent with this Policy (for example, if we establish a related business that offers complementary services). Any affiliated organization that receives your data will be required to handle it under the same privacy commitments we do. (As of the effective date of this Policy, A4 Digital LLC primarily operates the Top Level Benefits business and does not have other active affiliates handling user data; this notice is included for potential future changes.)

     

  • With Your Consent or At Your Direction: Apart from the scenarios above, we will share your personal information with third parties only if you direct us to or explicitly consent to such sharing. For instance, if you ask us to introduce you to a specific consultant or partner outside of our usual network, or if you opt-in to a program where we share your information with a partner for a joint offering, we will do so only with your knowledge and permission.

     

No Sale of Personal Information: We do not sell your personal information for money to data brokers or random third parties. We do not provide your personal details to third parties for their own independent direct marketing purposes. All data sharing we do is mainly to serve your needs (as described above) or to run our operations with help from trusted vendors. However, we want to be transparent that some data transfers could be interpreted as a “sale” under certain privacy laws (like the California Consumer Privacy Act, CCPA). For example, if one of our third-party benefit partners were to pay us a referral fee after you sign up for their services, that could be viewed as us “selling” your information (even though we are only sharing data to fulfill the service you requested). To the extent our sharing of data with a partner for business purposes is considered a “sale” or “sharing” under applicable law, we will comply with those laws’ requirements, including providing you the right to opt out (see User Rights below). We currently do not exchange data in a way that we understand to be a sale of personal information in the traditional sense, but we include this explanation to err on the side of clarity. If our practices change, we will update this Policy and give any required notices or opt-in/opt-out choices.

Data Retention

We retain personal information for only as long as necessary to fulfill the purposes we collected it for, unless a longer retention period is required or permitted by law. In practice, the length of time we keep data will depend on the context and nature of the information:

  • Inquiry and Lead Information: If you provide your details but do not ultimately become a customer or use our services, we will typically keep your information for a reasonable period to follow up on your request and evaluate our business performance. For example, we may keep inquiry records (like a form you submitted asking for a quote) for some months while we attempt to reach you or as we analyze conversion rates. If we determine that you are not interested, or if you ask us to delete your info, we will remove your contact from our active databases. We do not keep inquiry data longer than necessary – once it’s clear there’s no ongoing need, we either delete it or archive it per our internal policies.

     

  • Customer and Transaction Information: If you engage our services or become a customer (for instance, if through our introduction you set up a Section 125 plan with a provider and we facilitate that transaction), we will retain relevant personal information for the duration of our business relationship with you and for a period thereafter. This is to ensure we can continue to service your account, support any ongoing needs, and comply with legal record-keeping requirements. For example, we may keep records of communications, agreements, and transaction details for a number of years to satisfy tax, audit, or legal compliance obligations. Even after you stop using our services, we might retain certain data to handle any disputes, to enforce our agreements, or as required by law.

     

  • Usage Data and Analytics: We may keep some aggregated or de-identified usage data (which does not directly identify you) for longer periods to help us understand long-term website trends and performance. For instance, overall traffic statistics or campaign performance data may be retained indefinitely in an anonymized form. This data is not linked to your personal identifiers and is used for statistical analysis and improving our services.

     

  • Deletion and Anonymization: When we have no ongoing legitimate business need or legal requirement to keep your personal information, we will delete it or anonymize it. If immediate deletion is not possible (for example, because the data is stored in secure backups), we will isolate the data from further use until it can be erased. We periodically review the data we hold to ensure we’re not keeping personal information longer than necessary.

     

In summary, we aim to retain your personal information only for as long as it’s needed to achieve the purposes described in this Policy, or as required by law. Retention periods will vary depending on the type of data and the applicable laws. If you have specific questions about how long we keep a certain type of information, feel free to contact us (see Contact Information below), and we will be happy to provide more details. We also honor verifiable requests to delete personal data as described in User Rights (subject to any legal exceptions).

User Rights and Choices

We respect your privacy rights and provide you with options to control your personal information. Depending on your jurisdiction (for example, California or other states with privacy laws, or if applicable, the European Economic Area), you may have certain legal rights. We extend many of these core rights to all our users, regardless of location. These include:

  • Right to Access/Know: You have the right to request confirmation of whether we are processing your personal information, and to access or obtain a copy of the personal data we hold about you. This means you can ask us to explain what information we have about you and how it’s being used. For California residents, this “right to know” includes the right to request a report detailing the categories of personal information collected, the sources of that information, the business purpose for collection, the categories of third parties with whom information was shared, and the specific pieces of information we have about you (as provided by CCPA).

     

  • Right to Rectification (Correction): If any of your personal information is inaccurate or outdated, you have the right to request that we correct or update it. We encourage you to contact us if you discover any errors in the data we hold about you, so we can ensure it is accurate and complete. For example, if you change your email address or realize we have a misspelled name on file, let us know and we will update our records.

     

  • Right to Deletion: You have the right to request that we delete your personal information (sometimes called the “right to be forgotten”), subject to certain exceptions under the law. Upon a verified request, we will erase your personal data from our records and direct any service providers to do the same, unless retaining the information is permitted or required by law. For instance, we might need to keep certain data to complete a transaction you requested, to comply with a legal obligation, or to detect fraud – these are examples of exceptions where deletion might not apply. We will inform you if any such exception applies. Otherwise, we will honor valid deletion requests and remove your data from active use.

     

  • Right to Opt Out of Sale/Sharing: We do not sell personal information in the conventional sense, as noted above. However, if you are a California resident (or under similar state laws) and wish to opt out of any possible “sale” or targeted advertising “sharing” of your information, you have the right to do so. This would include the scenario where our referral to a partner could be deemed a sale under CCPA. You can instruct us at any time not to sell or share your personal information with third parties for valuable consideration. If we ever were to engage in such activity, we will make sure a clear “Do Not Sell or Share My Personal Information” method is available. In the meantime, you can always contact us to proactively opt out of any such sharing. We maintain an internal opt-out list and will ensure that, once you opt out, your data is not included if we ever engage in data transfers that qualify as sales under the law.

     

  • Right to Opt Out of Marketing: If you prefer not to receive marketing emails or newsletters from us, you have the choice to opt out. You can do this by clicking the “unsubscribe” link in any promotional email we send, or by contacting us and requesting to be removed from our marketing list. Once you opt out, we will not send you marketing communications, though we may still send transactional or service-related messages (for example, an email confirming a service you requested or a notice about your account) as these are not promotional. We will also keep your email on a suppression list to ensure we honor your opt-out request going forward.

     

  • Right to Non-Discrimination: We will never penalize or discriminate against you for exercising any of your privacy rights. This means if you choose to exercise your rights (such as requesting deletion or opting out of data sharing), we will not deny you our services, charge you a different price, or provide a lesser quality of service just because of that choice. The only circumstance in which service might be affected is if the deletion of data or restriction of processing makes it impossible for us to provide a service you’ve requested – but if that happens, we will explain the situation to you. Otherwise, your privacy choices will not negatively affect the service you receive from us.

     

These rights may be subject to certain requirements and limitations. For example, for access, deletion, or correction requests, we will need to verify your identity to ensure we are dealing with the correct person (we may ask you to provide certain information to confirm your identity). If you have an authorized agent making a request on your behalf (for California residents), we may require proof of that agent’s authority and also verify your identity directly, as permitted by law. We will respond to legitimate requests within the timeframes required by law (usually within 45 days for CCPA requests, with the possibility of a reasonable extension).

How to Exercise Your Rights: To exercise any of the rights above, or to ask a privacy-related question, please contact us at hello@. You may also reach out via the Contact Information provided below. Please clearly describe your request – for example, “I am requesting access to my personal information” or “Please delete my information” – so we can address it promptly. We will confirm receipt of your request and let you know if we need any additional information to process it. There is no charge for making a privacy rights request, though if requests become excessive or manifestly unfounded, we are allowed by law to refuse or charge a reasonable fee (we will notify you in such case).

If you have any trouble exercising your rights or have concerns about how we handle your request, please let us know. If you are not satisfied with our response, you may have the right to contact a regulatory authority or privacy commissioner in your jurisdiction. For example, California residents can reach out to the California Attorney General’s office, and individuals in the EU can contact their Data Protection Authority. We encourage you to come to us first so we can do our best to resolve your concern.

Data Security

We take the security of your personal information seriously and implement appropriate measures to safeguard it. Our security program includes administrative, technical, and physical protections designed to prevent unauthorized access, disclosure, or alteration of your data. For example, we use encryption protocols (HTTPS/TLS) when you transmit information to our Site, which protects data in transit. Any sensitive information you submit (such as through our forms) is transmitted securely. We also maintain access controls so that only authorized personnel and service providers who need to handle your information for the purposes described in this Policy are able to access it. Those employees or agents are subject to confidentiality obligations. We regularly update our systems and apply security patches to protect against vulnerabilities, and we use firewalls and monitoring to guard our network. Additionally, we have procedures for data handling and retention to ensure that information is not kept or exposed longer than necessary, and we choose reputable third-party hosting providers with strong security practices.

Despite our efforts, no method of transmission over the internet or electronic storage is 100% secure. Therefore, we cannot guarantee absolute security of your information. While we strive to protect your data, there is always a residual risk of a security breach. In the event of any data breach or security incident that affects your personal information, we will notify you and any applicable authorities as required by law, and we will take all reasonable measures to contain and remedy the situation. We also encourage you to help protect your data by using strong, unique passwords for any accounts, keeping your login credentials confidential, and being mindful of information you disclose. If you believe your interaction with us or your personal data may no longer be secure (for example, if you suspect that your account has been compromised), please contact us immediately so we can assist.

Children’s Privacy

Our Site and services are not directed to children, and we do not knowingly collect personal information from individuals under the age of 13. If you are under 13, please do not use this Site or send us any information. We understand the importance of protecting children’s privacy, especially online. If we discover that we have inadvertently collected personal information from a child under 13, we will promptly delete such information from our records. If you are a parent or guardian and believe that a child under 13 may have provided us with personal information, please contact us so that we can investigate and delete any such data.

If you are between 13 and 18 years old, you should use our Site only with involvement of a parent or guardian (or with proper authorization from your employer if applicable). Our services are business-oriented (e.g., focused on employee benefit plans) and not likely to be of interest to children. We do not intentionally target or market to minors. Parents and guardians are encouraged to supervise their children’s online activities and utilize parental control tools, when available, to ensure that children do not access websites that are not suitable for them.

Changes to the Policy

We may update or revise this Privacy Policy from time to time to reflect changes in our business practices, technologies, legal requirements, or for other operational reasons. When we make changes, we will post the updated Privacy Policy on this Site with a new effective date. If changes are significant or materially affect how your personal information is handled, we will take additional steps to notify you. For example, we may post a prominent notice on our homepage or send you an email notification (if we have your email on file) informing you of the updated policy. We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting and using your information.

Your continued use of our Site or services after any changes to this Privacy Policy constitutes your acceptance of the revised terms. If you do not agree with any updates or modifications, you should stop using our Site and services. We will note the Effective Date at the top of this Policy so you know when it was last updated. Prior versions of this Privacy Policy may be obtained by contacting us.

Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us. We are committed to resolving your inquiries and upholding your privacy rights. You can reach us by email or mail as follows:

  • Company Name: Top Level Benefits

     

  • Website: www.toplevelbenefits.com

     

  • Email: info@toplevelgrp.com

     

(For privacy-specific requests, you may include “Privacy” in the subject line to ensure it reaches the appropriate team. If you prefer to send a written request via postal mail, please contact us by email to obtain the appropriate mailing address for privacy inquiries.)

We will do our best to respond promptly to your questions or requests. If you contact us to exercise any of your legal rights, we may need to verify your identity for security purposes, but we will only use that verification information to fulfill your request. Your privacy is important to us, and we welcome your feedback or questions about our Privacy Policy.

Thank you for trusting Top Level Benefits with your information. We value your privacy and strive to protect it in compliance with applicable laws and as described above.