Where Legal Experience Meets
Real-World Solutions
The Carrillo|Sipes|Tibbels legal team

Privacy Policy

We partner with Internet Brands, who might also collect data as part of our marketing efforts. To learn more about the Internet Brands privacy policy and the data that might be collected, please visit: Internet Brands Privacy Statement.

Carrillo|Sipes|Tibbels, PLLC Website Privacy Policy

Effective Date: May 9, 2025

  1. Introduction

1.1. Website Owner: This Privacy Policy applies to the website located at www.cstlawfirm.com (the “Website”), which is owned and operated by Carrillo|Sipes|Tibbels, PLLC (“we,” “us,” or “our”).
1.2. Scope: This Privacy Policy explains how we collect, use, share, and protect the personal information of visitors, clients, and customers who use the Website and our services. It applies to all personal information collected through the Website, regardless of how it is collected or stored.
1.3. Consent: By using the Website, you consent to the terms of this Privacy Policy and our collection, use, and disclosure of your personal information as described herein.
1.4. Applicable Laws: This Privacy Policy is designed to comply with applicable privacy laws and regulations, including, but not limited to, the Texas Data Privacy And Security Act and other relevant data protection laws in jurisdictions where we operate.

  1. Personal Information We Collect

2.1. Identifying Information: We may collect various types of personal information that you provide to us, such as:
a) Name
b) Email address
c) Mailing address
d) Phone number
e) Payment information (e.g., credit card details)
f) Date of birth
g) Social security number or other government-issued identification (where required by law)
h) Any other information you choose to provide
2.2. Usage Information: We automatically collect certain information about your use of the Website, including:
a) IP address
b) Browser type and version
c) Device information (e.g., operating system, hardware model)
d) Referring/exit pages
e) Website navigation paths
f) Time and date of access
g) Time spent on pages
h) Unique device identifiers
2.3. Cookies and Similar Technologies: We use cookies, web beacons, pixel tags, and other similar technologies to collect information about your activities on the Website, such as:
a) Pages you visit
b) Links you click
c) Searches you conduct
d) Preferences you set
e) Products or services you view or purchase
You can manage your cookie preferences in your browser settings.

  1. How We Use Your Personal Information

3.1. Providing Services: We use your personal information to:
a) Provide you with the products and services you request
b) Process your transactions and payments
c) Communicate with you about your account and our offerings
d) Respond to your inquiries and provide customer support
e) Fulfill your orders and deliver products
3.2. Improving the Website: We use your personal information to:
a) Analyze the usage of the Website
b) Improve its functionality and user experience
c) Develop new products and services
d) Conduct research and analytics
e) Debug and fix technical issues
3.3. Marketing and Advertising: We may use your personal information to:
a) Send you promotional communications (with your consent where required by law)
b) Personalize your experience on the Website
c) Deliver targeted advertisements
d) Conduct market research and surveys
e) Measure the effectiveness of our marketing campaigns
You can opt-out of receiving marketing communications from us by following the instructions provided in the communication or by contacting us using the information in Section 11.
3.4. Compliance and Security: We may use your personal information to:
a) Comply with applicable laws and regulations
b) Protect the security and integrity of the Website
c) Prevent and detect fraud or other illegal activities
d) Enforce our Terms of Service and other agreements
e) Respond to legal requests and prevent harm

  1. Sharing of Personal Information

4.1. Service Providers: We may share your personal information with third-party service providers who assist us in operating the Website and providing our products and services, such as:
a) Payment processors
b) Web hosting providers
c) Analytics vendors
d) Customer support services
e) Email marketing platforms
f) Shipping and logistics providers
These service providers are contractually obligated to protect the confidentiality and security of your personal information and may only use it for the specific purposes for which we disclose it to them.
4.2. Affiliates and Subsidiaries: We may share your personal information with our affiliated companies and subsidiaries for the purposes described in this Privacy Policy, including providing you with joint content and services, to facilitate transactions, and for marketing purposes.
4.3. Legal Compliance and Protection: We may disclose your personal information to government authorities or other third parties:
a) As required by law, such as to comply with a subpoena or similar legal process
b) When we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request
c) To enforce our rights arising from any contracts entered into between you and us, including our Terms of Service and this Privacy Policy
4.4. Business Transfers: In the event of a merger, acquisition, or sale of all or a portion of our assets, we may transfer your personal information to the acquiring entity. We will notify you via email and/or a prominent notice on our Website of any change in ownership or uses of your personal information, as well as any choices you may have regarding your personal information.

  1. Data Security and Retention

5.1. Security Measures: We implement reasonable administrative, technical, and physical security measures to protect your personal information from unauthorized access, use, or disclosure. These measures include:
a) Encryption of data in transit and at rest
b) Access controls and authentication mechanisms
c) Regular security audits and vulnerability assessments
d) Employee training on data protection and security practices
e) Physical security measures for our facilities
However, no method of transmission over the Internet or electronic storage is 100% secure, and we cannot guarantee absolute security.
5.2. Data Retention: We retain your personal information for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable laws and regulations. The criteria used to determine our retention periods include:
a) The length of time we have an ongoing relationship with you
b) Whether there is a legal obligation to which we are subject
c) Whether retention is advisable in light of our legal position (such as in regard to applicable statutes of limitations, litigation, or regulatory investigations)
We periodically review and delete or anonymize your personal information when it is no longer needed for the purposes for which it was collected.

  1. Your Choices and Rights

6.1. Access and Correction: You have the right to access, review, and correct the personal information we have about you. You can do so by logging into your account on the Website or by contacting us using the information in Section 11.
6.2. Deletion: You may request that we delete your personal information, subject to certain exceptions as provided by law. To request deletion, please contact us using the information in Section 10. We will respond to your request within the timeframe required by applicable law.
6.3. Data Portability: Where provided by law, you have the right to receive a copy of your personal information in a structured, commonly used, and machine-readable format and to transmit that information to another controller without hindrance.
6.4. Restriction of Processing: You have the right to request that we restrict the processing of your personal information under certain circumstances, such as when you contest the accuracy of your personal information.
6.5. Objection to Processing: You have the right to object to our processing of your personal information that is based on our legitimate interests. We will no longer process your personal information unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or for the establishment, exercise, or defense of legal claims.
6.6. Withdrawal of Consent: Where we rely on your consent to process your personal information, you have the right to withdraw your consent at any time. This will not affect the lawfulness of processing based on your consent before its withdrawal.
6.7. Complaints: If you have any complaints or concerns about our privacy practices, please contact us using the information in Section 11, and we will investigate and respond to your inquiry. You also have the right to lodge a complaint with a supervisory authority in your country of residence, place of work, or where an alleged infringement of data protection law has occurred.

  1. International Data Transfers

We may transfer your personal information to countries outside of your home jurisdiction, including to countries that may not provide the same level of data protection as your home jurisdiction. When we transfer your personal information internationally, we will ensure that appropriate safeguards are in place to protect the confidentiality and security of your data, in accordance with applicable privacy laws and regulations. These safeguards may include:
a) Entering into Standard Contractual Clauses approved by the European Commission
b) Adhering to the EU-U.S. Privacy Shield Framework and Swiss-U.S. Privacy Shield Framework
c) Obtaining your explicit consent for the proposed transfer
d) Transferring data to countries deemed to have adequate data protection laws by the European Commission
You may contact us using the information in Section 10 to obtain a copy of the safeguards we use to transfer personal information outside of your jurisdiction.

  1. Children’s Personal Information

8.1. Age Restrictions: The Website is not directed at children under the age of 13 (or 16 in certain jurisdictions), and we do not knowingly collect personal information from children under these age thresholds.
8.2. Parental Consent: If we learn that we have collected personal information from a child under the applicable age threshold without parental consent, we will take steps to delete such information as soon as possible.
8.3. COPPA Compliance: For users in the United States, we comply with the Children’s Online Privacy Protection Act (COPPA). If you are a parent or guardian and believe that your child has provided us with personal information without your consent, please contact us using the information in Section 10, and we will take steps to remove such information from our systems.
8.4. Verifiable Parental Consent: In the event that we need to collect personal information from children under the applicable age threshold for a specific purpose, we will obtain verifiable parental consent before collecting, using, or disclosing such information. We will provide parents with notice of our privacy practices and the opportunity to prevent further use or collection of their child’s personal information.

  1. Changes to this Privacy Policy

9.1. Updates: We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. We will notify you of any material changes by posting the updated Privacy Policy on the Website and updating the “Effective Date” at the top of this policy.
9.2. Notification: For significant changes to this Privacy Policy, we may provide additional notice, such as displaying a prominent notice on the Website or sending you an email notification.
9.3. Acceptance: Your continued use of the Website after any changes to this Privacy Policy constitutes your acceptance of the new Privacy Policy. We encourage you to review this Privacy Policy periodically to stay informed about our privacy practices.

  1. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us at:

100 N Trinity Street
Decatur, Texas 76234

940-400-7595


Although the attorneys at Carrillo|Sipes|Tibbels, PLLC, are not licensed to practice law in the State of California, we recognize that we have visitors to the website and clients who may reside in California. For users in California, please see our California Privacy Rights section below for additional contact information and rights.

  1. California Privacy Rights

11.1. CCPA Rights: If you are a California resident, you have certain rights under the California Consumer Privacy Act (CCPA), including:
a) The right to know what personal information we collect, use, disclose, and sell
b) The right to request deletion of your personal information
c) The right to opt-out of the sale of your personal information
d) The right to non-discrimination for exercising your CCPA rights
11.2. Exercising Your Rights: To exercise your CCPA rights, you can contact us using the information in Section 10. We will verify your identity before processing your request.
11.3. Authorized Agent: You may designate an authorized agent to make a request on your behalf. The authorized agent must submit proof of your written permission and verify their own identity with us.
11.4. Response Time: We will respond to your request within 45 days, unless we notify you that we require additional time (up to 90 days total) to complete your request.

By maintaining this comprehensive and detailed Privacy Policy, we demonstrate our commitment to protecting your personal information and complying with applicable privacy laws and regulations. We strive to be transparent about our data practices and to provide you with control over your personal information.