Privacy Notice

Scope and Who We Are

This notice explains how Ryan, LLC and its Affiliates collect, use, disclose, transfer, and protect personal information on the websites they operate. Ryan, LLC acts as the controller with respect to data collection at these websites.

We do not sell personal information.

How We Collect Data

We collect information that you provide to us when you request a demo, register for events, visit our site, download content, apply for a job, or contact us.

We also collect information automatically, including device and browser data, IP address, cookie and pixel identifiers, and usage information. Use Cookie Settings to manage preferences at any time.

We may receive business contact information from service providers and professional platforms for B2B marketing, consistent with applicable law.

How Data Flows at Ryan

Data in: When you submit forms or queries, interact with website features or tools, or log in to the portal, your device and browser send technical information, and cookies or similar technologies record your preferences.
Processing: We use that data to authenticate sessions, deliver pages and search results, secure our systems, measure site performance, personalize content, and support B2B marketing.
Data out: We share personal data with service providers that support hosting, analytics, communications, event management, recruiting, and security. We also share personal information with our majority- or wholly owned affiliate companies, including for marketing purposes. We do not sell personal information. You may opt out of targeted advertising cookies at any time.
Storage and Transfer: We store data in secure data centers and cloud services. We transfer personal data internationally using Standard Contractual Clauses, the UK Addendum, and our intra-group transfer agreement.

Categories, Purposes, Legal Bases, and Recipients

Category	Examples	Main purposes	Legal bases (GDPR/UK)	Sensitive?	Sale/Share status	Typical recipients
Identifiers and contact	Name, email, phone, company, job title	Respond to inquiries, send content you request, manage events, B2B marketing	Consent where required for marketing, contract, legitimate interests	No	No sale; sharing for ads only if you allow non-essential cookies	CRM, email service, event tools, website host
Device and usage	IP, device, browser, pages viewed, referral, cookie ID	Site security, fraud prevention, performance, basic analytics, consent governance	Legitimate interests; consent for non-essential cookies	No	No sale; advertising cookies only if you allow	Analytics vendors, CMP, hosting
Event information	Registration details, preferences, optional dietary needs	Plan and run events, send updates	Contract, legitimate interests; consent for dietary needs if required	May include health dietary preferences you provide	No sale; no advertising use	Event platforms, venues
Careers data	Resume, work history, credentials, optional demographic data where permitted	Process applications, comply with law	Contract, legal obligation, legitimate interests; consent where required by law	May include sensitive data you choose to provide	No sale; no advertising use	Recruiting platforms, background check vendors where lawful
Security and portal logs	Account email, authentication events, IP, timestamps	Authenticate sessions, prevent fraud, protect services	Legitimate interests, legal obligation	No	No sale; no advertising use	Security tools, hosting

Retention

We keep personal information only as long as needed for the purposes described, to comply with laws and professional obligations, to resolve disputes, and to enforce agreements. We apply retention criteria that consider data type, purpose, legal obligations, limitation periods, and security requirements. Ask us for more detail through our DSAR form.

Cookies and Tracking

We use cookies, tags, pixels, and similar technologies for site operations, analytics, and advertising. Use Cookie Settings to manage choices at any time. In the UK and EEA, we only set non-essential cookies with your consent. We recognize opt-out preference signals, such as Global Privacy Control, for sale or sharing and for targeted advertising where laws require. We also honor Colorado’s recognized universal opt-out mechanisms.

Legal Bases and Legitimate Interests

We process website data to perform a contract with you, comply with legal obligations, and pursue legitimate interests, including securing our services, understanding site performance, and B2B marketing to corporate contacts. We balance these interests against your rights and include controls such as opt-out links, granular cookie choices, and a simple Data Subject Access Request (DSAR) process.

Sharing and Subprocessors

We share personal information with service providers under contract who process data for us. We require appropriate confidentiality and security commitments. We publish our subprocessor listing and updates in our Trust Center. Website vendors for analytics, consent, advertising, communications, or events may differ from platform subprocessors.

International Transfers

We transfer personal information to countries outside your own. We use Standard Contractual Clauses, the UK Addendum, and an intra-group data transfer agreement. We also apply appropriate technical and organizational measures as described in our security practices.

Security

We maintain an enterprise information security program with administrative, technical, and physical controls. We encrypt data in transit, enforce strong authentication, apply least privilege, log access, test defenses, and monitor our environment.

Your Rights and How to Exercise Them

Use our DSAR form or email privacy@ryan.com. We verify requests, respond within the time required by law, and do not discriminate for exercising rights. If we deny a request, you may appeal through our DSAR portal. We will explain our decision and your next steps.

Regional Supplements

If you are in the EEA or the UK, the General Data Protection Regulation (GDPR) and the UK GDPR give you specific rights over your personal data. These include:
Right to information: You may request clear information about how we use your personal data. This notice is part of that information.
Right of access: You may request a copy of the personal data we hold about you.
Right to rectification: You may ask us to correct inaccurate or incomplete personal data.
Right to erasure: You may ask us to delete your personal data where it is no longer necessary, where you withdraw consent, where you successfully object, or where we are legally obliged to erase it.
Right to restriction: You may ask us to restrict processing in certain circumstances, such as while we verify contested accuracy or in connection with a legal claim.
Right to data portability: You may ask us to provide your personal data in a structured, commonly used, and machine-readable format, and to transmit that data to another controller where technically feasible.
Right to object: You have the right to object at any time to the processing of your personal data when such processing is based on our legitimate interests, including processing for direct marketing purposes.
Rights in relation to automated decision-making: You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. We do not engage in such automated decisions in the website context.
Right to withdraw consent: Where we rely on consent, you may withdraw it at any time without affecting the lawfulness of processing carried out before withdrawal.
You also have the right to lodge a complaint with a supervisory authority. Our lead EU supervisory authority is the Data Protection Commission of Ireland (www.dataprotection.ie). For the UK, you may contact the Information Commissioner’s Office (www.ico.org.uk).Ryan, LLC acts as controller for the website. We have appointed an EU representative located in Ireland. You may contact our EU representative or the Ryan Privacy Office at privacy@ryan.com or at our address listed in the Contact section of this notice.
If you are a resident of a U.S. state with a comprehensive privacy law (including California, Colorado, Connecticut, Utah, and Virginia), you have the following rights over your personal information:
Right to know / access: You may request that we disclose the categories and specific pieces of personal information we collected about you, the categories of sources, the purposes for collection, the categories of third parties to whom we disclosed information, and the categories of information we disclosed for a business purpose.
Right to correction: You may request that we correct inaccurate personal information that we maintain about you.
Right to deletion: You may request that we delete personal information we collected from you, subject to applicable exceptions.
Right to data portability: You may request a copy of your personal information in a portable and, where feasible, readily usable format.
Right to opt out of sale or sharing: You may direct us not to sell or share your personal information. Ryan does not sell personal information.
Right to opt out of targeted advertising: You may opt out of our use of your personal information for cross-context behavioral advertising. You can do this in Cookie Settings.
Right to limit use of sensitive personal information: Where state law applies, you may request that we limit our use and disclosure of sensitive personal information to the purposes allowed by law. We only collect sensitive personal information incidentally (for example, dietary needs for events).
Right to non-discrimination: We will not discriminate against you for exercising your rights.
Right to appeal: If we deny your request, you may appeal through our DSAR portal. We will respond within the time required by law and provide you with information on how to escalate to your state Attorney General if needed.
We honor opt-out preference signals such as Global Privacy Control (GPC) as valid requests to opt out of sale or sharing and targeted advertising where required by law. We also recognize Colorado’s list of universal opt-out mechanisms.You may exercise your rights through our DSAR portal or by emailing privacy@ryan.com. We will verify your identity and respond within the timelines set by applicable law.
If you are in Canada, the federal Personal Information Protection and Electronic Documents Act (PIPEDA) gives you rights over your personal information:
Right of access: You may request a copy of the personal information we hold about you, including how we use it and with whom we share it.
Right to correction: You may ask us to correct inaccurate or incomplete personal information.
Right to challenge compliance: You may challenge our compliance with PIPEDA’s fair information principles.
If you are in Quebec, Law 25 provides additional rights:
Right to transparency about automated decision-making: If we use your personal information to make a decision based solely on automated processing, we will inform you and explain how the decision was made.
Right to data portability: You may request to receive your personal information in a structured, commonly used technological format and ask that it be transferred to another organization.
Right to lodge complaints: You may submit a complaint to the Commission d’accès à l’information du Québec (CAI).
You may also contact the Office of the Privacy Commissioner of Canada (OPC) to file a complaint under PIPEDA.You may exercise your rights through our DSAR portal or by emailing privacy@ryan.com.
If you are located in Australia, the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs) give you specific rights over your personal information:
Right of access: You may request a copy of the personal information we hold about you.
Right to correction: You may request that we correct personal information if it is inaccurate, out of date, incomplete, irrelevant, or misleading.
Right to complain: You may lodge a complaint with us if you believe we have breached the APPs. If you are not satisfied with our response, you may complain to the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au.
We manage personal information in an open and transparent way, consistent with APP 1, and we will provide this privacy notice to you in the form you request when reasonable and practicable.You may exercise your rights through our DSAR portal or by emailing privacy@ryan.com.
If you are located in India, the Digital Personal Data Protection Act, 2023 (DPDP Act) gives you rights over your personal data:
Right to access: You may request details about the personal data we process and the purposes of processing.
Right to correction: You may request that we correct inaccurate or incomplete personal data.
Right to erasure: You may request that we erase your personal data when it is no longer necessary, or if consent is withdrawn.
Right to grievance redressal: You may raise a complaint through our grievance redressal mechanism using the DSAR portal or by emailing privacy@ryan.com. We will acknowledge and address grievances within the time required by law.
Right to nominate: You may nominate another person to exercise your rights in case of death or incapacity.
We process digital personal data in accordance with the principles of the DPDP Act, including lawful purpose, consent or deemed consent, purpose limitation, storage limitation, accuracy, and reasonable security safeguards.If your grievance is not resolved satisfactorily, you may escalate it to the Data Protection Board of India once it is operational.
If you are in Brazil, the Lei Geral de Proteção de Dados (LGPD) gives you the following rights over your personal data:
Right to confirmation: You may request confirmation of whether we process your personal data.
Right of access: You may request access to the personal data we hold about you.
Right to correction: You may request correction of incomplete, inaccurate, or outdated data.
Right to anonymization, blocking, or deletion: You may request anonymization, blocking, or deletion of unnecessary, excessive, or unlawfully processed data.
Right to portability: You may request portability of your personal data to another provider, subject to regulation by the ANPD.
Right to deletion: You may request deletion of personal data processed with your consent, unless retention is required by law or regulation.
Right to information about sharing: You may request information about public and private entities with which we share your personal data.
Right to object: You may object to processing carried out on non-consensual legal bases if you believe our processing does not comply with the LGPD.
Right to withdraw consent: You may withdraw consent at any time, without affecting the lawfulness of processing carried out before withdrawal.
Right to review automated decisions: You may request a review of decisions made solely on automated processing that affect your interests.
You may exercise your rights through our DSAR portal or by emailing privacy@ryan.com.

Children

We do not direct our site to children under 16. We do not knowingly collect information from children under 16. If you believe a child provided information, contact us and we will take appropriate action.

Contact

Ryan Data Privacy Office
Ryan, LLC
8101 Windrose Avenue, Plano, TX 75024
1.866.212.0035
privacy@ryan.com

Changes to This Notice

We update this notice when we change our practices. We post updates here with a new effective date and describe material changes where appropriate.

California Notice at Collection

Identifiers and contact information; Internet or electronic network activity (device and usage data); Event registration details; Careers and applicant data; Security and portal logs.

Get in Touch

Transform tax into a strategic advantage with deep expertise and innovative technology—explore our services or request a software demo.

I agree to receive marketing emails from Ryan. I can unsubscribe anytime. Privacy Notice.

Privacy Notice

Scope and Who We Are

This notice explains how Ryan, LLC and its Affiliates collect, use, disclose, transfer, and protect personal information on the websites they operate. Ryan, LLC acts as the controller with respect to data collection at these websites.

We do not sell personal information.

How We Collect Data

We collect information that you provide to us when you request a demo, register for events, visit our site, download content, apply for a job, or contact us.

We also collect information automatically, including device and browser data, IP address, cookie and pixel identifiers, and usage information. Use Cookie Settings to manage preferences at any time.

We may receive business contact information from service providers and professional platforms for B2B marketing, consistent with applicable law.

How Data Flows at Ryan

Data in: When you submit forms or queries, interact with website features or tools, or log in to the portal, your device and browser send technical information, and cookies or similar technologies record your preferences.

Processing: We use that data to authenticate sessions, deliver pages and search results, secure our systems, measure site performance, personalize content, and support B2B marketing.

Storage and Transfer: We store data in secure data centers and cloud services. We transfer personal data internationally using Standard Contractual Clauses, the UK Addendum, and our intra-group transfer agreement.

Categories, Purposes, Legal Bases, and Recipients

Retention

Cookies and Tracking

Legal Bases and Legitimate Interests

Sharing and Subprocessors

International Transfers

We transfer personal information to countries outside your own. We use Standard Contractual Clauses, the UK Addendum, and an intra-group data transfer agreement. We also apply appropriate technical and organizational measures as described in our security practices.

Security

We maintain an enterprise information security program with administrative, technical, and physical controls. We encrypt data in transit, enforce strong authentication, apply least privilege, log access, test defenses, and monitor our environment.

Your Rights and How to Exercise Them

Use our DSAR form or email privacy@ryan.com. We verify requests, respond within the time required by law, and do not discriminate for exercising rights. If we deny a request, you may appeal through our DSAR portal. We will explain our decision and your next steps.

Regional Supplements

EU and UK

United States

Canada and Quebec

Australia

India

Brazil

Children

We do not direct our site to children under 16. We do not knowingly collect information from children under 16. If you believe a child provided information, contact us and we will take appropriate action.

Contact

Ryan Data Privacy OfficeRyan, LLC8101 Windrose Avenue, Plano, TX 750241.866.212.0035privacy@ryan.com

Changes to This Notice

We update this notice when we change our practices. We post updates here with a new effective date and describe material changes where appropriate.

California Notice at Collection

Categories Collected

Purposes

Sale or Share

Retention

How to Exercise Rights

Privacy Notice

Scope and Who We Are

This notice explains how Ryan, LLC and its Affiliates collect, use, disclose, transfer, and protect personal information on the websites they operate. Ryan, LLC acts as the controller with respect to data collection at these websites.

We do not sell personal information.

How We Collect Data

We collect information that you provide to us when you request a demo, register for events, visit our site, download content, apply for a job, or contact us.

We also collect information automatically, including device and browser data, IP address, cookie and pixel identifiers, and usage information. Use Cookie Settings to manage preferences at any time.

We may receive business contact information from service providers and professional platforms for B2B marketing, consistent with applicable law.

How Data Flows at Ryan

Data in: When you submit forms or queries, interact with website features or tools, or log in to the portal, your device and browser send technical information, and cookies or similar technologies record your preferences.

Processing: We use that data to authenticate sessions, deliver pages and search results, secure our systems, measure site performance, personalize content, and support B2B marketing.

Storage and Transfer: We store data in secure data centers and cloud services. We transfer personal data internationally using Standard Contractual Clauses, the UK Addendum, and our intra-group transfer agreement.

Categories, Purposes, Legal Bases, and Recipients

Retention

Cookies and Tracking

Legal Bases and Legitimate Interests

Sharing and Subprocessors

International Transfers

We transfer personal information to countries outside your own. We use Standard Contractual Clauses, the UK Addendum, and an intra-group data transfer agreement. We also apply appropriate technical and organizational measures as described in our security practices.

Security

We maintain an enterprise information security program with administrative, technical, and physical controls. We encrypt data in transit, enforce strong authentication, apply least privilege, log access, test defenses, and monitor our environment.

Your Rights and How to Exercise Them

Use our DSAR form or email privacy@ryan.com. We verify requests, respond within the time required by law, and do not discriminate for exercising rights. If we deny a request, you may appeal through our DSAR portal. We will explain our decision and your next steps.

Regional Supplements

EU and UK

United States

Canada and Quebec

Australia

India

Brazil

Children

We do not direct our site to children under 16. We do not knowingly collect information from children under 16. If you believe a child provided information, contact us and we will take appropriate action.

Contact

Ryan Data Privacy OfficeRyan, LLC8101 Windrose Avenue, Plano, TX 750241.866.212.0035privacy@ryan.com

Changes to This Notice

We update this notice when we change our practices. We post updates here with a new effective date and describe material changes where appropriate.

California Notice at Collection

Categories Collected

Ryan Data Privacy Office
Ryan, LLC
8101 Windrose Avenue, Plano, TX 75024
1.866.212.0035
privacy@ryan.com

Ryan Data Privacy Office
Ryan, LLC
8101 Windrose Avenue, Plano, TX 75024
1.866.212.0035
privacy@ryan.com