Frozen Lake LLC ("Frozen Lake," "we," "us," or "our") provides software, identity, cloud, hosting, and managed IT services. This Privacy Policy explains how we collect, use, store, protect, and share personal information when users authenticate with our platforms, engage our services, or visit our website at frzn.us.
By using any Frozen Lake system, authentication method, or service, you agree to this Privacy Policy.
We do not sell, rent, or trade your personal information. We collect only the minimum information necessary to operate our services and handle it with the same integrity we bring to every client relationship — as unto the Lord.
- Name, email address, phone number (if using SMS verification)
- Organization name (if applicable)
- Passwords — securely hashed using bcrypt or argon2; never stored in plain text
- Support requests, submitted tickets, or attachments
- Billing information (processed through third-party payment processors)
- Information submitted through our website contact or inquiry forms
If you sign in using a third-party OAuth provider, we may receive:
Data received may include: verified email address, display name, provider user ID, optional profile photo (if provided by user), and organization domain. Access tokens are used strictly for login and session creation — never shared or sold.
We do not request or store contact lists, drive/filesystem data, payment credentials, calendar data, or sensitive OAuth scopes unless explicitly required for a product and separately disclosed.
Automatically collected to maintain service integrity: IP addresses, browser and device information, session identifiers, login timestamps, MFA data, API usage logs, and audit events for security compliance.
Frozen Lake does not store full credit card numbers. We may store transaction IDs, subscription plans, payment method type, and billing history.
| Category | Examples | Source |
|---|---|---|
| Identity Data | Name, job title, organization | You directly |
| Contact Data | Email, phone, address | You directly |
| Auth / OAuth Data | Provider ID, email, display name | Identity providers |
| Technical Data | IP address, device info, session logs | Automated collection |
| Service Data | Network telemetry, backups, API logs | Service delivery |
| Financial Data | Billing records (no card numbers) | You / payment processor |
Creating and managing user accounts, authenticating logins via Frozen Lake or third-party providers, issuing and validating tokens, managing passwords and MFA verification codes.
Detecting unauthorized access, monitoring for fraud, enforcing organizational policies, recording audit logs for compliance frameworks, and securing user accounts and infrastructure.
Providing access to web applications, portals, and cloud services; managing entitlements, roles, and permissions; processing support tickets and user requests.
Sending login verification emails or SMS codes, service alerts, billing notices, support responses, status updates, and incident notifications. Marketing communications are sent only with consent and may be opted out at any time.
We do not use your data to build advertising profiles or for any purpose not described in this Policy.
Frozen Lake LLC confirms the following with respect to all OAuth and third-party identity provider integrations:
- We request only the minimum required OAuth scopes for each provider
- We do not misuse, resell, or transfer OAuth-provided data to any third party
- OAuth data is used solely for login, identity verification, and account association
- We do not access user emails, files, calendars, or contacts without explicit user consent and documented purpose
- Authentication data is stored securely using industry best practices (encryption, hashing, zero-trust access)
- We will immediately delete OAuth-sourced data upon user request
This section satisfies audit and verification requirements from: Google OAuth / Google Cloud, Microsoft Entra ID, Apple Developer Program, Facebook Login Review, PayPal Login Review, Amazon App Review, Auth0 / Okta, and FusionAuth IDP.
We retain information only as long as necessary for account operations, security and auditing, legal compliance, and service continuity. Upon termination of services, client data is available for export for 30 days, then securely deleted. Account and billing records are retained for a minimum of seven (7) years for tax and legal compliance. You may request deletion at any time by contacting [email protected].
We implement industry-standard security measures including:
- Encryption in transit (HTTPS / TLS 1.2+) and at rest where applicable
- Strict access controls with least-privilege principles
- Credential hashing using bcrypt or argon2 — never plain text
- Secure token storage with short expiry and rotation
- Zero-trust access model for administrative systems
- Regular security audits and vulnerability assessments
- Employee training on data handling and security best practices
While we take data security seriously, no system is completely immune to vulnerabilities. We will notify affected clients promptly in the event of a confirmed breach as required by applicable law.
Our website uses cookies to improve your experience and analyze usage. Types used:
- Essential cookies — Required for core site functionality and security
- Analytics cookies — Help us understand how visitors use our site (e.g., aggregate usage stats)
- Preference cookies — Remember your settings and choices
We do not use advertising or cross-site tracking cookies. Client portals and management platforms use session cookies strictly required for authentication — these are necessary to use those systems.
You can control or disable cookies through your browser settings. Disabling essential cookies may affect site functionality.
You have the following rights regarding your personal information:
- Access — Request a copy of the information we hold about you
- Correction — Request correction of inaccurate or incomplete data
- Deletion — Request deletion, subject to legal retention requirements
- Portability — Request your data in a structured, machine-readable format
- Opt-Out — Opt out of marketing communications at any time
- Restriction — Request restricted processing in certain circumstances
Submit requests to [email protected]. We respond to verified requests within 30 days. Identity verification may be required before processing.
Frozen Lake does not knowingly collect information from children under 13. If data is collected in error, contact us at [email protected] for immediate removal.
For schools and educational institutions engaged with Frozen Lake for technology services, we adhere to applicable student data privacy laws including FERPA and COPPA. We act only as a service provider and do not use student data for any purpose beyond the contracted services. Schools are responsible for obtaining appropriate parental consents.
Our services may integrate with or rely on third-party platforms that have their own privacy policies. Common third parties include:
- Microsoft 365 and Azure for cloud services and email
- Payment processors (Stripe, PayPal)
- Remote monitoring and management platforms
- VoIP and telecommunications providers (3CX and others)
- Backup and disaster recovery providers
- SMTP relay and email security vendors
- FusionAuth for identity and access management
We select partners who maintain strong data privacy and security standards. Our website may contain links to third-party sites — clicking those links means you are leaving our environment and are subject to that site's privacy practices.
Frozen Lake LLC is headquartered in Lawrenceville, Georgia and primarily serves clients in Georgia and surrounding states. We comply with applicable Georgia state privacy and data protection laws. Georgia residents may contact us at any time to access, correct, or request deletion of their personal information. We do not discriminate against you for exercising your privacy rights.
We may update this Privacy Policy periodically. We will post updates at frzn.us with a revised Effective Date and notify active clients by email. Your continued use of our services after the effective date constitutes acceptance of the changes.
For privacy inquiries or data requests:
Frozen Lake LLC
PO Box 466162
Lawrenceville, GA 30042
United States
Privacy: [email protected]
Legal: [email protected]
General: [email protected]
Toll-Free: +1 888-6-GO-FRZN
Local: +1 404-857-3700