Fog City Bio

Privacy Policy

Last updated: September 25, 2025

On this Page:                                                   

  • Overview & Scope
  • Information We Collect
  • How We Use Information
  • Client IP & Confidentiality
  • Legal Bases (GDPR / UK GDPR)
  • No Sale / Share of Personal Information
  • Data Retention
  • Data Security
  • International Transfers
  • Your Rights
  • Cookies & Controls
  • Third-Party Processors
  • Children
  • Changes to this Policy
  • Contact

Overview & Scope

Fog City Bio R&D, LLC (“Fog City Bio”) is a Bay Area, California–based micro-CRO focused on rapid ELISA and immunoassay optimization.
Our services are for Research Use Only (RUO) and are not for diagnostic purposes.

This Privacy Policy explains how we handle personal information collected through our website and related pre-sales interactions.
It is intended for business contacts at biotech organizations and applies equally to visitors from the EU/UK and the US.

Information We Collect

We collect only the information necessary to operate our site, respond to inquiries, and schedule consultations:

  • Contact Form (WPForms Lite): name, work email, company, and your message. By default, submissions are delivered to our Google Workspace inbox and are not stored in WordPress. We may also capture IP address or user-agent details to help prevent spam.

  • Booking (Calendly): name, email, company, meeting time, and scheduling responses. Calendly processes this information on our behalf and may set cookies to deliver the scheduling widget.

  • Security Logs (Wordfence): IP address, browser information, and details of requests used to detect and prevent threats.

  • Cookies: limited functional cookies for site performance, security, and Calendly.

We do not collect patient/clinical data, financial data, or sensitive personal categories.

How We Use Information

We use the information we collect only to operate our business and respond to you:

  • To respond to inquiries and schedule consultations,

  • To prepare proposals or perform pre-contract steps at your request,

  • To maintain the security and performance of our website,

  • To comply with applicable laws and enforce our terms.

  • No mobile or messaging consent information will be shared with third parties/affiliates for marketing/promotional purposes. All the above categories exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties.

We do not use analytics or advertising cookies, and we do not profile visitors for marketing.

Legal Bases (GDPR/UK GDPR)

If you are located in the EU or UK, our processing of your personal data relies on:

  • Legitimate interests – to respond to your inquiries, schedule meetings, and protect our site.

  • Pre-contract steps / performance of a contract – when you request information before entering into an agreement with us.

  • Consent – only if we ever deploy non-essential cookies or similar features.

Client IP & Confidentiality

We respect and protect client intellectual property.

  • Please use our website forms for high-level inquiries only.

  • Do not send confidential protocols or trade secrets through the site.

  • For sensitive information, we can provide a mutual NDA and arrange a secure channel.

  • Project data we receive under contract is handled according to the agreement and our internal access-control practices.

No Sale or Share of Personal Information

We do not sell personal information and we do not share it for cross-context behavioral advertising.
We also do not use targeted advertising on our website.

Data Retention

We retain information for limited periods:

  • Inquiries & scheduling details: up to 24 months from the last interaction (or sooner if requested).

  • Security logs (Wordfence/server): up to 12 months.

  • Encrypted backups: up to 90 days on a rolling basis.

  • Client projects under contract: retention follows the service agreement or applicable law.

We may keep limited records to comply with legal obligations or resolve disputes.

Data Security

We use reasonable technical and organizational safeguards to protect information, including:

  • TLS encryption for data in transit,

  • Device encryption for company laptops,

  • Multi-factor authentication (MFA) on core accounts,

  • Least-privilege access to project data,

  • Vendor due diligence and monitoring.

We maintain an incident-response process. If a breach presents risk to individuals, we will notify affected parties consistent with applicable law.

International Transfers

We and some of our service providers operate in the United States and other countries.
If you are in the EU or UK, we rely on Standard Contractual Clauses (SCCs) or equivalent legal mechanisms offered by our providers (such as Google Workspace and Calendly) to protect transferred personal data.

Your Rights

EU/UK (GDPR/UK GDPR): you may request access, correction, deletion, restriction, portability (where applicable), and object to certain processing.
California (CPRA): you may request to know, access, correct, or delete your personal information. We do not “sell” or “share” personal information.

How to submit a request:
Email info@fogcitybio.com with the subject line “Privacy Request” and provide the email address you used with us. We will verify identity and respond within legal timeframes.

Cookies & Controls

We currently use functional cookies only. These help the site operate, improve security, and enable scheduling.

Examples include:

  • WordPress test cookies to check browser support,

  • Cache cookies (LiteSpeed or W3 Total Cache) to improve performance,

  • Wordfence cookies for security,

  • Calendly cookies to run the scheduler,

  • Accessibility preference cookies (Ally),

  • CDN cookies if enabled,

  • Smush CDN cookies if remote image optimization is enabled.

Controls: You can block or delete cookies in your browser settings. The site will function without non-essential cookies, though embedded scheduling may require Calendly cookies.

Third-Party Processors

We use trusted providers to operate our site and deliver services:

  • Google Workspace (email): receives and stores inquiry emails.

  • Calendly: scheduling tool and calendar integrations.

  • Wordfence: website security and threat detection.

  • IONOS (hosting/CDN): hosts our website and provides caching/performance services.

  • Smush (image optimization/CDN): compresses and may CDN-serve site images for faster delivery.

  • Rank Math (SEO): on-site SEO; no visitor tracking.

We require processors to use data only for providing their services to us.

Children

Our site is intended for business professionals. It is not directed to children under 16, and we do not knowingly collect personal information from children.

Changes to this Policy

We may update this Privacy Policy from time to time to reflect changes in technology, law, or our services.
When we do, we will post the revised policy on this page and update the “Last updated” date at the top.
For material changes, we will highlight the update for a reasonable period.

Contact

If you have questions or requests about this Privacy Policy, please contact us:

  • Email: info@fogcitybio.com

  • Postal address: Fog City Bio R&D, LLC
    440 N Barranca Ave
    Suite 4080
    Covina, CA 91723