Privacy Policy

Last updated: January 15, 2026

Winn‑Marion Companies (“we,” “us,” or “our”) is committed to transparency about how we collect, use, disclose, and protect personal information. This Privacy Policy explains our data practices for visitors and users of https://winn-marion.com and any related services that link to this notice (collectively, the “Services”). It also describes the rights and choices available to individuals under applicable privacy laws.

If you have questions or requests, contact us at:
Email: [email protected] Address: Winn‑Marion Companies, 7151 S Blackhawk St, Suite 900, Centennial, CO  80112

1. What this Policy Covers (Scope)

This Policy applies to personal information we collect from website visitors, customers, prospective customers, and individuals who interact with our forms, emails, and digital properties. It does not cover information processed in an employment or commercial (B2B vendor) context unless expressly stated otherwise.

2. The Information We Collect

  1. Information you provide directly
    Examples: name, business contact details, email address, phone number, company/role, inquiry content, support tickets and any files you upload via contact or quote forms.
  2. Information collected automatically
    We may collect device identifiers, IP address, browser type, pages visited, time on page, referring URLs, and general location (derived from IP) via cookies, pixels, and similar technologies.
  3. Sensitive personal information
    We do not intentionally collect sensitive personal information (e.g., health, precise geolocation, racial or ethnic origin) through the site. If we ever request such data, we will obtain explicit consent where required and state the purpose clearly.
  4. Children’s data
    Our website is not directed to children under 13, and we do not knowingly collect their data. If you believe a child provided personal information, contact us to request deletion. (COPPA).
  5. Document Uploads & Attachments

Customers may submit technical drawings, facility specifications, equipment manuals, or other documentation through quote request forms or via email.  These documents are stored in our CRM and used solely for preparing accurate quotes and providing appropriate product recommendations. Technical documentation may be shared with manufacturer partners when necessary to fulfill quote requests or ensure product compatibility. Files are retained as part of the customer record for future reference and support needs.

3. How We Collect It

  • Forms and direct interactions: Contact Emails, Quote Requests, Event Registrations, or Newsletter Sign‑ups. If you provide your business card or contact information at a trade show or industry event, we may add you to our marketing database. You can opt out of marketing communications at any time.
  • Cookies and tracking technologies: first‑party cookies and third‑party analytics/advertising tags. We disclose cookie purposes and provide controls (see “Cookies & Tracking”).
  • Third‑party sources: we may receive business contact details from marketing platforms, event partners, or referrals, where permitted by law. We disclose categories and sources when information is obtained indirectly.

4. Purposes and Legal Bases for Processing

We process personal information for:

  • Responding to inquiries and providing quotes/services (contractual necessity or legitimate interests under GDPR).
  • Operating, securing, and improving the website and Services (legitimate interests; consent where required for cookies/analytics).
  • Marketing and communications (your consent for email marketing where required; legitimate interests for B2B relationship management; right to opt out anytime).
  • Compliance and risk (legal obligations, protecting rights, preventing fraud/abuse).

Where GDPR applies, our lawful bases include consent, contract, legal obligation, and legitimate interests as defined by the Regulation. We will identify the specific basis for each purpose on request.

5. How We Use Personal Information

We use your information to deliver requested services, personalize content, measure campaign effectiveness, maintain site functionality, and improve our offerings. Any analytics or advertising use will be disclosed and subject to applicable opt‑outs or consent.

6. Disclosures of Personal Information (Third Parties)

Winn-Marion does not sell customer data.  SMS consent is not shared with third parties.  We may disclose personal information to:

  • Service providers/processors for order processing, invoicing, inventory management, and financial transactions once deals close.  These parties are contractually bound to use data only on our instructions.
  • Manufacturing partners when necessary for quotes and orders.
  • Advertising/analytics partners (if used) for measurement or targeted advertising—subject to opt‑out/consent rules. Marketing, sales pipeline, contact management, website forms, and email communications.
  • Corporate transactions (merger, acquisition, asset sale), or legal compliance (law enforcement requests, legal claims).
  • SMS By opting into SMS from a web form or other medium, user agrees to receive SMS messages from Winn-Marion Companies. This includes conversational SMS messages from Winn-Marion Companies employees to facilitate your order or inquiry. Message frequency varies. Message and data rates may apply. Message HELP for help. Reply STOP to any message to opt out.

Trusted third parties include: Google Analytics, Tag Manager, LinkedIn Insight Tag, HubSpot, NetSuite.

7. Employee Access

  • Sales representatives across our branch network have access to customer contact information, company details, and order history for legitimate business purposes. Customer information may be accessed by staff at multiple locations to ensure continuous service.
  • Access is limited to what is necessary for their role (servicing accounts, processing orders, providing quotes)
  • Credit card/payment information is restricted and not accessible to sales staff

8. Data Retention

We retain personal information only as long as necessary for the purposes described, to comply with legal obligations, resolve disputes, and enforce agreements. We define retention periods by category and delete or de‑identify data when no longer needed. Business contact information may be retained for legitimate business purposes. We may retain quotes and technical documentation for the life of the working partnership.  Technical support documentation and product specifications may be retained indefinitely because they’re tied to equipment installations, warranties, or ongoing service needs.  Customers can request removal of specific documents.

9. Security

We employ technical and organizational measures appropriate to the risk, such as encryption in transit, access controls, and secure hosting, to protect personal information from unauthorized access, disclosure, alteration, or destruction. No method is 100% secure, but we work to continuously improve our safeguards.

10. Cookies & Tracking Technologies

We use cookies, pixels, and similar technologies to run the site, remember preferences, analyze traffic, and support advertising. Non‑essential cookies will be set only with your consent where required. You can manage preferences via our cookie banner/settings and your browser.

Types of cookies we use

  • Strictly necessary (site operation and security).
  • Functional (preferences).
  • Analytics (traffic, performance).
  • Advertising (if enabled; for retargeting/measurement). We will not set non‑essential cookies without consent where law requires it, and we provide an easy way to change preferences.

11. Your Privacy Rights

Depending on your location, you may have some or all of the following rights:

  • Right to know, delete, correct, and opt‑out of sale or sharing of personal information; rights related to sensitive personal information and data retention disclosures (California CCPA/CPRA).
  • Colorado Privacy Act (CPA) rights: access, correction, deletion, portability, and opt‑out of targeted advertising, sale, and certain profiling; recognition of Universal Opt‑Out Mechanisms (UOOMs) such as Global Privacy Control (GPC).

You can submit a request by emailing [email protected]. We will verify your identity and respond within the timelines required by applicable law.

12. Managing Marketing Preferences

You can opt out of marketing emails at any time via the unsubscribe link in our emails or by contacting us. We may still send transactional or service communications related to your requests or account.

13. Data Protection Impact Assessments & High‑Risk Processing

Where required (e.g., for certain profiling, targeted advertising, or processing of sensitive data), we conduct data protection assessments to evaluate and mitigate risks.

14. Our Role and Legal Disclosures

We act as a controller when we determine the purposes and means of processing personal data. For certain services performed for customers, we may act as a processor on their instructions pursuant to a separate agreement.

15. Third‑Party Links and Integrations

The Services may include links or integrations to third‑party sites or plug‑ins. We are not responsible for the privacy practices of those third parties. Review their policies to understand their practices.

16. Changes to this Policy

We may update this Policy from time to time. When we make material changes, we will update the “Last updated” date and, where appropriate, provide additional notice (e.g., on‑site banner or email).

Contact Us

For questions, requests, or complaints regarding this Policy or our privacy practices:
Email: [email protected]
Address: Winn‑Marion Companies, 7151 S Blackhawk St, Suite 900, Centennial, CO  80112

Colorado (CPA) Disclosures

  • Colorado residents have rights to access, correct, delete, and obtain a portable copy of their data, and to opt out of targeted advertising, sales of personal data, and certain profiling. As required by Colorado rules, we explain in this Policy how we process Universal Opt‑Out Mechanisms and honor GPC signals.

Your Rights—How to Exercise Them

Submit requests via [email protected]. For Colorado residents, authorized agents may submit requests subject to verification. We will respond within statutory timeframes (generally 45 days under CCPA, extendable when permitted). If we decline a request, we will provide reasons and offer an appeal process where required.

This website uses cookies to improve your experience. If you continue to use this site, you agree with it.