Privacy Policy

Effective Date: January 1, 2026
Last Updated: January 1, 2026

BlueChip Financial ("the Firm," "we," "us," or "our") is committed to protecting the privacy and confidentiality of your personal and financial information. As a registered investment advisor regulated by the Securities and Exchange Commission (SEC), we are required to comply with SEC Regulation S-P (Privacy of Consumer Financial Information), the Gramm-Leach-Bliley Act (GLBA), and other applicable federal and state privacy laws. This Privacy Policy describes the types of information we collect, how we use and protect that information, and your rights regarding your personal data.

1. Gramm-Leach-Bliley Act (GLBA) Notice

The Gramm-Leach-Bliley Act requires financial institutions to explain their information-sharing practices to their customers and to safeguard sensitive data. As an SEC-registered investment advisor, BlueChip Financial is classified as a financial institution under the GLBA. This Privacy Policy serves as our annual privacy notice as required under the Act and SEC Regulation S-P.

Under the GLBA, we are required to provide you with notice of our privacy policies and practices at the start of your client relationship and annually thereafter. We do not disclose any nonpublic personal information about our clients or former clients to any non-affiliated third parties, except as permitted or required by law.

2. Information We Collect

In the course of providing financial advisory services, we collect nonpublic personal information ("NPI") from various sources, including:

Information You Provide Directly

• Full legal name, date of birth, Social Security number, and government-issued identification
• Residential and mailing addresses, telephone numbers, and email addresses
• Employment information, income, and compensation details
• Financial account information, including bank accounts, brokerage accounts, retirement accounts, and insurance policies
• Tax returns and related documentation
• Net worth, assets, liabilities, and financial goals
• Beneficiary and estate planning information
• Risk tolerance assessments and investment preferences

Information from Third Parties

• Account information from custodians and brokerage firms (e.g., Charles Schwab, Fidelity)
• Credit reports and financial background information (with your authorization)
• Information from your other professional advisors (CPAs, attorneys) shared with your consent

Information Collected Automatically

• Website usage data, including IP address, browser type, pages visited, and time spent on our site
• Cookies and similar tracking technologies used to improve website functionality

3. How We Use Your Information

We use the personal and financial information we collect for the following purposes:

• To provide investment advisory, financial planning, and wealth management services
• To open and manage your investment accounts with our custodian partners
• To develop and monitor your financial plan and investment portfolio
• To communicate with you regarding your accounts, market updates, and our services
• To comply with regulatory requirements, including SEC, FINRA, and state reporting obligations
• To detect and prevent fraud, money laundering, and other financial crimes as required by the Bank Secrecy Act and applicable anti-money laundering regulations
• To respond to legal and regulatory inquiries
• To improve our website and client experience

4. Information Sharing and Disclosure

We do not sell, rent, or trade your nonpublic personal information to third parties for marketing purposes. Consistent with our obligations under the GLBA and Regulation S-P, we may share your information in the following limited circumstances:

• Service Providers: We share information with custodians, technology vendors, and other service providers who assist us in delivering our services. These providers are contractually obligated to protect your information and use it only for the purposes we specify, in accordance with GLBA requirements.
• Your Other Advisors: With your authorization, we may share information with your CPA, estate attorney, insurance agent, or other professional advisors to facilitate coordinated planning.
• Regulatory and Legal Requirements: We may disclose information when required by law, regulation, subpoena, court order, or regulatory examination by the SEC, FINRA, state securities regulators, or other governmental authorities.
• Business Transfers: In the event of a merger, acquisition, or sale of our business, client information may be transferred as part of the transaction, subject to continued privacy protections as required under the GLBA.

5. Regulation S-P Compliance

In accordance with SEC Regulation S-P (17 CFR Part 248), we maintain policies and procedures to protect the security and confidentiality of your nonpublic personal information, protect against any anticipated threats or hazards to the security of such information, and protect against unauthorized access to or use of such information that could result in substantial harm or inconvenience to any client.

You have the right to opt out of certain information-sharing arrangements with non-affiliated third parties. However, as noted above, we do not share your nonpublic personal information with non-affiliated third parties except as described in this policy or as otherwise permitted by law. Therefore, no opt-out is necessary at this time.

6. Data Security (GLBA Safeguards Rule)

In compliance with the GLBA Safeguards Rule and SEC cybersecurity guidance, we maintain a comprehensive written information security program that includes administrative, technical, and physical safeguards designed to protect your nonpublic personal information. These safeguards include:

• Designation of a qualified individual responsible for overseeing and implementing our information security program
• Encryption of sensitive data in transit and at rest
• Multi-factor authentication for access to client accounts and internal systems
• Regular risk assessments and penetration testing
• Employee training on data protection, cybersecurity best practices, and social engineering prevention
• Written information security policies and incident response procedures
• Physical security measures at our office locations
• Vendor due diligence and contractual safeguards for third-party service providers

While we take every reasonable precaution to safeguard your information, no method of electronic storage or transmission is completely secure. We regularly review and update our security measures to address evolving threats and regulatory requirements.

7. Data Retention

We retain your personal and financial information for as long as necessary to provide our services and comply with our legal and regulatory obligations. SEC Rule 204-2 requires us to maintain certain books and records for a minimum of five years after the termination of a client relationship, and some records must be retained for longer periods. When information is no longer required, we dispose of it securely using methods consistent with GLBA requirements and industry best practices.

8. Your Rights

You have the following rights regarding your personal information:

• Access: You may request a copy of the nonpublic personal information we hold about you.
• Correction: You may request that we correct inaccurate or incomplete information.
• Opt-Out: You may opt out of receiving marketing communications at any time. Note that regulatory and account-related communications are not subject to opt-out.
• Annual Privacy Notice: You are entitled to receive this privacy notice at the start of your client relationship and annually thereafter, as required by the GLBA and Regulation S-P.
• Account Closure: You may terminate your advisory relationship, subject to applicable account closure procedures.

To exercise any of these rights, please contact us using the information provided below. We will respond to your request within 30 days.

9. Cookies and Website Analytics

Our website uses cookies and similar technologies to enhance your browsing experience, analyze site traffic, and understand visitor behavior. You may configure your browser to refuse cookies, though this may limit certain features of our website. We do not use cookies to collect personally identifiable financial information.

10. Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have inadvertently collected information from a minor, we will take steps to delete it promptly.

11. State Privacy Laws

In addition to federal requirements under the GLBA and Regulation S-P, we comply with applicable state privacy laws, including the Illinois Personal Information Protection Act (PIPA) and any other state laws governing the protection of consumer financial information. If you are a resident of a state with specific privacy rights, please contact us to learn more about how those rights apply to your information.

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, regulatory requirements, or applicable law. Material changes will be communicated to clients through our normal communication channels, including our annual privacy notice. The "Last Updated" date at the top of this policy indicates when it was most recently revised.

13. Contact Information

If you have questions about this Privacy Policy, our GLBA compliance practices, or our data protection procedures, please contact us:

BlueChip Financial
Attn: Chief Compliance Officer
200 S. Wacker Drive, Suite 3100
Chicago, IL 60606
Phone: (312) 555-0275
Email: [email protected]

This Privacy Policy is provided in addition to and supplements our Form ADV Part 2A (Firm Brochure), which contains additional information about our advisory practices, privacy policies, and regulatory disclosures. Our Form ADV is available upon request or through the SEC's Investment Adviser Public Disclosure (IAPD) website at adviserinfo.sec.gov.