Skip to content
MSI Credit Solutions

Privacy Policy

Privacy Policy

Last Updated: February 24, 2026

MSI Credit Solutions (“Company,” “we,” “us,” or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our website, client portal, partner portal, and related services.

MSI Credit Solutions was founded in 2006 and provides credit repair and credit education services nationwide, excluding Georgia, Kansas, Louisiana, South Carolina, and Vermont, in compliance with applicable state regulations.

1. Information We Collect

Information You Provide Directly

  • Contact and Consultation Forms: Name, email address, phone number, and any details you include in your message. Form submissions are stored as internal records for follow-up purposes.
  • Client Portal Accounts: Name, email address, phone number, mailing address, and account credentials. Passwords are stored using one-way cryptographic hashing and are never stored in plain text.
  • Partner Portal Accounts: Business name, contact name, email address, phone number, and account credentials. Partner registrations require administrative approval before account activation.
  • SMS/Text Consent: If you opt in to receive text messages, we collect your phone number and consent preference. No mobile information will be shared with third parties/affiliates for marketing/promotional purposes.
  • Push Notification Subscriptions: If you opt in to receive push notifications through our client or partner portal, we collect your browser’s push subscription endpoint URL, encryption keys, and a device identifier. This data is stored in our database and linked to your user account.

Information Collected Automatically

  • Analytics Data: We use self-hosted Matomo analytics at analytics.msicredit.com (a first-party domain we own and operate). Matomo collects anonymized page view data, referring URLs, browser type, and general geographic region. This data is stored on our own server — it is never sent to third-party advertising or analytics platforms.
  • Cookies: See Section 3 (Cookie Policy) below for full details on the cookies we use.
  • IP Addresses: Your IP address may be logged for security purposes, server diagnostics, rate limiting, and fraud prevention. IP addresses associated with form submissions are stored temporarily and are not used for tracking or profiling.
  • Web Beacons and Device Identifiers: We may use web beacons (clear GIFs) and device identifiers to collect information about how you interact with our website and communications. This data helps us measure the effectiveness of our content and improve your experience.
  • Demographic Data: We may collect and analyze demographic and profile data about your activity on our website. Optional surveys may request contact information and demographic details (such as zip code or income level) to tailor your experience and display relevant content and advertising.
  • Location Data: Anonymous location data may be collected to customize and improve our services. This data is collected without personal identification.

2. How We Use Your Information

  • To provide credit repair and credit education services as described in your service agreement
  • To respond to inquiries submitted through our contact and consultation forms
  • To manage your client portal or partner portal account
  • To send transactional communications related to your account (magic link login emails, one-time passcodes, status updates)
  • To send SMS/text messages if you have opted in
  • To analyze website usage through our self-hosted Matomo analytics in order to improve our website and services
  • To tailor your experience and display content according to your preferences
  • To comply with legal obligations, including the Credit Repair Organizations Act (CROA) and applicable state regulations
  • To deliver push notifications about your account activity (such as login alerts and referral updates) if you have opted in
  • To detect and prevent fraud, unauthorized access, and abuse of our systems

3. Cookie Policy

We use a granular cookie consent system that gives you control over which cookies are active on your device. When you first visit our site, a consent banner will appear allowing you to choose your preferences.

Necessary Cookies

These cookies are required for the website to function and cannot be disabled. They include:

  • WordPress session cookies for logged-in users
  • Security cookies that help protect against cross-site request forgery

Analytics Cookies

These cookies are used by our self-hosted Matomo analytics system to understand how visitors use our website. Analytics cookies are only set if you explicitly grant consent through our cookie banner. Matomo analytics data is:

  • Stored on our own server at analytics.msicredit.com
  • Never shared with third parties
  • Never used for advertising or cross-site tracking
  • Configured to respect Do Not Track browser settings

Third-Party Cookies

Third-party advertising companies may use cookies and action tags (also known as single pixel GIFs or web beacons) to measure advertising effectiveness. Any information these third parties collect via cookies and action tags is completely anonymous. You may opt out of third-party interest-based advertising by visiting your browser’s privacy settings or the applicable opt-out mechanisms provided by those advertising networks.

Managing Your Cookie Preferences

You can change your cookie preferences at any time by clicking the “Cookie Settings” link in our website footer. Your preferences are stored in your browser’s local storage (not as a cookie) under the key msi_cookie_consent.

4. Passwordless Authentication

Our client and partner portals offer passwordless login options for your convenience and security:

  • Magic Links: A one-time login link sent to your registered email address. These links expire after 15 minutes and can only be used once.
  • One-Time Passcodes (OTP): A six-digit code sent to your registered email address. These codes expire after 5 minutes and can only be used once.

These tokens are cryptographically generated and stored as hashed values. Expired tokens are automatically cleaned up.

5. Data Storage and Security

We maintain stringent security measures to protect your information from loss, misuse, and alteration. Our site has strict security guidelines to guard against unauthorized access.

  • Your data is stored on our hosting infrastructure provided by WP Engine, which maintains SOC 2 Type II compliance and provides enterprise-grade security controls.
  • All data is transmitted over HTTPS (TLS encryption) between your browser and our servers.
  • Passwords are hashed using WordPress’s built-in cryptographic hashing (bcrypt/phpass). We never store passwords in plain text.
  • Portal authentication tokens (magic links and OTPs) are stored as hashed values and automatically expire.
  • Push notification subscriptions are stored in a dedicated database table on our hosting infrastructure. Notification delivery uses the Web Push protocol (VAPID) to communicate directly with your browser vendor (e.g., Google, Mozilla) — no third-party push notification services are involved.
  • Access to personal data is restricted to authorized personnel on a need-to-know basis.

Data Retention: We may retain personal data for as long as necessary to fulfill the purposes described in this Privacy Policy, comply with legal obligations, resolve disputes, and enforce our agreements. Some data may be kept indefinitely for record-keeping and compliance purposes.

6. Data Sharing

We do not sell, rent, or trade your personal information. No mobile information will be shared with third parties/affiliates for marketing/promotional purposes. We do not participate in ad networks or data broker exchanges. Your information may be shared only in the following limited circumstances:

  • Service Providers: We work with credit bureaus and creditors as necessary to provide credit repair services as described in your service agreement. Our vendors and service providers access data on our behalf under confidentiality agreements and provide assurance that they take reasonable steps to safeguard the data they hold on our behalf.
  • Hosting Provider: Our website is hosted by WP Engine, which processes data on our behalf under appropriate data protection agreements.
  • Legal Requirements: We may disclose information if required by law, court order, or government regulation, or when we have a good faith belief it is necessary to protect our rights or property.
  • Business Transfers: In the event of a merger, acquisition, liquidation, dissolution, or sale of assets, your personal information may be transferred to the successor or purchaser as part of that transaction.
  • SMS/Text Service Provider: Our SMS/text messaging service is operated through SimpleTexting. In connection with this service, personally identifiable information may be shared with trusted partners in order to provide you with relevant advertising, offers, or services. For SimpleTexting-specific data inquiries, you may contact nathan@simpletexting.net.
  • With Your Consent: We may share information with your express consent for purposes disclosed at the time of collection.

7. Your Rights

You have the right to:

  • Access the personal information we hold about you
  • Correct inaccurate or incomplete personal information
  • Delete your personal information, subject to our legal retention obligations
  • Withdraw consent for analytics cookies at any time via the Cookie Settings link in our footer
  • Opt out of SMS/text messages at any time by replying STOP
  • Opt out of promotional communications by sending an email to info@msicredit.com with REMOVE in the subject line
  • Unsubscribe from push notifications at any time through your portal account settings or by revoking notification permissions in your browser

To exercise any of these rights, please contact us at info@msicredit.com or call (866) 217-9841. We will respond to your request within 30 days.

If you are a California resident, you may request information once per calendar year regarding any company’s disclosure of personal information to third parties for their direct marketing purposes. To make such a request of us at no charge, please contact us at the email address above.

Ad Tracking: Third-party advertising companies may collect anonymous data about your interests based on your browsing activity. You may opt out of interest-based advertising by visiting your browser’s privacy settings or the applicable opt-out mechanisms provided by those advertising networks.

8. Credit Repair Organizations Act (CROA)

MSI Credit Solutions operates in compliance with the Credit Repair Organizations Act (15 U.S.C. §1679 et seq.). As required by CROA:

  • We provide a written disclosure of your rights before you sign any contract
  • We do not charge fees before services are fully rendered
  • You have the right to cancel your contract within three business days of signing without penalty
  • We do not make misleading claims about what credit repair can achieve

9. Children’s Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, please contact us so we can delete it.

10. Links to Other Sites

Our website may contain links to other websites. MSI Credit Solutions is not responsible for the privacy practices or content of these linked websites. We will not transmit personally identifiable information to any linked website without your consent.

11. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will revise the “Last Updated” date at the top of this page. We encourage you to review this page periodically to stay informed about how we protect your information.

12. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

Back to Home

Just now