1. Information We Collect
We process only what’s necessary for service delivery:
From Clients:
- Contact details (name, email, phone)
- Payment information (processed via PCI-compliant gateways)
- Project files & instructions
Automatically:
- IP address, browser type
- Cookies (essential, analytics, preferences)
2. How We Use Your Data
| Purpose | Legal Basis |
|---|---|
| Service delivery | Contractual obligation |
| Payment processing | Legal requirement |
| Security monitoring | Legitimate interest |
| Service improvements | Consent (where required) |
3. Data Sharing & Disclosure
We never sell your data. Limited sharing with:
- Payment processors (Stripe, PayPal)
- Cloud storage providers (AWS, Google Cloud)
- Legal authorities (if required by law)
4. International Data Transfers
- Data stored in US servers
- For cross-border transfers, we use:
✔ EU Standard Contractual Clauses
✔ Privacy Shield-certified partners (where applicable)
5. Security Measures
- Technical: AES-256 encryption, 2FA, DDoS protection
- Physical: Biometric server access
- Administrative: Annual staff training
6. Your Rights
You may:
✓ Access your personal data
✓ Request correction/deletion
✓ Withdraw consent (where applicable)
✓ Object to processing
✓ Lodge complaints with regulators
Submit requests to: [email protected]
7. Data Retention
We retain:
- Client records: 2 years for tax compliance
- Project files: 3 days post-completion (extendable)
- Backups: Encrypted for 2 days
8. Cookies & Tracking
- Essential cookies auto-applied.
9. Children’s Privacy
We do not knowingly process data for users under 16.
10. Policy Updates
Notify clients 30 days before material changes via:
- Website banners
- Direct email (for active projects)
