Privacy Policy
We are staunchly committed to protecting and meticulously safeguarding the privacy, confidentiality, and security of personal information relating to our website visitors and service users. This commitment extends across all our operations, systems, and processes.
This policy applies where we are acting as a data controller with respect to the personal data of our website visitors and service users; in other words, where we determine the purposes and means of the processing of that personal data. In this role, we are responsible for maintaining comprehensive oversight of how your personal information is collected, used, and protected throughout our systems.
We may process usage data (“usage data”), which comprehensively includes browser type, operating system, page views, navigation patterns, timing of visits, device information, and interaction metrics. This information is collected through automated logging systems, cookies, and analytics tools and may include time spent on pages, features accessed, and user journey patterns. The source of this data is our analytics software and server logs. We process this information for several important purposes, including improving website performance, enhancing user experience, analyzing trends, and optimizing content delivery, which enables us to deliver better services, personalize user experiences, and maintain system security. The legal basis for this processing is our legitimate interests in monitoring and improving our website and services.
We may process account data (“account data”), which comprehensively includes name, email address, telephone number, billing address, and account settings. This information is collected through registration forms, account creation processes, and direct user input and may include communication preferences, subscription status, and account history. The source of this data is the user submitting the information. We process this information for account management, service delivery, communication purposes, and billing administration, which enables us to provide our services, maintain accurate records, and ensure proper account functionality. The legal basis for this processing is the performance of a contract between you and us and/or taking steps, at your request, to enter into such a contract.
We may process profile data (“profile data”), which comprehensively includes professional information, company details, industry sector, preferences, and marketing choices. This information is collected through profile completion forms, surveys, and user preferences settings and may include business objectives, service interests, and communication preferences. The source of this data is the user providing the information. We process this information for service customization, marketing optimization, relationship management, and service delivery improvement, which enables us to provide personalized services, relevant communications, and targeted solutions. The legal basis for this processing is our legitimate interests in providing and improving our services.
You have the right to access your personal data, which means you can obtain a confirmation of whether we process your personal data and receive a copy of that data. This includes the ability to view your stored information, understand how it’s being used, and verify its accuracy. To exercise this right, you can submit a written request through our designated contact channels, specifying the information you wish to access. We will respond within 30 days and may require government-issued identification, proof of address, and account verification to verify your identity.
You have the right to rectification, which means you can request the correction or completion of any inaccurate or incomplete personal data we hold about you. This includes the ability to update personal information, correct errors, and modify outdated details. To exercise this right, you can submit a correction request through our website or contact our support team directly. We will process your request within 15 days and may require account verification, supporting documentation, and specific details about the information to be corrected.
You have the right to erasure, also known as the right to be forgotten, which means you can request the deletion of your personal data when it’s no longer necessary for the purposes for which it was collected. This includes the ability to remove account information, delete usage history, and withdraw previous consents. To exercise this right, you can submit an erasure request through our dedicated privacy portal or contact our data protection officer. We will respond within 30 days and may require password confirmation, identity verification, and explicit confirmation of erasure request.
You have the right to restrict processing, which means you can limit the ways we use your personal data while still storing it. This includes the ability to pause data processing, temporarily stop marketing communications, and limit data usage. To exercise this right, you can adjust your privacy settings or submit a formal restriction request. We will respond within 15 days and may require account authentication, specific processing details, and reason for restriction.
You have the right to data portability, which means you can receive your personal data in a structured, commonly used format and transmit it to another service provider. This includes the ability to download your data, transfer information between services, and receive data in a machine-readable format. To exercise this right, you can request a data export through our user dashboard or contact our support team. We will respond within 30 days and may require identity verification, account ownership proof, and destination service details.Data Processing and Security Measures
We process Service Data which includes user account details, service preferences, usage patterns, and customization settings. This processing involves automated collection, analysis, and storage, enabling us to deliver personalized digital marketing solutions. For example, in the context of marketing, this includes tracking campaign performance, website optimization metrics, and client engagement patterns. The legal basis for this processing is legitimate business interests and contractual necessity, specifically to provide and improve our bespoke digital services.
We process Technical Data which includes device information, IP addresses, browser types, and system configurations. This processing involves automated logging, performance monitoring, and technical analysis, enabling us to optimize website functionality and user experience. For example, in the context of marketing, this includes analyzing page load times, user interface interactions, and device compatibility. The legal basis for this processing is legitimate interests, specifically to maintain and improve our technical services.
We process Communication Data which includes email correspondence, chat logs, feedback forms, and support tickets. This processing involves storage, analysis, and response management, enabling us to provide effective customer support and service communication. For example, in the context of marketing, this includes campaign feedback, client consultations, and service updates. The legal basis for this processing is consent and contractual necessity, specifically to maintain client relationships and provide requested services.
We process Transaction Data which includes service purchases, billing information, and payment records. This processing involves secure payment processing, financial record keeping, and transaction verification, enabling us to manage business operations and client accounts. For example, in the context of marketing, this includes service subscriptions, project payments, and billing history. The legal basis for this processing is contractual necessity and legal obligation, specifically to fulfill our business commitments and comply with financial regulations.
We process Preference Data which includes marketing preferences, service customizations, and communication preferences. This processing involves preference management, personalization systems, and preference analysis, enabling us to deliver tailored services and communications. For example, in the context of marketing, this includes campaign preferences, content preferences, and communication frequency choices. The legal basis for this processing is consent and legitimate interests, specifically to provide personalized services and respect user choices.
Security Implementation
Our comprehensive encryption protocols ensure end-to-end protection of your data, incorporating industry-standard algorithms and regular security updates to maintain data integrity. This includes regular security assessments and penetration testing by qualified professionals.
We implement multi-layered security infrastructure, including advanced firewalls and intrusion detection systems that continuously monitor for and prevent unauthorized access attempts. This infrastructure undergoes regular updates and enhancements.
Access to personal data is strictly controlled through role-based permissions, multi-factor authentication, and detailed access logs. We maintain comprehensive audit trails of all data access and modifications.
Our continuous monitoring systems provide real-time threat detection and automated response protocols, ensuring immediate action against potential security threats.
We maintain comprehensive backup procedures with encrypted offsite storage and regular recovery testing, ensuring data availability and integrity.
All staff undergo regular security awareness training and must comply with detailed data protection protocols, including specific training for handling sensitive data.
International Data Transfers
We may transfer your personal data to countries outside your jurisdiction. These transfers are protected by appropriate safeguards, including Standard Contractual Clauses, Privacy Shield certification, and Binding Corporate Rules. Each international transfer is conducted under strict protocols that ensure:
– Adequate data protection standards
– Compliant processing procedures
– Enforceable data subject rights
– Effective legal remedies
International transfers are protected by EU Standard Contractual Clauses, ISO 27001 standards, and GDPR compliance measures, ensuring compliance with international data protection regulations. We implement additional measures including:
– Regular compliance audits
– Data protection impact assessments
– Documented transfer mechanisms
– Continuous monitoring procedures
Regarding international transfers, you maintain specific rights including:
– Right to information about transfers
– Right to object to transfers
– Right to withdraw consent
– Right to data protection guarantees
Data Retention
We maintain specific retention periods for different data categories:
Account Information: Retained for the duration of active account plus 2 years for business continuity and legal compliance
Usage Data: Retained for 12 months for service optimization and analysis
Transaction Records: Retained for 7 years to comply with financial regulations
Communication History: Retained for 3 years to maintain service continuity
Technical Logs: Retained for 6 months for security and performance analysis
These retention periods are determined by:
– Legal requirements
– Business purposes
– Technical necessities
– User preferences
Special circumstances affecting retention:
– Legal obligations
– Dispute resolution
– Security investigationsCookie Policy and Management
Essential cookies serve fundamental functions for our website’s core operations. These cookies process authentication tokens, security parameters, and session data to enable basic functionality. For example, in our marketing context, these cookies maintain secure login states when accessing custom marketing dashboards and campaign analytics.
Functional cookies enhance your browsing experience by remembering your preferences and customizations. They process interface settings and user choices to enable personalized content delivery. In our marketing services, these cookies remember your preferred reporting formats and dashboard layouts for more efficient campaign management.
Analytics cookies help us understand how visitors interact with our marketing solutions. These cookies process behavioral data and interaction patterns to enable service improvements. For example, they track how users engage with different marketing tools and campaign features to optimize our service offerings.
Performance cookies assess and optimize our website’s technical operation. They process loading times, server responses, and technical metrics to enable smooth service delivery. In our marketing platform, these cookies ensure rapid loading of campaign data and analytics reports.
Cookie Management
You can manage your cookie preferences through your browser settings, our consent management tool, privacy preferences center, and account settings. We respect your choices and provide easy access to update these preferences at any time.
GDPR Compliance
We maintain strict compliance with GDPR requirements for EU residents. Our processes ensure explicit consent collection, minimal data processing, clear purpose limitation, appropriate storage periods, and complete transparency in all data handling activities.
CCPA Compliance
California residents are entitled to specific rights regarding their personal information. We uphold your right to know about collected information, request data deletion, opt out of data sales, receive equal service regardless of privacy choices, and access your collected information.
COPPA Compliance
For users under 13, we implement strict protection measures including age verification, parental consent requirements, limited data collection practices, enhanced protection measures, and comprehensive parental access rights to any collected information.
Updates and Changes
Our policy management includes regular review procedures, proactive user notifications, consent renewal requirements, detailed change documentation, and ongoing compliance monitoring to ensure alignment with current regulations and best practices.
Contact Information
For privacy-related inquiries:
Primary Contact: [email protected]
Response Time: Within 48 hours
Verification Required: For data-related requests
Available Support: Privacy concerns, data requests, rights exercise
This policy was created specifically for bespokelydigital.com and covers all associated services within the marketing industry.
