Privacy Policy

1. Information We Collect

1.1 Information You Provide Directly

When you interact with our website or engage us for services, you may provide personal information including:

Contact and quote forms: Your name, email address, phone number, business name, and project details
Newsletter sign-up: Your email address
Client engagements: Billing information, project files, brand assets, and communications related to your project

We do not store credit card numbers directly. Payment processing is handled by Stripe, a PCI DSS-compliant payment processor.

1.2 Information Collected Automatically

When you visit our website, certain information is collected automatically through analytics and monitoring tools:

Google Analytics (GA4): Page views, session duration, referral source, device type, and approximate location (anonymized)
Error monitoring (Sentry): Browser and operating system information, error context for debugging
Server logs: IP address, browser type, pages visited, and timestamps
Cookies: See Section 4 below

1.3 Information From Third Parties

We may receive limited information from third-party sources such as referral partners or advertising platforms (e.g., Google Ads conversion tracking). This data is used solely to measure the effectiveness of marketing campaigns and is not sold or shared beyond that purpose.

2. How We Use Your Information

We use the information we collect to:

Respond to inquiries and quote requests
Deliver contracted services
Send invoices and process payments
Communicate with you about your project, account, or services
Improve our website and services through analytics and error monitoring
Comply with legal obligations
Send marketing communications (only with your explicit consent — you can opt out at any time)

We do not sell your personal data. Period. We share information only with service providers who help us operate our business, and only to the extent necessary:

Service	Purpose	Data Shared
Vercel	Website hosting	IP address, server logs
Supabase	Database & authentication	User data, project data
Resend	Transactional email	Name, email
Google Analytics	Website analytics	Anonymized usage data
Stripe	Payment processing	Billing info
Sentry	Error monitoring	Device/browser info, error context
ActiveCampaign	Email marketing	Name, email (opt-in lists)

We may also disclose information to comply with applicable law, respond to legal process, or protect our rights. We do not share data with advertising networks for targeting purposes.

4. Cookies & Tracking

Cookies are small text files stored on your device when you visit a website. We use them in the following categories:

Essential cookies: Required for the site to function properly (e.g., session management, security)
Analytics cookies: Help us understand how visitors use our site (Google Analytics). These collect anonymized data about page views, session duration, and referral sources.
Functional cookies: Store your preferences such as theme (light/dark mode)

You can control cookies through your browser settings. Disabling certain cookies may affect site functionality.

5. Data Retention

We retain personal information as follows:

Contact form submissions: Retained for 12 months after last contact, then deleted
Client project data: Retained for 2 years after contract completion
Analytics data: Subject to Google Analytics retention settings (currently 14 months)
Email list data: Retained until you unsubscribe or request deletion
Billing records: Retained as required by applicable tax and financial regulations

6. Your Rights

US Residents

Depending on your state of residence, you may have the right to:

Know what personal data we hold about you
Request deletion of your personal data
Opt out of the sale of personal data (not applicable — we do not sell data)

EU/UK Residents (GDPR)

If you are located in the EU or UK, you have additional rights including:

Right to access your personal data
Right to rectification (correcting inaccurate data)
Right to erasure (“right to be forgotten”)
Right to restrict processing
Right to data portability
Right to object to processing
Right to withdraw consent

To exercise any of these rights, email privacy@digitalomicsmarketing.com with the subject line “Privacy Request.” We will respond within 30 business days.

7. Security

We take reasonable measures to protect your information, including:

HTTPS encryption on all pages
Row-level security on all database tables (Supabase RLS)
Rate limiting on all forms to prevent abuse
Automated dependency scanning for vulnerabilities
Error monitoring for early detection of issues
Payment data handled exclusively by Stripe (PCI DSS compliant) — we never store card numbers

In the event of a data breach affecting your personal information, we will notify you as required by applicable law.

8. Children's Privacy

Our services are not directed at children under 13 (or under 16 for GDPR purposes). We do not knowingly collect personal information from minors. If we become aware that we have collected data from a minor, we will delete it promptly. If you believe a minor has submitted personal data through our site, please contact us at privacy@digitalomicsmarketing.com.

9. Third-Party Services

Our website may contain links to third-party sites and integrates third-party services (listed in Section 3 above). We are not responsible for the privacy practices of these third parties. We encourage you to review each provider's privacy policy when using their services.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted at this URL with an updated “Last Updated” date. For material changes, we will notify registered users via email. Continued use of our website after changes are posted constitutes acceptance of the updated policy.

11. Contact Us

If you have questions about this Privacy Policy or want to exercise your rights, contact us:

DigitalOmics Marketing
Email: privacy@digitalomicsmarketing.com
General inquiries: Contact page

Also see our Terms of Service.