Design Privacy

Privacy Notice

Introduction

We use this privacy notice to disclose the privacy practices of Design Privacy Limited in accordance with the Jamaican Data Protection Act. We aim to help you understand what personal data we collect, how we use it, and what control you have over it. This notice applies to the personal data collected by us, including through our website. This notice will define the following:

  1. What personal data is collected from you.
  2. How personal data is collected, used, shared, stored, and otherwise processed.
  3. Your choices and rights regarding the use of your data.
  4. How you can contact us for issues such as to correct inaccuracies of your data or to request the removal of your personal data.

Please read the following privacy notice to understand the processing, collection, sharing, protection, and your rights associated with your personal data.

Who Are We

Design Privacy is the provider of a self-registration toolkit that assists data controllers in complying with data protection regulations. For the purposes of this notice, we act as the "Data Controller", because we determine how your personal data is used and processed.

We have appointed Mrs Kerri-Anne Reckord for assisting with questions, requests, and complaints in regards to this privacy notice and the collection and processing of your personal data. For details on how to contact us, see the Contact Information section at the end of this notice.

Data We Collect

We have access to data that you voluntarily provide through our website form. Through these means, we collect the following types of data:

  • Name
  • Employment Details (Role, Company Name)
  • Online Identifiers (Email Address, IP Address)

Your personal data is used for the following purposes in general:

  • Ensuring authorized access to compliance tools used to govern the Data Protection Act as outlined in our Service Level Agreement.
  • Providing personalized experiences on our website and throughout our various services.

Legal Basis of Processing

Our legal basis for processing your personal data includes:

  • The performance of a contract with you.
  • Our legitimate interests.

How We Share Your Data

Your personal data is shared with the following third parties:

Firebase

Firebase is a subsidiary of Google, which is headquartered in Mountain View, California, USA.

QuickBooks

QuickBooks is a product of Intuit Inc., which is headquartered in Mountain View, California, USA.

Graph DB

Neo4j, Inc. is headquartered in San Mateo, California, USA.

Zapier

Zapier is headquartered in Sunnyvale, California, USA, although they operate as a fully remote company with employees distributed around the world.

Microsoft

Microsoft Corporation is headquartered in Redmond, Washington, USA. We share data with Microsoft for file management and communication purposes.

HubSpot

HubSpot, Inc. is headquartered in Cambridge, Massachusetts, USA. We share data with HubSpot for customer relationship management, marketing automation, and communication purposes.

Where We Process Your Data

Under certain circumstances, your personal data that we collect may be transferred to other countries for various purposes outlined below.

QuickBooks (Intuit Inc.) - Mountain View, California, USA

Processing of payment - The purpose of this processing is to facilitate transactions, manage invoicing, and maintain financial records. This involves collecting and processing data such as names, email addresses, billing addresses, and payment details of customers.

Firebase (Google) - Mountain View, California, USA

Storing and processing data - The purpose of this processing is to store and process personal data for various purposes, such as authentication, database management, and hosting. This includes personal data such as login credentials, app usage data, and other data required to provide services to users.

Neo4j (Graph DB) - San Mateo, California, USA

Storing RDF (Resource Description Framework) statements and generating Registration Particulars - The purpose of this processing is to represent relationships between entities, store user profiles, and generate registration particulars. This involves storing and processing names and email addresses.

Zapier - Sunnyvale, California, USA

Automating the sharing of information between Wix and QuickBooks - The purpose of this processing is to automate the sharing of information between Wix and QuickBooks for the purpose of processing payments and managing financial records.

Microsoft Corporation - Redmond, Washington, USA

File management and communication - The purpose of this processing is to store and manage documents, facilitate team communication, and provide collaboration tools. This involves processing names, email addresses, and file content shared through Microsoft services.

HubSpot, Inc. - Cambridge, Massachusetts, USA

Customer relationship management and marketing automation - The purpose of this processing is to manage customer relationships, track interactions, automate marketing campaigns, and facilitate communication. This involves processing names, email addresses, company information, and interaction history.

How Long We Store Your Data

We will only retain your personal data for as long as necessary to fulfill the purposes for which it was collected and in accordance with applicable data protection laws.

  • Firebase - Data retained for 90 days after service level agreement is terminated, then deleted.
  • QuickBooks - Data retained for 6 years after service level agreement is terminated, then deleted.
  • Wix - Data retained for 6 years after service level agreement is terminated, then deleted.
  • Zapier - Information stored for 30 days.
  • Microsoft - Data retained for 90 days after service level agreement is terminated, then deleted.
  • HubSpot - Data retained for 2 years after service level agreement is terminated, then deleted.

Your Rights Regarding Your Personal Data

We aim to maintain data that is accurate and up-to-date. Under the circumstances that your personal data changes (e.g., moving addresses), please notify us of any changes or update your data.

You have the legal right to the following:

  • To be informed as to whether we process your personal data.
  • Request all personal data we have collected about you, if any.
  • Request transfer of your personal data to another data controller.
  • Withdraw consent given for the processing of your personal data at any time.
  • Object to the processing of your personal data for the purposes of direct marketing at any time.
  • Request rectification of any errors or omissions in the personal data we have collected about you.
  • In certain instances, you have the legal right to prevent the processing or processing.
  • In certain instances, you have the legal right to request erasure of your personal data.

To exercise these rights, please contact us via email, mail, as indicated below in the "Contact Information" section.

Contact Information

For any questions, concerns, or requests to exercise your rights outlined in this privacy notice, please contact us via email at dpo@designprivacy.io

Design Privacy Limited

61 Duke Street, Kingston Jamaica