22 Spots Left for 2026
Only 22 projects remain on our 2026 roster. If you’re done waiting and ready to start winning, now is the moment. Secure your spot today—before we are booked!
Privacy Policy
Effective Date: April 30, 2025
Last Updated: April 30, 2025
1. Introduction and Scope
Welcome to Website Design Agency (WebsiteDA.com), a part of the Digital Dive network. Website Design Agency (WebsiteDA.com) (“we,” “us,” or “our”) is deeply committed to respecting and protecting your privacy. This Privacy Policy details our practices regarding the collection, use, processing, protection, and disclosure of Personal Data we receive from users of our website (https://websiteda.com), associated applications, digital products, and services (collectively, the “Services”).
We strive for transparency and robust data governance. This policy explains what information we collect, why we collect it, how we use it, the controls you have over your Personal Data, and the procedures we have in place to protect it. By accessing or using our Services, you signify your understanding of the terms set out in this Privacy Policy. This policy is designed to comply with applicable data protection laws, including but not limited to the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA).
2. Definitions
- Personal Data: Any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
- Processing: Any operation or set of operations which is performed on Personal Data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
- Data Controller: The entity which, alone or jointly with others, determines the purposes and means of the Processing of Personal Data. For the purposes of this policy, Website Design Agency (WebsiteDA.com) is the Data Controller.
- Data Processor: An entity which Processes Personal Data on behalf of the Controller.
3. Information We Collect
We collect Personal Data necessary to provide and improve our Services, fulfill our contractual obligations, comply with legal requirements, and communicate with you. The types of information we may collect include:
| Type of Data | Description & Examples | How We Collect It | Purpose of Collection |
|---|---|---|---|
| Personal Identification | Full name, email address, postal address, phone number, account username. | Registration forms, contact forms, order forms, account profile setup, email. | Account creation, communication, service delivery, identity verification, support. |
| Transaction & Billing | Billing address, payment card details (processed via secure third-party processors), transaction history. | Order forms, subscription sign-ups, payment processing portals. | Processing payments, fulfilling orders, managing subscriptions, fraud prevention, accounting. |
| Technical Information | IP address, browser type/version, operating system, device identifiers, screen resolution, language preferences, referring URLs. | Automated collection via web server logs, cookies, pixels, analytics tools. | Service functionality, security, network management, performance monitoring, compatibility assurance, analytics. |
| Usage Data | Pages visited, features used, time spent on site/pages, clickstream data, interaction patterns, search queries within our Services. | Automated collection via cookies, tracking pixels, analytics plugins, server logs. | Service improvement, user experience optimization, feature development, content personalization, analytics. |
| Communication Content | Content of emails, messages via contact forms or support channels, feedback, survey responses, inquiries. | Direct user submission via email, forms, support systems, surveys. | Responding to inquiries, providing support, improving services, addressing issues. |
| Marketing & Preferences | Newsletter subscriptions, communication preferences (opt-ins/opt-outs), engagement with marketing materials (e.g., email opens/clicks). | Subscription forms, account settings, marketing campaign tools, email platforms. | Sending relevant updates/offers (with consent), managing communication preferences, measuring marketing effectiveness. |
| Behavioral Tracking Data | Information gathered through cookies and similar technologies regarding online activities over time and across third-party websites or online services (where applicable and consented to). | Cookies, web beacons, tracking pixels deployed on our Services. | Analytics, personalization, targeted advertising (where applicable and consented to). |
We practice data minimization, collecting only the Personal Data that is relevant and necessary for the specified purposes.
4. Legal Basis for Processing Personal Data
Our processing of your Personal Data is based on legally recognized grounds under applicable data protection laws, including:
- Consent: Where you have given clear and affirmative consent for us to process your Personal Data for one or more specific purposes (e.g., subscribing to a newsletter). You have the right to withdraw consent at any time.
- Contract Performance: Where processing is necessary for the performance of a contract to which you are a party or to take steps at your request before entering into such a contract (e.g., providing the services you subscribed to, processing payments).
- Legal Obligations: Where processing is necessary for compliance with a legal obligation to which we are subject (e.g., tax laws, regulatory requirements, responding to lawful requests).
- Legitimate Interests: Where processing is necessary for the purposes of the legitimate interests pursued by us or by a third party, except where such interests are overridden by your fundamental rights and freedoms (e.g., improving our Services, ensuring network security, preventing fraud, internal administrative purposes, direct marketing to existing customers under certain conditions). We conduct balancing tests for legitimate interest processing.
- Protection of Vital Interests: Where processing is necessary to protect your vital interests or those of another natural person (rarely applicable in our context).
5. How We Use Your Information
We use the collected Personal Data for the following purposes, linked to the legal bases described above:
| Usage Category | Specific Purposes | Primary Legal Basis(es) |
|---|---|---|
| Service Delivery & Operation | Provide, operate, maintain, and improve our Services; authenticate users; process transactions; manage accounts and subscriptions. | Contract Performance, Legitimate Interests |
| Customer Support | Respond to your inquiries, provide technical support, resolve issues, and manage communications. | Contract Performance, Legitimate Interests |
| Communication & Outreach | Send transactional emails (e.g., confirmations, password resets), service updates, security alerts, and (with consent) promotional materials/newsletters. | Contract Performance, Legal Obligation, Consent |
| Personalization | Tailor content, features, and user experience based on preferences and usage patterns (where applicable). | Legitimate Interests, Consent |
| Analytics & Improvement | Analyze usage trends, monitor performance, gather demographic information, conduct research, and improve Service functionality and effectiveness. | Legitimate Interests, Consent |
| Security & Compliance | Prevent fraud, enforce our terms of service, protect the security and integrity of our Services, comply with legal and regulatory obligations. | Legal Obligation, Legitimate Interests, Contract Perf. |
We will not use your Personal Data for purposes materially different from those disclosed in this policy without notifying you and obtaining your consent where required.
6. Use of Cookies and Tracking Technologies
We use cookies (small text files placed on your device) and similar tracking technologies (like web beacons, pixels, and scripts) to operate our Services effectively, enhance user experience, analyze usage, and potentially for marketing purposes.
- Types of Cookies We May Use:
- Strictly Necessary Cookies: Essential for the website to function (e.g., session management, secure login, shopping cart). Cannot be disabled.
- Performance/Analytical Cookies: Collect anonymous data on how visitors use our Services (e.g., page views, traffic sources) to help us improve performance.
- Functionality Cookies: Remember choices you make (e.g., username, language, region) to provide enhanced, personalized features.
- Targeting/Marketing Cookies: Track browsing habits to deliver targeted advertising relevant to your interests (used only with explicit consent where required). May be set by us or third-party advertising partners.
- Your Choices: Most web browsers allow you to control cookies through their settings preferences. You can typically set your browser to block cookies, delete existing cookies, or alert you when cookies are being sent. Our website may also feature a cookie consent management tool allowing you to customize your non-essential cookie preferences. Please note that disabling or blocking essential cookies may impact the functionality of our Services.
7. Data Sharing and Disclosure
We do not sell your Personal Data. We may share your Personal Data with trusted third parties only under the following limited circumstances and with appropriate safeguards:
- Service Providers: We engage third-party companies and individuals (Data Processors) to perform services on our behalf (e.g., website hosting, cloud storage, payment processing, email delivery, data analytics, customer support platforms). These providers are contractually obligated to process your data securely, only for the specific purposes we instruct, and in accordance with this Privacy Policy and applicable laws.
- Payment Processors: To process payments securely, we share necessary transaction and billing information with specialized third-party payment gateways. We do not store full credit card numbers on our servers.
- Legal Requirements: We may disclose your Personal Data if required to do so by law or in the good faith belief that such action is necessary to: (a) comply with a legal obligation, subpoena, court order, or government request; (b) protect and defend our rights or property; (c) prevent or investigate possible wrongdoing in connection with the Services; (d) protect the personal safety of users of the Services or the public; or (e) protect against legal liability.
- Business Transfers: In the event of a merger, acquisition, financing due diligence, reorganization, bankruptcy, receivership, sale of company assets, or transition of service to another provider, your Personal Data may be transferred as part of that transaction, subject to standard confidentiality arrangements and provided the successor entity honors the commitments made in this Privacy Policy or provides notice of changes.
- With Your Consent: We may share your information with other third parties when we have your explicit consent to do so.
We perform due diligence on our third-party service providers to ensure they maintain adequate data protection standards.
8. Data Storage, Security, and International Transfers
- Security Measures: We implement reasonable and appropriate technical and organizational security measures designed to protect the security of any Personal Data we process. These include, but are not limited to: Secure Sockets Layer (SSL)/Transport Layer Security (TLS) encryption for data transmission, regular security assessments, access controls, secure server infrastructure, data backup procedures, and employee training. However, please remember that no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security.
- Data Storage Location: Your Personal Data may be stored and processed in any country where we have facilities or in which we engage service providers. Currently, our primary data storage is located in the United States.
- International Data Transfers: If you are accessing our Services from regions outside the United States, please note that your information may be transferred to, stored, and processed in the United States, which may have data protection laws that differ from those in your jurisdiction. We will take appropriate safeguards to ensure that your Personal Data remains protected in accordance with this Privacy Policy and applicable law. For transfers originating from the European Economic Area (EEA), UK, or Switzerland, these safeguards may include implementing Standard Contractual Clauses (SCCs) approved by the European Commission or other legally recognized transfer mechanisms.
9. Data Retention
We retain your Personal Data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements, resolving disputes, and enforcing our agreements. The criteria used to determine our retention periods include the duration of your active relationship with us, the necessity of the data, our legal obligations, and the sensitivity of the data. When no longer required, we will securely delete or anonymize it.
10. Your Data Protection Rights
Depending on your location and applicable laws (such as GDPR or CCPA/CPRA), you may have rights regarding your Personal Data, including:
- Right to Access: Request access to and a copy of your Personal Data.
- Right to Rectification: Request correction of inaccurate or incomplete data.
- Right to Erasure (‘Right to be Forgotten’): Request deletion of your data under certain conditions.
- Right to Restrict Processing: Request the restriction of processing under certain circumstances.
- Right to Data Portability: Request to receive your data in a machine-readable format.
- Right to Object: Object to processing based on legitimate interests or for direct marketing.
- Right to Withdraw Consent: Withdraw your consent at any time for consent-based processing.
- Rights under CCPA/CPRA: Including the right to opt-out of sale/sharing and limit the use of sensitive personal information.
- Right to Lodge a Complaint: Lodge a complaint with a relevant data protection authority.
To exercise any of these rights, please contact us using the information in Section 21. We will respond consistent with applicable law and may need to verify your identity before processing your request.
11. Children’s Privacy
Our Services are not directed to individuals under the age of 18. We do not knowingly collect Personal Data from children. If you believe a child has provided us with Personal Data, please contact us immediately.
12. Links to Other Websites and Services
Our Services may contain links to third-party websites. We have no control over and assume no responsibility for the content or privacy practices of any third-party sites. We strongly advise you to review the Privacy Policy of every site you visit.
13. Automated Decision-Making and Profiling
We do not currently engage in automated decision-making or profiling that produces legal or similarly significant effects concerning you.
14. Marketing Communications
We will only send you direct marketing communications if you have opted-in. You can opt-out at any time by using the “unsubscribe” link in the emails or by contacting us directly.
15. Consent Management
Where our processing is based on consent, we use clear opt-in mechanisms and provide easy ways to withdraw consent.
16. Data Accuracy and Your Responsibility
We rely on you to ensure the Personal Data you provide is accurate, complete, and current. Please update your account information as needed.
17. Governing Law and Jurisdiction
This Privacy Policy shall be governed by and construed in accordance with the laws of the State of Kansas, United States, without regard to its conflict of law principles.
18. Data Breach Notification Procedures
In the event of a Personal Data breach likely to result in a risk to individuals, we have procedures to detect, investigate, and report the breach to affected individuals and relevant authorities as required by law.
19. Third-Party Vendor Due Diligence
We conduct reasonable due diligence on third-party vendors who handle Personal Data on our behalf to ensure they meet data protection standards consistent with this policy.
20. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. If we make material changes, we will provide prominent notice. We encourage you to review this policy periodically.
21. Contact Information
If you have any questions, comments, or concerns about this Privacy Policy or wish to exercise your rights, please contact our Data Compliance Team:
Website Design Agency (WebsiteDA.com) Attn: Data Compliance Team
Email: [email protected]