This Privacy Policy explains what we collect, why we collect it, how we use and share it, how long we keep it, and what rights you have. It applies to our website, contact forms, email interactions, proposal/contract exchanges, client portals, and any other digital touchpoints we control (collectively, the “Services”).

No physical shipping. We do not sell or ship physical goods. All deliverables are provided digitally.

1) Information We Collect

We only collect information that helps us provide and improve our Services, communicate with you, and meet legal or contractual obligations.

A. Information you provide directly

• Contact details: name, email address, phone number, company name, job title, and region/country (e.g., via contact forms or email).
• Project details: goals, brand guidelines, content you supply (text, images, logos), timelines, and other materials necessary to plan and deliver your website.
• Account/Access details: if you ask us to work on your site/hosting, we may receive admin credentials or API keys. (We encourage secure, revocable access—e.g., temporary accounts).
• Commercial information: invoices, payment confirmation details (amount, date, invoice number). We do not store your full card data; payments are handled by your chosen payment processor.
• Testimonials/feedback: if you choose to provide a review or case‑study quote.
• Support communications: messages you send to support@studiowebsphere.com.

B. Information collected automatically

• Usage and analytics data: pages viewed, time on page, clicks, referring pages, device type, browser, operating system, approximate location (city/region), and IP address.
• Cookies and similar technologies: used to maintain sessions, remember preferences, and measure site performance. (See Section 7 for cookie controls.)

C. Information from third parties (when you ask us to integrate)

• If you ask us to integrate tools (e.g., analytics, forms, email services), we may receive limited data from those providers solely to complete your requested setup. We do not use that data beyond the integration work.

2) Why We Use Your Information (Purposes)

We process personal information for the following purposes:

1. Responding to inquiries & proposals – to answer questions, scope projects, and prepare quotes.
2. Providing Services – to plan, design, build, and deliver websites and related assets, including requested integrations and training.
3. Account & access management – to set up or manage user access when you authorize us to work on your hosting/website.
4. Client support & maintenance – to deliver updates, fixes, and support within the scope of your plan.
5. Payments & billing – to send invoices, track payments, and maintain tax/compliance records.
6. Website improvement & security – to analyze usage, test features, troubleshoot issues, and protect our Services from fraud/abuse.
7. Legal & compliance – to comply with legal obligations, enforce agreements, and resolve disputes.
8. Consent‑based communications – to send updates or resources you specifically request (you can opt out anytime).

3) Legal Bases (How We Justify Processing)

Depending on your location, we rely on one or more of these bases:

• Contract – to provide the Services you request or to take steps at your request (e.g., proposals).
• Legitimate interests – to operate, secure, and improve our Services in ways that do not override your privacy rights.
• Consent – for non‑essential cookies, certain communications, testimonials, or when local law requires your opt‑in.
• Legal obligation – for tax, accounting, and other mandatory record‑keeping.

4) How We Share Information

We do not sell personal information. We may share it in these limited cases:

• Service Providers (“processors”) – hosting, email, project management, analytics, and billing tools that support our operations. They are contractually bound to protect your data and use it only on our instructions.
• Subcontracted professionals – designers, writers, or developers engaged on your project under confidentiality obligations.
• Legal, safety, and compliance – if required by law, court order, or to protect rights, property, or safety.
• Business transitions – in case of a merger, acquisition, or asset transfer, your data may be transferred under the same privacy commitments.
• With your direction – for example, if you ask us to integrate with a third‑party tool, we share only what is needed to complete the integration.

5) International Transfers

We are a digital‑services business and may store/process data in multiple locations. Where data crosses borders, we use appropriate safeguards (e.g., contractual protections) to help ensure your rights are protected. If you are outside our base country and do not wish your data to be transferred internationally, please inform us before engaging the Services so we can discuss alternatives.

6) Data Retention

We keep personal information only as long as necessary for the purposes described above, unless a longer period is required by law.

Typical retention periods:

• General inquiries (no contract): up to 18 months after last contact.
• Client project records & invoices: up to 7 years from project completion (for accounting/tax and to support your later requests).
• Access credentials: for the minimum time needed; we prefer temporary, revocable access and delete credentials on project close.
• Analytics data: commonly 14–26 months depending on the tool settings.
• Backups: routine backups cycle on a schedule; restored only for continuity and security purposes.

When retention ends, we securely delete or anonymize the data.

7) Cookies & Similar Technologies

We use cookies to operate our site and understand how visitors use it.

• Strictly necessary – required for site security and core functions.
• Preferences – remember language or basic settings.
• Analytics – help us measure traffic and improve content.
• (Optional) Marketing – only if we ever run campaigns; these are opt‑in where required.

Your controls:

• Most browsers let you block or delete cookies.
• If a consent banner is shown, you can accept, reject, or manage categories.
• Blocking some cookies may affect certain site features.

8) Security

We apply reasonable administrative, technical, and physical measures to protect personal information, including access controls, encryption in transit (HTTPS), credential hygiene, least‑privilege access, and vendor due diligence. No system is 100% secure; if we identify a security incident affecting your data, we will notify you and the appropriate authorities where legally required.

Your role in security:

• Share credentials securely and revoke access when work is complete.
• Avoid sending passwords or sensitive information by email—use a secure method (password manager sharing, one‑time links, or temporary users).

9) Your Rights

Your privacy rights depend on your jurisdiction. Common rights include:

• Access – ask for a copy of your personal data we hold.
• Correction – request that we fix inaccurate or incomplete data.
• Deletion – ask us to delete personal data when it’s no longer needed (subject to legal exceptions).
• Restriction/Objection – limit or object to certain processing.
• Portability – request your data in a structured, commonly used format.
• Withdraw consent – where we rely on consent, you can withdraw it at any time.
• Marketing choices – opt out of non‑essential communications.

How to exercise your rights:
Email support@studiowebsphere.com with the subject line “Privacy Request.” We may need to verify your identity and clarify the scope. We aim to respond within 30 days (or the timeframe required by your local law). Some requests may be declined where permitted by law (e.g., if fulfilling the request would adversely affect the rights of others, or if records must be retained for legal purposes).

10) Children’s Privacy

Our Services are not directed to children. We do not knowingly collect personal information from individuals under the minimum age required by local law (e.g., 13 or 16). If you believe a child has provided personal data to us, contact support@studiowebsphere.com and we will take appropriate steps to delete it.

11) Third‑Party Links & Tools

Our website may link to third‑party sites or embed third‑party tools (for example, fonts, maps, or analytics). We do not control how those parties collect or use data. Please review their privacy policies before using those features. If you prefer, you may ask us not to embed specific tools on your project.

12) Do Not Track (DNT)

Some browsers offer a Do Not Track signal. There is no single industry standard for DNT responses. We treat DNT as a preference and continue to offer cookie controls as described in Section 7.

13) Communications

• Service communications (project updates, invoices, security notices) are essential and you may not be able to opt out of them while we deliver Services.
• Optional communications (news or resources) are sent only with your consent or where allowed by law. You can unsubscribe at any time.

14) Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our Services or legal requirements. When we make material changes, we will update the “Effective date” above and, where appropriate, provide additional notice (e.g., a banner or email). We encourage you to review this page periodically.

15) Contact Us

If you have questions or concerns about this Privacy Policy or how we handle your information, please contact:

StudioWebSphere
Email: support@studiowebsphere.com
(If you prefer an alternative contact address or phone number on your site, add it here.)

16) Region‑Specific Disclosures (Summary)

Because we deliver Services digitally to clients in different regions, the following summaries highlight how local rules may apply. If any regional law gives you stronger rights than those described elsewhere in this Policy, we will honor the stronger right.

• European Economic Area/United Kingdom: If you are in the EEA/UK, our processing is based on the lawful bases listed in Section 3. You may also have the right to lodge a complaint with your local data protection authority. International transfers will be protected by appropriate safeguards (e.g., contractual clauses).
• California (USA): If you are a California resident, you may have additional rights regarding access, deletion, correction, and opting out of certain sharing. We do not sell personal information. We process only for the purposes outlined in this Policy and disclose to service providers under contracts restricting their further use.
• India: If you are in India, we aim to handle your data in line with applicable privacy requirements and reasonable security practices, and we will take steps to honor requests for access, correction, and deletion in accordance with local law and the principles described in this Policy.

If you need a region‑specific explanation for your project agreement, let us know and we will provide a tailored addendum.

17) Practical Examples

To help you understand how this works in practice, here are typical scenarios:

1. You send a contact form. We record your name, email, and message to respond. If no contract follows, we keep your inquiry for up to 18 months (for follow‑ups and to avoid duplicating discussions) and then delete or anonymize it.
2. You become a client. We retain project files and invoices for up to 7 years for legal/accounting reasons and to support future updates you may request.
3. You share credentials. We store them securely for the minimum period needed to complete work. At project close, we ask you to reset or revoke access; we delete any local copies on our side.
4. You request deletion. We remove personal data that is not required to be retained by law or needed to defend legal rights, and we notify relevant processors to do the same.

18) Your Checklist (Optional, but Helpful)

To keep your data safe and your project efficient, you can:

• Create a temporary admin user for us and revoke it after delivery.
• Share files via secure cloud links rather than attachments where possible.
• Avoid sending sensitive personal data (e.g., government IDs) unless absolutely required.
• Tell us if you have specific compliance needs (e.g., strict data‑location requirements) before the project begins.

Thank you for trusting StudioWebSphere. Our goal is to provide a professional, dependable experience—and that starts with handling your information responsibly and transparently.