DigitalSelf Global Privacy and Data Protection Policy

Introduction

This Privacy Policy explains how DigitalSelf ("we," "our," "us") collects, uses, discloses, and protects personal data across all our platforms, products, and services. We are committed to complying with global data protection regulations, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other relevant privacy laws.

1. Definitions

  • Personal Data: Any information that can identify an individual directly or indirectly, such as name, email, IP address, payment details, and other unique identifiers.
  • Data Controller: DigitalSelf is the Data Controller responsible for deciding how personal data is processed.
  • Data Processor: Third parties that process personal data on our behalf.
  • Data Subject: An individual whose personal data is being collected, held, or processed.
  • Processing: Any operation performed on personal data, including collection, storage, use, sharing, and deletion.

2. Data Collection and Use

We collect various types of data to provide, improve, and personalize our services:

2.1. Types of Data Collected

  • Account Information: Name, email address, phone number, payment information, and profile details.
  • Usage Data: IP address, browser type, device information, location data, and browsing behavior within our platform.
  • Content Data: Any content uploaded or created by users, including media files, texts, and other submissions.
  • Communication Data: Email interactions, customer support inquiries, and chat conversations.
  • Payment Information: Credit card details, billing address, transaction history for subscriptions, and purchases.

2.2. How We Use Your Data

  • To provide and maintain our services, including registration, payments, and content delivery.
  • To improve user experience through personalized recommendations and analytics.
  • To enhance security and prevent fraudulent activities.
  • To send communications related to services, promotions, and updates.
  • To comply with legal obligations and enforce our terms and policies.

3. Legal Basis for Processing (GDPR Compliance)

Under GDPR, we rely on the following lawful bases for processing personal data:

  • Consent: When you provide explicit consent for data processing (e.g., marketing communications).
  • Contract: When data processing is necessary to fulfill a contract with you (e.g., user registration, service provision).
  • Legal Obligation: When processing is necessary to comply with legal requirements (e.g., tax, regulatory requirements).
  • Legitimate Interest: When processing is necessary for our legitimate business interests, such as improving services and preventing fraud, provided these interests do not override your rights.

4. Data Subject Rights

Depending on your jurisdiction, you have specific rights concerning your personal data:

4.1. GDPR Rights (For EU Residents)

  • Access: You can request a copy of the personal data we hold about you.
  • Rectification: You can request corrections to your inaccurate or incomplete personal data.
  • Erasure ("Right to be Forgotten"): You can request the deletion of your personal data in specific circumstances.
  • Data Portability: You can request to receive your personal data in a structured, machine-readable format.
  • Objection: You can object to the processing of your personal data for direct marketing or on grounds relating to your situation.
  • Restriction of Processing: You can request to limit the processing of your personal data in certain cases.
  • Withdraw Consent: You can withdraw consent for data processing at any time.

4.2. CCPA Rights (For California Residents)

  • Right to Know: You can request information about the categories and specific pieces of personal data we have collected about you.
  • Right to Delete: You can request the deletion of personal data we have collected about you.
  • Right to Opt-Out: You can opt-out of the sale of your personal information.
  • Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights.

To exercise any of these rights, please contact us using the details provided in the "Contact Us" section of this policy.

5. Data Sharing and Disclosure

We do not sell your personal data. However, we may share data with:

  • Service Providers: Third-party providers that help us operate our platform (e.g., payment processors, cloud storage providers).
  • Partners: Companies that offer services in partnership with DigitalSelf.
  • Compliance and Legal Requirements: When required by law or to protect the safety, rights, or property of our users.
  • Business Transfers: In case of mergers, acquisitions, or asset sales.

We ensure that any third-party service providers adhere to strict data protection and privacy standards in line with GDPR, CCPA, and other global regulations.

6. Data Security

We implement industry-standard security measures to protect your personal data, including:

  • Encryption: Data in transit and at rest are encrypted to safeguard it from unauthorized access.
  • Access Controls: Restricted access to personal data to authorized personnel only.
  • Regular Audits: Regular security assessments and audits to identify and mitigate potential vulnerabilities.

7. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our policies. Once no longer needed, data will be securely deleted or anonymized.

8. International Data Transfers

As a global platform, personal data may be transferred to, and processed in, countries outside of the country of residence. Where such transfers occur, we use appropriate safeguards to ensure the security and protection of your data, including standard contractual clauses as approved by the European Commission.

9. Cookies and Tracking Technologies

We use cookies, web beacons, and similar tracking technologies to collect data on user interactions and preferences. You can manage your cookie preferences through your browser settings. For more information, please see our Cookie Policy.

10. Children’s Privacy

Our services are not intended for individuals under the age of 16. We do not knowingly collect personal data from children. If we learn that we have collected data from a child without parental consent, we will take steps to delete it.

11. Changes to This Privacy Policy

We may update this policy periodically to reflect changes in our practices or legal requirements. We will notify you of any significant changes through the appropriate communication channels.

12. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us at:

Email: privacy@digitalself.com
Address: DigitalSelf, 614 N. Dupont Hwy Site 210, Dover, 19901

13. Additional Provisions for Other Jurisdictions

  • Brazil (LGPD): For residents of Brazil, we comply with the Lei Geral de Proteção de Dados (LGPD) by offering rights similar to those provided under GDPR.
  • Canada (PIPEDA): We adhere to the Personal Information Protection and Electronic Documents Act (PIPEDA) when processing data for Canadian residents.
  • Australia (Privacy Act): We comply with the Australian Privacy Principles (APPs) when handling data related to Australian residents.

14. Data Protection Officer (DPO) Contact

We have appointed a Data Protection Officer (DPO) to oversee compliance with this policy and applicable data protection laws. You can contact our DPO at dpo@digitalself.com.