Privacy Policy

Diglora Lab ("we," "our," "us") is committed to protecting the privacy and security of your personal information. This Privacy Policy describes in detail how we collect, use, store, protect, and share information obtained through our website and in connection with the provision of our design services. This policy applies to all users of our website, all clients who engage our services, and all individuals who communicate with us in any capacity.

By using our website or engaging our services, you acknowledge that you have read and understood this Privacy Policy and consent to the practices described herein. If you do not agree with this policy, please discontinue use of our website and services.

1. Information We Collect

1.1 Information You Provide Directly

We collect personal information that you voluntarily provide to us through:

• Contact and Inquiry Forms: When you submit a project brief, contact form, or service inquiry, we collect your name, email address, company name (if provided), project description, budget range, and any other information you choose to include in your message.
• Project Communications: Throughout the course of a project, we may receive additional personal and business information necessary for project execution, including brand assets, business descriptions, target audience data, product information, and any other materials you share with us.
• Payment Information: When you make a payment for our services, payment processing is handled by third-party payment processors (such as Shopify Payments, PayPal, or Stripe). We do not directly collect or store your full credit card numbers, bank account details, or other sensitive payment credentials. We may receive transaction confirmation data, including partial payment method details, billing address, and transaction identifiers.
• Account Information: If you create an account through our Shopify-powered storefront, we collect the information you provide during account creation, including name, email address, and password (stored in encrypted form).

1.2 Information Collected Automatically

When you visit our website, certain information is collected automatically through standard web technologies:

• Device and Browser Information: Type and model of device, operating system, browser type and version, screen resolution, and device identifiers
• Usage Data: Pages visited, time spent on each page, navigation patterns, clickstream data, referring URLs, and links clicked
• IP Address: Your Internet Protocol address, which may be used to approximate your geographic location (city/region level)
• Cookies and Similar Technologies: We use cookies, web beacons, and similar tracking technologies as described in Section 7 of this policy

1.3 Information from Third-Party Platforms

If you interact with us through third-party platforms such as email, professional networks, or project management tools, we may receive information shared through those platforms in accordance with their respective privacy policies and your settings on those platforms.

2. How We Use Your Information

The information we collect is used exclusively for legitimate business purposes:

2.1 Service Delivery

• Processing and responding to project inquiries and proposals
• Executing design projects and producing deliverables according to agreed specifications
• Communicating with you regarding project status, revisions, and delivery
• Processing payments and managing billing and invoicing
• Providing customer support and resolving disputes or concerns

2.2 Business Operations

• Maintaining accurate business records and accounting documentation
• Complying with legal obligations and regulatory requirements
• Enforcing our Terms of Service and other legal agreements
• Protecting the security and integrity of our services and systems
• Detecting, preventing, and addressing fraud, abuse, or technical issues

2.3 Service Improvement

• Analyzing website usage patterns to improve user experience and site performance
• Understanding aggregate trends in client needs and service demand
• Testing and improving website functionality, design, and content
• Conducting internal research and quality assurance activities

2.4 Marketing & Communications

We may use your contact information to send service-related announcements, updates to our terms or policies, and — with your consent — occasional information about new services, studio updates, or promotional offers. You may opt out of non-essential communications at any time by following the unsubscribe link in any marketing email or by contacting us directly. You cannot opt out of essential service-related communications (e.g., invoice confirmations, delivery notifications, or policy updates).

3. Legal Basis for Processing (GDPR)

For users in the European Economic Area (EEA), United Kingdom, or other jurisdictions with similar data protection legislation, our legal bases for processing your personal data are:

• Contractual Necessity: Processing necessary to fulfill our service agreement with you and execute the project you have engaged us for
• Legitimate Interests: Processing for our legitimate business interests (fraud prevention, security, service improvement) where these interests are not overridden by your data protection rights
• Legal Obligation: Processing necessary to comply with applicable legal and regulatory requirements
• Consent: Processing based on your explicit consent, including marketing communications and optional data collection features

4. Information Sharing & Disclosure

4.1 No Sale of Personal Data

Diglora Lab does not sell, rent, trade, or otherwise transfer your personal information to third parties for their own marketing or commercial purposes. Period.

4.2 Service Providers

We may share your information with trusted third-party service providers who assist us in operating our business and delivering our services. These providers are contractually bound to use your information only as necessary to provide services to us and in compliance with applicable privacy laws. Categories of service providers we work with include:

• Payment processing platforms (e.g., Shopify Payments, Stripe, PayPal)
• Cloud storage and file delivery services used for transferring project deliverables
• Email service providers used for project communication
• Website analytics providers (used in aggregate, anonymized form)
• Accounting and invoicing software platforms

4.3 Legal Disclosure

We may disclose your information when required by law, court order, legal process, or governmental authority, or when we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request. Where possible and legally permissible, we will notify you of such requests.

4.4 Business Transfers

In the event of a merger, acquisition, restructuring, bankruptcy, or sale of all or a portion of our assets, your personal information may be transferred as part of that transaction. We will provide notice of any such change and the choices available to you as required by applicable law.

5. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes for which it was collected, including:

• Client project data: Retained for a minimum of 3 years following project completion to support quality assurance, legal compliance, and client re-engagement
• Financial records: Retained for 7 years as required by US tax and accounting regulations
• Marketing data: Retained until you opt out or request deletion
• Website analytics: Aggregated and anonymized; retained indefinitely for trend analysis
• Inquiry data (non-converted): Retained for 12 months following initial inquiry if no project engagement results

Upon expiration of the applicable retention period, personal data is securely deleted or anonymized in accordance with our data deletion protocols.

6. Data Security

We implement industry-standard technical and organizational security measures to protect your personal information against unauthorized access, disclosure, alteration, or destruction. These measures include:

• SSL/TLS encryption for all data transmitted through our website
• Secure, access-controlled cloud storage for project files and client data
• Limited access controls — only personnel with a legitimate need to access your data do so
• Regular security assessments and updates to our systems and practices
• Secure password policies and multi-factor authentication for internal systems

While we take every reasonable precaution to protect your information, no data transmission or storage system is completely secure. We cannot guarantee absolute security. If you have reason to believe that your interaction with us is no longer secure, please notify us immediately at yourproject@digloralab.com.

7. Cookies & Tracking Technologies

7.1 What Are Cookies

Cookies are small text files placed on your device by a website. They help websites remember your preferences, understand how you use the site, and improve your experience over time. We use first-party cookies (set by us) and third-party cookies (set by external services we integrate).

7.2 Types of Cookies We Use

• Essential Cookies: Required for the website to function properly — session management, shopping cart functionality, and security tokens. These cannot be disabled without disrupting website functionality.
• Analytics Cookies: Used to collect aggregate, anonymized data about how visitors use our website — pages visited, time spent, navigation patterns. This data helps us improve the website experience. We use tools such as Google Analytics.
• Functional Cookies: Remember your preferences, such as language settings or previously entered form data.
• Marketing Cookies: May be used to track visits across websites and provide relevant advertising. These are only active if you have consented to marketing communications.

7.3 Cookie Control

You can control cookie settings through your browser settings at any time. Most browsers allow you to refuse new cookies, delete existing cookies, and be notified when new cookies are set. Note that disabling certain cookies may affect website functionality. For detailed instructions on managing cookies in your specific browser, refer to your browser's help documentation.

8. Your Privacy Rights

Depending on your jurisdiction, you may have the following rights regarding your personal information:

• Right of Access: Request a copy of the personal information we hold about you
• Right to Rectification: Request correction of inaccurate or incomplete personal information
• Right to Erasure: Request deletion of your personal information, subject to our legal retention obligations
• Right to Restriction: Request that we limit how we process your personal information in certain circumstances
• Right to Data Portability: Receive your personal information in a structured, machine-readable format
• Right to Object: Object to processing based on legitimate interests or for direct marketing purposes
• Right to Withdraw Consent: Withdraw consent at any time where processing is based on your consent, without affecting the lawfulness of processing prior to withdrawal
• Right to Non-Discrimination: Exercise your privacy rights without being subject to discriminatory treatment

California residents may have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA). Colorado residents may have additional rights under the Colorado Privacy Act (CPA). To exercise any of your privacy rights, contact us at yourproject@digloralab.com. We will respond to verified requests within the timeframe required by applicable law (typically 30–45 days).

9. Children's Privacy

Our services are designed for and directed toward adults and business entities. We do not knowingly collect personal information from individuals under the age of 18. If we become aware that we have inadvertently collected personal information from a minor, we will take immediate steps to delete such information from our records. If you believe a minor has submitted information to us, please contact us at yourproject@digloralab.com.

10. Third-Party Websites & Links

Our website may contain references to or links to third-party websites, tools, or services. This Privacy Policy applies solely to information collected by Diglora Lab and does not govern the privacy practices of any third-party websites or services. We strongly encourage you to review the privacy policies of any third-party websites you visit, as we have no control over and assume no responsibility for their content, privacy practices, or policies.

11. International Data Transfers

Diglora Lab is based in Denver, Colorado, United States. If you are accessing our services from outside the United States, your information may be transferred to, stored, and processed in the United States, where data protection laws may differ from those in your home country. By using our services, you consent to the transfer of your information to the United States and its processing in accordance with this Privacy Policy. Where required by law, we implement appropriate safeguards for international data transfers, including standard contractual clauses approved by applicable data protection authorities.

12. Do Not Track

Some web browsers offer a "Do Not Track" (DNT) feature that signals to websites that you prefer not to be tracked. Our website does not currently respond to DNT signals. We are monitoring the development of privacy standards in this area and will update our practices accordingly if and when a universal standard is established.

13. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, legal requirements, or business operations. We will indicate the date of the most recent revision at the top of this page. For material changes, we may provide additional notice (such as email notification to existing clients or a prominent notice on our website). Your continued use of our services following notification of changes constitutes your acceptance of the updated Privacy Policy. We encourage you to review this policy regularly to stay informed about how we protect your information.