Privacy Policy

Elevarz ("we," "us," or "our") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our services, visit our website, or interact with our digital products.

As a digital agency specializing in software development, design, writing, product development, and browser extensions, we understand the importance of data privacy and are committed to transparent and responsible data practices.

This policy applies to all our services including website visits, client engagements, browser extensions, web applications, and any other digital products or services we provide. By using our services, you consent to the data practices described in this policy.

We comply with applicable data protection laws including the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and other relevant privacy regulations.

Personal Information You Provide:

• Contact information (name, email address, phone number, business address)
• Business information (company name, job title, industry, project requirements)
• Account credentials (username, password, security questions)
• Payment information (billing address, payment method details)
• Communication content (emails, messages, feedback, support requests)
• Project materials and content you share with us

Information Collected Automatically:

• Device information (IP address, browser type, operating system, device identifiers)
• Usage data (pages visited, time spent, click patterns, referral sources)
• Technical data (cookies, web beacons, log files, analytics data)
• Location information (general geographic location based on IP address)
• Performance data (website speed, error reports, system diagnostics)

Information from Third Parties:

• Social media profile information (when you connect social accounts)
• Business contact information from professional networks
• Verification data from identity verification services
• Analytics and advertising data from marketing partners

Service Delivery:

• Providing requested services (software development, design, writing, consulting)
• Managing client relationships and project communications
• Processing payments and managing billing
• Delivering and supporting our digital products and browser extensions
• Providing customer support and technical assistance

Business Operations:

• Improving our services and developing new offerings
• Conducting market research and analytics
• Managing our business relationships and partnerships
• Ensuring security and preventing fraud
• Complying with legal obligations and regulatory requirements

Marketing and Communication:

• Sending service updates, newsletters, and promotional materials
• Personalizing your experience and content recommendations
• Conducting marketing campaigns and measuring their effectiveness
• Building and maintaining our professional network
• Sharing case studies and testimonials (with your consent)

Legal Basis for Processing (GDPR):

We process your personal data based on legitimate interests, contractual necessity, legal obligations, and your consent where required by law.

Service Providers and Partners:

We may share your information with trusted third-party service providers who assist us in delivering our services, including cloud hosting providers, payment processors, analytics services, marketing platforms, and subcontractors working on your projects.

Business Transfers:

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the business transaction. We will provide notice and ensure continued protection of your data.

Legal Requirements:

We may disclose your information when required by law, court order, or government request, or when we believe disclosure is necessary to protect our rights, your safety, or the safety of others.

Consent-Based Sharing:

We may share your information for other purposes with your explicit consent, such as featuring your project in our portfolio or sharing testimonials.

Anonymized Data:

We may share aggregated, anonymized data that cannot identify you for research, analytics, or business development purposes.

We implement comprehensive security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction:

Technical Safeguards:

• Encryption of data in transit and at rest
• Secure socket layer (SSL) technology for data transmission
• Regular security assessments and vulnerability testing
• Secure coding practices and regular security updates
• Multi-factor authentication for sensitive systems

Administrative Safeguards:

• Access controls and role-based permissions
• Employee training on data protection and security
• Regular security policy reviews and updates
• Incident response procedures and breach notification protocols
• Background checks for employees with data access

Physical Safeguards:

• Secure facilities and restricted access to servers
• Environmental controls and monitoring systems
• Secure disposal of physical media and equipment
• Backup and disaster recovery procedures

While we strive to protect your information, no security system is impenetrable. We cannot guarantee absolute security but are committed to promptly addressing any security incidents.

Depending on your location and applicable laws, you may have the following rights regarding your personal information:

Access and Portability:

• Right to access your personal data and receive a copy
• Right to data portability in a structured, machine-readable format
• Right to information about how your data is processed

Correction and Deletion:

• Right to correct inaccurate or incomplete personal data
• Right to erasure ("right to be forgotten") under certain circumstances
• Right to restrict processing of your personal data

Consent and Objection:

• Right to withdraw consent for processing based on consent
• Right to object to processing based on legitimate interests
• Right to opt out of marketing communications
• Right to object to automated decision-making and profiling

California Residents (CCPA):

California residents have additional rights including the right to know what personal information is collected, the right to delete personal information, and the right to opt out of the sale of personal information (we do not sell personal information).

To exercise these rights, please contact us using the information provided in the Contact section.

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

Client Data:

• Active client information: Retained during the business relationship and for 7 years after completion for legal and business purposes
• Project files and communications: Retained for 3 years after project completion unless otherwise agreed
• Financial records: Retained for 7 years as required by tax and accounting regulations

Marketing Data:

• Newsletter subscribers: Until you unsubscribe or request deletion
• Marketing analytics: Typically 26 months or as specified by the service provider
• Website analytics: 26 months for Google Analytics data

Legal and Compliance:

Some information may be retained longer to comply with legal obligations, resolve disputes, enforce agreements, or for legitimate business purposes such as fraud prevention.

We regularly review our retention practices and securely delete or anonymize personal information when it is no longer needed.

We may transfer your personal information to countries outside your home country for processing and storage. These countries may have different data protection laws than your home country.

Safeguards for International Transfers:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• Adequacy decisions recognizing equivalent levels of data protection
• Binding Corporate Rules for intra-group transfers
• Certification schemes and codes of conduct
• Other legally recognized transfer mechanisms

Third-Party Service Providers:

Many of our service providers are located in the United States and other countries. We ensure that appropriate safeguards are in place for these transfers and that our service providers provide adequate protection for your personal information.

For more information about the safeguards we use for international data transfers, please contact us using the information provided below.

Our services are not intended for children under the age of 16 (or the minimum age required by law in your jurisdiction). We do not knowingly collect personal information from children under this age.

If we become aware that we have collected personal information from a child under the applicable age without parental consent, we will take steps to delete such information promptly.

If you are a parent or guardian and believe that your child has provided us with personal information, please contact us immediately so we can take appropriate action.

For any browser extensions or applications that may be used by minors, we implement additional safeguards and comply with applicable children's privacy laws such as COPPA in the United States.

Our browser extensions and web applications may collect and process additional types of information necessary for their functionality:

Extension-Specific Data:

• Browser and tab information necessary for extension functionality
• Website interaction data when explicitly permitted
• User preferences and settings within the extension
• Performance and error data to improve extension reliability

Permissions and Consent:

Each extension requests only the minimum permissions necessary for its functionality. We provide clear explanations of why each permission is needed and how data will be used.

Data Minimization:

We collect only the data necessary for the extension to function and do not access or collect data beyond what is explicitly required and disclosed.

Local Storage:

Most extension data is stored locally on your device and is not transmitted to our servers unless necessary for the service (such as syncing preferences across devices).

We may update this Privacy Policy from time to time to reflect changes in our practices, services, legal requirements, or other operational, legal, or regulatory reasons.

When we make material changes to this policy, we will notify you by:

• Updating the "Last Modified" date at the top of this policy
• Sending email notifications to registered users
• Posting prominent notices on our website
• Providing in-app notifications for our digital products

We encourage you to review this Privacy Policy periodically to stay informed about our privacy practices. Your continued use of our services after any changes indicates your acceptance of the updated policy.

For significant changes that may affect your rights, we may seek your explicit consent before implementing the changes.

If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

General Privacy Inquiries:

Email: contact.elevarz@gmail.com
Website: Contact form at elevarz.com/contact

Data Protection Officer:

Email: contact.elevarz@gmail.com

EU Representative (if applicable):

We are committed to addressing your privacy concerns promptly and will respond to your inquiries within 30 days or as required by applicable law.

You also have the right to lodge a complaint with your local data protection authority if you believe we have not addressed your concerns adequately.