Privacy Policy

This Privacy Policy explains how OptimaWebDesign (“Company”, “we”, “our”) collects, uses, shares, and protects personal data in connection with our website, communications, and delivery of web‑design and related digital services. By using our services, this policy is accepted in addition to the Terms & Conditions.

• This policy applies to visitors, prospects, and clients interacting with our website, emails, forms, and project workflows.
• We may update this policy from time to time; the latest version will be posted on this page with the effective date.
• If material changes impact rights materially, reasonable notice will be provided via our website or email.

• Contact and business details: name, email, phone, company name, role, and address submitted via forms or emails.
• Project and content inputs: brand assets, copy, images, and requirements shared for project execution.
• Technical/usage data: device, browser, IP, timestamps, pages visited, referring URLs, limited analytics and error logs.
• Account/access data: credentials or tokens shared for hosting, DNS, CMS, or third‑party services (stored or exchanged via secure channels).
• Billing data: invoice details, transaction references, GST details where applicable; card/banking data is handled by payment gateways.

• Provide and manage services: proposals, project setup, delivery, QA, deployment, and support.
• Communicate status, invoices, updates, and respond to inquiries.
• Improve quality: troubleshooting, analytics, and enhancing UX and reliability.
• Comply with legal obligations, tax/GST requirements, and enforce agreements.
• Prevent fraud, abuse, security incidents, and ensure platform integrity.

• Consent for specific communications or marketing and for processing optional data supplied.
• Performance of a contract to deliver services under the SOW/agreements.
• Legitimate interests such as service improvement, security, and troubleshooting balanced with privacy.
• Legal obligations including record‑keeping, taxation, and responding to lawful requests.

• Service providers: hosting, email, analytics, error monitoring, payment gateways, and subcontractors under confidentiality and security obligations.
• Third‑party tools chosen for the project (e.g., CMS, plugins, CDNs) where access is required to deliver the scope.
• Legal and compliance: when required by law, to protect rights, or in connection with a business transaction.
• We do not sell personal data. Limited marketing tools may use cookies/identifiers with consent settings where applicable.

• Reasonable technical and organizational measures: access controls, least‑privilege, encryption in transit, and secure credential exchange.
• Vendor due diligence for key processors and periodic review of access permissions.
• Incident response: reasonable efforts to investigate, mitigate, and notify as required by applicable laws.

• Personal data retained no longer than necessary for the purposes described, considering legal, accounting, or reporting requirements.
• Project artifacts may be archived for limited periods for support or legal purposes; clients may request deletion subject to legal holds.
• Backups and logs have separate limited retention windows and are purged on rolling schedules.

• Access, correction, and deletion requests can be made using the contact details below.
• Withdraw consent for optional processing or marketing at any time; prior processing remains lawful.
• Objection or restriction requests will be assessed in line with applicable law and contractual needs.
• Data portability for provided data where technically feasible and applicable.

• Essential cookies enable core site functionality and cannot be disabled via consent tools.
• Analytics and performance cookies help improve the site; controls may be offered via a cookie banner or browser settings.
• Third‑party embeds (e.g., fonts, videos, maps) may set their own cookies per their policies.

• Vendors or servers may be located outside India; safeguards such as contractual clauses and vendor assessments are used where appropriate.
• By using our services, cross‑border processing necessary to provide the services may occur with reasonable protections.

• Services are not targeted at children under 18.
• If a child’s personal data is suspected to be collected inadvertently, reach out to request deletion.

OptimaWebDesign
Email: contact@optimawebdesign.in
Phone: +91‑7990402535
Address: HIrawadi, mahaveer nagar Ahmedabad, Gujarat.
Grievance/Privacy contact: You may email the above address with subject “Privacy Request — [Describe Request]”.