Book a Call

Last Updated: May 26, 2026 Effective Date: May 26, 2026

Privacy Policy

1. Introduction

Welcome to Designvity (“we,” “us,” “our,” or “the Studio”). We are an on-demand design and development studio providing creative and technical services to founders, brands, marketing teams, and agencies across 14+ countries, including the United States, Canada, the United Kingdom, the European Union, and India.

This Privacy Policy explains how we collect, use, store, share, and protect your personal information when you:

  • Visit our website at designvity.com (the “Site”)
  • Subscribe to our Subscribe monthly plans
  • Engage our Flex hourly white-label model for agencies
  • Communicate with us via email, Slack, WhatsApp, or scheduled calls
  • Submit a design or development brief, project file, or feedback
  • Use any of our services, including branding, UI/UX, graphic design, video production, or web development

By using our Site or services, you agree to the practices described in this Privacy Policy. If you do not agree, please do not use our Site or services.

2. Who We Are (Data Controller)

For the purposes of applicable data protection laws — including the General Data Protection Regulation (GDPR), the UK GDPR, the California Consumer Privacy Act (CCPA/CPRA), the Personal Information Protection and Electronic Documents Act (PIPEDA), and India’s Digital Personal Data Protection Act (DPDP Act, 2023) — Designvity is the data controller of personal information collected through our Site and services.

For privacy-related questions, contact us at:

📧 Email: surendra@designvity.com 📞 Phone / WhatsApp: +91 96875 23955 🌐 Website: designvity.com 📅 Book a call: designvity.com/book-a-meeting/

3. Information We Collect

We collect only the information necessary to deliver our design and development services, manage your account, and improve your experience. The categories below reflect the actual data flows of our Subscribe and Flex models.

3.1 Information You Provide Directly

Account & Identification Data

  • Full name, business name, and job title
  • Email address, phone number, and WhatsApp number
  • Country, time zone, and billing address
  • Login credentials (hashed) for our client portal, if applicable

Project & Brief Data

  • Design briefs, references, brand assets, logos, and style preferences
  • Existing brand guidelines, fonts, colour palettes, and image libraries
  • Source files you upload (Figma files, Adobe files, PSDs, AI files, PDFs, video clips, copy documents)
  • Code repositories, staging URLs, hosting credentials, and CMS access (WordPress, Shopify, Elementor, etc.) — only when you grant access for development work
  • Feedback, revision notes, and approvals shared during projects

Payment & Billing Data

  • Billing name, address, and tax identification (where required)
  • Currency preference (USD, EUR, GBP, or INR)
  • Subscription tier (Subscribe) or hour allocation (Flex)

We do not store full credit or debit card numbers. Payments are processed through PCI-DSS-compliant third-party processors (see Section 7).

Communication Data

  • Messages exchanged via Slack, WhatsApp, email, Notion comments, and scheduled video calls
  • Call recordings or transcripts (only with your explicit consent)

3.2 Information We Collect Automatically

When you visit our Site, we automatically collect:

  • IP address and approximate geographic location
  • Browser type, device type, operating system, and screen resolution
  • Pages visited, time spent on pages, and referring URL
  • Date and time of access
  • Cookies and similar tracking identifiers (see Section 9)

3.3 Information We Receive from Third Parties

  • Analytics providers (e.g. Google Analytics, Microsoft Clarity) supply aggregated behavioural data
  • Authentication providers (e.g. Google Sign-In) supply name and email when you log in via SSO
  • Agencies engaging our Flex model may share their end-client’s brand assets and brief under NDA — we treat that data as the agency’s confidential information (see Section 6)

3.4 Sensitive Information

We do not intentionally collect sensitive personal data (racial origin, political opinions, religious beliefs, health data, biometric data, sexual orientation, or government IDs) unless strictly required for a project deliverable (e.g. a healthcare landing page may require HIPAA-aware handling — disclosed and contracted separately).

4. How We Use Your Information

We use your information only for the purposes for which it was collected, namely:

PurposeExamples
Service deliveryExecuting design briefs, building websites, producing video, shipping source files
Account managementCreating your client account, assigning a senior designer/developer within 48 hours, managing subscriptions
CommunicationResponding to briefs, sending revision drafts, coordinating via Slack/WhatsApp/email
Payment processingCharging subscription fees, billing hourly Flex usage, issuing invoices in your preferred currency
White-label & NDA complianceOperating invisibly inside your agency’s Slack, Figma, and codebase under signed NDAs
Improvement & analyticsUnderstanding which capabilities are most requested, improving our intake flow
Legal & complianceMeeting tax obligations, responding to lawful requests, enforcing our Terms
Marketing (opt-in only)Sending occasional updates about new capabilities — you can unsubscribe anytime

We do not sell your personal information. We do not use your project files or brand assets to train AI models, populate public portfolios without consent, or share with competitors.

5. Legal Basis for Processing (GDPR / UK GDPR)

If you are located in the European Economic Area, the United Kingdom, or Switzerland, we rely on the following legal bases:

  • Contract performance — to deliver subscriptions, Flex hours, and the services you’ve signed up for
  • Legitimate interests — to run, secure, and improve our studio operations, provided your rights do not override our interests
  • Consent — for optional marketing emails, non-essential cookies, and call recordings
  • Legal obligation — to comply with tax, accounting, and lawful enforcement requests

You may withdraw consent at any time without affecting the lawfulness of prior processing.

6. How We Share Information

We share personal information only with parties that help us run our studio and only under contractual confidentiality. We share with:

6.1 Our Studio Team

Senior designers, developers, motion artists, and project leads — based in India and partner locations — receive the minimum data needed to deliver your project. Every team member signs a confidentiality and IP-assignment agreement.

6.2 Service Providers (“Processors”)

We use vetted third-party tools to operate the studio, including (non-exhaustive):

  • Communication: Slack, WhatsApp Business, Google Workspace (Gmail, Meet)
  • Project management: Notion, ClickUp, Trello
  • Design & development: Figma, Adobe Creative Cloud, GitHub, GitLab
  • Payments & invoicing: Stripe, PayPal, Razorpay, Wise
  • Hosting & infrastructure: Cloud hosting providers for our website
  • Analytics: Google Analytics, Microsoft Clarity
  • CRM & email: HubSpot, Mailchimp (for opt-in marketing only)

Each processor is bound by Data Processing Agreements (DPAs) and processes data only on our instructions.

6.3 Agencies (Flex Clients)

When we work as your white-label studio under the Flex model, your end-clients never see Designvity. We operate inside your tools, under your brand. We act as a sub-processor to your agency and follow your data-handling instructions.

6.4 Legal & Regulatory Disclosures

We may disclose information when required by law, court order, or to protect our rights, property, or safety, or that of our users.

6.5 Business Transfers

If Designvity is involved in a merger, acquisition, or asset sale, personal information may be transferred. We will notify you and honour any commitments made in this Policy.

We do not sell or rent your personal information to advertisers or data brokers.

7. Payment Processing

Payments for Subscribe plans (from $499/month) and Flex hours (from $150 / 20 hrs / month) are handled by PCI-DSS-compliant payment processors. We receive only the metadata needed for our records (transaction ID, amount, currency, last 4 digits of card). The full card data is processed and stored solely by the payment provider.

Refunds, cancellations, and dispute resolution are governed by our Terms of Service.

8. International Data Transfers

Designvity operates across 14+ countries, with our delivery team primarily based in India. By engaging us, you understand and agree that your information may be transferred to, stored in, and processed in countries outside your country of residence — including India, the United States, and the European Union — where data protection laws may differ.

When we transfer personal data from the EEA, UK, or Switzerland to countries without an adequacy decision, we rely on appropriate safeguards, including:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • UK International Data Transfer Agreement (IDTA) where applicable
  • Supplementary technical measures (encryption at rest and in transit)

You may request a copy of the relevant transfer safeguards by emailing surendra@designvity.com.

9. Cookies and Tracking Technologies

Our Site uses cookies and similar technologies to function, analyse traffic, and improve user experience.

Categories of cookies we use:

  • Strictly necessary cookies — required for the Site to function (e.g. session, security)
  • Analytics cookies — Google Analytics, Microsoft Clarity, used to understand visitor behaviour
  • Functional cookies — remember preferences such as language and currency
  • Marketing cookies — track Site referrals from LinkedIn, Meta, or Google Ads (only set with consent)

You can manage your cookie preferences through our Cookie Banner on first visit, or at any time through your browser settings. Disabling certain cookies may affect Site functionality.

10. Data Security

We take security seriously and apply industry-standard safeguards, including:

  • TLS/SSL encryption for all data in transit
  • Encryption at rest on our cloud storage
  • Role-based access controls and least-privilege provisioning
  • Two-factor authentication on all internal admin accounts
  • Regular security reviews and dependency patching
  • Signed NDAs and confidentiality agreements with every team member and subcontractor
  • Isolated workspaces for white-label Flex engagements

No system is 100% secure. If we become aware of a data breach affecting your personal information, we will notify you and the relevant supervisory authority without undue delay, as required by applicable law.

11. Data Retention

We retain personal information only as long as necessary for the purpose it was collected:

Data TypeRetention Period
Active client account dataDuration of your subscription or engagement
Project source files & briefsUp to 24 months after project completion (you receive final files in source format — yours forever)
Billing & tax records7 years (statutory requirement in most jurisdictions)
Website analytics dataUp to 26 months
Marketing data (opt-in)Until you unsubscribe
Support & communication logsUp to 24 months after last interaction

After the retention period, data is securely deleted or anonymised.

12. Your Privacy Rights

Depending on your location, you have the following rights regarding your personal data:

Under GDPR / UK GDPR (EEA, UK, Switzerland residents)

  • Right of access — request a copy of your data
  • Right to rectification — correct inaccurate data
  • Right to erasure (“right to be forgotten”)
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing based on legitimate interests
  • Right to withdraw consent
  • Right to lodge a complaint with a supervisory authority (e.g. ICO in the UK, CNIL in France)

Under CCPA / CPRA (California residents)

  • Right to know what personal information is collected
  • Right to delete personal information
  • Right to correct inaccurate information
  • Right to opt out of sale or sharing (we do not sell data)
  • Right to non-discrimination for exercising your rights
  • Right to limit use of sensitive personal information

Under PIPEDA (Canadian residents)

  • Right to access, correct, and challenge the accuracy of your data

Under the DPDP Act, 2023 (Indian residents)

  • Right to access, correct, erase, and seek grievance redressal
  • Right to nominate another individual to exercise rights in case of death or incapacity

To exercise any right, email us at surendra@designvity.com or call +91 96875 23955 with the subject line “Privacy Rights Request”. We will verify your identity and respond within 30 days (or as required by applicable law).

13. Children’s Privacy

Our Site and services are intended for business users aged 18 and older. We do not knowingly collect personal information from children under 16 (or under 18 in jurisdictions that require it). If you believe a child has provided information to us, please contact us and we will delete it promptly.

14. Third-Party Links and Embedded Content

Our Site, briefs, and deliverables may link to third-party websites, fonts, plugins, or services (e.g. Google Fonts, YouTube embeds, Calendly booking). We are not responsible for the privacy practices of those third parties. Please review their privacy policies separately.

15. Marketing Communications

We may send you occasional emails about new capabilities, case studies, or pricing updates — only if you have opted in or are an existing client where we have a legitimate interest. Every marketing email contains a one-click unsubscribe link. Transactional emails (invoices, project updates, account alerts) are not opt-out, as they are required to deliver our services.

16. Intellectual Property of Delivered Work

When we deliver design and development work to you, the final source files are yours forever — you own the rights to the deliverables on full payment. Unless otherwise agreed in writing, we may display non-confidential work in our portfolio (designvity.com/our-work/) after public launch. For Flex / white-label work, we never display your end-client’s deliverables publicly.

You may opt out of portfolio inclusion at any time by emailing surendra@designvity.com.

17. Automated Decision-Making and AI

We use AI tools (including AI video generators and motion tooling) to assist in production. No automated decision-making with legal or similarly significant effects is performed on your data. Your project files and brand assets are not used to train any third-party AI model.

18. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our services, legal requirements, or operational practices. When we make material changes, we will:

  • Update the “Last Updated” date at the top
  • Notify active clients via email or in-app notice
  • Post a banner on the Site for 30 days

Continued use of our Site or services after changes take effect constitutes acceptance of the updated Policy.

19. Contact Us

For questions, concerns, or to exercise your privacy rights:

Designvity

📧 Email: surendra@designvity.com 📞 Phone / WhatsApp: +91 96875 23955 🌐 Website: designvity.com 📅 Book a 15-minute call: designvity.com/book-a-meeting/

For EU/UK residents: You also have the right to lodge a complaint with your local Data Protection Authority.

For California residents: You may designate an authorised agent to make a request on your behalf, in accordance with the CCPA.

For Indian residents: You may contact our Grievance Officer, Surendra Singh, at surendra@designvity.com or +91 96875 23955 for redressal under the DPDP Act, 2023.