Privacy Policy

1. Introduction

Design Dream ("we," "us," or "our") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our subscription-based design and development service.

By using Design Dream, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Information You Provide

When you subscribe to Design Dream, we collect:

• Contact Information: Name, email address, company name
• Payment Information: Credit card details (processed and stored securely by Stripe, not by us)
• Account Information: Username, password, subscription preferences
• Project Information: Design briefs, project requirements, feedback, assets you upload
• Communication Data: Messages, comments, and communications via Linear and email

2.2 Information Collected Automatically

When you use our service, we automatically collect:

• Usage Data: Pages visited, features used, time spent, interaction patterns
• Device Information: IP address, browser type, operating system, device identifiers
• Cookies and Tracking: Session cookies, analytics cookies (see Section 7)
• Log Data: Error logs, performance data, system diagnostics

2.3 Information from Third Parties

We receive information from:

• Stripe: Payment status, billing information, transaction details
• Linear: Project activity, task completions, comment interactions
• Analytics Providers: Website usage statistics, traffic sources

3. How We Use Your Information

We use your information to:

• Provide the Service: Process requests, deliver work, manage projects
• Process Payments: Charge subscriptions, handle billing, issue refunds
• Communicate: Send project updates, respond to inquiries, provide support
• Improve Service: Analyze usage patterns, fix bugs, develop new features
• Ensure Security: Prevent fraud, protect against threats, enforce our Terms
• Legal Compliance: Meet regulatory requirements, respond to legal requests
• Marketing: Send newsletters, promotions (with your consent - you can opt out)

4. Legal Basis for Processing (GDPR)

If you are in the European Economic Area (EEA), we process your data based on:

• Contract Performance: Processing necessary to provide the Service
• Legitimate Interests: Improving service, preventing fraud, analytics
• Legal Obligation: Tax compliance, responding to legal requests
• Consent: Marketing emails, non-essential cookies (you can withdraw consent anytime)

5. How We Share Your Information

5.1 Service Providers

We share data with trusted third-party service providers:

• Stripe: Payment processing and billing management
• Linear: Project management and communication
• Supabase: Database and authentication services
• Vercel: Hosting and infrastructure
• Anthropic (Claude AI): Request analysis and automation
• Email Services: Transactional emails and notifications

These providers are contractually obligated to protect your data and use it only for the specified purposes.

5.2 Legal Requirements

We may disclose your information if required by law, court order, or government regulation, or to:

• Comply with legal processes
• Protect our rights and property
• Prevent fraud or illegal activity
• Protect the safety of our users or the public

5.3 Business Transfers

If Design Dream is acquired, merged, or sells assets, your information may be transferred to the new owner. We will notify you via email before your data is transferred and subject to a different privacy policy.

6. Data Retention

We retain your information for as long as necessary to provide the Service and fulfill the purposes outlined in this policy:

• Account Data: Retained while your subscription is active, plus 90 days after cancellation
• Project Files: Retained for 1 year after subscription ends (then archived or deleted)
• Payment Records: Retained for 7 years for tax and accounting purposes
• Communication Logs: Retained for 2 years for support and quality purposes
• Analytics Data: Aggregated data may be retained indefinitely

You may request deletion of your data at any time (see Section 10).

7. Cookies and Tracking Technologies

7.1 Types of Cookies We Use

• Essential Cookies: Required for authentication, security, and basic functionality
• Analytics Cookies: Help us understand how users interact with the site
• Preference Cookies: Remember your settings and preferences

7.2 Managing Cookies

You can control cookies through your browser settings. Note that disabling essential cookies may affect service functionality. Most browsers allow you to:

• View and delete cookies
• Block third-party cookies
• Clear all cookies when closing the browser
• Manage cookie preferences per-site

8. Data Security

We implement industry-standard security measures to protect your data:

• Encryption: All data transmitted over HTTPS/TLS
• Payment Security: PCI DSS compliant payment processing via Stripe
• Access Controls: Limited employee access based on role requirements
• Authentication: Secure password hashing and session management
• Monitoring: Continuous security monitoring and threat detection
• Backups: Regular encrypted backups of all data

While we take reasonable precautions, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security of your data.

9. International Data Transfers

Design Dream operates from the United States. If you are located outside the U.S., your information will be transferred to and processed in the United States, which may have different data protection laws than your country.

We ensure appropriate safeguards are in place for international transfers, including standard contractual clauses approved by the European Commission.

10. Your Privacy Rights

10.1 Rights for All Users

You have the right to:

• Access: Request a copy of your personal data
• Correction: Update or correct inaccurate information
• Deletion: Request deletion of your data ("right to be forgotten")
• Opt-Out: Unsubscribe from marketing emails
• Data Portability: Receive your data in a machine-readable format

10.2 Additional Rights (GDPR - EEA Users)

• Restriction of Processing: Limit how we use your data
• Object to Processing: Object to processing based on legitimate interests
• Withdraw Consent: Withdraw consent for processing at any time
• Lodge a Complaint: File a complaint with your local data protection authority

10.3 Additional Rights (CCPA - California Users)

California residents have the right to:

• Know what personal information we collect and how it's used
• Request deletion of personal information
• Opt-out of the "sale" of personal information (we do not sell your data)
• Non-discrimination for exercising privacy rights

10.4 How to Exercise Your Rights

To exercise any of these rights, contact us at:

We will respond to your request within 30 days. We may ask you to verify your identity before processing your request.

11. Children's Privacy

Design Dream is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately, and we will delete it.

12. Third-Party Links

Our service may contain links to third-party websites (e.g., Linear, Stripe). We are not responsible for the privacy practices of these sites. We encourage you to read their privacy policies before providing any information.

13. Do Not Track Signals

Some browsers include a "Do Not Track" (DNT) feature. Our service does not currently respond to DNT signals. We will update this policy if we implement DNT response capabilities.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

• Posting the new policy on this page
• Updating the "Last updated" date at the top
• Sending an email notification (for material changes)

We encourage you to review this policy periodically. Continued use of the Service after changes constitutes acceptance of the updated policy.

15. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: