PRIVACY POLICY

Last updated: January 8, 2025

1. INTRODUCTION

This privacy notice for GenZ Designs LLC (doing business as dcdx) ("we," "us," or "our") describes how we collect, use, and share your personal information. It also explains your rights and how you can exercise them.

By using our Services, which include:

Visiting our website at https://dcdx.co or any website/app that links to this Privacy Policy;
Engaging with us in other related ways (sales, marketing, or events),

you agree to the terms of this Privacy Policy. If you have any questions or concerns, please contact us at info@dcdx.co.

2. OUR COMPLIANCE WITH THE EU-U.S. DATA PRIVACY FRAMEWORK AND UK EXTENSION

We adhere to the EU-U.S. Data Privacy Framework (EU-U.S. DPF) and the UK Extension to the EU-U.S. DPF (collectively, “DPF”) for all personal data transferred from the European Union and the United Kingdom to the United States. We certify that we comply with the DPF Principles, which include:

Notice
Choice
Accountability for Onward Transfer
Security
Data Integrity and Purpose Limitation
Access
Recourse, Enforcement, and Liability

We are subject to the investigatory and enforcement powers of the U.S. Federal Trade Commission (FTC) regarding these Principles.

Independent Recourse Mechanism

If you have an unresolved privacy or data use concern, please contact us first at info@dcdx.co. If we are unable to address it to your satisfaction, we have designated [Name of Independent Recourse Mechanism, e.g., VeraSafe or BBB National Programs] to handle unresolved complaints. You can find more information or file a complaint with them here: [Link to IRM].

3. WHAT INFORMATION DO WE COLLECT?

We collect personal information that you voluntarily provide to us, as well as certain information automatically when you use our Services.

3.1. Personal Information You Disclose to Us

Names
Email addresses
Job titles
Other information you choose to provide (e.g., through inquiries or event sign-ups)

All personal information you provide must be true, complete, and accurate. You should notify us of any changes.

3.2. Information Automatically Collected

Some information—such as your Internet Protocol (IP) address and/or browser/device characteristics—is collected automatically when you visit our Services. This information does not necessarily reveal your identity but may include:

Log and Usage Data: IP address, device information, browser type and settings, pages viewed, date/time stamps, etc.
Device Data: Details about the computer, phone, or other device you use (e.g., operating system, unique device identifiers).
Location Data: Approximate or precise location based on your IP address or device settings (if location services are enabled).

4. HOW DO WE PROCESS YOUR INFORMATION?

We use your information to:

Provide and Improve Our Services:
- Deliver and facilitate the functionality you request
- Respond to inquiries and provide support
Communicate with You:
- Send administrative or promotional communications
- Inform you of changes to our terms, policies, or services
Maintain Security and Prevent Fraud:
- Monitor for suspicious or fraudulent activity
- Enforce our legal terms and policies
Comply with Legal Obligations:
- Respond to lawful requests, court orders, and legal processes
- Meet regulatory requirements and cooperate with government authorities

We process your data only where we have a valid legal basis, including your consent (where required), our legitimate business interests, or our contractual or legal obligations.

5. LEGAL BASES FOR PROCESSING (EU/UK USERS)

Under the General Data Protection Regulation (GDPR) and the UK GDPR, we rely on the following legal bases:

Consent: You have given clear permission to process your personal data for a specific purpose.
Contractual Necessity: Processing is necessary to perform a contract with you or to take steps at your request before entering into a contract.
Legal Obligation: Processing is necessary for us to comply with the law.
Legitimate Interests: Processing is necessary for our legitimate interests and does not override your fundamental rights and freedoms (e.g., to maintain security, prevent fraud).

6. WHEN AND WITH WHOM DO WE SHARE YOUR PERSONAL INFORMATION?

We may share your personal information in the following situations:

Service Providers
- Third-party vendors that assist in providing our Services (e.g., cloud hosting, analytics).
- These parties process personal information on our behalf and under our instructions.
Business Transfers
- If we merge, sell, or transfer parts of our business or assets, your information may be transferred to a new entity.
Legal or Regulatory Requirements
- We may disclose information if required by law, subpoena, or other legal process, or if we believe in good faith that disclosure is necessary to protect our rights or investigate fraud.

We remain accountable for any onward transfers of personal data in compliance with the DPF Principles.

7. HOW LONG DO WE KEEP YOUR INFORMATION?

We keep your information for as long as it is necessary for the purposes set out in this Privacy Policy or as otherwise required by law. Once we no longer need your personal data, we will either delete or anonymize it. If deletion is not feasible (e.g., backed-up archives), we will securely store your personal data and isolate it from further processing until deletion is possible.

8. HOW DO WE KEEP YOUR INFORMATION SAFE?

We have implemented organizational and technical security measures to protect the personal information we process. However, no electronic transmission over the internet or information storage technology can be guaranteed 100% secure, so we cannot promise that hackers or other unauthorized parties will not be able to defeat our safeguards.

9. DO WE COLLECT INFORMATION FROM MINORS?

We do not knowingly solicit data from or market to children under 18 years of age. By using the Services, you represent that you are at least 18. If we learn that personal data from users under 18 has been collected, we will promptly delete such data. If you become aware of any data we may have collected from children under 18, please contact us at info@dcdx.co.

10. YOUR PRIVACY RIGHTS

Depending on where you reside (e.g., EU, UK, certain U.S. states), you may have specific rights regarding your personal information:

Access and Portability: You can request a copy of the personal data we hold about you.
Rectification: You can ask us to correct inaccurate data.
Deletion: You can request erasure of your personal information under certain circumstances.
Restriction or Objection: You may restrict or object to certain processing.
Withdraw Consent: If we rely on your consent for processing, you can withdraw it at any time.

To exercise these rights, please contact us at info@dcdx.co. We will respond in accordance with applicable data protection laws.

11. CONTROLS FOR DO-NOT-TRACK FEATURES

Most web browsers and some mobile operating systems include a Do-Not-Track (DNT) feature. Currently, no uniform technology standard for recognizing and implementing DNT signals has been finalized. Therefore, we do not respond to DNT browser signals. If a standard for online tracking is adopted that we must follow in the future, we will inform you about our new practices in a revised version of this Privacy Policy.

12. DO UNITED STATES RESIDENTS HAVE SPECIFIC PRIVACY RIGHTS?

California, Colorado, Connecticut, Utah, and Virginia Residents have rights under their respective state privacy laws. These may include:

The right to access and delete your personal information
The right to opt out of certain data sharing or sales
The right to correct inaccuracies
The right to non-discrimination for exercising these rights

If you are a resident of these states and wish to exercise any applicable privacy rights, please contact us at info@dcdx.co.

13. HUMAN RESOURCES DATA (UK ONLY, IF APPLICABLE)

If we transfer employee-related personal data from the UK to the U.S., we commit to cooperating with the UK Information Commissioner’s Office (ICO) in accordance with the DPF Principles. This HR data may include employment information such as payroll, performance, and benefits details.

14. VERIFICATION OF COMPLIANCE

We verify our adherence to the DPF Principles through Self-Assessment.

If Outside Compliance Review, our verification partner is the Insights Association DPF Services Program, and you can find more information at: https://www.insightsassociation.org/

15. UPDATES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. The updated version will be indicated by an “Last updated” date. We encourage you to review this Policy regularly to stay informed about how we protect your information.

16. HOW CAN YOU CONTACT US ABOUT THIS POLICY?

If you have questions or comments, you may contact us at:

Email: info@dcdx.co
Mailing Address:
GenZ Designs LLC (dcdx)
3076 Morley Rd
Shaker Heights OH 44122
United States

17. HOW CAN YOU REVIEW, UPDATE, OR DELETE THE DATA WE COLLECT FROM YOU?

To request to review, update, or delete your personal information, please submit a Data Subject Access Request or email us at info@dcdx.co. We will respond to your request in accordance with applicable data protection laws.

SUMMARY OF KEY POINTS

DPF Compliance: We adhere to the EU-U.S. Data Privacy Framework and the UK Extension.
Data Collected: We collect personal data you provide directly and some technical data automatically.
Use of Data: To provide and improve services, communicate with you, ensure security, and comply with laws.
Sharing Data: Only with service providers, for legal reasons, or during business transfers.
Your Rights: You may have the right to access, correct, or delete your data, and more, depending on where you live.
Contact: info@dcdx.co

By using our Services, you acknowledge that you have read, understood, and agree to this Privacy Policy.