Last Updated: October 28, 2025

1. Introduction

The .do platform ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Platform and Services.

By using our Services, you consent to the practices described in this Privacy Policy. If you do not agree with this Privacy Policy, please do not use our Services.

2. Information We Collect

2.1 Information You Provide to Us

Account Information When you create an account, we collect:

Name
Email address
Company name (if applicable)
Authentication credentials (managed through third-party authentication service providers)

Payment Information If you subscribe to a paid plan, we use Stripe to process payments. Stripe collects:

Billing name and address
Payment card information
Transaction history

Note: We do not store your payment card information on our servers. All payment data is processed and stored securely by Stripe, which is PCI DSS Level 1 certified.

User Content We collect content you create, upload, or submit through the Services, including:

Code and configurations
API requests and responses
Files and data you upload
Messages and support communications

Communications When you contact us, we collect:

Email correspondence
Support ticket information
Feedback and survey responses

2.2 Information We Collect Automatically

Usage Data We automatically collect information about your use of the Services through third-party analytics service providers:

Pages viewed and features accessed
Time spent on pages
Click data and navigation patterns
Referral source
Search queries within the Services

Device and Technical Information

IP address
Browser type and version
Operating system
Device type and identifiers
Screen resolution
Language preferences

Cookies and Tracking Technologies We use cookies, web beacons, and similar technologies to:

Maintain your session
Remember your preferences
Analyze usage patterns
Improve our Services

You can control cookies through your browser settings, but disabling cookies may affect functionality.

Log Data Our servers automatically record:

API calls and responses
Error messages
System activity and performance metrics
Security events

2.3 Information from Third Parties

Authentication Data We use third-party authentication service providers. These providers may share limited information necessary for account creation and authentication. Our authentication providers do not store personally identifiable information (PII) beyond what is necessary for authentication.

Analytics Providers We use third-party analytics service providers to collect product analytics, user behavior insights, website traffic data, and usage analytics.

Integration Partners If you connect third-party services to your account, we may receive information from those services as authorized by you.

3. How We Use Your Information

We use the information we collect to:

3.1 Provide and Improve Services

Deliver, operate, and maintain the Platform
Process transactions and send related information
Respond to your requests and provide customer support
Monitor and analyze usage patterns and trends
Develop new features and improve existing functionality
Personalize your experience

3.2 Communication

Send you technical notices and security alerts
Provide updates about the Services
Send marketing communications (with your consent)
Respond to your inquiries and requests

3.3 Security and Compliance

Detect, prevent, and address fraud and security issues
Enforce our Terms of Service and other policies
Comply with legal obligations and protect legal rights
Resolve disputes

3.4 Research and Analytics

Conduct research and analysis to improve our Services
Generate aggregated, anonymized data for business purposes
Benchmark performance and usage metrics

4. How We Share Your Information

4.1 We Do Not Sell Your Information

We do not sell, rent, or trade your personal information to third parties for their marketing purposes.

4.2 Service Providers

We share information with third-party service providers who perform services on our behalf:

Authentication: Third-party authentication service providers (for user authentication and identity management)

These providers do not store personally identifiable information (PII) beyond what is necessary for authentication

Analytics: Third-party analytics service providers (for usage analytics and performance monitoring)

Payment Processing: Stripe (for billing and payment processing)

Stripe is PCI DSS Level 1 certified
We do not store payment card information on our servers
All payment data is processed and stored securely by Stripe
Learn more: Stripe Privacy Policy

Infrastructure: Third-party infrastructure and content delivery service providers (for content delivery, security, and performance)

Hosting and Storage: Cloud service providers (for data storage and processing)

These providers are contractually obligated to protect your information and use it only for the purposes we specify.

4.3 Business Transfers

If we are involved in a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of that transaction. We will notify you before your information is transferred and becomes subject to a different privacy policy.

4.4 Legal Requirements

We may disclose your information if required to do so by law or in response to:

Valid legal processes (subpoenas, court orders)
Government investigations
Requests from law enforcement or regulatory authorities
Protection of our rights, property, or safety
Protection of others' rights, property, or safety

4.5 Aggregated Data

We may share aggregated, anonymized data that does not identify you personally with:

Business partners
Researchers
The public (in reports or presentations)

4.6 With Your Consent

We may share your information with third parties when you give us explicit consent to do so.

5. Data Security

5.1 Security Measures

We implement appropriate technical and organizational measures to protect your information, including:

Encryption in transit (TLS/SSL)
Encryption at rest for sensitive data
Access controls and authentication
Regular security audits and testing
Employee training on data protection
Incident response procedures

5.2 No Absolute Security

While we strive to protect your information, no method of transmission or storage is 100% secure. We cannot guarantee absolute security of your information.

5.3 Your Responsibility

You are responsible for:

Maintaining the confidentiality of your account credentials
Using strong, unique passwords
Enabling two-factor authentication when available
Notifying us immediately of any suspected security breach

6. Data Retention

6.1 Retention Periods

We retain your information for as long as necessary to:

Provide the Services
Fulfill the purposes described in this Privacy Policy
Comply with legal obligations
Resolve disputes and enforce agreements

6.2 Deletion

When information is no longer needed, we will:

Delete or anonymize it
Securely destroy physical records
Remove it from our systems (subject to technical limitations)

6.3 Backup Data

Some information may remain in backup systems for a limited time after deletion but will be isolated and protected from further use.

7. Your Rights and Choices

7.1 Access and Correction

You have the right to:

Access the personal information we hold about you
Request correction of inaccurate information
Update your account information at any time

7.2 Data Portability

You may request a copy of your personal information in a structured, machine-readable format.

7.3 Deletion

You may request deletion of your personal information, subject to:

Legal obligations to retain certain data
Legitimate business needs
Technical limitations

7.4 Opt-Out Rights

You may opt out of:

Marketing communications (via unsubscribe links or account settings)
Certain analytics tracking (via browser settings or opt-out mechanisms)
Cookie tracking (via browser settings)

7.5 Do Not Track

Our Services do not currently respond to "Do Not Track" browser signals, but you can control tracking through other means described in this policy.

7.6 Exercising Your Rights

To exercise any of these rights, please contact us at [email protected]. We will respond to your request within a reasonable timeframe as required by applicable law.

8. International Data Transfers

8.1 Global Operations

We operate globally and may transfer your information to countries other than your country of residence, including the United States. These countries may have different data protection laws.

8.2 Safeguards

When we transfer information internationally, we implement appropriate safeguards, including:

Standard contractual clauses
Adequacy decisions
Other legally approved mechanisms

9. Children's Privacy

9.1 Age Restriction

Our Services are not directed to individuals under the age of 13 (or the applicable age of digital consent in your jurisdiction). We do not knowingly collect personal information from children.

9.2 Parental Notice

If we become aware that we have collected information from a child without parental consent, we will take steps to delete that information promptly.

9.3 Parental Responsibilities

If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

10. California Privacy Rights

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

10.1 Right to Know

You have the right to request:

Categories of personal information we collected
Categories of sources from which we collected information
Business or commercial purpose for collecting information
Categories of third parties with whom we share information
Specific pieces of personal information we collected about you

10.2 Right to Delete

You have the right to request deletion of your personal information, subject to certain exceptions.

10.3 Right to Opt-Out

You have the right to opt out of the "sale" of your personal information. We do not sell personal information.

10.4 Right to Non-Discrimination

We will not discriminate against you for exercising your CCPA rights.

10.5 Authorized Agents

You may designate an authorized agent to make requests on your behalf.

10.6 Verification

We may require verification of your identity before processing your request.

To exercise these rights, contact us at [email protected].

11. European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have rights under the General Data Protection Regulation (GDPR):

11.1 Legal Basis for Processing

We process your information based on:

Performance of a contract (to provide Services)
Legitimate interests (to improve and secure Services)
Consent (for marketing communications)
Legal obligations (to comply with laws)

11.2 Your Rights

You have the right to:

Access your personal data
Rectify inaccurate data
Erase your data ("right to be forgotten")
Restrict processing
Data portability
Object to processing
Withdraw consent at any time
Lodge a complaint with a supervisory authority

11.3 Data Protection Officer

For GDPR-related inquiries, contact our Data Protection Officer at [email protected].

12. Changes to This Privacy Policy

12.1 Updates

We may update this Privacy Policy from time to time to reflect:

Changes in our practices
Changes in applicable laws
New features or services
Feedback from users

12.2 Notice of Changes

We will notify you of material changes by:

Posting the updated Privacy Policy on our website
Updating the "Last Updated" date
Sending an email notification (for significant changes)

12.3 Continued Use

Your continued use of the Services after changes take effect constitutes acceptance of the updated Privacy Policy.

13. Third-Party Links

Our Services may contain links to third-party websites or services. This Privacy Policy does not apply to those third parties. We encourage you to review the privacy policies of any third-party sites you visit.

14. Analytics and Tracking Details

14.1 Analytics Services

We use third-party analytics service providers to help us understand how users interact with our Services. These providers collect:

Page views and feature usage
User interactions and events
Session data
Performance metrics
Traffic sources
Geographic and demographic information
Device and browser information

You can learn more about these providers and their privacy practices by reviewing their respective privacy policies. You may also have options to opt out of certain tracking through browser settings or provider-specific opt-out mechanisms.

14.2 Authentication Services

Third-party authentication service providers handle authentication for our Services and do not store personally identifiable information (PII) beyond what is necessary for authentication.

15. Cookie Policy

We use the following types of cookies:

15.1 Essential Cookies

Required for the Services to function properly:

Session management
Authentication
Security

15.2 Analytics Cookies

Help us understand how users interact with the Services:

Third-party analytics services
Product usage tracking
Performance monitoring

15.3 Preference Cookies

Remember your settings and preferences:

Language preferences
Display settings

15.4 Performance Cookies

Improve the performance and functionality of the Services.

15.5 Managing Cookies

You can manage cookies through your browser settings. Most browsers allow you to:

View cookies stored on your device
Delete cookies
Block cookies from specific sites
Block all cookies

Note that blocking or deleting cookies may affect the functionality of our Services.

16. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: [email protected]

Effective Date: October 28, 2025

By using our Services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.