833-WDI-4YOU [email protected]

Data Protection

 

We are committed to protecting Your personal information and complying with all relevant data protection laws, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and the Payment Card Industry Data Security Standard (PCI-DSS). Please Review for more information.

We’ll Do It LLC Data Protection Policy

At We’ll Do It LLC, we are committed to protecting the privacy and security of our clients’ personal information. This Data Protection Policy outlines our practices concerning the collection, use, and protection of personal data in compliance with relevant data protection laws and standards.

1. Compliance with Data Protection Laws

We adhere to the requirements of the following data protection laws and standards:

1.1 General Data Protection Regulation (GDPR)
For our clients in the European Union (EU) and European Economic Area (EEA), we comply with the GDPR. This includes:
– Obtaining explicit consent for data collection and processing
– Providing the right to access, rectify, and erase personal data
– Ensuring data portability
– Notifying authorities and individuals in case of data breaches

1.2 California Consumer Privacy Act (CCPA)
For our California-based clients, we comply with the CCPA. This includes:
– Providing notice about the personal information we collect
– Giving California residents the right to request access to and deletion of their personal information
– Allowing California residents to opt-out of the sale of their personal information

1.3 Payment Card Industry Data Security Standard (PCI-DSS)
We adhere to PCI-DSS requirements to ensure secure handling of credit card information. This includes:
– Maintaining a secure network
– Protecting cardholder data
– Maintaining a vulnerability management program
– Implementing strong access control measures
– Regularly monitoring and testing networks
– Maintaining an information security policy

2. Data Collection and Use

We collect and use personal data for the following purposes:
– Providing and improving our services
– Processing payments
– Communicating with clients
– Marketing and promotional activities (with consent)
– Complying with legal obligations

We only collect data that is necessary for these purposes and retain it only for as long as necessary.

3. Data Security Measures

To protect your personal information, we implement various security measures, including:
– Encryption of sensitive data
– Regular security audits and updates
– Employee training on data protection
– Access controls and authentication procedures
– Secure data backup and recovery processes

4. Third-Party Services

We use several third-party services in our operations, including but not limited to:
– Hubspot & Agiled CRM for lead generation and contact management

– Google Workspace for contact & cloud storage
– WordPress/WooCommerce CMS for our website and e-commerce platform
– Ring Central for our phone and IVR system

These third-party services have their own privacy policies and security measures. We ensure that they comply with relevant data protection laws and maintain appropriate security standards.

5. Your Rights

Depending on your location, you may have certain rights regarding your personal data, including:
– The right to access your personal data
– The right to rectify inaccurate data
– The right to erasure (“right to be forgotten”)
– The right to restrict processing
– The right to data portability
– The right to object to processing

To exercise these rights, please contact us using the information provided in the “Contact Us” section below.

Data Breaches

We take the security of your data seriously and have implemented measures to prevent data breaches. However, in the unlikely event of a data breach that may compromise your personal information, we will take the following actions:

6.1 Breach Detection and Containment
– We will promptly identify and contain the breach to prevent further data loss.
– Our IT team will work to secure our systems and fix any vulnerabilities that may have caused the breach.

6.2 Assessment of Risk
– We will assess the nature and scope of the breach, including the types of data involved and the number of individuals affected.
– We will evaluate the potential impact on affected individuals and our business.

### 6.3 Notification
– We will notify affected individuals without undue delay, typically within 72 hours of becoming aware of the breach, as required by applicable laws such as GDPR.
– The notification will include:
– A description of the nature of the breach
– The types of data involved
– The steps we are taking to address the breach
– Recommendations for affected individuals to protect themselves
– We will also notify relevant authorities, such as data protection regulators, as required by law.

6.4 Investigation and Prevention
– We will conduct a thorough investigation to determine the cause of the breach.
– Based on our findings, we will implement additional security measures to prevent similar incidents in the future.

6.5 Documentation
– We will document all aspects of the data breach and our response, as required by data protection laws.

6.6 Ongoing Support
– We will provide ongoing support and information to affected individuals as needed.
– We will cooperate fully with any investigations by regulatory authorities.

If you become aware of a potential data breach or have any concerns about the security of your data, please contact us immediately using the information provided in the “Contact Us” section below.

7. Changes to This Policy

We may update this Data Protection Policy from time to time. We will notify you of any significant changes by posting the new policy on this page and updating the “last updated” date.

8. Contact Us

If you have any questions about this Data Protection Policy or our data protection practices, please contact us at:

We’ll Do It LLC
2321 E. University Dr.
Phoenix, AZ 85034
Email: [email protected]

Last updated: 10-22-24