Introduction to Privacy Policy:
Welcome to the Privacy Policy of DreamDatum.com. This policy serves as a testament to our commitment to safeguarding the privacy and security of the information provided by our users. The Privacy Policy outlines the types of information we collect, our methods for doing so, the reasons behind our data collection practices, and how we ensure the utmost care and compliance with legal standards. It reflects our dedication to transparency and reflects our respect for the privacy rights of every individual who interacts with our platform.
To navigate this document effectively, it is essential to understand the key terminologies used. ‘Personal data’ refers to any information that can be used on its own or with other information to identify, contact, or locate a single person, or to identify an individual in context. This could be anything from your name, email address, phone number, or even an IP address. ‘Non-personal data’ is information that, by itself, cannot be used to identify or contact an individual, such as anonymized usage statistics or aggregated user demographics.
Our Privacy Policy is structured to cover several key aspects that protect user privacy:
- Information Collection Practices: We delineate the nature of the personal and non-personal data collected from users, the collection mechanisms employed, and the reasoning behind these practices.
- Use of Cookies and Tracking Technologies: Here, we discuss the implementation of cookies and tracking technologies, how they are employed on DreamDatum.com, and the choices available to our users regarding their usage.
- Information Utilization, Sharing, and Protection: We provide insights into how we utilize the collected information, the entities with whom the information may be shared, and the rigorous measures in place to ensure data protection.
- User Rights and Data Management: This section underscores the rights of users regarding their personal data, detailing the processes available for users to access, modify, or delete their information.
- Data Retention Policy: We explain our policy on data retention, clarifying how long user information is stored and the criteria that determine its retention or deletion.
- Third-party Data Sharing and Disclosure: This area of the policy elaborates on the scenarios under which user data may be disclosed to third parties, ensuring users are aware of when and how their data could be shared.
- Contact Information for Privacy Concerns: We offer direct channels for users to voice privacy concerns, inquire further about the policy, or address any data-related issues.
- Policy Updates and Notifications: We describe the procedure by which users will be informed about updates to our Privacy Policy, ensuring ongoing communication and transparency.
- Jurisdiction, Governing Law, and International Compliance: The final section lays out the legal jurisdiction and governing laws under which DreamDatum.com operates, including details pertinent to international users and cross-border data transfer considerations.
Through this structured approach, we seek to provide clarity and foster trust, ensuring that every interaction with DreamDatum.com is secure and that the privacy rights of our users are consistently upheld. The sections that follow will delve into each area in greater detail, laying a foundation for a privacy-respecting relationship between DreamDatum and its valued users.
Information Collection Practices
Information Collection Practices
At DreamDatum, we recognize the importance of your personal information and are dedicated to treating it with the utmost care and respect. To provide the services offered on DreamDatum.com and to ensure a seamless user experience, we collect certain types of information from our users. This section delineates the data we collect, the methods of collection, and the purpose behind the data collection, ensuring full transparency and understanding.
Types of Information Collected
Our data collection revolves around two categories: personal data and non-personal data. Here’s how we differentiate and handle these types of data:
Personal Data
Personal data is any information that can directly or indirectly identify you as an individual. When you interact with DreamDatum.com, you may be asked to provide personal data which includes, but is not limited to:
- Identifiers: This encompasses your name, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, Social Security number, driver’s license number, passport number, or other similar identifiers.
- Customer Records: This includes personal information, such as telephone number, bank account number, credit card number, debit card number, or any other financial information, which you may provide in the course of a financial transaction or when setting up an account.
- Protected Classification Characteristics: Depending on the service or survey, you might provide us with information regarding your age, gender, ethnicity, or other similar data.
- Commercial Information: Records of products or services purchased, obtained, or considered, and other purchasing or consuming histories or tendencies.
- Internet or Network Activity: Your browsing history, search history, information on a consumer’s interaction with a website, application, or advertisement.
- Geolocation Data: Your physical location or movements, which can be derived from your IP address or device settings.
- Professional or Employment-Related Information: Current or past job history or performance evaluations, which may be collected during the recruitment process or as part of our business services.
- Inferences Drawn from Personal Information: Profiles reflecting a person’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.
Non-Personal Data
Non-personal data pertains to information that does not specifically identify you and is typically aggregated or anonymized. Such data may include:
- Usage Data: This includes information about how you use our website, products, and services.
- Technical Data: We may collect information about your device or browsing actions and patterns, including the internet protocol (IP) address used to connect your computer to the internet, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access this website.
- Aggregated Data: We also collect, use, and share aggregated data such as statistical or demographic data for any purpose. Aggregated data could be derived from your personal data but is not considered personal data as it does not directly or indirectly reveal your identity.
Methods of Collection
We employ various methods to collect data from and about you including through:
- Direct Interactions: You may provide us with your identity, contact, and financial data by filling in forms or by corresponding with us by post, phone, email, or otherwise. This includes personal data you provide when you:
- create an account on our website;
- subscribe to our service or publications;
- request marketing to be sent to you;
- enter a competition, promotion, or survey; or
- give us feedback or contact us.
- Automated Technologies or Interactions: As you interact with our website, we automatically collect technical data about your equipment, browsing actions, and patterns. We collect this personal data by using cookies, server logs, and other similar technologies.
- Third-Parties or Publicly Available Sources: We may receive personal data about you from various third parties and public sources, such as analytics providers, advertising networks, search information providers, credit reference agencies, and others.
Purpose Behind Data Collection
DreamDatum collects data for various reasons, all aimed at enhancing your experience and delivering the services you expect from us:
- To Provide and Manage Services: Personal data is essential to provide you with the services offered on DreamDatum.com, to manage your account, and to fulfill our contractual obligations.
- Service Improvement: By understanding how you use our services, we can improve the user experience, develop new features, and make informed business decisions.
- Customer Support: Your personal data helps us communicate with you effectively when you seek assistance, whether it’s providing customer support or responding to your inquiries and feedback.
- Security and Fraud Prevention: We use your data to monitor for suspicious or fraudulent activity to ensure the security of our services and your information.
- Marketing and Communications: With your permission, we may use your data to inform you about relevant services, content, and offers that might interest you. You have the right to withdraw consent to marketing at any time by contacting us.
- Compliance and Enforcement: We may use your information to comply with legal obligations, enforce our terms and conditions, and protect the rights, property, or safety of DreamDatum, our users, or others.
- Research and Analytics: Non-personal data plays a crucial role in understanding market trends, customer behavior, and other analytical purposes which drive strategic planning and innovation.
Through the conscientious collection of data, DreamDatum aims to create a harmonious balance between user privacy and enhanced service delivery. The information collected enables us to tailor our offerings to your needs and preferences, while also adhering to the legal and ethical standards of data management and protection.
As we continue to evolve and enhance our services, our data collection practices may adapt to serve you better. However, any changes to these practices will be communicated through updates to this policy. Now, let’s proceed to explore the use of cookies and other tracking technologies, their implementation on DreamDatum.com, and the choices available to you.
Use of Cookies and Tracking Technologies
Use of Cookies and Tracking Technologies
DreamDatum.com employs cookies and similar tracking technologies to monitor and understand your interactions with our website. Cookies are small text files that are placed on your device by websites that you visit. They are widely used to make websites work, or work more efficiently, to improve the user experience, as well as to provide reporting information. The use of these tools enables us to offer you a more personalized and streamlined experience while navigating through our digital offerings.
Purpose of Cookies and Tracking Technologies
The primary purposes for using cookies on DreamDatum.com include:
- Authentication and User Preferences: Cookies help in recognizing you as a returning user, enabling you to avoid re-entering login credentials each time you visit the site. They also remember your preferences, like language selection and high-contrast view settings, to personalize your subsequent visits.
- Security: We use cookies as an element of the security measures used to protect user accounts, including preventing fraudulent use of login credentials and to safeguard information from unauthorized parties.
- Site Performance and Analytics: Cookies and tracking technologies such as web beacons (also known as pixel tags or clear GIFs) gather data about how users interact with DreamDatum’s website and services, which pages are most frequently visited, and how navigation paths are followed. This information helps us analyze website performance, manage the bandwidth of our servers, and improve the overall user experience.
- Advertising: Cookies can be used to display targeted advertisements that align with your interests. They track your online activity to help advertisers deliver more relevant advertising or to limit how many times you see an ad.
- Social Media Features: Cookies facilitate social media features, such as share buttons. These features may collect your IP address and which page you are visiting on our site, and may set a cookie to enable the feature to function properly.
Information Gathered Through Cookies
When you visit DreamDatum.com, the following information may be collected through cookies:
- Device Information: Data related to the device you use to access our website, including device type, operating system, browser type, and settings.
- Usage Information: Details about how you use the site, including the time spent on particular pages, clickstream data, and the dates and times of your visits.
- Location Information: Geographical data may be inferred based on your IP address, allowing us to provide location-specific content or analyze usage patterns across regions.
Managing Cookies and User Preferences
DreamDatum respects your right to privacy and provides ways for you to manage cookies and tracking technologies:
- Browser Settings: You can set your web browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. If you disable or refuse cookies, please note that some parts of this website may become inaccessible or not function properly.
- Opt-Out Tools: Many third-party analytics services and advertising networks offer opt-out features that provide control over data collection and use. For instance, you can use tools like the Google Analytics Opt-out Browser Add-on to prevent data from being used by Google Analytics.
- Do Not Track: Some browsers include a “Do Not Track” feature that signals to websites you visit that you do not want to have your online activity tracked. Please note that we do not alter DreamDatum’s data collection and use practices when we see a Do Not Track signal from your browser.
- Third-Party Ad Networks: For opting out of targeted advertising delivered by third-party ad networks, users can visit the opt-out pages of the Network Advertising Initiative and the Digital Advertising Alliance.
- Consent and Withdrawal: Upon visiting DreamDatum.com for the first time, you will be prompted with a cookie consent banner where you can choose to accept or reject non-essential cookies. You can withdraw your consent at any time through our cookie settings panel, accessible from our website footer.
DreamDatum is committed to transparent and user-centric practices when it comes to the use of cookies and tracking technologies. We strive to strike a balance between your privacy and an enhanced online experience. We ensure that our implementation of cookies and tracking technologies complies with current regulations, including the General Data Protection Regulation (GDPR) for our European users, and we stay abreast of legal and technical developments to maintain high standards of privacy protection.
In the next section, we will delve into the specifics of how DreamDatum utilizes the information collected, the entities with which it is shared, and the rigorous measures we adopt to protect it. This is integral to reinforcing the trust you place in us as a provider of digital services and showcases our unwavering commitment to safeguarding your personal data.
Information Utilization, Sharing, and Protection
Information Utilization, Sharing, and Protection
How DreamDatum Uses Collected Data
The information collected by DreamDatum through its website and services is put to use in a manner that serves to enhance user experience, improve service delivery, and maintain the highest standards of functionality and security. Here is a detailed breakdown of the various ways in which DreamDatum utilizes the collected data:
- Service Delivery: Personal data is essential for the provision of DreamDatum’s services. This information enables the customization and personalization of services to meet the specific needs and preferences of our users. For instance, account information is used to give users access to their user profiles and to provide a means for interaction with the features of the website.
- Customer Support: When users reach out for assistance, the personal information they provide allows us to identify their accounts and offer the necessary support. This may include technical troubleshooting, responding to inquiries about services, or offering guidance on the use of DreamDatum’s platform.
- Product Development: By analyzing usage patterns and user feedback, DreamDatum can focus its product development efforts on areas that matter most to our users. This involves creating new features, enhancing existing functionalities, and ensuring that our services remain up-to-date with the latest industry standards.
- Marketing and Communication: DreamDatum may use your contact information to send promotional messages, newsletters, or other communications that we believe may be of interest to you. However, such communications will be conducted in compliance with applicable laws, and users will have the option to opt out of receiving marketing material at any time.
- Legal Compliance and Enforcement: Personal data may be used for legal purposes, such as to comply with regulatory obligations, to enforce our terms of service, or to address fraud, security, or technical issues.
Parties With Whom Data May Be Shared
DreamDatum understands the importance of keeping personal information confidential, yet there are instances where sharing information with third parties is necessary for the efficient provision of our services or due to legal obligations. Below are the categories of third parties with whom data may be shared:
- Service Providers: To maintain and enhance our services, we sometimes share personal data with third-party service providers who perform various functions on our behalf. These may include hosting services, customer support, analytics, marketing, and payment processing. These service providers are bound by strict confidentiality agreements and are only permitted to use the information as directed by DreamDatum to perform the services required.
- Legal Requirements and Law Enforcement: DreamDatum may disclose personal information if it is required by law, such as to comply with a subpoena or other legal process. We may also share information if we believe in good faith that it is necessary to protect and defend the rights, property, or safety of DreamDatum, our customers, or the public.
- Business Transfers: In the event that DreamDatum is involved in a merger, acquisition, or asset sale, your personal information may be transferred as part of that transaction. However, we would strive to maintain the same level of data protection as before and notify users accordingly.
Security Protocols to Safeguard Personal Information
Protecting the personal information of our users is paramount. DreamDatum has implemented a comprehensive set of security protocols designed to protect data against unauthorized access, alteration, disclosure, or destruction:
- Encryption: Personal data stored on our servers is encrypted both at rest and in transit, employing advanced encryption technologies to prevent unauthorized access.
- Access Control: Strict access control measures are in place to ensure that only authorized personnel have access to personal information, and such access is granted solely for the purposes outlined above. Employees are trained in data protection and are bound by confidentiality obligations.
- Regular Audits and Monitoring: DreamDatum conducts regular audits of its systems and processes to detect potential vulnerabilities and to ensure ongoing compliance with security best practices. Monitoring mechanisms are in place to quickly identify and respond to any unauthorized activity.
- Data Breach Protocols: In the unfortunate event of a data breach, DreamDatum is prepared to take immediate action. We have incident response plans in place to swiftly address the breach, minimize the impact, and inform affected users as well as relevant authorities in accordance with applicable laws and regulations.
- Secure Development Practices: We adopt secure development practices, including regular code reviews and security testing of our applications to prevent security flaws and ensure the integrity of the user data we handle.
DreamDatum’s commitment to data security is unwavering. We continue to invest in and evolve our security infrastructure to safeguard against new threats, employing both in-house expertise and external security professionals to maintain the confidentiality and integrity of personal information. Our user-centric approach to privacy and data protection is integral to the trust placed in us by our customers and is a responsibility we take seriously.
Next, we will articulate the rights users have regarding their personal data, including access, rectification, deletion, and data portability. This section is instrumental for compliance with privacy laws and user empowerment.
User Rights and Data Management
User Rights and Data Management
Individual Rights Over Personal Data
In alignment with global privacy standards, such as the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable privacy laws, DreamDatum recognizes and upholds the following user rights regarding personal data:
- Right to Access: Users have the right to access their personal data that DreamDatum has collected. This includes the right to request and obtain a copy of the personal data, as well as other supplementary information about how the data is being used.
- Right to Rectification: Users are entitled to correct their data if it is inaccurate or incomplete. DreamDatum acknowledges the importance of accurate data and provides easy-to-use tools for users to update their information.
- Right to Erasure (‘Right to be Forgotten’): Users can request the deletion of their personal data when there is no compelling reason for its continued processing. This includes instances where the data is no longer necessary in relation to the purposes for which it was collected, consent is withdrawn, or the data has been unlawfully processed.
- Right to Restrict Processing: Users have the right to ‘block’ or suppress processing of their personal data under certain circumstances, such as when the accuracy of the data is contested by the user or the processing is unlawful.
- Right to Data Portability: Users have the right to receive the personal data that they have provided to DreamDatum in a structured, commonly used, and machine-readable format. They also have the right to transmit this data to another controller without hindrance from DreamDatum.
- Right to Object: Users are entitled to object to the processing of their personal data for specific purposes, including marketing, research, or for reasons relating to their particular situation.
- Rights Related to Automated Decision Making and Profiling: Users have the right not to be subject to a decision based solely on automated processing, including profiling, which has legal or similarly significant effects on them.
Procedures for Exercising User Rights
DreamDatum has established the following procedures to ensure that users can exercise their rights effectively and without undue delay:
- Requests for Access, Rectification, and Erasure: Users can exercise their right to access, rectify, or erase their personal data by submitting a request through our dedicated User Data Rights portal, which is accessible through the DreamDatum website. Upon receiving a request, we will respond within one month of receipt. If the request is particularly complex or if there are a number of requests, we may extend this period by two additional months, and we will inform the user within one month of the receipt of the request, explaining the reason for the delay.
- Data Portability Requests: To exercise the right to data portability, users can submit a request via the same User Data Rights portal. DreamDatum will provide the requested data in a widely used format and, where technically feasible, transmit the data directly to another data controller if requested by the user.
- Objections to Data Processing: Users wishing to object to the processing of their personal data can do so by adjusting their user preferences in the account settings, where applicable, or by contacting DreamDatum’s privacy support team directly through the contact details provided in this privacy policy.
- Automated Decision Making and Profiling: Any user concerns or objections regarding automated decision-making or profiling can be directed to our privacy support team, who will review such requests and take appropriate actions in compliance with applicable laws.
- Withdrawal of Consent: For processes that require user consent, users have the right to withdraw consent at any time. This can be accomplished through the account settings or by reaching out to DreamDatum’s privacy support team. Please note that the withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.
- Responding to Requests: DreamDatum does not charge a fee for processing these requests, unless the requests are unfounded, excessive, or repetitive. In such cases, a reasonable fee may be charged. Before responding to a request, DreamDatum may need to verify the identity of the individual to protect their data from unauthorized access.
DreamDatum is committed to honoring these user rights and to providing timely and transparent responses. Users who feel that their rights have not been adequately respected may file a complaint with a data protection authority in the relevant jurisdiction.
By acknowledging the significance of these rights and establishing clear procedures for their exercise, DreamDatum not only ensures compliance with legal standards but also demonstrates a commitment to respecting user autonomy over personal data. Users’ ability to manage their data fosters trust and reinforces the integrity of DreamDatum’s services.
Moving forward, we will elaborate on DreamDatum’s Data Retention Policy, detailing the length of time user data is stored and the criteria that dictate the erasure of that data. This transparency is pivotal for users to understand the lifecycle of their personal information within the DreamDatum ecosystem.
Data Retention Policy
Data Retention Policy
DreamDatum is dedicated to maintaining responsible data retention practices that comply with legal obligations, meet operational requirements, and respect user preferences. This data retention policy specifies the guidelines that govern the duration for which we store personal and non-personal data and the procedures for data deletion or anonymization.
Retention Periods
The length of time for which DreamDatum retains user data depends on various factors, including the type of data, the purposes for which it is processed, and legal or regulatory obligations. Below are the details regarding our retention periods for different categories of data:
- Account Information: Personal data associated with a user’s account, such as name, email address, and contact information, is retained for as long as the account is active. If a user chooses to deactivate their account, DreamDatum will delete or anonymize the personal data within 90 days, unless retention is necessary for legal reasons or to resolve disputes.
- Billing Information: Financial information related to transactions, such as payment details and invoices, is retained for a period necessary to complete the transaction and for a minimum of seven years thereafter, in accordance with tax laws and financial auditing requirements.
- Website Usage Data: Data that pertains to user interactions with the DreamDatum website, including IP addresses and browsing activity, is stored for no longer than one year after collection, unless further retention is required for security investigations or to improve website functionality.
- Customer Support Data: Communications with our customer support, feedback, and inquiries are generally kept for up to two years from the last date of interaction, to provide better support services and enhance user experience.
- Marketing Data: Contact information used for marketing purposes is kept until a user unsubscribes or opts out of receiving marketing communications. Upon opting out, the data is promptly removed from marketing lists but may be retained in a suppression list to avoid sending unwanted communications in the future.
- Analytics Data: Aggregated or anonymized data used for analytics and business insights is typically retained for up to three years, to observe long-term trends and make informed business decisions.
Conditions for Data Deletion or Anonymization
Data deletion or anonymization occurs under the following conditions:
- User Request: Upon receiving a verified request from a user to delete their personal data, DreamDatum will initiate the deletion process within one month, unless there is a legitimate need to retain the data.
- Account Inactivity: If a user’s account remains inactive for a period exceeding two years, DreamDatum will reach out to the user to confirm whether they wish to maintain their account. If no confirmation is received, the account and associated data will be subject to deletion or anonymization.
- Legal Requirement: If data is retained due to a legal obligation, such as compliance with tax law or litigation purposes, it will be deleted at the end of the required retention period, following legal advice.
- Data Minimization and Accuracy: DreamDatum routinely reviews the data it holds to ensure it is not kept longer than necessary and remains accurate and relevant. Redundant, outdated, or irrelevant data is either deleted or anonymized.
Procedures for Data Deletion or Anonymization
- Automated Deletion Protocols: DreamDatum has implemented automated systems that regularly review data against our retention periods. Data identified for deletion is removed securely from all systems.
- Manual Review: In cases where automated deletion is not feasible, a manual review process ensures that data exceeding retention periods or meeting the criteria for deletion is disposed of appropriately.
- Secure Anonymization: When anonymization is appropriate, DreamDatum applies robust techniques to ensure that data cannot be linked back to an individual or used to identify them, directly or indirectly.
- Physical Media Destruction: For data stored on physical media that is no longer needed, secure destruction methods are employed, such as shredding or incinerating the media.
Security of Data During Retention
During the retention period, DreamDatum applies strict security measures to protect data against unauthorized access, accidental loss, or damage. These measures include encryption, access control, and regular security audits, aligned with industry standards and best practices.
Legal Obligations and Exceptions
There may be instances where DreamDatum is legally required to retain certain data beyond the standard retention periods, such as in the case of ongoing investigations or legal proceedings. In such cases, the data will be retained strictly for the purposes of complying with these obligations and will be handled in accordance with the applicable regulations.
DreamDatum’s commitment to privacy and data protection is reflected in our cautious approach to data retention. By setting clear retention periods and adhering to them through secure processes, we balance the needs of the business with our users’ rights and expectations. We remain vigilant in updating our data retention practices to remain compliant with evolving laws and industry standards, ensuring that our users’ data is managed with the utmost integrity.
Next, we will explore how DreamDatum handles third-party data sharing and disclosure, addressing the scenarios under which data may be shared with external entities, and the emphasis placed on transparency and adherence to user consent where required.
Third-party Data Sharing and Disclosure
Third-party Data Sharing and Disclosure
DreamDatum recognizes the importance of protecting user data and the sensitivities involved in sharing information with third parties. As part of our commitment to transparency and user privacy, we maintain stringent criteria for when and how we disclose any data to external parties. This section elucidates the scenarios under which data may be shared, the precautions we undertake to safeguard user data, the methods for obtaining user consent, and the contractual measures we impose on third parties.
Scenarios of Data Sharing
DreamDatum may share user data with third-party entities under the following specific circumstances:
- Service Providers: We may enlist the services of third-party companies and individuals to facilitate our service (e.g., payment processing, data analysis, email delivery, hosting services, customer service, and marketing efforts). These third parties have access to your personal data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.
- Legal Requirements: DreamDatum may disclose your personal data in the good faith belief that such action is necessary to:
- Comply with a legal obligation, such as responding to subpoenas or court orders.
- Protect and defend the rights or property of DreamDatum.
- Prevent or investigate possible wrongdoing in connection with the service.
- Protect the personal safety of users of the service or the public.
- Protect against legal liability.
- Business Transfers: If DreamDatum is involved in a merger, acquisition, or asset sale, your personal data may be transferred. We will provide notice before your personal data is transferred and becomes subject to a different privacy policy.
- With Your Consent: Other than as set out above, we may share your data with third parties when we have your explicit consent to do so.
Safeguards for Data Protection
When sharing data with third parties, DreamDatum implements a variety of safeguards designed to protect user information:
- Data Processing Agreements: We enter into data processing agreements with all third-party service providers that outline the obligations and responsibilities of both parties, including the requirement for third parties to maintain the confidentiality and security of the data.
- Minimum Necessary Disclosure: Only the minimum amount of data necessary to perform the service or comply with legal requirements is shared with third parties.
- Secure Data Transmission: Data is transmitted securely to third parties using encryption and secure communication protocols.
- Auditing and Compliance Checks: We conduct periodic audits and compliance checks on third-party service providers to ensure they adhere to the agreed-upon data protection standards and procedures.
- Sub-Processor Restrictions: When our service providers subcontract to further third parties (sub-processors), they are required under our data processing agreements to impose data protection terms that provide the same level of protection as stipulated between DreamDatum and the service provider.
Obtaining User Consent
User consent is a cornerstone of our data-sharing practices. We follow these steps to ensure consent is obtained in an appropriate manner:
- Informed Consent: We provide users with clear, concise, and easy-to-understand information about how their data may be shared, ensuring they can make informed decisions about providing consent.
- Explicit Consent for Sensitive Data: In cases where sensitive personal data may be shared, we obtain explicit consent from users. This consent is documented and maintained as a record.
- Consent Management: Users have the ability to manage their consent settings directly from their account settings, enabling them to withdraw consent at any time.
- Age Verification: For users who may be minors under the applicable law, we take additional steps to ascertain consent from their parent or guardian before sharing any personal data.
Contractual Obligations on Third Parties
To ensure third parties manage user data with the highest level of security and privacy, DreamDatum imposes strict contractual obligations, including:
- Compliance with Privacy Laws: Third-party service providers are required to comply with all applicable privacy laws and regulations, including GDPR, CCPA, and any future legislative requirements.
- Data Security Measures: Contracts mandate the implementation of robust security measures, such as encryption, firewalls, and access controls.
- Breach Notification: Third parties must promptly notify DreamDatum of any data breaches or security incidents, and cooperate fully with any remediation or notification efforts.
- Data Return or Destruction: Upon the termination of the services, third-party providers must either return the data to DreamDatum or securely destroy the data, according to DreamDatum’s instructions.
- Audits and Inspections: DreamDatum retains the right to perform, or appoint an independent auditor to perform, audits and inspections of third-party service providers to ensure compliance with the contractual data protection obligations.
DreamDatum values the trust our users place in us and continues to work diligently to maintain that trust. Our third-party data sharing and disclosure practices are designed to be as protective of user privacy as possible, while still allowing us to operate effectively and comply with legal obligations. When sharing information, we strive to be as transparent as possible with our users, informing them of their rights and the measures we take to safeguard their personal information.
Providing contact information for privacy concerns allows users to reach out with questions or issues regarding their data. This fosters trust and demonstrates DreamDatum’s commitment to privacy.
Contact Information for Privacy Concerns
If you have any concerns or questions regarding your privacy, or how DreamDatum handles your personal information, we strongly encourage you to reach out to us. Your privacy is of utmost importance to us, and we are dedicated to addressing any issues or inquiries you may have in a timely and transparent manner.
For any privacy-related concerns, you may contact DreamDatum using the following methods:
Email Contact:
You can email our Privacy Team directly at contact@dreamdatum.com. This email is monitored regularly, and we aim to respond to all inquiries within 48 hours. When sending an email, please include your name, the nature of your concern or question, and any relevant contact information so that we may assist you efficiently.
Online Support Form:
Additionally, DreamDatum offers an online
specifically for privacy matters. This can be found in the ‘Contact Us’ section of our website. Fill out the form with your contact details and your privacy concern, and one of our privacy officers will get back to you.
Data Protection Officer (DPO):
For more complex issues, especially those concerning data protection laws and regulations, you may wish to contact our Data Protection Officer directly. The DPO is responsible for overseeing DreamDatum’s data protection strategy and its implementation to ensure compliance with GDPR and other data protection laws. The DPO can be reached at Contact@dreamdatum.com.
Please note, our DPO is designated for overseeing the effective management of your personal data and for navigating the complex landscape of data protection. Any requests or concerns that pertain to personal data handling, including data subject access requests, rectification requests, or erasure requests, are best directed to our DPO.
Social Media Channels:
For general queries, you can also engage with us on our social media channels. Our team monitors these platforms and can direct your query to the right department. However, for privacy-specific concerns, we recommend using one of the direct channels above to ensure confidentiality and a prompt response.
Before reaching out, please take a look at our Frequently Asked Questions (FAQ) section on our website as it may already contain the information you need. If your concern requires you to provide sensitive information, please ensure that you do so through a secure method to protect your data.
We are fully committed to resolving your concerns to your satisfaction and ensuring that your experience with DreamDatum is a positive one. If you feel that your concerns have not been adequately addressed, you have the right to lodge a complaint with your local data protection authority.
Rest assured that at DreamDatum, we take your privacy concerns seriously and will always strive to manage and protect your personal information with the utmost respect and in compliance with all applicable laws and regulations. Our goal is to ensure your peace of mind when it comes to privacy and data protection.
Following the contact information section, it’s essential to inform users about how they will be notified of any changes to the privacy policy and the methods DreamDatum will use to keep users updated on these changes.
Policy Updates and Notifications
DreamDatum is committed to keeping its users informed about any changes to our privacy policy. We understand the importance of maintaining transparency and providing you with the most up-to-date information regarding how we manage and protect your personal information. As such, we have established a comprehensive notification process to ensure that you are always aware of any amendments to our privacy policy.
Notification Process:
Upon the introduction of significant updates to our privacy policy, DreamDatum will notify users through several communication channels. We believe in a proactive approach that ensures users do not overlook such important updates. Here are the specific steps we will take to notify you of any changes:
- Email Notifications:
We will send out an email to the address you have provided in your user account. This email will outline the nature of the updates, a summary of changes, and a link to the full revised privacy policy. We will ensure that these emails are clearly marked and distinguishable from regular marketing communications so that you can immediately recognize their significance. - Website Announcements:
DreamDatum will post a prominent notification on our website, which will be visible on the homepage or as a banner on all pages. This announcement will briefly describe the changes and provide a direct link to the updated privacy policy. Users will be encouraged to review the new document in its entirety. - In-Platform Notifications:
For users actively engaged with our platform, DreamDatum will utilize in-app or in-service notifications. A message will appear upon login or during use of the platform to alert users of the privacy policy updates. We aim to make these notifications non-disruptive while still ensuring that they are adequately noticed by all users. - Social Media and Official Channels:
Updates will also be communicated through DreamDatum’s official social media accounts. Short messages summarizing the changes and links to the updated privacy policy will be shared across platforms such as Twitter, Facebook, LinkedIn, and any other social media outlets where DreamDatum maintains a presence. - Customer Support and Service Teams:
Our customer support and service teams will be briefed on the updated privacy policy and will be prepared to address any questions or concerns that you may have. They will provide additional avenues for users to discuss and understand the changes if needed.
Timeframe for Notifications:
DreamDatum believes in giving users adequate time to understand and adjust to any changes in our privacy policy. Therefore, notifications regarding significant updates will be provided at least 30 days before the changes take effect. For minor amendments that do not materially affect the handling of personal data, we may provide a shorter notice period. However, users will always be given sufficient time to review the changes and make informed decisions about their continued use of our services.
Additional Steps for Acknowledgement:
We acknowledge that merely notifying users may not be enough to ensure they are aware of policy changes. As such, we may implement additional acknowledgment steps such as requiring users to click through and confirm having read the updated policy before they can continue using the service after changes have gone into effect.
Archiving Previous Versions:
For the purpose of maintaining a transparent record, DreamDatum will archive all previous versions of our privacy policy. Users will be able to access these archived versions via a dedicated section on our website. This ensures that you can review past policies and understand the evolution of our data protection practices over time.
Review Reminder:
Lastly, while we will inform you of updates to our privacy policy, we also encourage you to periodically review the policy on your own. DreamDatum’s privacy policy will always be accessible through our website, and we suggest that users review it at least once a year or after being notified of changes.
To continue our commitment to transparency and user empowerment, the following concluding section will detail the jurisdiction and governing law under which the privacy policy is created, as well as any additional compliance measures DreamDatum adheres to for international users.
Jurisdiction, Governing Law, and International Compliance
Jurisdiction and Governing Law
This Privacy Policy, and the collection and handling of user data by DreamDatum, shall be governed by and construed in accordance with the laws of the United States of America and the state of California, without giving effect to any principles of conflicts of law.
By using the services provided by DreamDatum, you agree that any dispute or claim arising out of or in connection with this Privacy Policy or the performance, breach, or termination thereof, will be exclusively resolved under the competent courts of the state of California. If you are a resident of a country other than the United States, you acknowledge that you are voluntarily transferring information, including personally identifiable information, to the United States and understand that the laws of the United States may not be as protective as the laws of your jurisdiction.
International Data Transfers and Compliance Measures
DreamDatum operates globally, which means that we may transfer, store, or process your information in jurisdictions other than where you live. When we do this, we ensure that the transfer is lawful and that there are appropriate security measures in place to protect your information in accordance with this Privacy Policy.
EU-U.S. and Swiss-U.S. Privacy Shield Frameworks
Although DreamDatum does not rely on the EU-U.S. and Swiss-U.S. Privacy Shield Frameworks as a legal basis for transfers of personal data in light of the judgment of the Court of Justice of the EU in Case C-311/18, we commit to protecting all personal data received from the European Union (EU), European Economic Area (EEA), and Switzerland in accordance with applicable data protection laws.
General Data Protection Regulation (GDPR)
For users residing in the EU or EEA, DreamDatum adheres to the General Data Protection Regulation (GDPR). Accordingly, DreamDatum takes all necessary measures to ensure that personal data is processed lawfully, fairly, and transparently, without adversely affecting your rights.
We have implemented additional procedures to ensure that we meet the heightened standards for data privacy introduced by the GDPR. This includes, but is not limited to, the following compliance measures:
- Ensuring that data processing is performed with your consent or for the legitimate purposes of providing the services you use.
- Instituting the right to access your personal information, allowing you to receive confirmation as to whether or not personal data concerning you is being processed, and providing access to that data.
- Providing the right to rectification and erasure, commonly known as ‘the right to be forgotten’, enabling you to have your information corrected or removed where it is inaccurate or processed in violation of the GDPR.
- Upholding the right to restrict processing, permitting you to request that your data’s processing be limited under certain circumstances.
- Adhering to the right to data portability, allowing you to receive the personal data concerning you and to transmit that data to another controller.
- Observing the right to object to processing based on legitimate interests, direct marketing, and processing for research and statistics.
- Ensuring that appropriate technical and organizational measures are in place to secure your personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to personal data transmitted, stored, or otherwise processed.
- Notifying users and the relevant authorities within 72 hours of becoming aware of a data breach when it is likely to result in a risk to your rights and freedoms.
California Consumer Privacy Act (CCPA)
For residents of California, DreamDatum complies with the California Consumer Privacy Act (CCPA). As such, DreamDatum acknowledges your right to know about the personal information that is being collected about you, the categories of sources from which the personal information is collected.