REDLINE DESIGN PRIVACY NOTICE

Last Updated: April 20th of 2025

1. Introduction

Redline Design ("We," "Us," "Our") is committed to protecting your privacy. This Privacy Notice explains how we collect, use, share, and protect personal data when you interact with our website, use our services, receive communications from us, or interact with our SMS messaging programs. This notice applies to our website visitors, current and prospective clients, event attendees, individuals contacted via marketing efforts, and recipients of our SMS messages. Please read this Privacy Notice carefully.

2. Data Controller Information

Redline Design is the data controller for the personal data collected as described in this notice.

Our contact details are: Redline Design LLC

55 N Mechant St #444, American Fork, Utah, 84003

ryan@redline.design

(208) 867-4526

3. What Personal Data We Collect

We collect various categories of personal data, depending on your interaction with us. This may include:

  • Contact Information: Name, email address, phone number, postal address.

  • Professional Information: Company name, job title, industry.  


  • Account Information: Usernames, passwords (hashed), preferences for client portals or service accounts (if applicable).

  • Financial Information: Billing address, payment card details (processed securely by third-party payment processors), transaction history.

  • Website Usage & Technical Data: IP address, browser type and version, operating system, device identifiers, referring URLs, pages visited on our site, time spent on pages, clickstream data, cookie data, and potentially broad geolocation data derived from your IP address.

  • Communications Data: Content of emails, contact form submissions, online chat messages, support requests, survey responses, and feedback you provide.

  • Marketing Data: Your marketing preferences (opt-ins/opt-outs), records of consent, and engagement with our marketing communications (e.g., email opens, clicks).

  • SMS Program Data: Your phone number if you opt-in to our SMS program, your opt-in/opt-out status, consent records, and the content of messages exchanged via the short code.

  • Third-Party Data: Information we might receive from business partners, data analytics providers, advertising networks, social media platforms (if you interact with our profiles there), or publicly available sources.

  • Sensitive Personal Information: We typically do not collect sensitive personal information (like health data, race, religion, precise geolocation unless functionally necessary). If we ever need to collect such data, we will do so only with your explicit consent or as permitted by law, and state it clearly at the point of collection.

4. How We Collect Your Personal Data

We collect personal data in the following ways:

  • Directly from You: When you fill out forms on our website, contact us via email or phone, sign up for our services or newsletters, create an account, make a payment, respond to surveys, or explicitly opt-in to receive SMS messages.

  • Automatically: Through cookies, pixels, web beacons, server logs, and other tracking technologies when you visit our website, interact with our emails, or use certain features of our services.

  • From Third Parties: From analytics providers (like Google Analytics), advertising networks, business partners, public databases, social media platforms, or potentially from our clients who provide contact details for service administration.

5. How and Why We Use Your Personal Data (Purposes & Legal Basis)

We use your personal data for specific purposes and rely on legally permissible bases (primarily under GDPR where applicable) for processing:

  • To Provide and Manage Services: To fulfill our contractual obligations to clients, manage client accounts and relationships, provide customer support, and process payments.

    • Legal Basis (GDPR): Contractual Necessity, Legitimate Interest (managing client relationships).

  • To Operate and Improve Our Website & Services: To analyze website traffic and user behavior, understand how our services are used, personalize your experience (e.g., remembering preferences), maintain security, troubleshoot issues, and develop new features.

    • Legal Basis (GDPR): Legitimate Interest (for essential operations, security, and basic analytics), Consent (for non-essential cookies, tracking for personalization, and advanced analytics).

  • For Marketing and Communications: To send you newsletters, promotional materials, information about our services, and event invitations, where you have given consent or where permitted by law (e.g., communicating with existing clients about similar services, always with an opt-out option). To manage your marketing preferences and track engagement.

    • Legal Basis (GDPR): Consent (for most electronic marketing), Legitimate Interest (for certain existing client communications).

  • To Operate the SMS Short Code Program: To send you alerts, notifications, or marketing messages via SMS based on your explicit opt-in consent.

    • Legal Basis (GDPR): Consent.

  • For Security and Fraud Prevention: To monitor our systems for security threats, prevent fraudulent activity, and protect our rights and property and the rights of others.

    • Legal Basis (GDPR): Legitimate Interest, Legal Obligation.

  • To Comply with Legal Obligations: To meet legal and regulatory requirements, such as tax laws, financial record-keeping, or responding to lawful requests from authorities (e.g., subpoenas, court orders).

    • Legal Basis (GDPR): Legal Obligation.

  • For Recruitment: To process job applications if you apply for a position with us.

    • Legal Basis (GDPR): Consent, Legitimate Interest (processing applications).

6. How We Share Your Personal Data

We do not sell your personal data in the traditional sense. However, we may share your personal data with certain categories of third parties for the purposes described above:

  • Service Providers/Sub-processors: We use third-party companies to perform essential functions, such as website hosting, payment processing, email delivery, CRM systems, analytics services, advertising platforms (for our own marketing), customer support tools, and IT support. These providers only have access to the personal data needed to perform their functions and are contractually obligated to protect your data and use it only for the purposes we specify.

  • Advertising Partners: We may share limited data (e.g., via cookies) with advertising networks or platforms to help us market our own services (e.g., retargeting). This sharing, particularly for cross-context behavioral advertising under CCPA/CPRA, may require your consent or be subject to your right to opt-out.

  • Professional Advisors: We may share data with our lawyers, accountants, auditors, and insurers as necessary in the course of the professional services they provide to us.

  • Legal Authorities: We may disclose personal data if required by law, regulation, legal process (like a subpoena), or governmental request, or to protect our rights or the safety of others.

  • Business Transfers: If Redline Design is involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of all or a portion of its assets, your personal data may be transferred as part of that transaction, subject to standard confidentiality agreements.

  • CCPA "Sale" or "Sharing":

    • We do not "sell" or "share" your personal information as those terms are defined under the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA).  


  • Data Processed for Clients: When we process personal data on behalf of our clients (acting as a Data Processor), we do so according to their instructions and our Data Processing Agreement (DPA) with them. If your data is being processed by us on behalf of one of our clients, please refer to that client's privacy policy for information on their data practices. We apply appropriate security measures to protect data we process for clients.

7. International Data Transfers

Your personal data may be transferred to, stored, and processed in countries other than your own, including the United States, where our servers or those of our service providers may be located. Data protection laws in these countries may differ from those in your jurisdiction. When we transfer personal data internationally (e.g., from the EU/UK/EEA to the US), we rely on legally approved mechanisms to ensure adequate protection, such as the EU Standard Contractual Clauses (SCCs), the UK Addendum to the SCCs, adequacy decisions where applicable, or other appropriate safeguards.  

8. Data Security

We implement reasonable technical and organizational security measures designed to protect the personal data we process against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access. These measures include encryption, access controls, secure network configurations, and staff training. However, please be aware that no security system is impenetrable, and we cannot guarantee the absolute security of your data.  

9. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including providing our services, complying with legal obligations (e.g., tax, accounting, legal requirements), resolving disputes, enforcing our agreements, and for other legitimate business purposes. Retention periods vary depending on the type of data and the purpose for collection. For example, client contact information is kept for the duration of the client relationship plus a period afterward as required for legal or audit purposes. Data collected based on consent (like marketing email subscriptions) is kept until you withdraw your consent. When data is no longer needed, we securely delete or anonymize it.  

10. Your Data Protection Rights

Depending on your location and applicable data protection laws (such as GDPR for EU/UK residents or CCPA/CPRA for California residents), you may have the following rights regarding your personal data:

  • Right to Know / Access: The right to request information about the categories and specific pieces of personal data we have collected about you, the sources of the data, the purposes for collecting it, and the categories of third parties with whom we share it.  


  • Right to Rectification / Correction: The right to request correction of inaccurate personal data we hold about you.

  • Right to Erasure / Deletion: The right to request the deletion of your personal data, subject to certain exceptions (e.g., where retention is necessary for legal compliance or contractual obligations).

  • Right to Restrict Processing: The right to request the restriction of processing your personal data under certain circumstances (e.g., while verifying accuracy). (Primarily a GDPR right)

  • Right to Data Portability: The right to receive a copy of certain personal data you provided to us in a structured, commonly used, and machine-readable format, and the right to transmit that data to another controller. (Applies mainly to data processed based on consent or contract under GDPR).  


  • Right to Object: The right to object to the processing of your personal data based on legitimate interests, and the absolute right to object to processing for direct marketing purposes. (Primarily a GDPR right).

  • Right to Opt-Out of Sale or Sharing (CCPA/CPRA): If applicable (see Section 6), the right to opt-out of the "sale" or "sharing" of your personal information, particularly for cross-context behavioral advertising.

  • Right to Limit Use and Disclosure of Sensitive Personal Information (CCPA/CPRA): If we collect sensitive personal information beyond standard business necessities, the right to limit its use and disclosure to specific permitted purposes.

  • Right to Withdraw Consent: Where we rely on consent as the legal basis for processing, you have the right to withdraw your consent at any time.

  • Right to Non-Discrimination: The right not to be discriminated against for exercising your privacy rights.

  • Right to Lodge a Complaint: The right to lodge a complaint with a relevant data protection supervisory authority if you believe our processing of your personal data violates applicable law.

How to Exercise Your Rights: To exercise any of these rights, please contact us using the details provided in Section 2 or Section 15. We will need to verify your identity before processing your request and will respond within the timeframe required by applicable law (e.g., typically within 30 days under GDPR or 45 days under CCPA, potentially extendable). We may need to ask for additional information to verify your identity. If we deny your request, we will explain why, and you may have the right to appeal the decision depending on your jurisdiction.

11. Cookies and Tracking Technologies

We use cookies and similar tracking technologies (like web beacons or pixels) on our website and in our emails to help operate our site, analyze usage, personalize content, and support our marketing efforts. For detailed information about the types of cookies we use, why we use them, and how you can manage your cookie preferences and consent, please see our separate Cookie Policy [Insert Link to Cookie Policy Here]. You can typically manage cookie settings through our website's cookie consent banner or your browser settings. Note that disabling essential cookies may affect website functionality.

12. Children's Privacy

Our services and website are not directed at children under the age of 13 (or 16 in some jurisdictions like the EU/UK, unless member state law provides for a lower age). We do not knowingly collect personal data from children without verifiable parental consent. If we become aware that we have inadvertently collected personal data from a child without proper consent, we will take steps to delete it promptly. If you believe we might have collected data from a child, please contact us.  

13. Links to Other Websites

Our website may contain links to third-party websites. This Privacy Notice does not apply to those external sites. We are not responsible for the privacy practices or content of such third-party sites. We encourage you to read their privacy policies before providing any personal data.  

14. Changes to this Privacy Notice

We may update this Privacy Notice from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make changes, we will update the "Last Updated" date at the top of this notice. If we make material changes, we will provide more prominent notice, such as by posting a notice on our website or sending you an email notification, where feasible. We encourage you to review this Privacy Notice periodically.  

15. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Notice or our data protection practices, please contact us at:  

Redline Design

Attn: Privacy Inquiry

55 N Mechant St #444, American Fork, Utah, 84003

ryan@redline.design

(208) 867-4526

© 2025 Website created with love by the REDLINE development team.

© 2025 Website created with love by the REDLINE development team.

© 2025 Website created with love by the REDLINE development team.