Introduction
PlumDigital ("we", "us", or "our") operates the website plumdigital.co and provides AI-powered digital agency services. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, use our services, or interact with our client portal.
By accessing or using our services, you agree to the collection and use of information in accordance with this policy. If you do not agree with the terms of this policy, please do not access the site or use our services.
Information We Collect
Personal Information
We may collect personal information that you voluntarily provide to us when you:
- Register for an account on our client portal
- Subscribe to one of our service plans
- Use our AI website builder (BYOWS), AI Social Generator, or AI Blog Writer
- Request a custom AI agent or AI integration service
- Contact us through our website or email
- Participate in surveys, promotions, or events
This information may include your name, email address, phone number, business name, billing address, and payment details.
Automatically Collected Information
When you visit our website, we automatically collect certain information about your device and usage, including:
- IP address and approximate geographic location
- Browser type and version
- Operating system
- Pages visited, time spent on pages, and navigation paths
- Referring website or source
- Device type and screen resolution
Content You Provide to Our AI Services
When using our AI-powered tools, you may provide text prompts, images, brand guidelines, social media account details, and other content. We process this data to deliver the services you have requested, such as generating websites, social media posts, blog articles, or configuring AI agents for your business.
How We Use Your Information
We use the information we collect to:
- Provide, operate, and maintain our services
- Process transactions and send related billing information
- Create and manage your client portal account
- Generate AI-powered content (websites, social posts, blog articles) on your behalf
- Deploy and maintain custom AI agents for your business
- Improve and personalise your experience with our services
- Communicate with you about updates, support, and promotional offers
- Monitor usage patterns and analyse trends to improve our platform
- Detect, prevent, and address technical issues or fraudulent activity
- Comply with legal obligations
Cookies and Tracking Technologies
We use cookies and similar tracking technologies to enhance your experience on our website. These include:
- Essential cookies: Required for core site functionality, such as authentication and session management on the client portal.
- Analytics cookies: Help us understand how visitors interact with our website, allowing us to improve our content and layout.
- Preference cookies: Store your settings, such as theme preference (dark/light mode) and language.
- Marketing cookies: Used to deliver relevant advertisements and track the effectiveness of our campaigns.
You can control cookie preferences through your browser settings. Disabling certain cookies may affect the functionality of our website and services.
Third-Party Services
We work with trusted third-party service providers to operate our business and deliver our services. These include but are not limited to:
- Stripe: We use Stripe to process payments securely. When you make a purchase or subscribe to a plan, your payment information is transmitted directly to Stripe and handled in accordance with their Privacy Policy. We do not store your full credit card details on our servers.
- Cloud hosting providers: We use third-party cloud infrastructure to host our website, client portal, and AI services.
- AI model providers: Our AI-powered services may utilise third-party AI models to generate content. Prompts and generated content may be processed by these providers in accordance with their data processing agreements with us.
- Analytics providers: We use analytics tools to understand website traffic and user behaviour.
- Email service providers: We use third-party email services to send transactional and marketing communications.
We require all third-party providers to handle your data in accordance with applicable data protection laws and only for the purposes we specify.
User Accounts and the Client Portal
When you create an account on our client portal, we store your login credentials (with passwords securely hashed), profile information, project data, and service history. Your account allows you to:
- View and manage your active services and subscriptions
- Access AI-generated content (websites, social posts, blog articles)
- Communicate with our team
- View invoices and billing history
- Manage AI agent configurations
You are responsible for maintaining the confidentiality of your account credentials. Please notify us immediately if you suspect any unauthorised access to your account.
Data Retention
We retain your personal information for as long as your account is active or as needed to provide you with our services. Specifically:
- Account data: Retained for the duration of your account. Upon account deletion, personal data is removed within 30 days, except where retention is required by law.
- AI-generated content: Websites, social media posts, blog articles, and other generated content are retained as long as your subscription is active. After cancellation, content is retained for 90 days before deletion.
- Billing records: Retained for a minimum of 7 years to comply with financial and tax regulations.
- Analytics data: Aggregated and anonymised analytics data may be retained indefinitely for business intelligence purposes.
- Communication records: Support tickets and correspondence are retained for 2 years after the last interaction.
Data Security
We implement industry-standard technical and organisational security measures to protect your personal information, including:
- Encryption of data in transit (TLS/SSL) and at rest
- Secure password hashing algorithms
- Regular security audits and vulnerability assessments
- Access controls limiting data access to authorised personnel
- Firewalls and intrusion detection systems
While we strive to protect your information, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security but are committed to promptly addressing any breach in accordance with applicable laws.
Your Rights
Depending on your jurisdiction, you may have the following rights regarding your personal data:
- Access: Request a copy of the personal data we hold about you.
- Rectification: Request correction of inaccurate or incomplete data.
- Erasure: Request deletion of your personal data, subject to legal retention requirements.
- Restriction: Request that we limit the processing of your data in certain circumstances.
- Portability: Request your data in a structured, commonly used, and machine-readable format.
- Objection: Object to processing of your data for direct marketing purposes.
- Withdraw consent: Where processing is based on consent, you may withdraw it at any time.
To exercise any of these rights, please contact us at privacy@plumdigital.co. We will respond to your request within 30 days.
Children's Privacy
Our services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child without parental consent, we will take steps to delete that information promptly.
International Data Transfers
PlumDigital operates from South Africa, the United Kingdom, and the United States. Your information may be transferred to, stored, and processed in any of these countries or other jurisdictions where our service providers operate. We ensure that appropriate safeguards are in place for international data transfers, including standard contractual clauses and compliance with applicable data protection frameworks.
Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, services, or legal requirements. We will notify you of significant changes by posting the updated policy on this page with a revised "Last Updated" date. We encourage you to review this policy periodically.
Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: