Privacy Policy

Effective Date: November 8, 2025
Company Name: DX LLC
Address: 30 N Gould St, Sheridan, WY 82801, United States
Website: https://nikolabirisic.com
Contact Email: office@nikolabirisic.com

 

  1. Introduction

This Privacy Policy explains how DX LLC collects, processes, uses and protects personal data when you visit our website, interact with our content, communicate with us, request a quote, book a consultation, or use any of our services including consulting, design, development, website maintenance, hosting migration, security work, and speed optimization.

This Policy applies to all visitors, clients, potential clients, vendors, contractors and any individual interacting with DX LLC, regardless of location.
The Policy is drafted to comply with:
GDPR (EU & EEA)
CCPA/CPRA (California)
US federal privacy standards
Industry best practices for IT consulting and software development

Your use of our website and services signifies your acceptance of this Policy.

 

  1. Personal Data We Collect

DX LLC may collect the following categories of data depending on how you interact with us.

2.1 Data You Provide Directly

  • Contact information — name, email address, phone number.
    Business information — company name, website, job title, project details.
    Project-related information — requirements, website credentials you voluntarily share, hosting details, screenshots, technical specifications.
    Support and maintenance data — tickets, logs you provide, plugin/theme lists, issues that need debugging.
    Billing & invoicing data — billing name, billing address, tax information (if applicable).
    Communication content — messages from emails, contact forms, or Codeable conversations.

We never request or intentionally process sensitive data (racial, health, religious or biometric). If you send sensitive data voluntarily, you consent to our processing solely for the purpose of providing the service.

 

  1. Data Collected Automatically

When you access our website, certain data is collected automatically through cookies, server logs and similar technologies.

3.1 Technical and Usage Data

  • IP address (may be anonymized depending on your region)
    • Browser type and version
    • Device type
    • Operating system
    • Language settings
    • Geographic location (approximate)
    • Pages viewed, time spent, navigation path
    • Referring URLs and exit pages
    • Date and time of access
    • HTTP request information
    • Error logs and diagnostic data

3.2 Cookies and Tracking Tools

Our website may use:
• Necessary cookies
• Functional cookies
• Analytics cookies (Google Analytics, Plausible, or similar)
• Security cookies (Cloudflare, firewall detection)
• Performance cookies
• Anti-spam tools (reCAPTCHA or equivalent)

You can control or disable cookies via your browser settings.

 

  1. Data We Receive from Third Parties

We may receive information from the following third-party sources:

  • Codeable — profile details, project briefs, communication history, ratings (if you contact us via Codeable).
    Analytics providers — anonymized traffic insights.
    Hosting providers — technical logs needed for troubleshooting (with your permission).
    Payment processors — confirmation of payment status (we do NOT receive full credit card numbers).
    Email providers — metadata related to your messages (not content scanning).

We process data from third parties only when necessary to perform our services.

 

  1. How We Use Personal Data

DX LLC processes personal data for the following purposes:

5.1 Service Delivery

  • Providing consulting, design, development, maintenance, migration and optimization services.
    • Responding to inquiries and support requests.
    • Preparing quotes and project scopes.
    • Verifying your identity when needed.
    • Troubleshooting technical issues.

5.2 Communication

  • Responding to emails and messages.
    • Sending updates related to your project.
    • Administrative notifications required to complete a service.

We do not send spam or promotional newsletters unless you explicitly subscribe.

5.3 Security & Compliance

  • Detecting and preventing fraud, abuse or unauthorized access.
    • Ensuring website and data security.
    • Logging security events for audit purposes.
    • Compliance with US legal obligations.

5.4 Business Operations

  • Internal analytics and website performance monitoring.
    • Improving our services and customer experience.
    • Record-keeping and administrative purposes.
    • Contract enforcement and dispute resolution.

5.5 Legal Basis (GDPR)

Depending on your location, processing may rely on:
• Consent
• Contractual necessity
• Legitimate interests
• Legal obligations

 

  1. Legal Basis for Processing (GDPR Regions Only)

If you are located in the EU/EEA/UK, DX LLC processes your data on one or more of the following grounds:

  • Contractual necessity — to perform agreed services.
    Legitimate interest — security, analytics, improving our website.
    Legal obligation — bookkeeping, compliance, fraud prevention.
    Consent — cookies, contact form submissions.

You may withdraw consent at any time.

 

  1. How We Store and Protect Your Data

DX LLC takes data security seriously. We use a combination of technical, administrative and organizational measures including:

  • Encrypted data transfer (HTTPS/SSL)
    • Secure hosting infrastructure
    • Password-protected systems
    • Access limited strictly to those who need it
    • Regular software security updates
    • Malware and intrusion detection
    • Firewall protection
    • Backups stored securely
    • Server-side logging for security events
    • Strict credential-handling protocols

We do not store full payment card information.

 

  1. Data Retention

We retain personal data only as long as necessary:

  • Project records: up to 5 years
    • Communication: up to 3 years
    • Billing & invoices: 7 years (US tax compliance)
    • Analytics data: 12 to 26 months (depending on settings)
    • Website logs: 30 to 180 days
    • Credentials (hosting, WordPress, admin logins): never stored after the project unless part of an ongoing maintenance contract

Clients may request early deletion if legally permissible.

 

  1. Sharing and Disclosure of Data

DX LLC may share personal data only when necessary:

9.1 Service Providers

We may use trusted third-party vendors such as:
• Cloudflare (security/CDN)
• Hosting platforms (for debugging if necessary)
• Email providers
• Payment processors
• Analytics tools
• Third-party developers assisting with a project (only with your approval)

9.2 Legal Requirements

We may disclose data if required by:
• court order
• subpoena
• government agency
• fraud prevention requests
• legal compliance obligations

9.3 Business Transfers

In the event of a reorganization or merger, data may be transferred responsibly and securely.

DX LLC never sells personal data.

 

  1. International Data Transfers

Because DX LLC is located in the United States, data may be transferred outside your country.

We uphold GDPR-level protections by using:
• Standard Contractual Clauses (SCCs)
• Data minimization practices
• Secure transfer protocols
• Reputable third-party service providers

By using our website, you acknowledge such transfers.

 

  1. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access your personal data
    • Correct inaccurate data
    • Request deletion (“right to be forgotten”)
    • Restrict processing
    • Object to processing
    • Withdraw consent
    • Data portability
    • Opt-out of analytics
    • Opt-out of sale/share of data (CCPA/CPRA)
    • Lodge a complaint with a data protection authority

To exercise rights:
Email us at: office@nikolabirisic.com

 

  1. Children’s Privacy

Our services are not intended for individuals under 16 years old.
We do not knowingly collect data from minors.
If you believe a child provided data, contact us immediately.

 

  1. External Links

Our website may contain outbound links (e.g., Codeable, client websites, portfolio items).
We are not responsible for external websites or their privacy practices.
You should review the policies of each external site.

 

  1. Data Breach Policy

If a data breach is detected:
• Affected individuals will be notified without undue delay
• Regulatory authorities will be notified if required
• Corrective and protective measures will be implemented
• Logs will be reviewed to determine cause and scope

 

  1. Changes to This Privacy Policy

We may update this Policy to reflect legal, technical or operational changes.
The date at the top indicates the latest revision.

Significant changes will be announced on our website.

 

  1. Contact Information

For any questions, rights requests or privacy concerns:

DX LLC
30 N Gould St, Sheridan, WY 82801, United States
Email: office@nikolabirisic.com