Legal

Privacy Policy

Last updated: April 2025

DDS (“we”, “us”, or “our”) is a creative studio based in Malmö, Sweden. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit wearedds.com or contact us about our services. Please read this policy carefully. If you disagree with its terms, please discontinue use of the site.

We are committed to protecting your privacy in accordance with the General Data Protection Regulation (GDPR) and the laws of the Sweden.

1. Data Controller

The data controller responsible for your personal data is:

2. Information We Collect

We collect information you voluntarily provide when you:

  • Fill out our contact form (name, email address, project description, budget range, and selected service)
  • Send us an email directly

We do not collect any data automatically beyond standard server logs (IP address, browser type, referring URL) which are retained for security purposes and automatically deleted after 30 days. We do not use tracking cookies, advertising pixels, or third-party analytics.

3. Legal Basis for Processing

We process your personal data under the following legal bases:

  • Contractual necessity — to respond to your inquiry and provide the services you request.
  • Legitimate interests — to manage our business relationship and improve our services.
  • Consent — where you have explicitly provided it (e.g. subscribing to updates).

4. How We Use Your Information

  • To respond to your inquiry within 24 hours
  • To prepare and deliver a tailored project proposal
  • To fulfil a contract for our services
  • To communicate project updates and milestones
  • To comply with legal obligations

We will never sell, rent, or share your personal data with third parties for marketing purposes.

5. Third-Party Services

We use the following third-party services to operate our business:

  • EmailJS — to process and deliver contact form submissions. Your name, email and message are transmitted to EmailJS solely to deliver your inquiry to us. EmailJS is GDPR-compliant. EmailJS Privacy Policy →
  • Anthropic (Claude) — to power the AI assistant in our website chat. Messages you send in the chat are processed by Anthropic to generate replies; please avoid sharing sensitive personal data there.
  • Vercel — to host our website. Standard server logs may be processed by Vercel. Vercel Privacy Policy →

6. Data Retention

We retain contact form inquiries and associated correspondence for 3 years from the date of last contact. If a project engagement begins, we retain project-related data for 7 years to comply with legal and accounting obligations. You may request deletion at any time (see Section 7).

7. Your Rights Under GDPR

If you are located in the European Economic Area, you have the following rights:

  • Right of access — request a copy of the personal data we hold about you.
  • Right to rectification — request correction of inaccurate or incomplete data.
  • Right to erasure — request deletion of your personal data where there is no compelling reason for continued processing.
  • Right to restriction — request that we restrict the processing of your data.
  • Right to data portability — request your data in a structured, machine-readable format.
  • Right to object — object to processing based on legitimate interests.

To exercise any of these rights, email us at CONTACT@WEAREDDS.COM. We will respond within 30 days.

You also have the right to lodge a complaint with the Office of the Commissioner for Personal Data Protection (Sweden supervisory authority): imy.se.

8. Cookies

We use cookies and similar tracking technologies to track the activity on our website and hold certain information. Cookies are files with a small amount of data which may include an anonymous unique identifier.

We use Google Analytics to monitor and analyze the use of our website. Tracking only begins after you have provided explicit consent via our cookie banner. For detailed information on the cookies we use and how to manage your preferences, please view our Cookie Policy →

9. Data Security

We use industry-standard security measures including HTTPS encryption, secure API key management, and restricted data access. However, no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security.

10. Changes to This Policy

We may update this Privacy Policy from time to time. The “Last updated” date at the top of this page will reflect any changes. We encourage you to review this policy periodically.

11. Contact

For any privacy-related questions or requests, contact us at: