Last updated: April 11, 2026

1. Introduction

This Privacy Policy explains how Vividigit collects, uses, stores, and protects personal data when you visit vividigit.com, contact us, request a quote, or use our services.

We aim to process personal data transparently and in line with the General Data Protection Regulation (GDPR), applicable Portuguese law, and other relevant privacy rules, including cookie and tracking requirements where they apply.

2. Data Controller

Vividigit is a trade name and website operated by Dmitriy Gerko, Sole Trader (Portugal), NIF: 299863727. Dmitriy Gerko is the data controller responsible for processing personal data in connection with vividigit.com and Vividigit services.

If you have questions about this policy or your data, contact us at:

• Email: mail@vividigit.com
• Website contact form: Open contact form

3. What Data We Collect

We may collect the following categories of data:

Data you provide directly

• Contact and quote request data — name, email address, phone number, business details, message content, selected services, selected scopes, and order notes
• Client and project data — briefing materials, account access, analytics access, campaign data, reports, and other information you provide for service delivery
• Commercial and billing data — quote details, invoices, payment status, tax information, and commercial communications
• Correspondence — emails, messages, call notes, approvals, and project feedback

Data collected automatically

• Technical and usage data — IP address, browser type, operating system, device information, pages viewed, referral data, and interaction events
• Consent and preference data — cookie choices, theme preference, and cart state stored in browser storage
• Analytics data — aggregated website usage data, but only where the relevant analytics technology is enabled based on your consent

4. How We Use Personal Data

We use personal data for the following purposes:

• To respond to inquiries and quote requests
• To prepare, deliver, and manage services
• To communicate during onboarding, delivery, revisions, billing, and support
• To comply with accounting, tax, fraud-prevention, and other legal obligations
• To maintain site security, diagnose abuse, and protect our systems
• To measure website usage and improve the site, where analytics consent has been given
• To send marketing communications only where you have separately consented

5. Legal Bases for Processing

Depending on the context, we rely on one or more of the following GDPR legal bases:

• Contract performance or pre-contractual steps (Art. 6(1)(b) GDPR) — for handling quote requests, onboarding, project delivery, and client communications directly related to the requested services
• Legal obligation (Art. 6(1)(c) GDPR) — for tax, accounting, recordkeeping, and compliance duties
• Legitimate interests (Art. 6(1)(f) GDPR) — for website security, fraud prevention, operational communications, and defending legal claims, where our interests do not override your rights
• Consent (Art. 6(1)(a) GDPR) — for non-essential analytics and any optional marketing communications

For contact forms and service requests, we do not rely on marketing consent to process the information needed to answer your request. That processing is generally necessary to take steps at your request before entering into a contract, or to perform a contract.

6. Recipients and Processors

We do not sell personal data. We may share personal data with service providers and processors that help us operate the website and deliver services, such as:

• Hosting and infrastructure providers — to host the website and store server logs
• Web3Forms — to transmit website contact and quote request form submissions to our email workflow
• Google Tag Manager and analytics providers — only where analytics consent has been given
• Email, collaboration, and productivity tools — where needed for project delivery and communication
• Professional advisers or authorities — where required for legal, accounting, tax, dispute, or compliance reasons

We require processors acting on our behalf to process data only under appropriate contractual and legal safeguards.

7. Cookies, Local Storage, and Analytics

Our website uses a combination of essential browser storage and optional analytics technologies.

Essential storage

We use essential browser storage for functions such as:

• preserving the order cart state
• remembering interface preferences such as theme selection
• supporting core site functionality and security-related behavior

These functions are necessary for the website to work properly and do not depend on analytics consent.

Analytics

We may use Google Tag Manager and analytics technologies to understand how the site is used, but we load these non-essential tools only after you consent through our cookie controls.

You can:

• accept analytics
• reject analytics
• reopen and change your choice later via the cookie settings control on the site

8. Data Retention

We keep personal data only for as long as reasonably necessary for the purposes described above, including:

• Contact and quote request data — generally up to 24 months after the last meaningful communication, unless a longer retention period is justified by ongoing business discussions or legal reasons
• Client and project records — for the duration of the engagement and a reasonable period afterward for operational, legal, and evidentiary purposes
• Accounting and invoice records — for the period required under applicable tax and accounting law
• Consent records — for as long as needed to demonstrate or manage consent choices
• Analytics data — according to the configuration of the relevant analytics tools, where enabled by consent

9. International Data Transfers

Some service providers may process personal data outside the European Economic Area (EEA). Where this happens, we aim to use appropriate safeguards, such as Standard Contractual Clauses, adequacy decisions, or equivalent legal transfer mechanisms where required.

10. Your Rights

Under the GDPR, you may have the right to:

• access your personal data
• correct inaccurate or incomplete data
• request deletion of data in certain circumstances
• restrict processing in certain circumstances
• object to processing based on legitimate interests
• receive a portable copy of certain data
• withdraw consent at any time where processing is based on consent

To exercise these rights, contact mail@vividigit.com. We will respond within the period required by applicable law. You also have the right to lodge a complaint with a competent data protection authority.

11. Security

We use reasonable technical and organizational measures to protect personal data, including HTTPS, access restrictions, and process controls designed to reduce the risk of unauthorized access, loss, misuse, or alteration.

12. Children

Our website and services are intended for business and professional use and are not directed to children. We do not knowingly collect personal data from children.

13. Changes to This Policy

We may update this Privacy Policy from time to time to reflect legal, operational, or technical changes. The current version will be published on this page with an updated effective date.

14. Contact

If you have questions about this Privacy Policy or wish to exercise your privacy rights, contact us at:

• Email: mail@vividigit.com
• Contact form: Open contact form