Privacy Policy

Effective: April 28, 2026

Last updated: April 28, 2026

This Privacy Policy describes how DM Digital Marketing LLC (“Grow Local,” “we,” “our,” or “us”) collects, uses, shares, and protects your personal information when you use the Grow Local platform, websites, and services (the “Service”). By using the Service, you agree to the collection and use of information in accordance with this Policy. If you do not agree, do not use the Service.

1. Information We Collect

We collect information in the following ways:

A. Information You Provide

  • Account information: name, business name, email address, phone number, password (stored as a hash), business address, business type, and service area
  • Payment information: processed securely by Stripe; we do not store your full credit card number on our servers
  • Business content: services offered, pricing, hours, photos, logo, descriptions, locations, testimonials, and any other content you input or upload
  • Communications: messages, support requests, and feedback you send us

B. Information Collected Automatically

  • Usage data: pages viewed, features used, time spent on the platform, device type, browser type, IP address, approximate location based on IP, and referral source
  • Cookies and similar technologies: session cookies for login, analytics cookies, and security tokens
  • Server logs: standard request logs (timestamps, URLs, response codes) for security and debugging

C. Information from Third Parties

  • Stripe transmits limited payment confirmation data to us (such as last four digits of your card and billing email)
  • If you connect a custom domain, we receive DNS verification information from Cloudflare
  • Public business information from Google Business Profile, if you choose to link it

2. How We Use Your Information

We use information to:

  • Provide, operate, and maintain the Service
  • Process payments and manage your subscription
  • Generate AI-powered website content based on the business information you provide
  • Communicate with you about your account, billing, support requests, product updates, and marketing (with the ability to unsubscribe from marketing emails)
  • Monitor and analyze usage to improve the Service
  • Detect, prevent, and respond to fraud, abuse, or security incidents
  • Comply with legal obligations
  • Enforce our Terms of Service

3. AI Processing

To generate website content, we send the business information you provide (business name, type, location, services, etc.) to Anthropic’s Claude API. We do not send your email address, password, payment information, or personally identifiable information beyond what is necessary to generate relevant content. Anthropic processes this data under their own privacy policy and does not use it to train their models when accessed via API. You can review Anthropic’s policy at anthropic.com/legal.

4. How We Share Information

We do NOT sell your personal information. We share information only as follows:

A. Service Providers (Sub-processors)

We use the following trusted third-party providers to operate the Service:

  • Stripe (payment processing)
  • Anthropic (AI content generation)
  • Vercel (web hosting and serverless functions)
  • Supabase (database, authentication, file storage)
  • Cloudflare (DNS, CDN, DDoS protection)
  • Resend (transactional and marketing email delivery)
  • Upstash (rate limiting and caching)

Each provider is bound by contract or terms of service to protect your information and use it only for the purposes of providing services to us.

B. Legal Compliance

We may disclose information if required by law, subpoena, court order, or government request, or if we believe disclosure is necessary to protect our rights, prevent fraud, ensure user safety, or respond to a security incident.

C. Business Transfers

If DM Digital Marketing LLC is involved in a merger, acquisition, sale of assets, or bankruptcy, your information may be transferred as part of that transaction. We will notify you of any such change in ownership.

D. With Your Consent

We may share information for other purposes with your explicit consent.

5. Public Information on Your Website

Content you publish to your Grow Local website (business name, services, locations, testimonials, photos, etc.) is publicly accessible by anyone who visits your site. You should not include sensitive personal information you do not want publicly available.

6. Cookies and Tracking

We use cookies and similar technologies to:

  • Keep you logged in to your dashboard
  • Remember your preferences
  • Measure platform usage and performance
  • Detect and prevent fraud or abuse

Most browsers allow you to control cookies through settings. Disabling cookies may impact functionality of the dashboard.

7. Data Retention

We retain your information for as long as your account is active. After you cancel and your subscription ends:

  • Account and business content: retained for up to 90 days, then deleted, unless you request earlier deletion
  • Billing and tax records: retained as required by law (typically 7 years)
  • Backup copies: retained for up to 30 additional days, then permanently deleted
  • Aggregated, anonymized analytics data may be retained indefinitely

8. Your Rights and Choices

Depending on your location, you may have the following rights regarding your personal information:

  • Access: request a copy of the personal information we hold about you
  • Correction: request that we correct inaccurate or incomplete information
  • Deletion: request that we delete your personal information (subject to legal retention requirements)
  • Data portability: request your information in a structured, commonly used format
  • Objection: object to certain types of processing
  • Withdrawal of consent: where processing is based on consent, withdraw it at any time

To exercise any of these rights, contact info@getdmdigital.com. We will respond within 30 days. We may need to verify your identity before fulfilling certain requests.

9. California Residents (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), including:

  • The right to know what personal information we collect, use, disclose, and sell
  • The right to request deletion of your personal information
  • The right to opt out of the sale or sharing of personal information (we do not sell or share for cross-context behavioral advertising)
  • The right to non-discrimination for exercising your privacy rights
  • The right to limit use of sensitive personal information

To exercise these rights, contact info@getdmdigital.com.

10. European Economic Area, UK, and Switzerland (GDPR)

If you are located in the EEA, UK, or Switzerland, you have rights under the General Data Protection Regulation, including the rights listed in Section 8. Our legal basis for processing personal information includes:

  • Contract performance (to provide the Service you signed up for)
  • Legitimate interests (to operate, secure, and improve the Service)
  • Legal obligations (compliance with tax, accounting, fraud prevention laws)
  • Consent (where applicable, e.g., marketing emails)

International transfers: your data may be processed in the United States and other countries where our service providers operate. We rely on standard contractual clauses and other approved safeguards where required.

You have the right to lodge a complaint with your local data protection authority.

11. Data Security

We implement reasonable administrative, technical, and physical safeguards to protect your information, including:

  • Encryption in transit (TLS/HTTPS for all platform traffic)
  • Encryption at rest for sensitive database fields
  • Hashed password storage
  • Role-based access controls and least-privilege access for staff
  • Regular security reviews and dependency updates
  • Incident response procedures

No method of transmission or storage is 100% secure. We cannot guarantee absolute security, but we work continuously to protect your data.

12. Children's Privacy

The Service is not intended for individuals under 18 years old. We do not knowingly collect personal information from children. If we learn we have collected information from a child without parental consent, we will delete it. Parents who believe their child has provided personal information should contact info@getdmdigital.com.

13. Marketing Communications

With your consent (typically given when you sign up), we may send you marketing emails about new features, tips, and product news. You can unsubscribe at any time using the link in any marketing email or by contacting info@getdmdigital.com. Transactional and account-related emails (billing notifications, password resets, security alerts) are necessary for the Service and cannot be unsubscribed from while your account is active.

14. Do Not Track

Some browsers offer a “Do Not Track” (DNT) signal. Because there is no industry-standard way to interpret DNT signals, we do not currently respond to them. You can control tracking through cookie settings.

15. Third-Party Links

Our Service or website may contain links to third-party websites or services we do not control. This Privacy Policy does not apply to those third parties. We encourage you to review their privacy policies before sharing personal information.

16. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated by posting a notice on our website or sending an email to your account address. Your continued use of the Service after the effective date constitutes acceptance of the revised Policy.

17. Contact

For questions, requests, or complaints about this Privacy Policy or our data practices, contact:

DM Digital Marketing LLC
info@getdmdigital.com
Nevada, United States