EGO Digital Agency ("EGO Digital," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you visit our website (https://ego-digital.com) or use our services (collectively, the "Services"). It also outlines your rights under applicable privacy laws and how we comply with major regulations, including the European Union General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA) (as amended by the CPRA), and Israel's privacy laws.
By using our Site or Services, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with our practices, please do not use the Site. If you have any questions about this Policy, you can contact us using the information provided at the end of this document.
Data Controller: For purposes of applicable data protection laws, the data controller of your personal information is EGO Digital Agency, headquartered in Tel Aviv, Israel.
We collect various types of information from and about users of our Site and Services, including personal data (information that can identify you) and non-personal data. The types of information we may collect include:
We collect personal information that you voluntarily provide when interacting with our Site or Services, such as:
Contact and Identity Details: e.g., your name, email address, telephone number, company/organization name, and job title (for example, when you fill out our contact form, sign up for an account, or subscribe to our newsletter).
Account Credentials: If you create an account on our Site, we collect the username and password you choose, and any profile information you decide to provide.
Payment Information: If you make a purchase or payment through our Site, we (or our third-party payment processors) collect payment details such as your credit card number or other payment information, billing address, and related transaction details. Note: We do not store full credit card numbers on our servers; that information is handled securely by our payment processor, though we may retain non-sensitive details like the card type or last four digits, transaction ID, and billing history for record-keeping.
Inquiries and Correspondence: The content of messages or inquiries you send us (for example, when you contact us via email, chat, or through our contact form, or when you respond to surveys or provide feedback). This may include any personal data you choose to include in such communications.
Newsletter/Marketing Sign-Up: If you opt in to receive marketing communications or our newsletter, we collect your email address (and possibly your name or other information you provide) to send you updates. You can unsubscribe at any time.
Other Information You Provide: Any other information you voluntarily provide to us. For instance, if our Site has a blog and you comment on a post, we collect the information you include in the comment (and possibly your profile name). If you participate in a promotion, contest, or submit information through other features, we collect whatever information you submit in those contexts.
We will indicate on our forms which information is required (for example, by using an * symbol or other notation). If you choose not to provide required information, we may not be able to fulfill your request or provide certain services to you (for instance, we cannot create an account without an email address).
When you visit our Site or use the Services, we automatically collect certain information about your device and your usage of the Site via cookies, web beacons, and other tracking technologies. This information may include:
Device and Technical Information: Your IP address, browser type and version, device type (e.g., desktop or mobile), operating system, language preference, time zone, and other technical information automatically collected by our servers.
Usage Data: Details about how you navigate and use our Site, such as the pages or content you view, the date and time of your visit, the time spent on pages, links clicked, and the page you visited before navigating to our Site (referrer URL). We may also log events like form submissions or errors encountered.
Cookies and Similar Technologies: We use cookies and similar tracking technologies (like pixels and local storage) to collect information about your interactions with our Site. These technologies allow us to remember your preferences, keep you logged in, understand usage patterns, and personalize content. For example, we use Google Analytics which sets cookies to collect information about website traffic and user behavior. This data includes information about your site usage and is aggregated to help us improve our Site (see our Cookie Policy for more details). We may also use tracking pixels in our emails to inform us if you open an email or click a link.
Location Information: We do not request or track precise GPS location, but we might infer your general location (city, state, country) from your IP address or choose a regional version of our site to show you. This is used for analytics (understanding where our users come from) and possibly to deliver region-specific content.
This automatically collected information (which may be collected by us or by service providers acting on our behalf) helps us administer and improve our Site, analyze usage trends, and gather demographic information about our user base as a whole. It also helps in identifying and fixing technical issues and in detecting fraudulent or malicious activity.
For more information on our use of cookies and how to manage them, please see our Cookie Policy.
We may also receive information about you from third parties, such as:
Third-Party Services: If you interact with our Site through third-party platforms or services (for example, by clicking "Schedule a Call" which uses Calendly, or by logging in through a social network account if we offer that option), those services may send us certain information about you. For instance, if you book a meeting via Calendly linked on our Site, Calendly will provide us with the information you input (like name, email, and meeting details). Similarly, if in the future we allow a "Sign in with Google/Facebook" feature, we would receive basic profile information (such as your name and email) from those providers with your consent.
Payment Processors: In processing payments, we may receive limited information from our payment processors about the transactions, such as confirmation of payment or subscription status, and basic identifying information tied to the payment (e.g., your name or email and the fact that you paid). We do not receive your full credit card number or bank details from these processors.
Marketing or Referral Partners: If you were referred to us through a partner or if we run joint marketing campaigns, the partner may share your contact information and details like what product or service you are interested in. For example, if we collaborate with a partner on a webinar or event, and you sign up through them, they might share your registration info with us.
Public Sources and Enrichment Services: We might obtain business-related information from public databases or third-party data providers. For instance, we could obtain public business contact information (like corporate email addresses or phone numbers of professionals in our industry or client prospects) from sources like LinkedIn or company websites, or from data vendors, for the purpose of B2B marketing. We treat any information from these sources in accordance with this Policy and applicable law.
Social Media: If you interact with us on social media platforms (e.g., following our page, commenting on our posts, or messaging us), we may receive personal data about you such as your social media handle, profile information, the content of your messages or comments, and any other information you make public on that platform. We will only use such information for the purposes of the interaction (e.g., responding to a message or addressing feedback) and according to this Policy.
We treat the personal information obtained from third parties with the same care as information you provide directly. That said, any information we receive from third parties will also be governed by the privacy agreements or consents between you and that third party. We encourage you to review the privacy policies of any third-party services you use to understand what information they might share.
We use the personal information we collect for the following purposes (and in accordance with the legal bases described later if you are in a jurisdiction like the EU):
To Provide and Maintain Services: We process data as necessary to operate our website and provide our services. For example, we use personal information to create and manage user accounts, to provide the features or services you request (like completing a project or delivering a digital service), and to process transactions. This includes using information to fulfill any contracts we have with you (e.g., if you purchase a service, we use your details to deliver it and provide customer support).
To Communicate with You (Service and Account Communications): We use contact information to send you administrative or account-related communications. This may include responses to your inquiries, confirmations of actions you take (such as signing up or making a purchase), notices about updates to our Terms or Privacy Policy, security alerts, or other communications necessary to inform you about the status of our Services. These messages are not promotional in nature; they are to keep you informed about your account and the Services you use.
For Marketing and Promotional Purposes: If you have signed up or otherwise consented, we may send you newsletters, invitations, or promotions to inform you about our new services, products, events, or other news about EGO Digital that we believe would be of interest. We may personalize these communications based on your interactions with us (for instance, highlighting services similar to ones you’ve inquired about). You can always opt out of marketing emails by using the unsubscribe link in such communications or by contacting us. (We do not send marketing communications to individuals in jurisdictions where such communications require prior consent unless we have obtained such consent.)
To Improve and Personalize Our Services: We analyze how users interact with our Site to improve the design, functionality, and content. For example, we use analytics data to troubleshoot performance issues and to understand which features are most used. We may also use feedback or survey responses to guide future enhancements. Additionally, we may personalize your experience by recognizing and remembering preferences — for example, remembering your language or displaying content that relates to services you’ve shown interest in.
To Run Analytics and Measure Performance: We use data (often in aggregated form) to measure the effectiveness of our marketing efforts and to understand user demographics and usage patterns. For instance, analyzing which marketing campaigns led you to our site, or understanding overall usage trends, helps us allocate resources and improve our reach. We may also perform A/B testing or similar analysis, where some users see one version of a page and others see a different version, to see which performs better.
To Support and Customer Service: If you contact us for support or with a question, we will use your information to respond and resolve any issues. This might involve using your name and past communications so we have context for your inquiry. If needed, we might also use your feedback to improve support processes or guides.
To Enforce Our Terms, Agreements, or Policies: We may use your information to ensure compliance with our Terms of Use and other policies. This includes monitoring for fraudulent, illegal, or abusive activity on our Site or Services. For example, we might use automated systems to detect login attempts that appear suspicious or patterns that look like misuse of our platform.
For Security and Fraud Prevention: Your information (including technical data and usage logs) may be processed as part of our efforts to keep our Site and users secure. This can include detecting and preventing cyberattacks or other malicious activities, debugging to identify and fix errors, and protecting against identity theft or other misuse of our Services.
To Comply with Legal Obligations: We will use and disclose personal data as necessary to comply with our legal obligations. For instance, keeping proper financial records for tax and accounting purposes, providing information as required by law in response to lawful requests by public authorities (such as responding to a court order or law enforcement request), or retaining information needed for compliance with regulations (like know-your-customer rules or export laws if applicable).
In Connection with Business Transactions: If we consider or undergo a merger, acquisition, restructuring, or sale of some or all of our assets, personal data may be used and transferred as part of that process. For example, we may need to evaluate customer databases as part of due diligence, or transfer user information to a successor entity. If such a transfer occurs, the use of your personal information will remain subject to this Policy (unless you are notified otherwise and consent to any new terms).
We will not use your personal data for purposes that are materially different, unrelated, or incompatible with those described above without updating this Privacy Policy or obtaining your consent, as required.
If you are in the European Economic Area (EEA) or United Kingdom, we rely on certain legal grounds to process your personal data under the General Data Protection Regulation (GDPR) and UK GDPR:
Contractual Necessity: When processing is necessary to perform a contract with you or to take steps at your request before entering into a contract. For example, when you request our services, we process your information to provide those services (deliverables, software access, etc.), or when you sign up for an account, we use your details to create and administer it.
Consent: We will rely on your consent for certain processing activities. For instance, we rely on consent to send direct marketing communications to individuals in the EEA/UK (when required by law) or to set non-essential cookies on your device. Where we rely on consent, you have the right to withdraw it at any time (for example, by unsubscribing from emails or adjusting cookie settings), though this will not affect processing already occurred.
Legitimate Interests: We process some personal data for purposes that are in our legitimate interests (or those of a third party), provided these interests are not overridden by your data protection rights. We have a legitimate interest in, for example, understanding how users use our Site (to improve our services), preventing fraud or misuse, marketing our services to business contacts, securing our IT infrastructure, and personalizing user experiences. When we rely on this basis, we consider and balance any potential impact on your rights. We do not use legitimate interests as a basis for processing where our interests are overridden by the impact on you (unless we have your consent or are otherwise required or permitted to by law).
Legal Obligation: Processing is necessary for us to comply with a legal obligation. For instance, retaining records for tax compliance, responding to official requests from authorities, or fulfilling legal duties in connection with customer rights (like handling data subject requests).
Vital Interests: In rare cases, we may need to process personal data to protect your vital interests or those of another person. (For example, if there were an emergency and we needed to provide information to first responders — although such a scenario is unlikely in the context of our Site.)
Public Interest: Generally not applicable to our private business operations, but if we were ever to process data in the public interest or under an official mandate, that would be a legal basis.
If you have questions about the specific legal basis for any processing of your personal data, please contact us (see Contact Us section). We will provide additional clarification where required.
We do not sell your personal information to third parties for their own marketing or commercial purposes. However, we do share your information with certain third parties in the following circumstances, and always with appropriate safeguards:
Service Providers (Processors): We share personal data with trusted third-party vendors and service providers who perform services on our behalf, under our instructions, and in compliance with this Privacy Policy. These include:
IT and Hosting Providers: Companies that provide infrastructure services, data storage, web hosting, cloud computing, and other IT support. For example, our website might be hosted on a third-party server, so any data you submit through our Site passes through that provider.
Payment Processors: Third parties that process payment transactions (credit card processors, banks, or payment gateways). These processors have access to payment information to facilitate payments, refunds, or resolve payment disputes.
Analytics and Marketing Tools: Entities like Google Analytics (for site analytics), or email marketing platforms (for sending newsletters or campaigns). These providers process usage data or contact information on our behalf for analysis or communication purposes. For example, if we use an email marketing service to send our newsletters, that service will handle your email address and the content of the email.
CRM and Customer Support Tools: Platforms that help us manage customer relationships, track communications, or provide customer support (e.g., a helpdesk software or CRM system). They will store information like your name, contact details, and communications with us.
Professional Advisors: We may share information with our auditors, legal counsel, accountants, or similar professionals if needed. For instance, in an audit, auditors might review some customer transactions, or our legal counsel might be given information relevant to a legal issue.
Other Subcontractors: If we engage contractors or consultants in delivering a service (for instance, a freelance developer working on a project for you under our direction), they might have limited access to relevant data, bound by confidentiality obligations.
We ensure that service providers are bound by contractual obligations to keep personal data confidential and to use it only for the purposes of providing services to us (and not for their own benefit).
Within Our Corporate Group: If EGO Digital Agency has affiliate companies or subsidiaries (e.g., a U.S. branch, or a parent company, or other offices in different countries), we may share information within this corporate group for internal administrative purposes and uses consistent with this Policy. For example, our development team in one country might access user data to fix a technical issue reported by our support team in another country.
Business Transfers: If we are involved in a merger, acquisition, sale of assets, reorganization, or bankruptcy, your personal information may be transferred to a successor or affiliate as part of that transaction. We would seek to ensure the successor honors the commitments we have made in this Privacy Policy with respect to your personal data (we would provide notice if your data becomes subject to a new privacy policy).
Legal Requirements and Protection of Rights: We may disclose your personal information when we believe in good faith that such disclosure is necessary to:
Comply with a legal obligation or request (such as a subpoena, court order, or search warrant, or cooperation with law enforcement or regulatory authorities).
Protect and defend the rights, property, or safety of EGO Digital, our customers, or others. This can include enforcing agreements (like our Terms of Use), addressing fraud or security issues, and resolving disputes.
Investigate or assist in preventing any violation or potential violation of law or this Privacy Policy, including suspected fraud or security issues.
For example, if required by tax authorities to provide records of transactions, we will disclose necessary data. Or if we detect fraud that involves a particular account, we might share data with law enforcement investigating the incident.
With Your Consent: Apart from the cases listed above, we will share your personal information with third parties only with your explicit consent. For instance, if you ask us to introduce you to one of our partner companies for additional services, or if you agree to let us use your name/testimonial on our site, we will share or publish it with your consent.
Aggregated or De-Identified Data: We may also share information that has been aggregated (combined with information about other users) or de-identified (stripped of personal identifiers), so it can no longer be associated with you. Such information is not considered personal data and may be used for various purposes, such as marketing, analytics, or research. For example, we might publish trends or insights (like "X% of our clients are in Y industry") that do not identify any individual.
Important: When we share data with third parties (like service providers), we remain responsible for the privacy and security of that data and ensure that proper agreements are in place to protect it. Third parties will only get the minimum information necessary for them to perform their function.
We do not sell personal information to third parties for monetary consideration. We also do not share personal information with third parties for their own direct marketing use unless you have been informed and provided consent (as might be the case in a co-branded event, for example, where you opt-in to each party’s communications).
If you have questions about third parties we share data with, you can contact us for more specific information.
EGO Digital operates in multiple jurisdictions (with a headquarters in Israel and operations or clients across different countries, including the United States and countries in the European Union). As such, your personal data may be transferred to, stored in, and processed in a country different from your own.
Transfers to Other Countries: The servers or databases where we store information may be located outside the country in which you originally provided the data. For example, if you are located in the EU or UK, your personal data might be transferred to and processed on servers in Israel or the United States. Similarly, if you’re in Israel or the US, your data could be accessed by our teams or service providers in other countries.
Data Protection Standards: Different countries have different data protection laws. Some may provide the same level of protection as your home jurisdiction, while others may not. For instance, the EU/UK consider Israel to have adequate data protection (per an EU Commission adequacy decision). The United States does not have a blanket adequacy decision (though specific frameworks like the EU-U.S. Data Privacy Framework may apply to certain certified companies). Regardless of location, we will protect your data as described in this Privacy Policy.
Safeguards for International Transfers (EEA/UK): When we transfer personal data out of the European Economic Area or the UK to countries not deemed "adequate" by the EU Commission or UK authorities, we put in place appropriate safeguards under GDPR/UK GDPR. Typically, this involves using Standard Contractual Clauses (SCCs) approved by the European Commission (and the UK International Data Transfer Addendum, as needed) in our contracts with the data importer, which legally require the importer to protect your data to EU GDPR standards. In some cases, we may rely on your explicit consent for a transfer, or a transfer might be necessary for the performance of a contract with you (e.g., if you’re an EU customer using a service hosted in the US).
Israel-Specific: If we transfer personal data from Israel to another country, we abide by Israel’s Privacy Protection regulations regarding cross-border data transfers. Israel generally allows transfers to countries with adequate protection or with consent, etc., similar in spirit to the GDPR’s approach.
Privacy Shield/DPF (if applicable): Some of our US-based service providers might have been certified under the EU-U.S. Privacy Shield framework (which has been replaced by the Data Privacy Framework in 2023). Where applicable, we will ensure our providers adhere to any recognized compliance frameworks for data transfer.
Your Acknowledgment: By using our Site or providing information to us, you acknowledge that your information may be transferred to our facilities and those third parties with whom we share it as described in this Policy, even if they are located in other countries.
If you would like to know more about international transfers or the safeguards in place, please contact us. We can provide copies of contractual agreements (like SCCs) upon request, subject to any confidentiality requirements.
We strive to take appropriate steps to ensure that your personal data receives an adequate level of protection in the jurisdictions in which we process it. Regardless of where your data is processed, we will apply the protections of this Privacy Policy and comply with applicable law.
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, unless a longer retention period is required or permitted by law. In determining retention periods, we consider the following criteria:
Nature and Purpose of Processing: We keep data for the duration needed to accomplish the purpose it was collected for. For example:
Contact form inquiries may be kept until we have fully responded and resolved your query, plus a reasonable period (to follow up or reference in case of further correspondence).
Account data is retained as long as you have an account with us. If you delete your account, we will remove or anonymize personal data associated with it within a reasonable time after the deletion (except as noted below for backups and legal requirements).
If you enter into a contract for services, we will retain your data for the life of the contract and an appropriate period thereafter to manage any post-contract obligations or inquiries.
Legal and Regulatory Requirements: We are subject to various laws that dictate certain retention periods. For instance:
Financial and transaction records (invoices, payments, contracts) are often required to be kept for a minimum period (e.g., 7 years under certain tax or accounting laws).
Records of consent for data processing (e.g., marketing consent, cookie consent) may be kept as long as the consent is relevant, and for a period after, to demonstrate compliance.
If a user exercises a privacy right (like opting out or requesting deletion), we may maintain a record of the request and our response for a certain time as proof of compliance.
Liability and Dispute Resolution: We may retain certain information for the period in which a claim might be brought (the statute of limitations) or as needed to resolve disputes or enforce our agreements. For example, even if you delete your account, we might retain minimal information that a certain account existed and was deleted at your request, in case of later questions or legal proceedings.
Backups and Archival Copies: Data might persist in routine backups or archives (which are typically encrypted and secured) for a certain additional period for disaster recovery purposes. We have retention schedules to ensure that even backup data is eventually deleted or anonymized.
Retention Examples:
If you subscribe to our newsletter, we keep your email on our mailing list until you unsubscribe. We may then move it to a suppression list to ensure we don’t contact you further, unless you re-subscribe.
Information collected via Google Analytics is retained according to our configured settings (for instance, user-level data may be set to auto-delete after 14 months, or another duration we choose).
Resumes or job applications (if submitted via the site) might be kept through the hiring process and for a period after (e.g., one year) in case other opportunities arise, unless the applicant asks us to delete it sooner.
When personal data is no longer necessary for the purpose or the retention period has expired, we will either delete it securely or anonymize it (so it can no longer be associated with an identifiable individual). If deletion is not feasible (for example, because the data is stored in an offline backup), we will store it securely and isolate it from further processing until deletion is possible.
If you wish to know whether your personal data is still being retained, or want us to delete it, you can contact us (see Your Rights below). Please note, however, that we may need to retain certain information as required by law or for legitimate business purposes as described.
We take reasonable and appropriate measures to protect the confidentiality, integrity, and availability of your personal information. These measures include technical, administrative, and physical safeguards designed to prevent unauthorized access, disclosure, alteration, and destruction of data. Our security practices include:
Encryption: Our website is secured via SSL/TLS. This means that data transmitted to and from our Site (such as information you enter in forms) is encrypted in transit. We also encrypt sensitive data at rest where appropriate.
Access Controls: We limit access to personal data to employees, contractors, and service providers who need to know that information to operate, develop, or improve our Services. Those who have access are subject to strict contractual confidentiality obligations and may be disciplined or terminated if they fail to meet these obligations.
Authentication: For any internal systems accessing user data, we implement authentication safeguards (such as strong password policies, two-factor authentication, etc.) to prevent unauthorized access.
Network Security: We utilize firewalls, intrusion detection systems, and monitoring to guard against external attacks. We keep our software and systems updated to protect against vulnerabilities (regular patch management).
Physical Security: Where personal data is stored in physical servers or data centers, those locations have security controls (like restricted access, surveillance, and environmental protections).
Employee Training: Our staff is trained on data protection best practices and our internal security and privacy policies. We emphasize the importance of confidentiality and privacy in our corporate culture.
Anonymization and Pseudonymization: Where feasible, we process information in a way that does not immediately identify you (for instance, by pseudonymizing data or using aggregate statistics) to reduce risk.
Incident Response: We have an incident response plan for promptly addressing any security breaches or incidents. This includes notifying affected users and relevant authorities when required by law.
No Absolute Guarantee: Despite all these efforts, no method of transmission over the Internet or method of electronic storage is completely secure. While we strive to protect your personal information, we cannot guarantee its absolute security. Cyber threats evolve rapidly, and although we work hard to keep our defenses up-to-date, there is always some risk of a breach.
Your Responsibility: You also play a role in protecting your personal information. We encourage you to use a strong, unique password for any accounts you have with us and to keep it confidential. If you suspect any unauthorized access to your account or a security vulnerability in our Site, please contact us immediately.
In the event of a data breach that affects your personal data, we will act promptly to contain the breach and mitigate any harm. Where required by law, we will notify you and any applicable regulatory authorities (such as data protection authorities) of the breach, and provide information on what happened and any steps you may need to take to protect yourself.
You have certain rights and choices regarding your personal data. Depending on your location and subject to applicable laws, your rights may include:
If you are in the European Union, United Kingdom, or a jurisdiction with similar data protection laws, you have the following rights under the GDPR (or equivalent laws):
Right to Access: You have the right to request confirmation of whether we are processing your personal data, and if so, to obtain a copy of the personal data we hold about you, as well as supplementary information about how we use it. (This is sometimes called a "Data Subject Access Request").
Right to Rectification: You have the right to request that we correct or update any inaccurate or incomplete personal data we hold about you. We encourage you to contact us or use any profile editing features in our Site to keep your information accurate and current.
Right to Erasure: You have the right to request deletion of your personal data in certain circumstances (also known as the "right to be forgotten"). For example, you can request erasure if the data is no longer necessary for the purpose it was collected, or if you withdraw consent on which processing is based and we have no other legal basis, or if you object to processing and we have no overriding legitimate grounds, or if the data was processed unlawfully, etc. Please note that this right is not absolute – sometimes we have legal obligations or legitimate grounds to retain data (see Data Retention section). If you request deletion, we will explain if any exception applies that prevents us from deleting some data.
Right to Restrict Processing: You have the right to request that we limit the processing of your personal data in certain circumstances. This could apply if you contest the accuracy of data (for a period allowing us to verify it), or if the processing is unlawful but you prefer restriction to erasure, or if you need us to keep data solely for legal claims, or if you have objected (pending verification of overriding grounds).
Right to Object: You have the right to object to our processing of your personal data when that processing is based on our legitimate interests or on public interest grounds. You also have an absolute right to object to direct marketing (including any profiling related to direct marketing). If you object to processing, we will stop processing the personal data unless we have compelling legitimate grounds for the processing that override your interests, or if needed for legal claims.
Right to Data Portability: Where we rely on your consent or on a contract as the legal basis for processing, and the processing is carried out by automated means, you have the right to receive the personal data you provided to us in a structured, commonly used, machine-readable format, and to have us transmit it to another data controller where technically feasible.
Right not to be subject to Automated Decision-Making: We do not currently make any decisions about you that are based solely on automated processing (with no human involvement) that produce legal or similarly significant effects. If we did, you would have the right to not be subject to such decisions unless certain conditions are met (like your explicit consent, necessary for a contract, or authorized by law with safeguards).
Right to Withdraw Consent: If we rely on consent for any processing of your personal data, you have the right to withdraw that consent at any time. For instance, you can opt out of marketing emails or adjust cookie preferences. Withdrawal of consent will not affect the lawfulness of processing based on consent before its withdrawal.
To exercise any of these rights, please contact us (see Contact Us section below). We may need to verify your identity before fulfilling your request (to ensure that we don’t disclose data to the wrong person or delete data at the request of someone impersonating you). We will respond to your request within one month, or inform you of any extension or if we cannot comply and why (for example, if an exemption applies).
If you believe we have not addressed your data rights adequately, you have the right to lodge a complaint with a supervisory authority (such as the Data Protection Authority in the EU country where you live or work, or where an alleged infringement occurred, or the UK Information Commissioner’s Office if in the UK). We encourage you to contact us first so we can try to resolve any concerns directly.
If you are a California resident, California law provides you with specific rights regarding your personal information (as defined under the CCPA/CPRA):
Right to Know: You have the right to request that we disclose information to you about our collection, use, and disclosure of your personal information over the past 12 months. This includes the categories of personal information we collected, the categories of sources, our business or commercial purposes for collecting it, the categories of third parties with whom we shared personal information, and, for each category of personal information, the categories of third parties to whom it was disclosed for a business purpose. You may also request the specific pieces of personal information we have collected about you (a data portability request).
Right to Delete: You have the right to request that we delete any personal information about you that we have collected from you and retained, subject to certain exceptions. We may deny deletion requests if the information is necessary for us or our service providers to perform certain business functions or comply with law (for example, completing a transaction you requested, detecting security incidents, complying with a legal obligation, or other reasons allowed by CCPA).
Right to Correct: Effective January 1, 2023 (under CPRA), California residents have the right to request correction of inaccurate personal information maintained by a business. Upon verification, we will correct any inaccuracies you identify.
Right to Opt-Out of Sale or Sharing: California law distinguishes between data "sales" (broadly defined to include some sharing of personal information for valuable consideration) and "sharing" for cross-context behavioral advertising. We do not sell personal information for money. We also do not share personal information for cross-site targeted advertising as defined by CPRA (as of the current practices described, we use your data only for our own marketing to you, not to advertise others’ products, and we don't provide your data to third parties for their advertising). If that ever changes, we will implement a "Do Not Sell or Share My Personal Information" link or other opt-out mechanism as required. We do recognize Global Privacy Control (GPC) signals as an opt-out of sale/sharing (see Cookie Policy).
Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights. This means we will not deny you services, charge you a different price, or provide a different quality of services just because you exercised your rights. (However, the law does allow businesses to offer financial incentives for collection of personal information that are reasonably related to the value of the data, but we currently do not offer such programs. If we ever do, we will provide appropriate notice and obtain opt-in consent.)
Shine the Light: Separate from CCPA, California's "Shine the Light" law (Civil Code §1798.83) allows users who are California residents to request certain information about our disclosure of personal information to third parties for their direct marketing purposes. As noted, we do not share personal data with third parties for their own direct marketing without consent. If you want to make a Shine the Light request, you may do so once per year by contacting us as described below.
Submitting Requests: If you are a California resident and wish to exercise your Right to Know, Right to Delete, or Right to Correct, please contact us using the methods in the Contact section. You can email us with "California Privacy Rights Request" in the subject line and specify which right you seek to exercise (e.g., access/know, deletion, correction). We will need to verify your identity to process your request (usually this will involve confirming information we already have on file, and/or asking additional questions). If you have an account with us, making the request through your account (after logging in) is a secure way to verify.
For Right to Know (specific pieces of information) and deletion requests, California law requires more stringent verification (we may need at least two or three pieces of data to match our records). For an authorized agent to submit a request on your behalf, we may require proof of the agent’s registration (if it's a business) or a valid power of attorney, plus we may ask you to verify your identity directly with us or confirm that you provided the agent permission.
We aim to respond to verifiable consumer requests within 45 days. If we need more time (up to an additional 45 days, for a total of 90 days), we will inform you of the reason and extension in writing.
If you are an Israeli resident, the Israeli Protection of Privacy Law grants you certain rights:
Right to Inspect Data: You have the right to inquire whether we hold personal information about you in our databases, and to inspect any such data. You may do so either by sending us a request or through a representative authorized in writing or a guardian. We may charge a fee as determined by regulations for providing access.
Right to Request Amendment or Deletion: If you find that the information about you is incorrect, incomplete, unclear, or outdated, or if it is being used in ways that violate the law or this Privacy Policy, you may request that it be corrected or deleted. We will investigate and, if we find the request justified, we will correct/delete the information and notify you. If we refuse (for example, if we believe the information is correct and should be retained), we will inform you and you can appeal such a decision to the court as provided by law.
Direct Mailing Databases: If your personal data is used for direct marketing or to contact you personally (what Israeli law refers to as “service to notify persons” or a “direct mail database”), you have the right under Section 17 of the law to request in writing that we remove or not use your information for those purposes.
To exercise these rights, please send a request to our contact details provided below with as much detail as possible about the request. We may need to verify your identity as required. We will respond according to the timeframes set by Israeli law.
In addition to formal rights, we offer various ways for you to control how we use your data:
Update or Correct Your Information: If you have an account with us, you can log in and update certain personal details directly. Otherwise, you can contact us to request corrections (see above).
Marketing Communications: As noted, you can opt out of our marketing emails at any time by clicking the unsubscribe link in such emails or by contacting us to be removed. Even after you opt out of marketing, you may still receive transactional or administrative messages from us (e.g., account notifications or responses to your inquiries).
Cookies and Tracking: You have control over cookies as described in our Cookie Policy. You can adjust browser settings, use our cookie consent tool (if applicable), or use other opt-out mechanisms for analytics/advertising cookies. You can also use browser privacy features or plugins to block tracking. Note that essential cookies can’t be disabled without affecting functionality.
Do Not Track/Global Privacy Control: As mentioned, while we don't respond to DNT signals in a uniform way, we do honor GPC signals for California opt-outs. Regardless, using the cookie controls provided is the most reliable way to express your preferences on our Site.
Closing Your Account: If you have an online account with us and wish to close it, you typically can do so in your account settings or by contacting support. When you close an account, we will mark it as closed and eventually delete associated personal data as described in Data Retention (except for any data we are required to keep for legal reasons).
Please note that if you exercise certain choices (like opting out of all cookies or deletion of data), some functionalities of our Site or Services may be limited or unavailable.
We will not unlawfully discriminate against you for exercising any of these rights or choices.
If you have any questions or need assistance with exercising your rights or making choices about your data, please contact us and we will be happy to help.
Our use of cookies and tracking technologies is explained in detail in our Cookie Policy, which is incorporated into this Privacy Policy. To summarize:
We use cookies to make our website function properly (for example, to keep you logged in or remember your preferences), to understand how users use our site (analytics), and to assist with our marketing (for instance, to provide you with relevant ads on other sites, or to measure campaign performance).
On your first visit (especially if you are in a region like the EU), you will be presented with a cookie notice and given the opportunity to manage your cookie preferences. Essential cookies (needed for site operation) will be set regardless, but others (like analytics or advertising cookies) may be optional.
You can change your cookie settings at any time by using our cookie management tool (if available) or by adjusting your browser settings to refuse cookies. However, blocking all cookies might degrade your experience.
We may use similar technologies like web beacons in our emails (to count opens or clicks) and local storage on the site for certain features.
We respect opt-out signals like Global Privacy Control for cookie-based "sales" as required, as detailed in our Cookie Policy.
For a full explanation, including a list of the types of cookies and third-party tools we use, please refer to the Cookie Policy on our website. By using our Site, you agree to our use of cookies as described, to the extent allowed by your settings.
Our Site may contain links to other websites or may integrate third-party services and content. For example, we might link to an article on another site, include a social media sharing button, or embed a video hosted on a third-party platform.
This Privacy Policy does not cover third-party websites or services. If you click a link to a third-party site or interact with a third-party service (like a social media widget), you will be subject to that third party's own privacy practices and policies. We are not responsible for the content or privacy practices of those third-party sites.
We encourage you to read the privacy policies of every website you visit or third-party service you use. Some examples of third-party interactions on our Site:
Social Media: If you interact with our official pages on social networks (like LinkedIn, Facebook, Twitter) or use social login, those interactions are governed by the privacy policy of the respective platform. We may receive analytics data or contact info from such platforms if you choose to share it with us (e.g., via a social media ad form).
External Websites: If our website includes references or links to client websites, partner initiatives, or news articles, clicking those will take you outside our domain. We have no control over how those sites handle data.
Embedded Content: As noted, an embedded YouTube video, map, or similar content might allow that third party to collect usage data (like views or clicks) under their own terms.
That said, if you believe a third-party link on our site is inappropriate or leads to any issues, please let us know.
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or for other reasons. When we update the policy, we will revise the "Last updated" date at the top of this page. If we make any material changes, we will take reasonable steps to inform you, which might include prominently posting a notice of changes on our Site or, if we have your email on file, sending you an email notification.
Your continued use of our Site or Services after any such update constitutes your acceptance of the revised Privacy Policy, to the extent permitted by law. If you do not agree to the changes, you should stop using our Site and Services and contact us if you wish to remove your data as per your rights.
For significant changes (especially those that relate to how we collect or use personal data in a way that may be less permissive than under the prior Policy), we will provide a more direct notice or seek consent if required. For example, if we were to start processing data for a new purpose not stated when collected, we would update this Policy and, if necessary, obtain consent or give an opportunity to opt out.
We encourage you to review this Policy periodically to stay informed about how we are protecting your information.
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:
Email: hello@ego-digital.com
Phone: +972-54-448-0504 (Israel HQ) / +1-305-934-2837 (USA Office)
Mailing Address: EGO Digital Agency, Attn: Privacy Officer, Tel Aviv, Israel
When you contact us, please provide sufficient detail about your question or request, including any relevant account information or interaction with us, so we can efficiently address your inquiry.
If you are contacting us to exercise a privacy right, please see the Your Rights and Choices section above for information we may need to verify your request.
We will endeavor to respond to your questions or requests promptly and in accordance with applicable law. Your privacy is important to us, and we welcome your feedback and inquiries.
Thank you for reading our Privacy Policy.