Privacy & Cookie Policy

Last updated: August 14, 2025

Introduction

Guac Design ("we," "our," or "us") is committed to protecting your privacy. This Privacy & Cookie Policy explains how we collect, use, disclose, and safeguard your information when you visit our website guac.design, use our services, or interact with us in any way.

Information We Collect


Information You Provide to Us

We collect information you voluntarily provide when you:

  • Fill out contact forms on our website
  • Submit project briefs or design requests
  • Create an account for our client portal
  • Subscribe to our newsletter or marketing communications
  • Communicate with us via email, phone, or video calls

Types of information collected:

  • Name and contact information (email, phone number)
  • Company name and role/title
  • Project details and design requirements
  • Communication preferences
  • Payment information (processed securely by Stripe)
  • Any other information you choose to provide
Information Collected Automatically


When you visit our website, we automatically collect certain information through cookies and similar technologies:

  • Browser type and version
  • Device information (type, operating system)
  • IP address and general location data
  • Pages visited and time spent on our site
  • Referring website information
  • User behavior and interaction patterns
Third-Party Information


We may receive information about you from:

  • Our third-party payment processor (Stripe)
  • Analytics services (Google Analytics)
  • Marketing platforms (Facebook, Google Ads, RB2B)
  • Our client portal system

How We Use Your Information


We use the collected information for the following purposes:

Service Delivery
  • Providing design services and managing client projects
  • Communicating about your projects and service requests
  • Managing your account and client portal access
  • Processing payments through our secure payment processor
Business Operations
  • Responding to your inquiries and providing customer support
  • Improving our website, services, and user experience
  • Analyzing website usage and user behavior patterns
  • Managing our business operations and client relationships
Marketing and Communications
  • Sending marketing communications (with your consent)
  • Providing updates about our services and company news
  • Personalizing your experience on our website
  • Conducting market research and gathering feedback
Legal and Compliance
  • Complying with applicable laws and regulations
  • Protecting our rights and the rights of others
  • Investigating and preventing fraud or security issues

Cookies and Tracking Technologies


What Are Cookies

Cookies are small text files stored on your device that help us improve your browsing experience and understand how our website is used.

Types of Cookies We Use


Essential Cookies

These cookies are necessary for our website to function properly and cannot be disabled:

  • Authentication cookies for logged-in users
  • Security cookies to protect against fraud
  • Session cookies to remember your preferences during your visit
Analytics Cookies


We use Google Analytics to understand how visitors use our website:

  • Purpose: Analyzing website traffic, user behavior, and site performance
  • Data Collected: Page views, session duration, bounce rate, device information
  • Retention: Data is retained for 26 months
  • Opt-out: You can opt-out using Google Analytics Opt-out Browser Add-on
Marketing Cookies


We use marketing cookies to show you relevant advertisements and measure campaign effectiveness:

Google Ads

  • Purpose: Remarketing and conversion tracking
  • Data Collected: Website interactions, ad engagement, conversion events
  • Retention: Up to 540 days depending on cookie type

Facebook Pixel

  • Purpose: Audience targeting and ad performance measurement
  • Data Collected: Website actions, custom events, conversion data
  • Retention: Up to 180 days

RB2B

  • Purpose: B2B lead identification and marketing automation
  • Data Collected: Company identification, website behavior, lead scoring data
  • Retention: According to RB2B's retention policies

Managing Your Cookie Preferences


You can control cookies through your browser settings:

  • Accept All Cookies: Allow all cookies for full website functionality
  • Selective Blocking: Choose which types of cookies to accept

Most browsers allow you to:

  • View cookies stored on your device
  • Delete existing cookies
  • Set preferences for future cookies
  • Receive notifications when cookies are set

Data Sharing and Disclosure


Third-Party Service Providers


We share information with trusted third-party service providers who assist us in operating our business:

Stripe (Payment Processing)

  • Purpose: Secure payment processing for our services
  • Data Shared: Payment information, transaction details
  • Privacy Policy: stripe.com/privacy

Google Analytics

  • Purpose: Website analytics and performance monitoring
  • Data Shared: Anonymized usage data, website interaction patterns
  • Privacy Policy: policies.google.com/privacy

Client Portal System

  • Purpose: Project management and client communication
  • Data Shared: Project information, communication history, file uploads
  • Security: All data is encrypted and securely stored

Subcontractors and Partners


We may share limited project information with subcontractors who assist with design work:

  • Only non-confidential project details are shared
  • All subcontractors sign confidentiality agreements
  • Client data and sensitive information remain protected

Legal Requirements


We may disclose your information when required by law or to:

  • Comply with legal processes or government requests
  • Protect our rights, property, or safety
  • Investigate potential violations of our terms of service
  • Prevent fraud or security threats

Data Security


We implement appropriate technical and organizational measures to protect your information:

Security Measures
  • Encryption of data in transit and at rest
  • Secure servers and regular security updates
  • Access controls and authentication systems
  • Regular security audits and monitoring
  • Employee training on data protection practices
Data Breach Response


In the unlikely event of a data breach, we will:

  • Investigate the incident immediately
  • Take steps to contain and remediate the breach
  • Notify affected individuals and relevant authorities as required by law
  • Implement additional security measures to prevent future incidents

Data Retention


We retain your information for as long as necessary to provide our services and fulfill legal obligations:

Client Data
  • Active Subscriptions: Retained for the duration of the subscription
  • Cancelled Subscriptions: Retained for 1 year after termination
  • Project Files: Available for download before deletion
  • Communication Records: Retained for business and legal purposes
Website Data
  • Analytics Data: Retained according to Google Analytics settings (26 months)
  • Marketing Data: Retained according to platform-specific policies
  • Contact Form Data: Retained until purpose fulfilled or consent withdrawn

Your Rights and Choices


California Residents (CCPA Rights)


If you are a California resident, you have the right to:

  • Know: Request information about the personal information we collect, use, and disclose
  • Delete: Request deletion of your personal information
  • Opt-Out: Opt-out of the sale of personal information (we do not sell personal information)
  • Non-Discrimination: Receive equal service regardless of exercising your privacy rights
General Rights


All users have the right to:

  • Access: Request a copy of the information we have about you
  • Correction: Request correction of inaccurate information
  • Deletion: Request deletion of your information (subject to legal requirements)
  • Portability: Request your data in a portable format
  • Opt-Out: Unsubscribe from marketing communications at any time
How to Exercise Your Rights


To exercise any of these rights, please contact us at:

  • Email: team@guac.design
  • Subject Line: "Privacy Rights Request"
  • Include: Your name, email address, and specific request details

We will respond to your request within 30 days.

International Data Transfers


As a US-based company, your information is primarily stored and processed in the United States. If you are located outside the US, please be aware that your information may be transferred to and processed in the US, where privacy laws may differ from those in your country.

Children's Privacy


Our services are not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13, we will take steps to delete such information promptly.

Changes to This Policy


We may update this Privacy & Cookie Policy from time to time to reflect changes in our practices or legal requirements. When we make material changes, we will:

  • Update the "Last Updated" date at the top of this policy
  • Notify you via email or prominent website notice
  • For significant changes, seek your consent where required by law

We encourage you to review this policy periodically to stay informed about how we protect your information.

Contact Us


If you have any questions, concerns, or requests regarding this Privacy & Cookie Policy or our data practices, please contact us:

Guac Design
Email: team@guac.design
Website: guac.design
Location: Sacramento, California, United States

For privacy-related inquiries, please use the subject line "Privacy Inquiry" to ensure prompt attention.

This policy is designed to be transparent and understandable. If you need clarification on any section, please don't hesitate to reach out to our team.