Jastor Website and Material terms and Conditions of Use.
This legal binding agreement page, consisting of the Privacy Policy, Copy and Reproduction Prohibition Policy, Terms of Use, and Disclaimer, governs your use of our website and services. We thank you for reading and understanding these terms, and we appreciate your business.
Privacy Policy
Effective date: September 10, 2025
Who we are. This Privacy Policy describes how Jastordest Design Studios, LLC (doing business as Jastor, “we,” “us,” or “our”) collects, uses, discloses, and protects personal information in connection with jastor.co and our consulting, branding, digital, and marketing services. You can reach us at info@jastordest.comor +1 (305) 442‑9777. Our U.S. locations include Miami (252 NW 29th St., Suite #9, Miami, FL 33127)
We previously posted a legal page with a basic privacy policy effective August 30, 2023; this version replaces and updates that policy.
1) Scope
This Policy applies to information we process about:
Visitors to jastor.co, our microsites/landing pages, newsletters, and social profiles; Prospective and current clients, partners, and vendors; and Individuals whose data we process on a client’s behalf for campaigns or services (see Client data where we act as a processor). It does not cover third‑party sites, apps, or services we don’t control. See Third‑party services.
2) Information we collect
A) Information you provide directly
Lead & project intake (e.g., the “Let’s Talk” form): name, email, company, title, phone, website, budget range, and project description. Newsletter & event sign‑up: email address and related preferences. Business communications: proposals/SOWs, feedback, and support messages. Payments (if applicable): invoice amounts and limited payment details processed by our payment provider (we do not store full card numbers). Recruiting (if applicable): résumé/CV, portfolio links, and work history.
B) Information collected automatically Device/usage data: IP address, device & browser type, pages viewed, time on page, and similar analytics.
Cookies & similar technologies: cookies, pixels, tags, SDKs, and local storage to operate the site, remember preferences, analyze usage, and measure/optimize campaigns (including retargeting and cross‑site advertising typical in agency work, e.g., TikTok, Meta, and Google ads).
C) Information from third parties
Analytics & ad platforms (e.g., Google, Meta, TikTok, LinkedIn) and measurement partners; CRM, marketing automation, form & scheduling tools; Public sources and reputable B2B data providers (business contact info for lead generation); Social networks (if you engage with our pages or ads).
3) How we use personal information
We use information to:
Provide and improve our services, websites, and user experience;
Respond to inquiries; scope and deliver projects; manage accounts and billing;
Operate analytics; measure performance; debug; prevent fraud/security incidents;
Market & advertise our services (including personalization, retargeting, and audience creation/expansion where permitted); and Comply with law, enforce agreements, and exercise/defend legal claims.
Example: our process page describes targeted advertising across TikTok, Meta, and Google with retargeting strategies; our policy reflects those operations.
4) Our roles (controller vs. processor)
When we determine purposes/means (e.g., our own website, CRM, newsletters), we act as a business/controller. When a client provides data (e.g., customer lists for campaigns, web analytics for a client site we operate), we act as a service provider/processor and process that data under the client’s instructions and our contract/DPA. If you seek to exercise rights for data we handle for a client, please contact that client directly; you may also contact us and we’ll help route the request.
5) When we disclose information
We disclose information to:
Service providers (hosting/CDN, analytics, ad platforms, anti‑spam, email/SMS, CRM/marketing automation, scheduling/forms, accounting, security, project & file collaboration, helpdesk); Ad & measurement partners to run and improve campaigns (including retargeting); Professional advisors (lawyers, accountants) and authorities as required; and Successors/assignees as part of a merger, acquisition, or asset transfer.
We do not disclose sensitive identifiers (e.g., government IDs) except as necessary and permitted by law (e.g., screening for recruiting or vendor verification).
6) Cookies, analytics & advertising
We use necessary cookies to run the site and optional tools for performance, analytics, A/B testing, and advertising/retargeting. You can manage cookies via your browser or system settings; some features may not work without certain cookies.
Global Privacy Control (GPC): Where required by law (e.g., California), we treat a valid GPC signal as a request to opt out of “sale”/“sharing” for cross‑context behavioral advertising on that browser.
Do Not Track (DNT): We currently do not respond to DNT signals.
For clarity under U.S. state privacy laws: we do not sell personal information for money, but our use of advertising and analytics may be considered “sharing” or “targeted advertising.” You can opt out—see Your privacy rights below.
7) Lawful bases (EU/UK) & U.S. state privacy disclosures
Lawful bases (GDPR/UK GDPR)
Performance of a contract (e.g., delivering a project);
Legitimate interests (e.g., B2B marketing to business emails, security, analytics, improving our services), balanced against your rights and expectations;
Consent (e.g., non‑essential cookies/ad tracking, certain email marketing);
Legal obligations (e.g., tax, accounting).
U.S. state laws (summary)
Depending on where you live and whether a law applies to our business, you may have rights to access, correct, delete, port, and opt out of targeted advertising, certain profiling, or sale/sharing. We honor applicable requests and GPC signals where required (e.g., California).
Florida note: We’re based in Florida; while Florida’s Digital Bill of Rights applies to certain larger businesses, we will honor applicable requests consistent with the law.
8) Your privacy choices & rights
Marketing preferences
Email: Use the unsubscribe link or contact us.
SMS (if ever used): Reply STOP to opt out.
Opt out of targeted advertising / “sale” or “sharing” (CA & similar laws)
Use the “Do Not Sell or Share My Personal Information” link (if present in our footer) or email privacy@jastordest.com (or info@jastordest.com ) with the subject “Do Not Sell/Share—Opt Out”; include your browser, email, and device details so we can honor your request across touchpoints. We honor GPC signals where required.
Access / delete / correct / portability
Email privacy@jastordest.com (or info@jastordest.com) and tell us what right you’re exercising. We will verify your identity (and, in California, accept requests from an authorized agent with proper authorization). If we deny a request as allowed by law, you may appeal by replying to our decision email.
B2B email opt‑out
If we contacted your work email for legitimate‑interest B2B outreach, you can opt out at any time; we maintain a suppression list to respect your choice.
9) Data retention
We keep personal information only as long as needed for the purposes described or as required by law:
Marketing contacts & analytics data: 12–36 months (or sooner if you opt out), with hashed/suppression records retained to honor opt‑outs.
Client/project records, contracts, invoices: typically 7 years.
Recruiting: usually up to 2 years (or sooner if you ask us to delete, unless law requires retention).
10) Security
We use administrative, technical, and physical safeguards appropriate to the sensitivity of the information (e.g., access controls, encryption in transit, least‑privilege access, MFA where available, vendor due diligence). No method of transmission or storage is 100% secure.
11) Children’s privacy
Our services and site are not directed to children under 13 (or 16 in the EU/UK), and we do not knowingly collect their personal information.
12) International data transfers
We are U.S.‑based and may transfer personal data to the United States and other countries with different data‑protection laws. Where required, we use Standard Contractual Clauses (SCCs) or other approved mechanisms and implement additional safeguards as appropriate.
13) Client data where we act as a processor
For many services (e.g., running campaigns, managing analytics, hosting assets, or building client websites), we process personal information on behalf of a client under a Data Processing Addendum (DPA). We do not use such data for our own marketing or to build profiles beyond the client’s instructions. If you are a customer of one of our clients, please direct privacy requests to that client first; we will assist them as needed.
14) Use of AI and automated tools
We may use AI‑assisted tools (e.g., for content ideation, summarization, asset generation, QA) as part of our services or internal operations. When doing so, we: (i) restrict uploads of confidential/client data unless required for the task and permitted by contract; (ii) use reputable providers under appropriate terms (including data‑processing and data‑use restrictions); and (iii) rely on human oversight. We do not make solely automated decisions that produce legal or similarly significant effects about individuals.
15) Third‑party services
Our website and campaigns may integrate third‑party features and pixels (e.g., analytics and advertising platforms, email/CRM tools, scheduling forms). Your interactions with those services are governed by their own privacy policies. (Our site includes newsletter signup and a “Let’s Talk” intake form.)
16) Changes to this Policy
We may update this Privacy Policy from time to time. The Effective date above shows when it last changed. If we make material changes, we’ll provide a prominent notice (e.g., on this page).
17) Contact us
Jastordest Design Studios, LLC (Jastor)
Email: info@jastordest.com
| Phone: +1 (305) 442‑9777
Mailing/office: Wynwood 252 NW 29th St., Suite #9, Miami, FL 33127 (USA)
Appendix A — “Notice at Collection” (California & similar laws)
Category Examples (from our uses) Purpose(s) Sources Disclosed to “Sell”/“Share” for ads?* Typical retention
Identifiers Name, email, phone, company, title Lead intake, proposals, account/service communications You; B2B providers Service providers (CRM, email, scheduling) No 12–36 mo (opt‑out honored)
Commercial info Services purchased, proposals, invoices Client management, billing You/your employer Accounting, payment processors, advisors No 7 yrs
Internet/technical IP, device, pages viewed, UTM, pixel events Site operation, analytics, ads/retargeting Your device; ad/analytics tools Analytics & ad partners; service providers Yes (opt‑out available) 12–24 mo
Professional data Company, role, industry B2B marketing & sales You; public sources; reputable B2B providers CRM/automation tools No 12–36 mo
Communications Emails, form messages Support, scoping, QA You Service providers No Project life + 3 yrs
Inferences Likely interests from site or campaign interactions Personalize content/ads; measure performance Derived from other data Ad/marketing tools (as configured) Yes (opt‑out available) 12–24 mo
*We do not sell personal information for money, but our use of analytics/ads may be deemed “sharing” or “targeted advertising.” Use the Do Not Sell/Share link or contact us to opt out; we also honor GPC signals where required.
Sensitive information: We do not intend to collect sensitive personal information via our website.