This Privacy Policy explains how DS-GO.PRO ("we", "us", "our") collects, uses, discloses, and protects personal data in connection with DS-GO.PRO/CMS (https://dsgo.pro/cms), the DS-GO.PRO software, DS-GO.HOTEL, DS-GO.PRO PLAYER, https://dsgo.pro, and any website, application, or service that links to this Privacy Policy (collectively, the "Services").

Controller (GDPR): Nadiia Serhiivna Akulenko, operator of DS-GO.PRO. Privacy contact: privacy@dsgo.pro. Contact address: Rua Dona Conceição Maria dos Anjos 1, Forca Vouga, 3800-003 Aveiro, Portugal.

General support: support@dsgo.pro.

Certain contracting, invoicing, order administration, distribution, reseller, or implementation functions may be performed by authorized contracting entities, distributors, or resellers identified in your order, invoice, or contract documentation. Where such parties process personal data for their own contracting, billing, accounting, tax, compliance, or legal purposes, they may act as separate controllers for that processing under their own documentation.

Processor role for customers: when customers use DS-GO.PRO to manage their own users, devices, screens, content, campaigns, or other business data, the customer generally acts as the Data Controller for such customer data, and DS-GO.PRO acts as a Data Processor or sub-processor, as applicable, solely for the purpose of providing the Services in accordance with applicable agreements and documented instructions.

Information you provide directly to us.

We may collect the following categories of personal data when you use the Services, create an account, request a trial, contact support, place an order, or otherwise interact with us:
Business and contact information (such as name, work email address, phone number, company name, role, city, region, and country).
Account information (such as login credentials, account identifiers, and authentication-related data).
Order and billing information (such as purchased services, invoicing details, billing contacts, payment status, and transaction records).
Support and communications (such as messages, requests, tickets, troubleshooting details, and attachments you send to us).
Content and configuration data (such as files, media, text, URLs, layouts, schedules, playlists, device settings, and related metadata uploaded or created in the Services).
Registration and onboarding data (such as trial requests, account setup details, screen pairing information, and related onboarding events).

Information collected automatically.

When you use the Services, we and our service providers may automatically collect technical and usage information such as: IP address, device identifiers, browser type, operating system, app version, authentication events, timestamps, error logs, crash data, screen and device status data, access history, and other technical events necessary to operate, secure, maintain, and improve the Services.

Information from third parties and integrations.

We may receive data from third-party providers and integrations that you choose to connect to the Services, including identity providers, Google services, and other connected services or platforms used within DS-GO.PRO. The specific data received depends on the relevant provider, your settings, and the permissions you grant.

Information from partners, distributors, and resellers.

We may receive business contact details, account-related information, order data, and implementation details from authorized distributors, resellers, implementation partners, or other intermediaries where this is necessary to provide the Services, support your account, process orders, or respond to your request.

Sensitive data.

The Services are not intended for the routine collection or processing of special categories of personal data or other highly sensitive data, unless expressly agreed in writing and supported by appropriate safeguards. Please do not upload or submit such data unless you have a clear legal basis and authorization to do so.

We use personal data for the following purposes:

• To provide and operate the Services, including account creation, authentication, screen and device management, content delivery, support, notifications, and security functions.
• To administer customer relationships, including onboarding, order handling, service activation, account maintenance, support, and service-related communications.
• To secure and protect the Services, including fraud prevention, abuse detection, access control, incident response, troubleshooting, and logging.
• To improve, maintain, and develop the Services, including diagnostics, performance monitoring, service reliability, bug fixing, and functional improvements.
• To comply with legal obligations, including accounting, tax, audit, recordkeeping, lawful requests, and enforcement of contractual terms.
• To communicate with you, including responding to support requests, providing transactional notices, and sending service-related information.
• To manage integrations and connected services that you enable within the Services.

We do not make decisions based solely on automated processing that produce legal effects or similarly significant effects on individuals.

Where the GDPR or similar laws apply, we process personal data on one or more of the following legal bases:

• Contract - where processing is necessary to provide the Services, manage an account, or perform our contractual obligations.
• Legitimate interests - where processing is necessary for security, support, service administration, improvement, fraud prevention, or related operational purposes, provided such interests are not overridden by applicable rights.
• Legal obligation - where processing is necessary to comply with applicable legal, regulatory, tax, accounting, or enforcement obligations.
• Consent - where consent is required by law, including for certain non-essential cookies, tags, or similar technologies.

When a customer uses DS-GO.PRO to manage its own users, devices, screens, content, schedules, campaigns, or other business data, that customer is generally responsible for determining the purposes and means of processing such customer data and is therefore the Data Controller for that processing.

In those cases, DS-GO.PRO processes such data on behalf of the customer in order to provide the Services and acts as a Data Processor or sub-processor, as applicable, subject to the relevant agreement, applicable law, and documented instructions.

Customers are responsible for ensuring that they have an appropriate legal basis for the personal data they upload to, manage in, or otherwise process through the Services, including any data relating to their own employees, end users, or third parties.

If you register or sign in using a third-party identity provider, we may receive limited account or profile data as permitted by that provider and your settings, such as your name, email address, account identifier, and authentication-related data. We use this information to create or authenticate your account, manage access, and secure the Services.

We may use third-party identity and access management providers, including Auth0/Okta where enabled. You can review Auth0's privacy information here: https://auth0.com/privacy.

Where the Services access data from Google services or use Google integrations, we process such data only as necessary to provide the relevant features requested by the customer or user. Where applicable, our use of information received from Google APIs is subject to Google's applicable API policies, including relevant limited-use requirements.

We use cookies and similar technologies for authentication, security, session continuity, and operation of the Services. We also use Google Tag technology to manage Google-related tags and settings on our website. Where Google Tag is used for measurement or other non-essential purposes, such use is subject to consent where required by applicable law.

For more detailed information, please see our Cookie Policy.

We do not sell personal data. We may share personal data only as necessary for the purposes described in this Privacy Policy, including with:

Authorized service providers and sub-processors.

We may share data with vendors that provide hosting, infrastructure, identity and authentication, cloud services, email delivery, security, monitoring, support tooling, payment-related services, or other operational services on our behalf and under appropriate contractual obligations.

Connected third-party services and integrations.

If you enable a third-party integration, connect an external account, or request a specific integration within the Services, we may share or receive data as necessary to operate that integration, in accordance with your instructions and the applicable third-party terms.

Distributors, resellers, contracting entities, and implementation partners.

Where the Services are provided through a distributor, reseller, contracting entity, or implementation partner, we may share account, order, onboarding, support, and service administration information as necessary to perform the relevant commercial and support relationship.

Professional advisers and legal recipients.

We may disclose data to lawyers, auditors, accountants, insurers, regulators, courts, law enforcement authorities, or other recipients where this is necessary to comply with law, protect rights, enforce agreements, investigate incidents, or respond to valid legal requests.

Corporate transactions.

We may disclose data in connection with a merger, acquisition, restructuring, financing, sale of assets, or similar corporate event, subject to appropriate confidentiality and legal safeguards.

The Services may contain links to third-party websites, services, or platforms. Those third parties operate under their own terms and privacy policies. We are not responsible for third-party privacy practices or content, and we encourage you to review their policies before using those services.

We implement technical and organizational measures designed to protect personal data against unauthorized access, disclosure, alteration, loss, or destruction. These measures may include access controls, authentication safeguards, role-based permissions, transport encryption, secure credential handling, logging, monitoring, backup procedures, incident response processes, and other security practices appropriate to the nature of the Services.

No method of transmission over the Internet or method of electronic storage is completely secure, and we cannot guarantee absolute security.

Personal data may be processed in the European Economic Area and, where necessary for the provision of the Services, in other countries. Where personal data is transferred outside the EEA, UK, or other jurisdictions with transfer restrictions, we use appropriate safeguards as required by applicable law, such as standard contractual clauses or other lawful transfer mechanisms.

We retain personal data only for as long as necessary for the purposes described in this Privacy Policy, including to provide the Services, maintain security, resolve disputes, enforce agreements, and comply with legal obligations.

• Account and customer relationship data: generally for the life of the account and a reasonable period afterwards, unless a longer period is required by law or needed for legitimate legal or operational reasons.
• Support records and communications: for as long as reasonably necessary to manage support history, disputes, product quality, and compliance.
• Technical logs and security records: for a limited period appropriate to security, troubleshooting, abuse prevention, and service reliability.
• Billing, accounting, and tax records: for the period required by applicable accounting, tax, or legal recordkeeping obligations.
• Backups: retained on a rolling basis for operational resilience and disaster recovery.

Where feasible, we may delete, anonymize, or aggregate data when it is no longer needed.

Depending on the applicable law and your location, you may have the right to request access to personal data, correction of inaccurate data, deletion, restriction of processing, objection to certain processing, and data portability. You may also have the right to withdraw consent where processing is based on consent.

To exercise your rights, please contact privacy@dsgo.pro. You may also have the right to lodge a complaint with a competent supervisory authority.

The Services are intended for business use and are not directed to children. We do not knowingly collect personal data from children in connection with the Services. If you believe that personal data of a child has been provided to us, please contact us so that we can take appropriate action.

We may update this Privacy Policy from time to time to reflect changes in law, our Services, or our data practices. When we do, we will update the "Last updated" date at the top of this page.

We encourage you to review this Privacy Policy periodically.

If you have questions about this Privacy Policy or our processing of personal data, please contact us at privacy@dsgo.pro. For general support, contact support@dsgo.pro. You may also use our contact page: https://dsgo.pro/contacts.

Controller: Nadiia Serhiivna Akulenko, operator of DS-GO.PRO, Rua Dona Conceição Maria dos Anjos 1, Forca Vouga, 3800-003 Aveiro, Portugal.