This Data Processing Agreement ("DPA") outlines how Patriot Pixels LLC ("Processor," "we," "us," or "our") handles personal data on behalf of clients ("Controller," "you," or "your") in accordance with applicable data protection laws.
By using our services—including website design, hosting, contact forms, digital tools, or any related offering from Patriot Pixels LLC—you agree to this DPA.
Personal Data: Any information related to an identifiable individual.
Processing: Any operation performed on personal data (collection, storage, access, etc.).
Controller: The entity that determines the purpose and means of data processing (you).
Processor: The entity that processes personal data on behalf of the Controller (us).
Subprocessor: A third party engaged by the Processor to support service delivery.
We process personal data only as necessary to deliver services you've requested, including (but not limited to):
Hosting and managing your website
Handling contact form submissions
Delivering automated communications (email, SMS, etc.)
Providing technical support and analytics
We do not use your customer data for any purposes beyond what's required to fulfill your services.
Names, email addresses, and phone numbers submitted via forms
IP addresses, browser/device data (via analytics)
Any content you upload to your website
Messages sent through contact or lead capture forms
This data belongs to you, and we treat it as confidential.
We maintain reasonable administrative, technical, and physical safeguards to protect personal data, including:
SSL/TLS encryption on all hosted websites
Password-protected admin access
Regular backups and malware scanning
Secure data center environments (via trusted vendors)
We may engage trusted third-party service providers (“Subprocessors”) to support the delivery of our services—such as hosting, data storage, email/SMS communications, analytics, or payment handling. All Subprocessors are contractually bound to maintain confidentiality and implement appropriate data protection safeguards. A current list of Subprocessors is available upon request.
We retain personal data only as long as needed to fulfill our obligations or comply with legal requirements. Upon cancellation of your services, you may request deletion of all associated data. Inactive accounts or unused sites may be deleted after a reasonable period with notice.
If we become aware of a data breach involving personal data stored or processed on your behalf, we will notify you as soon as reasonably possible—typically within 72 hours—with relevant details and actions taken.
As the Controller, you're responsible for:
Complying with any data protection regulations that apply to your business or audience (e.g., GDPR, CCPA)
Ensuring you have legal grounds to collect data via your website
Honoring deletion or access requests from your users
We primarily process data within the United States. If international transfers occur, we ensure appropriate safeguards are in place, such as data processing agreements with Subprocessors or reliance on lawful transfer mechanisms.
We may update this DPA from time to time. Updates will be posted on this page with a new "Last Updated" date. Material changes will be communicated via email or through our client portal when appropriate.
For any questions related to this DPA or data handling practices, contact:
Patriot Pixels LLC
Email: [email protected]
Note: This DPA is provided as part of our commitment to transparency and legal compliance. It applies automatically to all active clients using our services and does not require a separate signature.
