Privacy Policy

Effective Date: December 23, 2025
Last Updated: December 23, 2025

1. INTRODUCTION

Nodikam, LLC, doing business as Heartland Digital Studio ("Company," "we," "us," or "our"), respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website at heartlanddigitalstudio.com (the "Site"), use our services, or otherwise interact with us.

Please read this Privacy Policy carefully. By accessing or using our Site or services, you acknowledge that you have read, understood, and agree to be bound by all the terms of this Privacy Policy. If you do not agree with the terms of this Privacy Policy, please do not access the Site or use our services.

We reserve the right to make changes to this Privacy Policy at any time and for any reason. We will alert you about any changes by updating the "Last Updated" date of this Privacy Policy. Any changes or modifications will be effective immediately upon posting the updated Privacy Policy on the Site. You are encouraged to periodically review this Privacy Policy to stay informed of updates.

Contact Information:

Nodikam, LLC dba Heartland Digital Studio
257 Gemstone Drive
Alma, Michigan 48801
Email: [email protected]
Phone: (989) 331-0707

2. INFORMATION WE COLLECT

We collect information that you voluntarily provide to us, information automatically collected when you use our Site, and information from third-party sources.

2.1 Personal Information You Provide to Us

We collect personal information that you voluntarily provide when you:

• Fill out contact forms on our Site

• Request quotes or consultations

• Schedule appointments or strategy meetings

• Sign up for our services

• Subscribe to newsletters or marketing communications

• Communicate with us via email, phone, text message, or other channels

• Create an account or client portal access

• Provide feedback, testimonials, or reviews

• Participate in surveys or promotions

• Apply for employment

The personal information we may collect includes:

• Identity Information: First name, last name, username or similar identifier

• Contact Information: Email address, telephone number, mailing address, company name

• Business Information: Company name, website URL, industry, business type, role or title

• Technical Information: Current website URL, hosting information, technical requirements

• Project Information: Project goals, target audience, design preferences, content requirements, pain points with current website

• Communication Information: Information contained in communications you send to us

• Payment Information: Billing address, credit card details, bank account information (processed through secure third-party payment processors)

• Marketing Information: Communication preferences, areas of interest

• Other Information: Any other information you choose to provide

2.2 Information Automatically Collected

When you visit our Site, we automatically collect certain information about your device and usage of the Site:

Device and Usage Information:

• IP address

• Browser type and version

• Operating system

• Device type (desktop, mobile, tablet)

• Screen resolution

• Referring/exit pages

• Date and time stamps

• Pages visited and links clicked

• Time spent on pages

• Search queries within the Site

Cookies and Tracking Technologies:

We use cookies, web beacons, tracking pixels, and similar technologies to collect information. See Section 8 for detailed information about cookies.

Analytics Information:

We use third-party analytics services, including but not limited to:

• Google Analytics

• GoHighLevel analytics

• Facebook Pixel

• Other marketing and analytics platforms

These services collect information about your use of our Site and other websites/apps to help us improve our services and marketing efforts.

2.3 Information from Third-Party Sources

We may receive information about you from third-party sources, including:

• Social Media Platforms: If you interact with us on social media (Facebook, Instagram, LinkedIn, etc.), we may receive information from those platforms

• Business Partners: Information from partners who refer clients to us or with whom we collaborate

• Public Databases: Publicly available information for business verification or fraud prevention

• Data Brokers: Business contact information for marketing purposes

• GoHighLevel Platform: Information processed through our platform provider

• Payment Processors: Transaction confirmation and payment verification information

2.4 Information About Others

If you provide us with personal information about other individuals (such as team members, employees, or authorized representatives), you represent that you have the authority to do so and permit us to use the information in accordance with this Privacy Policy.

3. HOW WE USE YOUR INFORMATION

We use the information we collect for various purposes related to operating our business and providing our services.

3.1 Service Delivery and Performance

• Providing, operating, and maintaining our services

• Processing your requests for quotes, consultations, or information

• Scheduling and conducting strategy meetings and appointments

• Creating and managing client accounts

• Designing, developing, and delivering websites and related services

• Communicating with you about projects, including updates and status reports

• Processing payments and managing billing

• Providing customer support and responding to inquiries

• Managing subscriptions and service renewals

• Delivering maintenance and support services

• Troubleshooting and resolving technical issues

3.2 Business Operations and Improvement

• Understanding how our Site and services are used

• Analyzing trends, usage patterns, and effectiveness

• Improving our Site, services, and customer experience

• Developing new products, services, and features

• Conducting research and analysis

• Testing new features and functionality

• Quality assurance and training purposes

3.3 Marketing and Communications

• Sending promotional communications about our services, special offers, and news

• Providing newsletters and updates (with your consent)

• Sending SMS/text messages about appointments, promotions, and updates (with your consent)

• Conducting customer satisfaction surveys

• Administering contests, promotions, or events

• Creating and sharing case studies and testimonials (with your permission)

• Displaying your website in our portfolio (unless you opt out)

• Personalizing marketing messages based on your interests

3.4 Legal and Security Purposes

• Complying with legal obligations and regulatory requirements

• Enforcing our Terms and Conditions and other policies

• Protecting our rights, property, and safety, and that of our clients and others

• Preventing, detecting, and investigating fraud, security breaches, or illegal activities

• Responding to legal process (subpoenas, court orders, etc.)

• Resolving disputes and enforcing agreements

• Maintaining records for business and legal purposes

3.5 With Your Consent

• Any other purpose for which you provide consent

• Specific uses disclosed at the time of collection

4. HOW WE SHARE YOUR INFORMATION

We do not sell, rent, or trade your personal information to third parties for their marketing purposes. We may share your information in the following circumstances:

4.1 Service Providers and Business Partners

We share information with third-party vendors, service providers, contractors, and agents who perform services on our behalf, including:

Platform and Hosting Providers:

• GoHighLevel Inc. (website hosting and CRM platform)

• Domain registrars

• Content delivery networks (CDNs)

• Web hosting providers

Payment Processing:

• Stripe, PayPal, or other payment processors

• Banks and financial institutions

• Fraud detection services

Communication Services:

• Email service providers (for sending transactional and marketing emails)

• SMS/text message service providers

• Customer support platforms

• Scheduling and calendar tools

Analytics and Marketing:

• Google Analytics and Google Ads

• Facebook and Instagram (Meta)

• Marketing automation platforms

• Advertising networks and platforms

• Social media management tools

Professional Services:

• Legal counsel

• Accountants and bookkeepers

• Business consultants

• Insurance providers

Other Service Providers:

• Cloud storage providers

• Backup and security services

• Customer relationship management (CRM) systems

• Project management tools

These service providers are contractually obligated to use your information only for the purposes of providing services to us and are required to protect your information.

4.2 Business Transfers

If we are involved in a merger, acquisition, financing, reorganization, bankruptcy, receivership, sale of assets, or transition of service to another provider, your information may be transferred as part of such a transaction. We will provide notice before your personal information is transferred and becomes subject to a different privacy policy.

4.3 Legal Requirements and Protection

We may disclose your information if required to do so by law or if we believe in good faith that such action is necessary to:

• Comply with legal obligations, court orders, or legal process

• Enforce or apply our Terms and Conditions and other agreements

• Protect the rights, property, or safety of Heartland Digital Studio, our clients, or others

• Detect, prevent, or address fraud, security, or technical issues

• Respond to claims that any content violates the rights of third parties

• Protect against legal liability

4.4 With Your Consent

We may share your information for any other purpose with your consent or at your direction.

4.5 Aggregate and De-Identified Information

We may share aggregate, anonymized, or de-identified information that cannot reasonably be used to identify you, for any purpose including research, marketing, and analytics.

5. THIRD-PARTY WEBSITES AND SERVICES

Our Site may contain links to third-party websites, applications, and services that are not owned or controlled by us, including:

• Social media platforms (Facebook, Instagram, LinkedIn, etc.)

• Partner websites

• Vendor and supplier websites

• Client websites we have created

• Third-party tools and resources

We are not responsible for the privacy practices of these third parties. When you click on links to third-party websites or use third-party services, you leave our Site and this Privacy Policy no longer applies. We encourage you to read the privacy policies of any third-party sites you visit.

5.1 GoHighLevel Platform

Our websites are built and hosted on the GoHighLevel platform, a third-party service. GoHighLevel's collection and use of information is governed by their own privacy policy, available at their website. We encourage you to review GoHighLevel's privacy practices.

5.2 Social Media Features

Our Site may include social media features, such as Facebook Like buttons, Share buttons, Instagram feeds, or other interactive mini-programs. These features may collect your IP address, which page you are visiting on our Site, and may set a cookie to enable the feature to function properly. Social media features are either hosted by a third party or hosted directly on our Site. Your interactions with these features are governed by the privacy policy of the company providing them.

6. DATA RETENTION

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

6.1 Retention Criteria

The criteria we use to determine retention periods include:

• Service Relationship: As long as you are an active client and for a reasonable period thereafter

• Legal Obligations: As required by tax, accounting, legal, or regulatory requirements (typically 7 years for business records)

• Dispute Resolution: For the duration of any disputes or potential disputes

• Business Purposes: As necessary for legitimate business interests, such as fraud prevention and enhancing security

• Consent Withdrawal: Until you withdraw consent for data processing requiring consent

6.2 Retention Periods by Category

Client Information:

• Active client data: Duration of relationship plus 7 years

• Project files and deliverables: 7 years after project completion

• Communication records: 7 years

• Payment and financial records: 7 years (legal requirement)

Marketing Information:

• Newsletter subscribers: Until you unsubscribe, then deleted within 30 days

• Marketing contacts: Until you opt out or after 2 years of inactivity

• Website analytics: Typically 26-38 months (Google Analytics default)

Account Information:

• Active accounts: Duration of account plus 1 year

• Inactive accounts: 3 years after last activity, then deleted

6.3 Deletion and Anonymization

When we no longer need your information, we will:

• Delete it from our systems

• Anonymize it so it can no longer identify you

• Securely destroy physical records

Some information may be retained in backup systems for a limited time before permanent deletion.

7. DATA SECURITY

We implement appropriate technical and organizational security measures designed to protect your personal information against unauthorized access, alteration, disclosure, or destruction.

7.1 Security Measures

Our security measures include:

Technical Safeguards:

• Encryption of data in transit using SSL/TLS protocols (HTTPS)

• Encryption of sensitive data at rest

• Secure password requirements and hashing

• Firewalls and intrusion detection systems

• Regular security updates and patches

• Secure backup systems

• Access controls and authentication mechanisms

Organizational Safeguards:

• Limited access to personal information on a need-to-know basis

• Confidentiality agreements with employees and contractors

• Employee training on data protection and security

• Incident response procedures

• Regular security assessments and audits

• Vendor security requirements and assessments

Physical Safeguards:

• Secure office facilities

• Controlled access to physical records

• Secure destruction of physical documents

7.2 Payment Security

We do not store complete credit card information on our servers. Payment information is processed through secure third-party payment processors (such as Stripe or PayPal) that comply with Payment Card Industry Data Security Standards (PCI DSS). We receive only confirmation of transactions and limited information necessary for accounting purposes.

7.3 Security Limitations

Despite our security measures, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security of your information. You use our Site and services at your own risk.

You are responsible for:

• Maintaining the confidentiality of your account credentials

• Notifying us immediately of any unauthorized access to your account

• Using strong, unique passwords

• Logging out of your account when finished

• Keeping your contact information current

7.4 Data Breach Notification

In the event of a data breach that affects your personal information, we will notify you in accordance with applicable law, typically within 72 hours of becoming aware of the breach. Notification will include:

• Description of the breach

• Types of information involved

• Steps we are taking to address the breach

• Recommendations for protecting yourself

• Contact information for questions

8. COOKIES AND TRACKING TECHNOLOGIES

We use cookies and similar tracking technologies to collect and store information about your interaction with our Site.

8.1 What Are Cookies?

Cookies are small text files placed on your device by websites you visit. They are widely used to make websites work more efficiently and provide information to site owners.

8.2 Types of Cookies We Use

Strictly Necessary Cookies:

• Essential for the Site to function properly

• Enable core functionality like security, network management, and accessibility

• Cannot be disabled without severely affecting Site functionality

Performance/Analytics Cookies:

• Collect information about how visitors use our Site

• Help us understand which pages are most popular

• Track error messages and loading times

• Allow us to improve Site performance

• Examples: Google Analytics

Functionality Cookies:

• Remember your preferences and choices

• Provide enhanced, personalized features

• Remember language preferences or region

• Enable interactive features

Targeting/Advertising Cookies:

• Track your browsing habits across sites

• Deliver relevant advertising based on your interests

• Limit the number of times you see an ad

• Measure advertising campaign effectiveness

• Examples: Facebook Pixel, Google Ads remarketing

8.3 Other Tracking Technologies

Web Beacons (Pixels): Small graphic images embedded in web pages or emails to track page views or email opens.

Local Storage: Technology that allows websites to store data locally on your device.

Session Storage: Temporary storage that persists only for the duration of your browser session.

8.4 Third-Party Cookies

We allow certain third parties to place cookies on our Site for analytics and advertising purposes. These third parties include:

• Google Analytics (analytics)

• Google Ads (advertising)

• Facebook Pixel (advertising and analytics)

• GoHighLevel (platform functionality)

• Other advertising and marketing partners

These third parties have their own privacy policies governing their use of information.

8.5 Managing Cookies

Browser Settings: Most web browsers allow you to control cookies through their settings:

• Block all cookies

• Block third-party cookies only

• Delete cookies after closing browser

• Receive notifications before cookies are placed

Disabling cookies may affect Site functionality and your user experience.

Opt-Out Options:

• Google Analytics: https://tools.google.com/dlpage/gaoptout

• Facebook: https://www.facebook.com/settings/?tab=ads

• Network Advertising Initiative: http://www.networkadvertising.org/choices/

• Digital Advertising Alliance: http://www.aboutads.info/choices/

Do Not Track Signals: Some browsers have a "Do Not Track" feature. Our Site does not currently respond to Do Not Track signals. We will update this policy if we implement Do Not Track compliance in the future.

8.6 Cookie Duration

Session Cookies: Temporary cookies deleted when you close your browser.

Persistent Cookies: Remain on your device for a set period (from days to years) or until you delete them.

9. YOUR PRIVACY RIGHTS AND CHOICES

Depending on your location, you may have certain rights regarding your personal information.

9.1 Access and Portability

You have the right to:

• Request access to the personal information we hold about you

• Receive a copy of your personal information in a structured, commonly used, machine-readable format

• Transmit your data to another service provider (data portability)

9.2 Correction and Update

You have the right to:

• Request correction of inaccurate or incomplete personal information

• Update your information by contacting us or updating your account settings

9.3 Deletion

You have the right to request deletion of your personal information, subject to certain exceptions such as:

• Completing transactions or providing services you requested

• Complying with legal obligations

• Detecting and resolving security incidents or fraud

• Exercising free speech or another legal right

• Internal uses reasonably aligned with your expectations

9.4 Marketing Communications Opt-Out

Email Marketing:

• Click the "unsubscribe" link at the bottom of any marketing email

• Contact us at [email protected]

• Update your preferences in your account settings

You cannot opt out of transactional or service-related emails (invoices, project updates, etc.) while using our services.

SMS/Text Messages:

• Reply "STOP" to any text message

• Contact us at [email protected]

Phone Calls:

• Request to be added to our internal Do Not Call list

9.5 Cookie Preferences

See Section 8.5 for information on managing cookie preferences.

9.6 Objection to Processing

You may object to processing of your personal information for:

• Direct marketing purposes (at any time)

• Legitimate interest purposes (with valid grounds)

9.7 Restriction of Processing

You may request restriction of processing in certain circumstances, such as:

• Contesting accuracy of information

• Processing is unlawful but you don't want deletion

• We no longer need the data but you need it for legal claims

9.8 Withdrawal of Consent

Where processing is based on consent, you may withdraw consent at any time. This does not affect the lawfulness of processing before withdrawal.

9.9 How to Exercise Your Rights

To exercise any of these rights, please contact us at:

Email: [email protected]
Phone: (989) 331-0707
Mail: 257 Gemstone Drive, Alma, Michigan 48801

We will respond to your request within 30 days. We may require verification of your identity before processing your request. You may designate an authorized agent to make requests on your behalf.

9.10 Right to Lodge a Complaint

If you believe we have violated your privacy rights, you have the right to lodge a complaint with:

• Our Company: Contact us directly first

• State Attorney General: Michigan Department of Attorney General

• Federal Trade Commission (FTC): www.ftc.gov

10. CHILDREN'S PRIVACY

Our Site and services are not directed to children under the age of 13 (or 16 in certain jurisdictions), and we do not knowingly collect personal information from children.

If you are under 13 years of age, please do not:

• Use or access our Site

• Provide any personal information to us

• Register for an account

If we learn that we have collected personal information from a child under 13 without verifiable parental consent, we will delete that information as quickly as possible. If you believe we might have information from or about a child under 13, please contact us immediately at [email protected].

Parents and Guardians: If you believe your child has provided us with personal information, please contact us so we can delete the information.

11. CALIFORNIA PRIVACY RIGHTS

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA) and other California privacy laws.

11.1 CCPA Rights

California residents have the right to:

Right to Know: Request disclosure of:

• Categories of personal information collected

• Sources of personal information

• Business or commercial purpose for collecting information

• Categories of third parties with whom we share information

• Specific pieces of personal information we have collected

Right to Delete: Request deletion of personal information we have collected, subject to certain exceptions.

Right to Opt-Out of Sale: We do not sell personal information as defined by the CCPA. If our practices change, we will update this Privacy Policy and provide an opt-out mechanism.

Right to Non-Discrimination: You have the right not to receive discriminatory treatment for exercising your CCPA rights.

11.2 California "Shine the Light" Law

California residents may request information about disclosure of personal information to third parties for their direct marketing purposes. We do not share personal information with third parties for their direct marketing purposes.

11.3 Exercising California Rights

To exercise CCPA rights, contact us at:

• Email: [email protected]

• Phone: (989) 331-0707

• Online form: [if available]

We will verify your identity before processing requests. You may designate an authorized agent to submit requests on your behalf.

Response Time: We will respond within 45 days (may extend to 90 days with notice).

11.4 Personal Information Categories (CCPA)

In the past 12 months, we have collected the following categories of personal information:

• Identifiers (name, email, phone, IP address)

• Commercial information (transaction history, purchase records)

• Internet/electronic activity (browsing history, interactions with Site)

• Geolocation data (general location based on IP address)

• Professional/employment information (company, role, business information)

• Inferences (preferences, characteristics, behavior)

We collect this information from:

• Directly from you

• Automatically through Site usage

• Third-party sources (business partners, data providers)

We use this information for purposes described in Section 3.

We share this information with categories described in Section 4.

12. INTERNATIONAL DATA TRANSFERS

Our business is based in the United States. If you access our Site or use our services from outside the United States, your information may be transferred to, stored, and processed in the United States or other countries where our service providers operate.

Data Protection Standards: The United States and other countries may not have the same data protection laws as your jurisdiction. However, we take steps to ensure your information receives an adequate level of protection.

Your Consent: By using our Site or services, you consent to the transfer of your information to the United States and other countries where we or our service providers operate.

EU/EEA and UK Residents: If you are located in the European Economic Area (EEA) or United Kingdom, we rely on the following legal mechanisms for international transfers:

• Standard Contractual Clauses approved by the European Commission

• Adequacy decisions

• Your explicit consent

For more information about international transfers, please contact us.

13. LEGAL BASIS FOR PROCESSING (GDPR)

If you are located in the European Economic Area (EEA) or United Kingdom, our legal basis for collecting and using your personal information depends on the information concerned and the context in which we collect it.

We process your personal information based on:

13.1 Contractual Necessity

Processing necessary to perform our contract with you or take steps before entering into a contract:

• Providing services you requested

• Processing payments

• Delivering projects and support

• Communicating about projects

13.2 Legitimate Interests

Processing necessary for our legitimate business interests:

• Improving our services and Site

• Marketing and promoting our services

• Preventing fraud and enhancing security

• Analyzing Site usage and trends

• Internal administration and business operations

We balance our legitimate interests against your privacy rights and will not process your information where your rights override our interests.

13.3 Legal Obligations

Processing necessary to comply with legal obligations:

• Tax and accounting requirements

• Responding to legal process

• Regulatory compliance

13.4 Consent

Processing based on your explicit consent:

• Marketing communications (where consent is required)

• Cookies (where consent is required)

• Other specific purposes for which we seek consent

You may withdraw consent at any time, though this will not affect the lawfulness of processing before withdrawal.

13.5 Vital Interests

In rare cases, processing necessary to protect vital interests of you or another person.

14. CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.

Notice of Changes:

• We will update the "Last Updated" date at the top of this Privacy Policy

• For material changes, we will provide prominent notice on our Site or via email

• Continued use of our Site or services after changes constitutes acceptance of the updated policy

Your Responsibility: We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

Previous Versions: You may request previous versions of this Privacy Policy by contacting us.

15. CALIFORNIA ONLINE PRIVACY PROTECTION ACT (CalOPPA)

CalOPPA requires us to disclose how we respond to web browser "Do Not Track" signals and whether third parties collect personally identifiable information about users' online activities.

Do Not Track: Our Site does not currently respond to Do Not Track signals from browsers.

Third-Party Collection: As described in Section 8, third parties may collect information about your online activities over time and across different websites when you use our Site.

16. NEVADA PRIVACY RIGHTS

Nevada residents have the right to opt out of the sale of certain covered information collected by website operators. We do not sell covered information as defined by Nevada law. If you are a Nevada resident and have questions, please contact us at [email protected].

17. CONTACT US

If you have questions, comments, or concerns about this Privacy Policy or our privacy practices, please contact us:

Nodikam, LLC dba Heartland Digital Studio

Email: [email protected]
Phone: (989) 331-8666
Mailing Address:
Available Upon Email Request

Business Hours: Monday - Friday, 9:00 AM - 5:00 PM EST

We will respond to your inquiry as promptly as possible, typically within 48 business hours for general inquiries and within 30 days for formal privacy rights requests.

18. DEFINITIONS

Personal Information: Information that identifies, relates to, describes, or could reasonably be linked to a particular individual or household.

Processing: Any operation performed on personal information, including collection, use, storage, disclosure, and deletion.

Service Providers: Third parties that process personal information on our behalf for business purposes.

De-identified Information: Information that cannot reasonably identify, relate to, describe, or be linked to a particular individual or household.

Aggregate Information: Information about groups or categories of users that does not identify individuals.

19. CONSENT AND ACCEPTANCE

By using our Site or services, you consent to this Privacy Policy and agree to its terms. If you do not agree with this Privacy Policy, please discontinue use of our Site and services.

Specific Consents:

• Email Communications: By providing your email address, you consent to receive emails from us as described in this Privacy Policy

• SMS/Text Messages: By providing your phone number and checking the consent box, you expressly consent to receive text messages as described in this Privacy Policy

• Cookies: By using our Site, you consent to our use of cookies as described in Section 8

• Data Processing: By using our services, you consent to the processing of your personal information as described in this Privacy Policy

Last Updated: December 23, 2024
Effective Date: December 23, 2024
Version: 1.0

© 2025 Nodikam, LLC dba Heartland Digital Studio. All rights reserved.

This Privacy Policy is subject to our Terms and Conditions, which are incorporated by reference. In the event of any conflict between this Privacy Policy and the Terms and Conditions, the Terms and Conditions shall prevail.