Welcome to the DevOps Crowd website and portal, operated by DevOps Crowd ("we," "us," or "our"). We value your privacy and are committed to protecting your personal information. This Privacy Policy explains how we collect, use, and share your information when you use our services. Our practices comply with major privacy laws, including the GDPR (Europe), the Data Protection Act 2018 (UK), the Privacy Act 1988 (Australia), PIPEDA (Canada), and the CCPA (United States).

At DevOps Crowd, we take your privacy seriously. This Privacy Policy outlines how we handle your personal information when you visit our website (www.devopscrowd.com) or use our platform and portal (collectively referred to as the "Services"). Our Services help Shopify merchants create, manage, and pay for custom software projects, including custom Shopify apps, headless commerce solutions, and SaaS projects. For detailed terms, please refer to our DevOps Crowd Terms of Service and other user agreements.

We respect your privacy and do not sell or market your personal information to third parties. We collect personal information about visitors to our website and users of our Services, including end-users who interact with these services.

By using our website or Services, you agree to the terms outlined in this Privacy Policy and consent to the collection, use, and disclosure of your personal information as described herein.

1. Overview

1.1. Children's Privacy

Our Services are not designed for children under 13. We do not knowingly collect personal information from children. If we discover that we have received personal information from a child under 13, we will delete it promptly. If you believe we might have information from a child under 13, please contact our Privacy Officer at privacy@devopscrowd.com.

1.2. Users Outside of Canada

DevOps Crowd operates as a Canadian company. If you use our Services from outside Canada or the United States, your personal information may be processed in the country where it was collected and in other countries, including the United States and Canada. These countries may have different data protection laws than your home country. By using our Services, you consent to this transfer and processing of your data. Specific terms for users in the UK or EEA are outlined in Section 9.1.

1.3. Legal Basis for Processing

We only process personal information as needed for the purposes described in this Privacy Policy. Below, we describe the types of personal information we collect and how it is used. Your personal information will not be used for any other purpose without your consent. You have the right to withdraw your consent at any time, but this may affect your ability to continue using our Services.

2. Scope

This Privacy Policy is specific to DevOps Crowd and does not cover the practices of companies we do not own or control, individuals we do not employ, or third-party technology, including third-party hardware and software ("Third-Party Technology"). You are responsible for ensuring that you have the necessary permissions and consents for any personal information you provide to us. Our users must confirm that they have the appropriate legal rights or have obtained consents from their end-users whose personal information they share with DevOps Crowd. This allows us to use, disclose, and process the personal information as outlined in this Privacy Policy.

3. Changes to Our Privacy Policy

We may update this Privacy Policy periodically. We recommend checking this policy whenever you use our Website or Services to stay informed of any changes. The “Last Updated” date at the top will indicate the most recent revision. If we make significant changes, we may notify you by posting a notice on our Website or, if we have your contact information, by sending you an email.

6. Cookies on the Website

To enhance your experience on our Website, we use cookies. Cookies are small files placed on your computer’s hard drive by your web browser. They help us understand whether you have visited our Website before. If you navigate to a third-party website through our links, those third parties may also use cookies.

Cookies do not personally identify you on their own; they only recognize your browser. You remain anonymous to DevOps Crowd unless you choose to identify yourself by registering for an account. There are two types of cookies: session cookies and persistent cookies. Session cookies last only for the duration of your online session and disappear when you close your browser or turn off your computer. Persistent cookies remain on your device even after you close your browser or shut down your computer, containing information like a unique browser identifier.

DevOps Crowd uses Clerk as our authentication system, which utilizes cookies and other technologies to identify users. Clerk employs session cookies with encrypted information to uniquely identify you while you are logged in, enabling us to process your transactions and requests. These session cookies verify your identity after logging in and are necessary for using our application. We also use preference cookies to recognize you as a previous visitor or user of our Services. These cookies are carefully secured to protect your information. Additionally, we use security cookies for security purposes and advertising cookies for targeted advertising. For more details on targeted advertising, visit the Network Advertising Initiative’s educational page at Learn more about how online advertising works.

5. Information We Collect

DevOps Crowd collects certain information from visitors and users of our Website and Services. This includes internet addresses, which are logged to help diagnose technical issues, administer our Website, and continuously improve our Services. We also track and analyze non-identifiable, aggregate usage data to understand how our visitors and users interact with our Services. This information may be shared with third parties for analytical purposes.

Our third-party partners, such as Sentry, Clerk, Convex, and Vercel, may use technologies like clear gifs (also known as Web Beacons/Web Bugs), images, and scripts to manage content on our Website more effectively. We use Pipedrive as our CRM and Apollo for cold outreach. These technologies do not link collected data to personal information of our users or their end-users.

6. Cookies on the Website

To provide a seamless and personalized experience on our Website, we use cookies. Cookies are small data files that your web browser places on your device's hard drive. They help us determine whether you've visited our Website before. When you follow a link to a third-party website, those third parties may also use cookies.

Cookies alone do not identify you personally; they only recognize your browser. Unless you choose to identify yourself by creating an account, you remain anonymous to DevOps Crowd. Cookies can be session-based, which means they last only for the duration of your visit and disappear when you close your browser, or persistent, which means they stay on your device even after you've closed your browser, helping us recognize you as a returning visitor.

For user management and authentication, we use Clerk. Clerk handles the sessions and employs cookies and other technologies to securely identify users. Session cookies with encrypted information are used to confirm your identity while you're logged in, enabling us to process your transactions and requests effectively. These cookies are essential for the operation of our application. Additionally, we use preference cookies to remember you as a previous visitor or user, enhancing your experience on our Services. We ensure these cookies are securely managed to protect your data. We also utilize security cookies to maintain security and advertising cookies for targeted marketing purposes. For more information on how targeted advertising works, please visit the Network Advertising Initiative’s educational page: How online advertising works.

7. How We Use Information We Collect

We collect personal information to provide and improve our Services, market our products, enhance our Website, and recruit staff. Here’s how we use the information we gather:

Users

• To fulfill our contractual obligations to provide you with our Services.
• To create and manage your account as a user in our systems.
• To communicate with you regarding ongoing projects.
• To send you updates and information about our products and services if you have opted to receive them.

Website Users

• To manage and improve our Website and its internal operations, including troubleshooting, data analysis, testing, research, and statistical purposes.
• To ensure the security and safety of our Website.
• To assess the effectiveness of our advertising efforts and deliver relevant ads to you.
• To provide you and other users with suggestions and recommendations about services that may be of interest.

Suppliers

• To fulfill our contractual obligations with you.
• To communicate regarding projects you are working on for us.
• To manage and oversee the delivery of your services to us.

8. Who We Share Your Information With

We may share your personal information with selected business partners, suppliers, and subcontractors to fulfill contractual obligations with you or them. These partners may include our web hosting provider and IT service providers.

We utilize several sub-processors and service providers to assist in delivering our Website and Services. Additionally, we may disclose your personal information to third parties under the following circumstances:

• If we sell or purchase any business or assets, we may disclose your personal information to the prospective buyer or seller of such business or assets.
• If a third party acquires us or a substantial portion of our assets, information about our users and their end-users will be one of the transferred assets.
• If required to comply with legal obligations or to enforce our terms of use and other agreements, or to protect the rights, property, or safety of DevOps Crowd, our users, or others. This includes sharing information with other organizations for fraud protection and credit risk reduction.

9. Data Storage

Data Locality

The personal information we collect from you may be transferred to and stored in Canada, which is outside the European Economic Area (EEA). Canada has an adequacy decision from the European Commission, ensuring suitable safeguards for personal data. Your data may also be transferred to and stored in the United States, which also has an adequacy decision from the European Commission for data protection.

9.1. General Data Protection Regulation (GDPR) Privacy Rights

If you are a resident of the EEA and use our Services, the GDPR provides you with specific rights regarding your personal data. These include the right to access, correct, amend, delete, or restrict the use of your personal data. This section applies specifically to EEA residents.

(A) GDPR Principles. When the GDPR applies, our legal bases for processing your data include:

• The right to be informed: You have the right to clear, transparent, and easily understandable information about how we use your personal data and your rights.
• The right of access: You can request access to the personal data we hold about you to ensure we are using it in compliance with the law.
• The right to rectification: You are entitled to have your personal data corrected if it is inaccurate or incomplete.
• The right to erasure: Also known as 'the right to be forgotten', you can request the deletion of your personal data.
• The right to restrict processing: You can ask us to 'block' or suppress further use of your personal data.
• The right to data portability: You have the right to obtain and reuse your personal data for your own purposes across different services.
• The right to withdraw consent: You can withdraw your consent to our processing of your personal data at any time.
• The right to object to direct advertising: You can object to our use of your personal data for direct marketing purposes.
• The right to lodge a complaint: If you are unsatisfied with how we handle your personal data, you can lodge a complaint with your national data protection authority.
• Disclosure to third parties: We may disclose your personal data to third parties only for lawful purposes, such as fulfilling contractual obligations or where you have given consent.

(B) Data Transfers. Your personal data may be transferred to and stored by our third-party service providers outside the EEA, including in the United States and Canada. These transfers are necessary to provide our Services, fulfill contractual obligations, or where legally required. We take appropriate steps to ensure that your data remains protected and that your rights are preserved.

(C) Exercising Your Rights. To exercise your rights under the GDPR, you can contact us using the details provided below. We may need additional information to verify your identity and location. If you are an employee of one of our service providers, please contact them directly.

Subprocessors

We use third-party service providers (subprocessors) to help deliver our Services. Below is a table detailing the subprocessors we use, their location, the services they provide, and the types of data they process.

9.2. California Privacy Rights

Under the California Consumer Privacy Act (CCPA), California residents have specific rights regarding their personal data. These include the right to know what personal data is collected, the purposes for which it is used, and the right to access, delete, or opt-out of the sale of their personal data. DevOps Crowd does not sell personal data. California residents can exercise their rights by contacting us using the details provided below. Verification of your identity may be required.

10. Data Retention

The duration for which we retain your information varies based on the type of data and its purpose. We will keep your information no longer than necessary or permitted. Certain data may be retained for legitimate business purposes, such as analysis of aggregated, non-personally-identifiable data, account recovery, or as required by law. All retained personal information will remain subject to this Privacy Policy.

11. Your Data Rights

You have the following rights concerning your personal information:

• The right to access the personal information we hold about you.
• The right to request that we rectify any inaccurate personal information about you without undue delay.
• The right to request that we erase your personal information in circumstances where it is no longer necessary for us to retain it, or if you have withdrawn your consent to processing.
• The right to object to the processing of your personal information, including for profiling or direct marketing purposes.
• The right to request your personal information in a portable format or, where technically feasible, to have it transferred to another provider, provided it does not result in the disclosure of personal information related to other individuals.
• The right to request a restriction of the processing of your personal information.
• The right to challenge our personal information handling policies and practices.
• The right to withdraw your consent at any time, although any processing carried out before withdrawal remains lawful.

To exercise any of these rights, please contact us at privacy@devopscrowd.com. If you are a resident of the European Union, you may also lodge a complaint with your local data protection authority. The contact information for local Supervisory Authorities in each European country can be found here.

12. Additional Information, Requests, and Questions

For questions regarding this Privacy Policy or our privacy practices, please contact our Data Protection Officer at privacy@devopscrowd.com.