Privacy Policy

Logg ("Logg", "we", "us") provides infrastructure for collecting, moderating, and publishing verified testimonials and video proof. The service is operated in connection with dgi.vc. For privacy enquiries, contact us using the details at the end of this policy.

This policy applies to:

• Visitors to our marketing website and legal pages.
• Customers who purchase a space license, create an account, and use the Logg dashboard.
• End users who submit text or video testimonials through public collection links or embedded widgets operated by our customers.

When you submit a testimonial, the organization that owns the collection channel is the data controller for that submission. Logg acts as a processor on their instructions, except where we must process data to operate, secure, or improve the platform.

Depending on how you interact with Logg, we may process:

• Account data — name, email address, authentication identifiers, and workspace or space configuration you provide after purchase.
• Billing data — payment is handled by Stripe. We receive limited billing metadata (such as customer ID, payment status, and plan purchased), not full card numbers.
• Submission content — text testimonials, optional profile photos, star ratings, job titles, social links, custom fields, and video recordings uploaded by submitters.
• Verification data — if email verification is enabled on a channel, we process the submitter email address and one-time codes to confirm ownership before acceptance.
• Technical data — IP address, browser type, device information, timestamps, and diagnostic logs needed to secure and operate the service.
• Communications — messages you send to support or transactional emails we send (receipts, verification, service notices).

We use personal data to:

• Provide, maintain, and authenticate access to Logg.
• Process one-time license purchases and upgrades.
• Encode, store, and deliver video and text submissions.
• Display approved content on public pages and embeds you configure.
• Prevent abuse, fraud, and security incidents.
• Comply with law and enforce our Terms of Service.
• Improve reliability and product quality using aggregated analytics.

We do not sell personal data. We do not use submission content to train public AI models.

Where the GDPR or UK GDPR applies, we rely on: (a) contract — to deliver the service you purchased; (b) legitimate interests — security, fraud prevention, and product improvement, balanced against your rights; (c) consent — where required for optional features or marketing cookies; and (d) legal obligation — where we must retain or disclose data by law.

We use trusted subprocessors that process data on our behalf, including:

• Stripe — payment processing.
• Google Firebase — authentication, database, and file storage.
• Bunny.net Stream — video encoding, storage, and delivery.
• Resend (or equivalent) — transactional email delivery.
• Vercel (or equivalent hosting) — application hosting and edge delivery.

Each provider is bound by contractual obligations appropriate to their role. Their own privacy policies govern their direct collection of payment or account data where applicable.

We retain account and space data for as long as your license is active and for a reasonable period afterward to resolve disputes, backups, and legal obligations. Submission content remains until deleted by the space owner or until the space is removed. Video assets may persist in backup systems for a limited period after deletion. You may request deletion subject to the rights section below.

Depending on your location, you may have rights to access, correct, delete, restrict, or port your personal data, and to object to certain processing. Submitters should contact the organization that collected their testimonial first; we will assist controllers where required. Account holders may contact us directly. We respond within applicable statutory timeframes.

We and our subprocessors may process data in the United States and other countries. Where required, we implement appropriate safeguards such as Standard Contractual Clauses or equivalent mechanisms.

We apply administrative, technical, and organizational measures including encryption in transit, access controls, and least-privilege access for staff. No method of transmission or storage is completely secure; please use a strong password and protect your account credentials.

Logg is not directed at children under 16. We do not knowingly collect personal data from children. If you believe a child has submitted data through a collection link, contact us and we will assist with removal.

We may update this policy from time to time. Material changes will be posted on this page with an updated date. Continued use after changes constitutes acceptance where permitted by law.

Questions: privacy@logg.page

See also our Terms of Service.