Last updated: September 18, 2025

This Privacy Policy describes how Partner Desk 360 ("we", "us", "our" or "Partner Desk 360") collects, uses, discloses, and protects personal information when you use our Service, act on behalf of clients for whom we perform services, or interact with us in other ways. It also explains your privacy rights and the legal protections available to you. By using our Service you agree to the collection and use of information in accordance with this Privacy Policy.

1. Definitions
Account: a unique account created for you to access our Service or parts of our Service.
Affiliate: an entity that controls, is controlled by, or is under common control with a party.
Company: Partner Desk 360 (referred to as "We", "Us", or "Our").
Cookie: small files placed on your device by a website, containing browsing information.
Country: California, United States.
Device: any device that can access the Service such as a computer, a cellphone or a tablet.
Personal Data: any information relating to an identified or identifiable individual.
Service: the website, partnerdesk360.com and related services.
Service Provider: third-party companies or individuals employed by the Company to facilitate the Service.
Usage Data: data collected automatically, generated by use of the Service or its infrastructure (page visits, IPs, etc.).
Client Data: any personal data provided to or created by Partner Desk 360 on behalf of a client for processing in connection with services we provide to that client.

2. Controller / Processor
Partner Desk 360 is the data Controller for data we collect for our own operations and may act as a Processor when handling Client Data on behalf of our clients. Roles and responsibilities will be described in client agreements and, when applicable, in a separate Data Processing Addendum (DPA).

3. Information We Collect
We may collect and process the following categories of personal data:
- Contact information: name, company, email address, phone number, mailing address.
- Account data: username, password hashes, preferences, account settings.
- Communications data: messages, support tickets, call logs (when provided), SMS logs (if you use our messaging services).
- Payment and transactional data: billing details, invoices (when applicable).
- Usage data and device information: IP address, browser type and version, pages visited, timestamps, device identifiers, operating system.
- Client Data: any personal data provided by our clients which we process under their instructions.
- Cookies and tracking data: analytics identifiers (e.g., analytics cookies), pixel tracking, and similar technologies.

4. How We Collect Data
We collect data directly when you provide it (forms, account registration, support requests), automatically (log files, cookies, analytics), and from third parties (payment processors, analytics providers, partners, and clients who provide Client Data).

5. Use of Personal Data (Purposes)
We use personal data for the following purposes:
- To provide and maintain the Service, including customer support and account management.
- To perform contracts with you or our clients (e.g., process client instructions, send messages on a client's behalf).
- For billing, invoicing and payment processing.
- To send updates, administrative messages and marketing communications where you have consented or under lawful bases permitted by applicable law.
- To analyze and improve our Service and develop new features.
- To ensure security, prevent fraud and abuse, and to comply with legal obligations.
- For business transfers (merger, sale or other corporate transaction) where user data may be transferred as an asset.

Legal bases (where applicable, e.g., under GDPR):
- Performance of a contract
- Consent where required
- Legitimate interests (e.g., security, service improvement)
- Legal obligations

6. Processing Client Data (Service Provider)
When we act as a Processor for Client Data:
- We process Client Data only according to the client's documented instructions and our contractual agreements.
- Client Data is used solely for the purposes described in the client agreement.
- We implement reasonable technical and organizational measures to protect Client Data.
- We will not use Client Data for our own marketing or commercial purposes without explicit client consent.
- A Data Processing Addendum (DPA) is available upon request and will include details about subprocessors, security measures, data return/deletion, and international transfers.

7. Sharing and Disclosure
We may share personal data with:
- Service providers and subprocessors (hosting providers, payment processors, analytics providers, messaging providers) who process data on our behalf.
- Affiliates and business partners where necessary to provide the Service.
- Third parties to comply with laws, court orders, or valid government requests.
- In connection with a business transaction (merger, acquisition, sale of assets).
- With your consent or at your direction.

8. International Data Transfers
Data may be processed in regions outside your jurisdiction. When transferring data internationally, we implement appropriate safeguards (e.g., standard contractual clauses, contractual protections) to protect personal data as required by applicable law.

9. Data Retention
We retain personal data only as long as necessary for the purposes outlined in this Privacy Policy, or as required by law. For Client Data, retention is governed by your contract with the client and our DPA. When retention is no longer necessary, we securely delete or anonymize personal data.

10. Security
We use industry-standard administrative, physical, and technical safeguards to protect personal data. No method of transmission or electronic storage is 100% secure; we cannot guarantee absolute security, but we strive to protect data appropriately.

11. Your Rights
Depending on your jurisdiction, you may have rights including:
- Access: request a copy of personal data we hold about you.
- Correction: request correction of inaccurate or incomplete data.
- Deletion: request deletion of personal data (subject to legal exceptions).
- Restriction: request restriction of processing.
- Portability: request transfer of your data to another service provider in a commonly used format.
- Objection: object to processing based on legitimate interests.
- Withdraw consent: withdraw consent at any time for processing that required consent.
To exercise rights, contact us at admin@partnerdesk360.com. We may require verification and may respond within applicable statutory timeframes.

12. California Residents (CCPA/CPRA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), including the right to request disclosure of categories of personal information we collected, the purposes for collecting it, and whether we sold or shared it. Partner Desk 360 does not sell personal information for monetary consideration. We may share information for business purposes as described in this policy. To submit a verifiable consumer request, contact admin@partnerdesk360.com.

13. GDPR (EU) Notices
If you are located in the European Economic Area, our legal basis for processing personal data includes the performance of a contract, consent, legitimate interests, and legal obligations. You have the right to lodge a complaint with a supervisory authority if you believe our processing of your personal data infringes GDPR. Contact admin@partnerdesk360.com for assistance.

14. Cookies and Tracking Technologies
We use cookies, web beacons, pixel tags, and similar technologies to collect usage and analytics information, to remember preferences, and to support advertising and marketing features. You can control cookies via your browser settings and opt-out tools where applicable. A cookie banner and cookie settings page should be provided on our website.

15. Messaging and Marketing (SMS / Email)
If you use our messaging services or we send messages on behalf of clients, we will only send marketing or promotional messages where lawful and with the proper opt-in/consent. You may opt out of marketing communications at any time by following unsubscribe instructions in the message or contacting admin@partnerdesk360.com. When sending SMS/MMS in the U.S., clients and Partner Desk 360 must comply with TCPA, A2P 10DLC registration requirements and carrier rules when applicable.

16. Children's Privacy
Our Service is not intended for children under 13. We do not knowingly collect personal data from children under 13. If we learn we have collected such data without parental consent, we will take steps to delete it.

17. Links to Other Websites
We may link to third-party websites that have their own privacy practices. We are not responsible for their content or policies; review their privacy notices independently.

18. Changes to this Privacy Policy
We may update this policy periodically. We will post the updated policy on our website and update the "Last updated" date. For material changes, we may notify users by email or a prominent notice on our website.

19. Contact
If you have questions about this Privacy Policy or wish to exercise your rights, contact us at: 

Partner Desk 360
Email: admin@partnerdesk360.com
Website: https://partnerdesk360.com

Disclaimer: This Privacy Policy template is provided for general informational purposes and does not constitute legal advice. Consult with qualified counsel to ensure compliance with applicable laws and industry-specific requirements.