PRIVACY POLICY

Last Updated: June 24, 2026

This Privacy Policy describes how SYED MUHAMMED ZIAUR RAHMAN, an individual operating as a sole trader under the trade name SYED RAHMAN (“we,” “us,” or “our”), collects, uses, and discloses your personal information when you visit our website or purchase our design services, including subscription plans and Sprint Week engagements (the “Services”).

By using our Website or purchasing our Services, you agree to the collection and use of information in accordance with this policy. Your use of the Services is also governed by our Terms of Service.


1. WHO WE ARE & LAWFUL BASIS

Syed Muhammed Ziaur Rahman, trading as Syed Rahman, is a sole trader based in the United Kingdom and is the “data controller” responsible for your personal information. Our handling of personal data is governed by the UK GDPR and the Data Protection Act 2018. We process your data on the following lawful bases: performance of a contract (to deliver and manage your engagement); our legitimate interests (to operate, secure, and improve our business); compliance with legal obligations (such as tax and accounting); and your consent (for example, for non-essential cookies). You can contact the data controller at connect@syedzr.com.

2. INFORMATION WE COLLECT

We only collect personal information that you voluntarily provide to us or that is automatically captured when you navigate our website.

  • Personal Identification Information: Name, email address, company name, and billing address.

  • Design Assets and Communications: Any text, branding assets, images, or other files you upload to our project management tools (such as Trello) or share with us via email and messaging platforms (such as X/Twitter and Telegram) to facilitate design requests.

  • Usage Data: IP addresses, browser types, operating systems, and website interaction metrics (collected via standard server logs or basic web analytics).

3. HOW WE USE YOUR INFORMATION

We use the collected data for the following purposes:

  • To provide, maintain, and manage your active design engagement, whether a subscription plan or a Sprint Week.

  • To communicate with you regarding your design requests, revisions, and account updates.

  • To process payments and manage invoices.

  • To comply with applicable tax, legal, and accounting obligations.

4. THIRD-PARTY PAYMENT PROCESSING (STRIPE)

We do not store, view, or directly collect your financial or credit card information.

All payment transactions are handled entirely by our third-party payment processor, Stripe, Inc. Your payment information is provided directly to Stripe, whose use of your personal information is governed by their own Privacy Policy. Stripe adheres to the standards set by PCI-DSS as managed by the PCI Security Standards Council.

You can view Stripe’s Privacy Policy directly at: https://stripe.com/privacy

5. SHARING AND DISCLOSURE OF DATA

As a sole trader, we value your privacy and do not sell, trade, or rent your personal information to third parties. We only share information with third parties in the following limited circumstances:

  • Service Providers: Trusted third-party tools used to run our business (e.g., website hosting, payment processing, project management via Trello, design tools such as Figma, scheduling via our booking calendar, and communication platforms such as X/Twitter and Telegram). These tools are bound by strict privacy standards.

  • Legal Requirements: If required to do so by law, court order, or government authority to comply with legal obligations or protect our rights and personal safety.


6. INTERNATIONAL DATA TRANSFERS

Some of our service providers (such as Stripe, Trello, Figma, and X/Twitter) are based outside the United Kingdom, including in the United States. Where your personal data is transferred outside the UK, we rely on appropriate safeguards required by UK data protection law — such as the UK International Data Transfer Agreement (or the UK Addendum to the EU Standard Contractual Clauses), or a UK adequacy decision — to keep your data protected.

7. DATA RETENTION

We keep your personal data only for as long as necessary for the purposes set out in this policy. Project and communication records are retained for the duration of our engagement, while billing and tax records are kept for at least six (6) years to meet UK accounting and tax obligations. When data is no longer required, we securely delete or anonymise it.

8. COOKIES AND TRACKING TECHNOLOGIES

We use cookies and similar technologies on our Website. Strictly necessary cookies (for example, keeping you logged into your client portal) are essential and always active. Non-essential cookies, such as analytics, are only set with your prior consent, which you provide through our cookie consent banner. You can change or withdraw your consent at any time, and you can also set your browser to refuse cookies, though doing so may prevent some parts of the Service from working.

9. DATA SECURITY

The security of your data is highly important to us, but remember that no method of transmission over the Internet is 100% secure. While we use industry-standard commercial means to protect your personal information (and rely on Stripe for bank-grade financial security), we cannot guarantee its absolute security.

10. CHILDREN’S PRIVACY

Our Services are not directed to anyone under the age of 18. We do not knowingly collect personally identifiable information from children. If we discover that a child under 18 has provided us with personal information, we will delete it immediately from our servers.

11. YOUR PRIVACY RIGHTS

Under UK data protection law (the UK GDPR and the Data Protection Act 2018) you have the right to access your personal data; to request correction of inaccurate data; to request erasure; to restrict or object to processing; and to request data portability. To exercise any of these rights, please contact us using the details below. You also have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO) at ico.org.uk if you believe your data has been handled unlawfully.

12. CHANGES TO THIS PRIVACY POLICY

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the “Last Updated” date at the top. You are advised to review this Privacy Policy periodically for any changes.

13. CONTACT US

If you have any questions about this Privacy Policy, please contact:

SYED MUHAMMED ZIAUR RAHMAN dba SYED RAHMAN

Email: connect@syedzr.com