Legal
Privacy Policy
Last updated: June 7, 2026
This Privacy Policy explains how VMGDMA LLC d/b/a Voodoo Media Group (“Company,” “we,” “us”) collects, uses, and shares information in connection with the client portal at vmgdma.com (the “Portal”) and the hosting and related services we provide (the “Services”). It applies to account holders and visitors to the Portal. It does not govern the websites we host on your behalf; you are responsible for the privacy practices of the sites and applications you operate using the Services.
1. Information we collect
Account information. When you create an account or purchase Services, we collect your name, business name, email address, postal address, and login credentials.
Billing information. Payments are processed by Stripe. We receive transaction records, billing contact details, and a payment-method reference (such as the card brand and last four digits and a Stripe token). We do not collect or store full payment card numbers on our systems.
Support communications. When you contact us through the Portal contact form or at [email protected], we keep the messages, attachments, and related correspondence.
Server and usage logs. Our infrastructure records technical data such as IP addresses, request timestamps, resource usage, and error logs for security, billing, and operational purposes.
Cookies. The Portal uses only functional cookies, including session and authentication cookies and cookies set by WooCommerce and Stripe to operate the cart and checkout. We do not use third-party advertising or cross-site tracking cookies.
2. How we use information
We use the information to provide, maintain, and secure the Services; to process payments and manage subscriptions; to respond to support requests; to send transactional and account messages such as receipts, renewal reminders, and service notices; to enforce our terms and Acceptable Use Policy; and to comply with legal obligations. We do not send marketing email and do not sell personal information.
3. Payment processing
Card payments and recurring billing are handled by Stripe, Inc., a PCI-DSS Level 1 service provider, under its own terms and privacy policy. Stripe’s handling of payment data is described at stripe.com/privacy.
4. Hosting and your end users’ data
When we host your website, content you upload and data your site collects from its own visitors (your “End Users”) reside on infrastructure we manage. With respect to that data you are the controller and we act as your service provider and processor. We do not control, and are not responsible for, what data your site collects or how you use it. The data-processing terms in our Hosting Services Agreement govern that relationship.
5. Service providers and sub-processors
We share information only with providers that help us deliver the Services, and only as needed:
- DigitalOcean, LLC and The Constant Company, LLC (Vultr) — cloud infrastructure on which the Services run.
- Stripe, Inc. — payment processing and subscription billing.
- [TRANSACTIONAL EMAIL PROVIDER, IF ANY] — delivery of transactional and account email.
We do not sell or rent personal information. We may disclose information when required by law, to respond to lawful requests, to protect our rights and the security of the Services, or in connection with a merger, acquisition, or sale of assets.
6. Data retention
We retain account and billing records for as long as your account is active and thereafter as needed to comply with legal, tax, and accounting obligations. Hosted site data is retained while your subscription is active. After cancellation or termination, hosted data is kept for a 30-day grace period and then permanently deleted. An export of your site is available during the grace period as described in the Refund & Cancellation Policy and the Hosting Services Agreement.
7. Security
We use commercially reasonable administrative, technical, and physical measures to protect information, including encryption of data in transit. No system is perfectly secure, and we cannot guarantee absolute security. You are responsible for keeping your account credentials confidential and for the security of the software you run on the Services.
8. Your privacy rights
Depending on where you live, you may have rights to access, correct, delete, or obtain a copy of your personal information, and to appeal a denial of these rights. To make a request, contact [email protected]. We will verify your request and respond within the time required by applicable law. We do not sell personal information or share it for cross-context behavioral advertising, and we do not discriminate against you for exercising your rights.
California residents. Under the California Consumer Privacy Act as amended (CCPA/CPRA), you have rights to know, delete, correct, and limit the use of sensitive personal information, and the right not to be retaliated against. The categories of personal information we collect are described in Section 1.
9. Children
The Portal and Services are intended for businesses and are not directed to children under 16. We do not knowingly collect personal information from children.
10. Where data is processed
We operate in the United States and process information here. If you access the Portal from outside the United States, you understand that your information will be processed in the United States.
11. Changes to this policy
We may update this policy from time to time. We will post the updated version with a new “last updated” date and, where appropriate, notify you through the Portal or by email.
12. Contact
VMGDMA LLC d/b/a Voodoo Media Group · [BUSINESS ADDRESS] · [email protected]