Who We Are

NovaStudioHub Technologies LTD ("NovaStudioHub", "we", "us", "our") is a digital agency providing web development, SEO, social media management, email marketing, and e-commerce services to clients around the world. Our platform is available at novastudiohub.com.

If you have questions about this policy or your data, contact us at the details listed at the bottom of this page.

Information We Collect

We collect information in two ways: directly from you when you create an account or use our services, and automatically when you visit our platform.

Information you give us directly:

• Full name and email address when you register
• Password (stored securely using industry-standard hashing, never in plain text)
• Profile photo if you choose to upload one
• Professional information such as your role, years of experience, portfolio URL, skills, bio, and location (for freelancer accounts)
• Messages and files you send through our platform
• Requirements and project details you submit for orders
• Payment information processed through WooCommerce and Flutterwave (we do not store card numbers directly)
• Reviews and ratings you leave after completed projects

Information collected automatically:

• IP address and approximate location
• Browser type and operating system
• Pages you visit on our platform and how long you spend on them
• Device fingerprints used for new login detection (for your security)

Information from third parties:

• If you sign in with Google, we receive your name, email address, and profile photo from Google, nothing else

How We Use Your Information

We use your information to run the platform and deliver our services. Specifically:

• To create and manage your account
• To verify your identity and prevent fraudulent access
• To process orders and payments between clients and freelancers
• To send transactional emails such as order confirmations, OTP verification codes, and delivery notifications
• To display your public profile to potential clients if you are a freelancer
• To show your projects and ratings on gig listings
• To detect suspicious logins from unrecognized devices
• To respond to your support requests
• To improve the platform based on how it is used

We do not use your information for advertising. We do not sell your data. We do not profile you for marketing purposes.

How We Share Your Information

We do not sell your personal data to anyone, ever. We share your data only in the following limited situations:

• With other platform users as part of normal service delivery. For example, when a client places an order, their name is visible to the freelancer handling the project. When a freelancer creates a gig, their public profile information is visible to all visitors.
• With payment processors. Flutterwave and WooCommerce receive payment details necessary to process transactions. Their own privacy policies govern how they handle that data.
• With email delivery services. We use third-party SMTP providers to deliver transactional emails on our behalf. They process email addresses only to route your messages.
• If required by law. We will disclose information if required to do so by a valid legal order, court request, or government authority.

File Uploads and Storage

Profile photos, project deliverables, and message attachments are stored in a protected directory on our servers. These files are not accessible to the public through direct URL access. They are served only through authenticated requests that verify you are the intended recipient or owner.

Gig cover images may be publicly visible as part of service listings.

Cookies and Tracking

We use cookies to keep you logged in across sessions (a standard WordPress session cookie) and to remember your preferences. We do not use advertising cookies or third-party tracking pixels.

If you sign in with Google, Google's own cookies are set by their sign-in service as part of their authentication flow.

You can disable cookies in your browser settings, but doing so will mean you cannot stay logged in to the platform.

Data Retention

We keep your account data for as long as your account is active. If you request deletion of your account, we will remove your personal information within 30 days, except where we are legally required to retain certain transaction records.

Order history and financial records may be retained for up to seven years for accounting and legal compliance purposes, in line with standard business record requirements.

Your Rights

You have the following rights over your personal data:

• Access. You can request a copy of the personal data we hold about you.
• Correction. You can update your name, profile photo, bio, and other details from your account settings at any time.
• Deletion. You can request that we delete your account and associated personal data.
• Portability. You can request a copy of your data in a machine-readable format.
• Objection. You can object to how we process your data in certain circumstances.

To exercise any of these rights, contact us using the details at the bottom of this page. We will respond within 30 days.

Security

We take reasonable and appropriate technical steps to protect your data. These include:

• Passwords stored using bcrypt hashing, never in plain text
• HTTPS enforced across the entire platform
• Protected file storage inaccessible via direct URLs
• Rate limiting on login attempts and sensitive actions
• New device verification via one-time codes for suspicious logins
• All database queries use parameterized statements to prevent injection attacks

No system is completely immune to security incidents. If a breach occurs that affects your personal data, we will notify you promptly in line with applicable law.

Children

Our platform is not intended for anyone under the age of 18. We do not knowingly collect personal data from minors. If we learn that we have done so, we will delete that data immediately. If you believe a minor has created an account on our platform, contact us right away.

Changes to This Policy

We may update this policy from time to time. When we do, we will update the date at the top of this page. If changes are material, we will notify registered users by email. Continuing to use the platform after changes are posted means you accept the updated policy.