What data does DSM.promo collect?

When you sign up for the Zero OS Beta Program, DSM.promo collects your name, email address, company name, and phone number. We also collect anonymized usage data such as pages visited and browser type. We do not sell personal data and process information only as needed to deliver and improve the platform.

How does DSM.promo handle data privacy?

DSM.promo follows privacy-by-design principles with data minimization, encryption at rest and in transit, strict access controls, and compliance with GDPR, CCPA, and HIPAA requirements. Users can request data export or deletion at any time.

Does DSM.promo share data with third parties?

DSM.promo does not sell user data. Data is shared only with service providers necessary to operate the platform (such as cloud hosting), and only under strict data processing agreements. All third-party providers meet the same security and privacy standards.

Privacy Policy

Last updated: March 5, 2026

In short: DSM.promo collects minimal data (name, email, usage analytics), never sells it, encrypts everything at rest and in transit, and deletes data within 30 days of account closure. GDPR, CCPA, and HIPAA compliant.

Data Controller

DSM.promo ("we", "us", "our") is the data controller responsible for your personal information. We are based in Chicago, Illinois, United States.

What We Collect

When you sign up for the Zero OS Beta Program, we collect:

Your name
Email address
Company name
Phone number

This information comes directly from the beta signup form on this website.

We also collect usage data automatically, including pages visited, time on site, browser type, and device information. This data is anonymized and cannot identify you personally.

How We Use Your Data

We use your information to:

Operate and manage the Zero OS Beta Program
Send you updates about the beta and new features
Request your feedback to improve the product
Respond to your questions and support requests
Analyze usage patterns to improve the website (anonymized data only)

We process your data under the following lawful bases (GDPR Article 6): your consent when signing up, our legitimate interest in improving the product, and contractual necessity to deliver the beta program.

We Do Not Sell Your Data

We will never sell, rent, or share your personal information with third parties for their own marketing purposes. Your data stays with us. This applies under both GDPR and CCPA/CPRA regulations.

Third-Party Processors

We use the following third-party services to operate the platform. Each operates under a data processing agreement that meets our security and privacy standards:

Google Analytics — anonymous website usage analytics
Cloudflare — content delivery, DDoS protection, and DNS
Twilio — SMS notifications for beta participants who opt in
Google reCAPTCHA Enterprise — spam and bot protection on forms. As of April 2, 2026, Google processes reCAPTCHA data as a data processor under our instructions, not as an independent data controller. Data collected includes IP address and browser characteristics for spam detection only. See Google's Cloud Data Processing Addendum.

We do not transfer personal data to any other third parties.

Cookies and Analytics

We use essential, functional (reCAPTCHA), and analytics (Google Analytics) cookies. No advertising or tracking cookies. We obtain consent before placing non-essential cookies, as required by GDPR and the ePrivacy Directive.

For full details on each cookie (name, purpose, duration, third-party provider), how consent works, and how to manage your preferences, see our Cookie Policy.

You can change your preferences at any time via Cookie Settings in the footer.

Data Security

We protect your information with the following measures:

All data is encrypted in transit (TLS 1.3) and at rest (AES-256)
Access to personal data is restricted to authorized team members only
We maintain security monitoring, incident response procedures, and regular audits
Our infrastructure is protected by WAF, zero-trust access controls, and DDoS mitigation

Data Retention

We retain your personal data only as long as necessary to operate the beta program. When you close your account or request deletion, we remove all your personal data within 30 days. Anonymized analytics data may be retained indefinitely as it cannot identify you.

Your Rights

Depending on your location, you have the following rights regarding your personal data:

Access — request a copy of the data we hold about you
Correction — request that we fix inaccurate information
Deletion — request that we delete your personal data
Portability — receive your data in a machine-readable format
Objection — object to processing based on legitimate interest
Withdraw consent — withdraw consent at any time without affecting prior processing

Under CCPA/CPRA, California residents also have the right to know what data is collected, request deletion, and opt out of the sale of personal information (we do not sell data). To exercise any of these rights, contact us using the information below.

We respond to all data requests within 30 days.

Breach Notification

In the unlikely event of a data breach that affects your personal information, we will notify affected users within 72 hours as required by GDPR, and follow all applicable state and federal notification requirements.

Children's Privacy

Our services are not directed at individuals under 16. We do not knowingly collect data from children. If we discover that we have collected data from a child, we will delete it promptly.

Changes to This Policy

We may update this policy as the beta program evolves or as regulations change. If we make significant changes, we will notify you by email. Continued use of the beta program after changes are posted means you accept the updated policy.

Contact Us

If you have questions about this privacy policy or want to exercise your data rights, reach out at or call +1-464-927-6290.

You may also write to us at: DSM.promo, Chicago, IL, United States.

If you are in the EU and are not satisfied with our response, you have the right to lodge a complaint with your local data protection authority.