Legal

🔥 1. Introduction

Who We Are
‍

Welcome to Blabb Studio—a design-first, attitude-always agency that crafts pixel-perfect UI/UX, branding, and visual magic for brands who refuse to be basic. From web and mobile to full-blown digital identities, we’re here to turn scrolls into clicks and curiosity into conversions.

‍

Why This Privacy Policy Exists
‍

This Privacy Policy explains how we collect, use, store, and protect your personal information when you interact with us—whether you’re browsing our website, filling out a spicy little form, or working with us on a full-blown digital makeover. It’s your right to know what’s happening behind the curtain—and our duty to keep it tight, transparent, and secure.

‍

What It Covers
‍

This policy applies to:

• Visitors to our website
• Clients (past, present, and future)
• Newsletter subscribers, form-fillers, and giveaway participants
• Anyone who slides into our DMs, inbox, or project pipeline

We cover the who, what, where, and why of data collection—including how long we keep it, how we protect it, and when we (rarely) share it.

‍

Consent (AKA: By Being Here, You Agree)
‍

By using our website, engaging with our services, or submitting your information to us, you agree to the terms of this Privacy Policy. If anything feels off or unclear, don’t ghost us—reach out at privacy@blabb.studio and we’ll happily clear things up.

‍
‍

📚 2. Definitions

To keep things spicy and clear, here’s what we mean when we say…

‍

“Personal Data”
‍

Information that can be used to identify you directly or indirectly—like your name, email, business name, job title, social handles, or any project details you give us.

‍

“Usage Data”
‍

Techy stuff we collect automatically when you visit our site or engage with our content. This might include your IP address, browser type, pages visited, time on site, clicks, scrolls, and device info. Basically, the digital breadcrumbs you leave behind.

‍

“Cookies”
‍

Not the chewy kind. These are small text files stored on your device to help our site remember who you are and how you like your experience. They make things faster, smarter, and more tailored—especially when it comes to loading content or running analytics.

‍

“Data Controller”
‍

That’s us—Blabb Studio. We’re the ones who decide how and why your data is used. We take that responsibility seriously (even if we wear fun fonts and joke around a lot).

‍

“Service Providers”
‍

Third-party tools and partners we work with to run this studio like a well-oiled, well-designed machine. Think platforms like Notion, Xero, Webflow, Slack, and Google Analytics. They only access your data to help us do what we do—and only under strict data handling agreements.

‍

“You” or “User”
‍

If you’re reading this, we’re talking about you. Whether you’re a curious scroller, a client with a dream, or a brand about to glow up—this policy applies to you.

‍
‍

📥 3. Data We Collect

3.1. Information You Provide
‍

When you engage with us—whether you’re saying hello, booking a project, or handing over assets so we can work our magic—you’re giving us some details. Here’s what that includes:

‍

Contact Forms
‍

When you fill out a form on our website (like “Talk to Blabbio” or “Book a Discovery Call”), we collect:

• Your name
• Email address
• Company name
• Social handles (if you include them)
• Project details or general spicy ideas
  ‍

Client Questionnaires & Onboarding Docs
‍

If you’re working with us, we’ll ask you to fill out a questionnaire to help us understand your business, brand goals, preferences, and target audience. These details help us craft design that doesn’t just look good—but works hard.

‍

Uploaded Files
‍

Logos, brand guidelines, photos, mood boards—we love ‘em all. Anything you upload to us is stored securely and used only to deliver your project.

‍

Payment & Billing Info
‍

When it’s time to talk money, your payment is processed securely through trusted providers like Xero and Stripe. We never store full credit card details ourselves, but we do keep track of invoices, billing history, and other necessary finance info for compliance and record-keeping.

‍

3.2. Information We Collect Automatically
‍

Even if you don’t fill out a form or drop us a line, we still learn a little about how you vibe with our site. Here’s what gets logged behind the scenes:

‍

IP Address, Browser, Device & Interactions
‍

We collect technical data through analytics tools (like Google Analytics) when you visit our site. This includes:
‍

• Your IP address (your digital postcode)
• Browser type and version
• Device type (mobile, desktop, tablet—yes, we see you)
• Pages you visit and for how long
• Clicks, scrolls, and other juicy engagement data

This info helps us understand what’s working and what’s not, so we can improve your experience and keep things blazing fast and beautifully functional.

‍

Cookies & Tracking Preferences
‍

We use cookies to make your time on our site smoother, faster, and smarter. Cookies help remember your preferences, serve relevant content, and track performance. You can turn off cookies in your browser settings—but just a heads up, some parts of our site might get a little cranky without them.

‍

We do not use cookies to stalk you across the internet. We’re not creepy—just curious.

‍

3.3. Third-Party Sources
‍

Sometimes we don’t get the tea directly from you—we find it through other (very public) sources. Here’s what that includes:

‍

Social Media
‍

If you follow, like, tag, DM, or comment on our posts across platforms like Instagram, LinkedIn, or Dribbble, we may collect:

• Your public profile name
• Messages or mentions
• Engagement data

We use this to respond, engage, and (if you're lucky) slide into your inbox with something custom or cool.

‍

Public Directories
‍

We sometimes source leads or check out potential collaborators via trusted public platforms—like Behance, LinkedIn, Clutch, or Dribbble. If your info is publicly listed and aligns with our outreach efforts, we might say hello. But don't worry—we play nice, and we won’t use your data in any shady way.

‍

‍

🎯 4. How We Use Your Data

We only use your data for legit, business-related reasons. No fluff, no funny business—just the stuff that helps us do what we do best (make you look amazing). Here's how your info gets put to work:

‍

Service Delivery & Collaboration
‍

We use your info to manage your project like pros—from strategy to final handoff. This includes setting up workflows in Notion, Figma, Slack, and other project tools to keep things moving.

‍

Communication
‍

Got a question? Need a proposal? Want to schedule a call with Blabbio? We use your details to reply, follow up, and make sure you’re never left on “read.”

‍

Payments & Billing
‍

Your billing info helps us issue invoices, process payments (via Xero or Stripe), and stay legally compliant with the ATO and other authorities.

‍

Marketing & Updates
‍

Occasionally, we’ll send you spicy updates, new service launches, or tips via email. But we’re not clingy—there’s always an unsubscribe link if you want to ghost us.

‍

Portfolio Showcasing
‍

With your permission, we may feature your finished project in our portfolio, social media, or award submissions (because if it’s 🔥, we wanna show it off). You can always opt out—just let us know.

‍

Website Performance & Analytics
‍

We use cookies and analytics to keep our website smooth, fast, and helpful. That means tweaking designs, improving content, and optimising your experience based on how people interact with the site.

‍
‍

⚖️ 5. Legal Grounds for Processing

We don’t collect your data just for fun—we only process it when we have a lawful reason to do so under applicable privacy laws, including the Australian Privacy Act 1988 (Cth) and, where applicable, the EU General Data Protection Regulation (GDPR). Here’s what that means:

‍

Consent

‍

In many cases, we’ll ask for your clear and informed consent before collecting or using your data—especially for marketing communications or case study features. You can withdraw your consent at any time (just email us or hit “unsubscribe”).

‍

Performance of a Contract

‍

If you’ve entered into an agreement with us—say, for branding, UX, or animation services—we’ll use your data to deliver that contract, manage the project, and communicate with you throughout the process. This includes handling proposals, invoices, timelines, and feedback.

‍

Legitimate Interests

‍

We may process your data when it’s necessary for our legitimate business interests, provided it doesn’t override your rights or freedoms. For example:
‍

• Improving our website experience
• Sending project updates
• Building relationships with potential clients
• Showcasing publicly available work for promotional purposes

We always balance our interests with your right to privacy.

‍

Legal Obligations

‍

Some data must be retained or processed to comply with legal and regulatory obligations, including taxation, financial record-keeping, and dispute resolution.

‍

6.1 What Cookies We Use
‍

We use a mix of first-party and third-party cookies to power and improve your experience. These may include:
‍

• Essential Cookies – These are required for basic site functionality. Without them, parts of our site just won’t work.
• Session Cookies – Temporary cookies that remember your actions during a single visit. They vanish once you close your browser.
• Analytics Cookies – We use tools like Google Analytics to understand how people interact with our site—pages viewed, time spent, bounce rates, etc.
• Advertising & Remarketing Cookies – These help us run targeted ads through platforms like Facebook, Instagram, or Google. (Don’t worry—we’re not selling your soul to the algorithm.)

6.2 Why We Use Them
‍

We use cookies to:

• Remember your preferences and session activity
• Improve our website’s performance and content
• Track the effectiveness of campaigns and promotions
• Serve relevant ads (only if you’ve opted in, of course)

Cookies help us create a better experience, and they let us make strategic design decisions based on real data—not just vibes.

‍

6.3 How You Can Manage Cookies
‍

You're in control. You can:
‍

• Disable cookies via your browser settings
• Clear existing cookies anytime
• Opt-out of analytics tracking by installing Google's Analytics Opt-out Add-on

Please note: Disabling some cookies may affect how certain parts of the site function—so things might look a little... off.
‍

‍

🔄 7. Data Sharing & Disclosure

We treat your data like we treat our design files—with respect, security, and purpose. We don’t sell, rent, or casually trade your personal info. But in order to run a smooth, secure, and functional studio, a few parties do get access—under strict conditions.

‍

7.1. Who We Share With

‍

We only share your data with trusted parties who help us operate Blabb Studio efficiently and securely:

‍

Internal Team & Contractors

‍

Our core team and vetted contractors may access your data as part of delivering your project. Everyone signs NDAs and follows our internal privacy protocols.

‍

Third-Party Services

‍

We use top-tier tools to manage projects, communication, billing, and deliverables. These include:
‍

• Notion, Slack, Figma (for project tracking & feedback)
• Xero, Stripe (for invoices and payment processing)
• Mailchimp (for occasional emails, if you opt in)
• Webflow, Framer (for web builds and prototypes)

Access is limited to what’s necessary—and only for the purpose of supporting your work.

‍

Analytics & Marketing Platforms

‍

Tools like Google Analytics help us monitor performance, improve usability, and serve content that matters. These platforms may collect anonymised usage data for reporting purposes.

‍

7.2. When We Might Disclose
‍

There are rare cases where we may need to disclose your personal information outside of the above:

‍

Legal Compliance

‍

If required by law (e.g. under a subpoena, court order, or valid request by a government authority), we may disclose your data to comply with legal obligations.

‍

Protection of Rights & Safety

‍

We may disclose your information if we believe it’s necessary to:

• Protect the rights, property, or safety of Blabb Studio, our clients, or others
• Detect, prevent, or respond to fraud, technical issues, or security threats
  
  ‍

🔐 8. Data Storage & Security

We take data security seriously—because your trust is everything (and we’re not in the business of breaking hearts or GDPR).

‍

8.1. Where and How We Store Data

‍

Your data is securely stored using cloud-based services that align with industry standards for safety, reliability, and compliance. This includes platforms such as:

‍

• Microsoft OneDrive (asset delivery & backups)
• Notion, Figma, Slack (project collaboration)
• Xero, Stripe (billing & financials)

These platforms may store data on servers located in Australia, the United States, or the European Union, depending on the provider.

‍

8.2. Security Measures

‍

To protect your personal information, we implement a layered approach to security that includes:
‍

• SSL encryption on our website and communication tools
• Access controls and user permissions within project tools
• Contractor NDAs and internal privacy protocols
• Secure password management for all sensitive accounts
• Regular audits of file access and usage

While no system is 100% bulletproof, we actively monitor, update, and improve our systems to minimise risks and prevent unauthorised access or misuse.

‍

8.3. Retention Periods

‍

We keep your data only for as long as needed—no hoarding here. Here's a breakdown:
‍

• Client project data: Up to 2 years after final delivery (for case studies, portfolio references, or re-engagement support)
• Billing and tax records: 5–7 years (as required under Australian law)
• Marketing data (e.g., newsletter subscribers): Until you opt out or withdraw consent
• Inquiry or contact form data: 12 months, unless converted to a project

When data is no longer required, we securely delete or anonymise it.
‍

‍

🧑⚖️ 9. Your Rights

You’ve got rights—and we’re here to honour them. Whether you’re in Australia, the EU, or beyond, you can expect transparency and control over your personal data.

‍

9.1. Right to Access and Correction

‍

You can request a copy of the personal data we hold about you—and if something’s wrong or outdated, you have the right to correct it.

‍

9.2. Right to Erasure ("Right to be Forgotten")

‍

In certain circumstances, you can ask us to delete your personal data—for example, if it’s no longer necessary for the purpose we collected it, or if you withdraw consent. We’ll comply unless there’s a legal reason not to (like tax obligations).

‍

9.3. Right to Restrict or Object to Processing

‍

You can object to how we use your data (e.g., for marketing), or request that we limit how we process it—especially if you believe the data is inaccurate or being used unlawfully.

‍

9.4. Right to Data Portability

‍

You may request that we provide your personal data in a structured, commonly used format so it can be transferred to another service provider, where feasible.

‍

9.5. Right to Withdraw Consent

‍

If you’ve previously given us permission to use your data (for example, to feature your project in our portfolio or to receive spicy emails from Blabbio), you can withdraw that consent at any time. Just send us an email—we’ll make it happen.

‍

9.6. Right to Lodge a Complaint

‍

If you’re concerned about how we’ve handled your data, you can raise a complaint with your local authority. In Australia, that’s the:

Office of the Australian Information Commissioner (OAIC)
📍 www.oaic.gov.au
📞 1300 363 992

‍

If you're based outside of Australia, you can reach out to your regional data protection authority.

‍
‍

🌍 10. International Transfers

We’re proudly based in Australia—but like most modern studios, we use global tools to power our work and store your data. That means your information might be transferred, stored, or processed outside your home country, including in regions like the United States, European Union, or United Kingdom.

‍

10.1. Where Your Data Goes

‍

We use platforms like:

‍

• Notion, Slack, Figma (for collaboration)
• Webflow, Framer (for live builds)
• Stripe, Xero (for payments and accounting)
• Google Analytics (for site insights)

These platforms may store or process data in multiple jurisdictions.

‍

10.2. Compliance with International Laws

‍

We follow the Australian Privacy Principles (APPs) under the Privacy Act 1988 (Cth) and, where applicable, the EU General Data Protection Regulation (GDPR). If you’re located in the European Economic Area (EEA), we ensure your data is handled in accordance with GDPR standards.

‍

10.3. How We Safeguard Transfers

‍

When transferring data internationally, we ensure appropriate safeguards are in place. This may include:
‍

• Standard Contractual Clauses (SCCs) for GDPR compliance
• Using service providers certified under international frameworks (like the EU-U.S. Data Privacy Framework, where applicable)
• Limiting access to essential personnel only
• Encrypting data both in transit and at rest

By using our services or submitting your data to us, you consent to these international transfers under the terms of this policy.

‍
‍

🚫 11. Children’s Privacy

Blabb Studio is a professional creative agency—and our services are strictly for grown-ups building brands, not babies building block towers.

‍

11.1. Not for Under-18s
‍

Our website, services, and marketing are not intended for individuals under the age of 18. We do not knowingly collect or store personal data from anyone under 18 years of age.

‍

11.2. What Happens If We Collect It by Accident
‍

If we become aware that we’ve accidentally received personal information from a minor without verified parental or guardian consent, we will:
‍

• Immediately delete the information from our records
• Notify the individual or guardian (if contact is possible)

If you believe a child has submitted personal data to us, please get in touch at privacy@blabb.studio and we’ll handle it swiftly and responsibly.

‍
‍

🔗 12. Third-Party Links

Sometimes we’ll link out to other websites, platforms, or tools—whether that’s showcasing a client’s live site, referencing design inspiration, or recommending a service.

‍

12.1. We Don’t Control Other Domains

‍

We’re only responsible for what happens on our own site. Once you click a third-party link, you're on their turf—not ours.

‍

We can’t guarantee how those external websites collect, use, or protect your data. That includes services like:
‍

• Social media platforms (e.g. Instagram, LinkedIn)
• Portfolio platforms (e.g. Behance, Dribbble)
• Payment or scheduling tools (e.g. Stripe, Calendly)

12.2. Check Their Privacy Policies
‍

Before submitting personal information on a third-party site, we recommend reviewing their privacy policy—just to be safe (and smart).

‍
‍

🚨 13. Data Breaches

We take security seriously—but if something ever goes wrong, we’re ready to act fast, transparently, and responsibly.

‍

13.1. Our Response Protocol

‍

If we suspect or confirm a breach involving personal data (unauthorised access, loss, or misuse), we’ll immediately:
‍

• Investigate the scope and impact
• Contain the issue and prevent further risk
• Notify relevant authorities if required by law (e.g. OAIC under the Notifiable Data Breaches Scheme)

‍

13.2. User Notification

‍

If your data is involved in a breach that’s likely to result in serious harm, we’ll notify you:
‍

• Promptly and directly (via email or other means)
• With details about what happened, what data was affected, and what steps we’ve taken
• Along with recommendations on what actions you can take to protect yourself

Our aim is always to be transparent and proactive—because your trust is everything.

‍
‍

📅 14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect legal, operational, or design-relevant changes. When we do, we’ll make it clear and easy to track.

‍

14.1. How You’ll Know
‍

• The latest version will always be published on our website at blabb.studio/privacy
• We’ll update the “Effective Date” at the top of the policy
• If the changes are significant (like new rights, features, or disclosures), we’ll notify you directly via email or a prominent website notice

We recommend checking in occasionally so you’re always up to speed.

‍

14.2. Version Control

‍

Major policy updates will include a version number or summary of changes. Prior versions may be archived and made available on request.

‍
‍

📬 15. Contact Us

Have a question? Need to exercise your rights? Want to make a privacy-related request (or just say hey)? We’ve got you.

‍

15.1. Email Us

‍

For all privacy concerns, data requests, or complaints, contact our team at:
✉️ Email: privacy@blabb.studio

‍

15.2. Write to Us

‍

📍 Mailing Address:
Blabb Studio
411 Kiewa Street
Albury, NSW 2640
Australia

‍

15.3. Lodging a Complaint

‍

If you’re not satisfied with our response, you can lodge a complaint with your local data protection authority. In Australia, that’s the:

‍

Office of the Australian Information Commissioner (OAIC)
Website: oaic.gov.au
Phone: 1300 363 992