Dashboard

Privacy Policy

Effective Date: February 26, 2026 Last Updated: February 26, 2026

Dash Dolphin is a product of Caboodle Media Ltd. Co. (“Caboodle Media,” “we,” “us,” or “our”). We operate the Dash Dolphin platform, which provides instant SMS lead notification services for small and medium-sized businesses (the “Service”).

This Privacy Policy explains what information we collect, how we use it, who we share it with, and what choices you have. By using Dash Dolphin, you agree to the practices described in this Policy. If you do not agree, please do not use the Service.

We are committed to being transparent and straightforward. If something isn’t clear, reach out to us at the contact information at the end of this document.

1. Information We Collect

1.1 Information You Provide Directly

When you create an account or use the Service, we collect:

  • Name and business name
  • Email address
  • Phone number(s) for SMS delivery
  • Billing information (processed by Stripe; we do not store full card numbers)
  • Business website URL and form connection settings
  • Communications you send us (support tickets, emails)

1.2 Information We Collect Automatically

When you use the Service or visit our website, we automatically collect:

  • Log data: IP address, browser type and version, operating system, pages visited, time and date of visits, referring URLs
  • Device information: device type, screen resolution, language settings
  • Usage data: features used, form connections created, notifications sent, time spent in the dashboard
  • Cookie and tracking data: see Section 5 for full details

1.3 Information Received from Third Parties

Our Service processes website form submissions on your behalf. When one of your customers fills out a form on your website, we receive the notification email that your form builder generates. This may include:

  • Customer name and contact information (as entered by the customer)
  • Message content, service requests, or other details the customer submitted
  • Timestamp and source form identifier

This information is processed solely to deliver your SMS alert. We do not use your customers’ form submission data for our own marketing or analytics purposes, and we do not sell it.

2. How We Use Your Information

We use the information we collect to:

  • Create and manage your account
  • Deliver SMS alerts and process form submissions
  • Generate AI-powered summaries of form inquiries
  • Filter spam and junk submissions from reaching your phone
  • Send you transactional communications (account confirmations, billing receipts, product updates)
  • Send you marketing communications, if you have opted in (you may opt out at any time)
  • Provide customer support and respond to your inquiries
  • Detect, investigate, and prevent fraud, abuse, or security incidents
  • Improve and develop our Service through usage analytics
  • Comply with legal obligations

We do not sell your personal information. We do not use your information for automated decision-making that produces legal or similarly significant effects on you.

3. How We Share Your Information

3.1 Service Providers (Subprocessors)

We share information with trusted third-party service providers who help us operate the Service. These parties are contractually bound to protect your data and may only use it to perform services on our behalf:

  • Stripe — payment processing and billing
  • Twilio — SMS delivery
  • OpenAI — AI-powered form summary generation
  • Google — website and product analytics
  • SendGrid — transactional and marketing email delivery
  • Cloud hosting and infrastructure providers — data storage and application hosting

3.2 Business Transfers

If Caboodle Media is involved in a merger, acquisition, asset sale, or similar transaction, your information may be transferred as part of that deal. We will notify you of any such change via email or prominent notice on our website before your information is transferred or becomes subject to a different privacy policy.

3.3 Legal Requirements

We may disclose your information if we believe in good faith that doing so is necessary to:

  • Comply with applicable law, regulation, or legal process
  • Enforce our Terms of Service
  • Protect the rights, property, or safety of Caboodle Media, our users, or the public
  • Detect or prevent fraud, security incidents, or illegal activity

3.4 With Your Consent

We may share your information with third parties in other circumstances when we have your explicit consent to do so.

4. Data Retention

We retain your account information and lead history for as long as your account is active, and for a reasonable period after account closure to comply with legal obligations, resolve disputes, and enforce our agreements.

Specifically:

  • Account data: retained for the duration of your subscription plus 90 days after cancellation, after which it is deleted or anonymized
  • Lead history and form submission data: retained for 12 months by default; you may delete individual leads from your dashboard at any time
  • Billing records: retained for 7 years as required by applicable tax and financial regulations
  • Support communications: retained for 2 years

Upon request, we will delete or anonymize your personal information sooner, subject to legal retention requirements. To request deletion, contact us at the address in Section 9.

5. Cookies and Tracking Technologies

We use cookies and similar tracking technologies on our marketing website and dashboard. Here is what we use and why:

Essential cookies: Required for the Service to function. These include session authentication, security tokens, and user preference settings. You cannot opt out of these without losing access to the Service.

Analytics cookies: We use Google to understand how visitors use our website and how users interact with the dashboard. This data is aggregated and used to improve the product. You can opt out of Google Analytics by using the Google Analytics Opt-out Browser Add-on.

Marketing cookies: We may use cookies to measure the effectiveness of our advertising campaigns. These cookies track whether visitors came from a specific ad or referral source.

You can control or disable cookies through your browser settings. Note that disabling certain cookies may affect the functionality of the Service. A cookie consent banner is presented on first visit to our website and provides granular opt-out controls.

6. Your Rights and Choices

6.1 All Users

Regardless of where you live, you have the right to:

  • Access the personal information we hold about you
  • Correct inaccurate information
  • Request deletion of your account and associated data
  • Opt out of marketing communications at any time (via unsubscribe link in any email or by contacting us)
  • Request a copy of your data in a portable format

6.2 California Residents (CCPA / CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA):

  • Right to Know: You may request a full disclosure of the categories and specific pieces of personal information we have collected about you, the sources from which it was collected, the business purpose for collecting it, and the categories of third parties with whom we have shared it.
  • Right to Delete: You may request that we delete personal information we have collected about you, subject to certain legal exceptions.
  • Right to Correct: You may request that we correct inaccurate personal information we hold about you.
  • Right to Opt Out of Sale/Sharing: We do not sell personal information. We do not share personal information for cross-context behavioral advertising.
  • Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights.

To exercise your California rights, submit a request to the contact information in Section 9. We will respond within 45 days. If we need additional time, we will notify you and may extend the response period by an additional 45 days.

6.3 European Economic Area, UK, and Switzerland (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, the General Data Protection Regulation (GDPR) and applicable local laws apply to our processing of your personal data.

Our legal bases for processing your personal data include:

  • Contract performance: processing necessary to provide the Service you have subscribed to
  • Legitimate interests: analytics, fraud prevention, product improvement, and marketing to existing customers — where our interests do not override your fundamental rights
  • Legal obligation: where processing is required to comply with applicable laws
  • Consent: for marketing communications and non-essential cookies (you may withdraw consent at any time)

Under GDPR you have the right to: access, rectification, erasure (“right to be forgotten”), restriction of processing, data portability, objection to processing, and the right to lodge a complaint with a supervisory authority.

To exercise your GDPR rights, contact us at the information in Section 9. We will respond within 30 days.

Where we transfer personal data outside the EEA (for example, to US-based service providers), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission.

7. Data Security

We implement reasonable and appropriate technical and organizational measures to protect your information from unauthorized access, disclosure, alteration, and destruction. These measures include:

  • Encryption of data in transit (TLS/HTTPS) and at rest
  • Access controls and role-based permissions for internal staff
  • Regular security reviews and vulnerability assessments
  • Incident response procedures

No method of transmission over the Internet or electronic storage is 100% secure. While we work to protect your information, we cannot guarantee its absolute security. In the event of a data breach that affects your rights or freedoms, we will notify you and applicable regulators as required by law.

8. Children’s Privacy

The Service is intended for business use by individuals 18 years of age or older. We do not knowingly collect personal information from children under 13 (or under 16 in the EEA). If we become aware that we have collected personal information from a child under the applicable age, we will delete that information promptly. If you believe we may have collected information from a child, please contact us immediately.

9. Contact Information

If you have questions, concerns, or requests related to this Privacy Policy or our data practices, please contact us:

Caboodle Media, LLC Attn: Privacy / Data Requests Email: info@dashdolphin.com Mailing Address: 6834 Cantrell Road, Suite #1235, Little Rock, AR 72207

We aim to respond to all privacy-related inquiries within 30 days.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, the Service, or applicable law. When we make material changes, we will:

  • Update the “Last Updated” date at the top of this document
  • Notify you by email (at the address associated with your account) at least 14 days before the changes take effect
  • Post a notice on our website or dashboard

Your continued use of the Service after the effective date of any updated Privacy Policy constitutes your acceptance of the changes. If you do not agree to the updated Policy, you must stop using the Service and may request deletion of your account.