Your privacy matters. Here's how we collect, use, and protect your information.
Last updated: March 2026
When you interact with The Decorators Association (TDA) website, register for services, or apply for certification, we may collect the following personal information:
When you make purchases or pay membership dues through our website, payment information is processed securely by third-party payment processors. We do not store full credit card details. Payment processing is handled exclusively by:
These processors are PCI-DSS compliant and maintain their own privacy policies, which govern the handling of payment data.
For members pursuing TDA certification, we collect:
We automatically collect certain information about your interactions with our website:
If you contact us via email, phone, or through our website contact forms, we collect:
TDA uses the information collected for the following purposes:
Note: TDA will not use your information for automated decision-making or profiling that produces legal or similarly significant effects without your explicit consent.
Under the General Data Protection Regulation (GDPR), TDA relies on the following legal bases for processing your personal data:
Where you have explicitly opted in to receive marketing communications, newsletters, or other non-essential communications, we process your data based on your clear and affirmative consent. You may withdraw this consent at any time by unsubscribing from emails or updating your account preferences.
To provide membership services, process certification exams, manage your account, and fulfill purchases, we must process personal information to perform our contractual obligations to you. This includes billing, delivering services, and maintaining your directory listing.
TDA processes data based on legitimate interests, including:
We may process personal data when required by law, such as:
In rare cases, we may process data to protect vital interests, such as responding to emergencies or safety concerns.
Balancing Test: When relying on legitimate interests, we conduct a balancing test to ensure our interests do not override your fundamental rights and freedoms. You have the right to object to legitimate interest-based processing at any time.
Cookies are small text files stored on your device that allow websites to recognize you and remember your preferences. TDA uses cookies to enhance your experience, maintain security, and analyze site performance.
These cookies are necessary for basic site functionality and cannot be disabled:
We use Google Analytics to understand how visitors use our site. This helps us improve functionality and user experience. Analytics cookies collect:
Google Analytics data is anonymized and aggregated. For more information, visit policies.google.com/privacy.
These cookies enhance your experience by remembering:
If you consent, we may use cookies to:
Most web browsers allow you to control cookies through settings:
Important: Disabling essential cookies may impair website functionality. We recommend keeping essential cookies enabled while managing other cookie types according to your preferences.
Third-party services integrated with our website (payment processors, analytics providers) may set their own cookies. We do not control these cookies. Please review their privacy policies for more information.
TDA does not sell, trade, or rent your personal information to third parties for marketing purposes. However, we may share data in the following limited circumstances:
When you make a purchase, we share necessary payment information with:
These processors only receive the information necessary to complete transactions and maintain PCI compliance.
We may share limited data with service providers who assist in operating our website and providing services:
All service providers are contractually bound to use your data only for the purpose of providing services and maintaining confidentiality.
If you have opted to be listed in the TDA member directory, your business information (name, business name, location, contact information) will be published on our website and may be distributed in print directories, subject to your consent and privacy preferences.
We may share aggregated, de-identified, and anonymized data for:
This data cannot identify you individually and poses no privacy risk.
We may disclose your information when required by law or to protect TDA's rights:
In the event of a merger, acquisition, bankruptcy, or other business transaction, your personal data may be transferred as part of the transaction. We will provide notice of any such change and any choices you may have regarding your data.
No Sale of Data: TDA does not sell your personal information to data brokers, advertisers, or other commercial entities. We are committed to data minimization and only share information when necessary and lawful.
TDA retains personal data only as long as necessary to fulfill the purposes for which it was collected, or as required by law. Specific retention periods are:
While you maintain an active TDA membership, we retain your account information to provide services. This includes contact information, membership status, and directory listing preferences.
After membership expires or is terminated, we retain account data for three (3) years to:
Certification data is retained for five (5) years minimum from the date of certification award. This includes:
Extended retention (up to 10 years) may apply for audit, legal, or regulatory compliance purposes.
Payment and transaction records are retained for seven (7) years in compliance with tax regulations and financial audit requirements.
Email, chat, and support communications are typically retained for two (2) years after the last interaction, unless longer retention is required for legal or operational reasons.
Records of your consent to marketing communications are retained for as long as necessary to respect your preferences and comply with anti-spam regulations.
Google Analytics data is typically aggregated and retained for 26 months by Google. Individual session data is not retained long-term.
Upon request, we will delete your personal data subject to legal retention requirements. Some data may be retained in anonymized, aggregated form. Legal holds may prevent deletion if required for ongoing disputes or investigations.
Right to Erasure: You can request deletion of your account and personal data at any time, subject to legal retention obligations. See Section 7 for instructions.
If you are located in the European Union or a jurisdiction with GDPR protections, you have the following rights regarding your personal data:
You can request a copy of all personal data we hold about you, including what data we collect, how we use it, and who we share it with.
You can request correction of inaccurate or incomplete personal data. Contact us to update your information anytime.
You can request deletion of your personal data ("right to be forgotten"), except where we have legal obligations to retain it.
You can limit how we process your data while we verify its accuracy or establish legal basis for processing.
You can request your personal data in a portable, machine-readable format for transfer to another service provider.
You can object to processing based on legitimate interests or for direct marketing purposes at any time.
If processing is based on your consent, you can withdraw that consent at any time without affecting past processing.
You have the right to lodge a complaint with your local data protection authority if you believe we've violated your rights.
To exercise any of these rights, please submit a written request to:
We will respond to your request within thirty (30) days. We may request verification of your identity to ensure we disclose data only to the rightful individual. Certain requests may be subject to reasonable limitations where required by law.
If you believe TDA has not properly responded to your request or violated your GDPR rights, you have the right to lodge a complaint with your national data protection authority.
If you are a California resident, the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) grant you the following rights:
You can request what categories of personal information we collect, sources, purposes of collection, and entities we share data with.
You can request deletion of personal information we've collected from you, except where exemptions apply (e.g., legal obligations, fraud prevention).
You can request correction of inaccurate personal information we hold about you.
You can request that we not sell or share your personal information. TDA does not currently sell personal information for monetary consideration.
We will not discriminate against you for exercising your privacy rights through differential pricing, service denial, or reduced quality of service.
You can limit how we use your sensitive personal information to the purposes necessary to perform services you've requested.
To submit a CCPA/CPRA request, contact us:
We will verify your identity and respond within forty-five (45) calendar days. We will not charge a fee unless your request is excessive or unfounded, in which case we may charge a reasonable fee.
A legally authorized agent can submit requests on your behalf. We may require written consent and identity verification of both you and the agent.
No Sale of Personal Information: TDA does not sell your personal information to third parties for monetary compensation. If we begin sharing data with third parties in ways that constitute "selling" or "sharing" under CCPA/CPRA, we will provide a "Do Not Sell or Share My Personal Information" link on our homepage.
The Decorators Association serves members and partners across 100+ countries worldwide. Our website, services, and member directory operate on a global scale.
TDA is based in Butler, Pennsylvania, USA. Personal data collected through our website is processed and stored in the United States. This includes data from EU residents and other jurisdictions.
When we transfer data internationally (particularly from the EU to the US), we rely on the following mechanisms to ensure adequate protection:
TDA uses Standard Contractual Clauses (as approved by the European Commission) in agreements with service providers and partners to ensure data transfers comply with GDPR requirements and provide equivalent protection to EU data protection standards.
While the US is not deemed to have adequate data protection equivalent to the EU, TDA relies on legal mechanisms recognized by supervisory authorities to facilitate lawful transfers.
By using TDA's services, you acknowledge and consent to:
TDA implements additional safeguards for international transfers:
Data Transfers & Legal Changes: If legal requirements regarding data transfers change, TDA will update its practices and notify affected users accordingly. Your data protection rights remain paramount regardless of transfer location.
TDA takes the security of your personal information seriously. We implement comprehensive technical, physical, and organizational measures to protect data from unauthorized access, alteration, disclosure, and destruction.
All TDA employees with access to personal data receive privacy and security training covering:
In the event of a suspected data breach or security incident, TDA will:
Security Limitations: While we employ robust security measures, no system is 100% secure. We cannot guarantee absolute protection against all security threats. Users are responsible for protecting their account passwords and notifying us of unauthorized access.
TDA's services are not directed toward children under 16 years of age (or the applicable age of digital consent in your jurisdiction). We do not knowingly collect personal data from children under 13 without verifiable parental consent.
TDA:
If a parent or guardian becomes aware that a child has provided personal information to TDA without parental consent, please contact us immediately at privacy@screen-printing.us. We will take prompt action to remove such information and cease any collection efforts.
For users in the United States, TDA complies with the Children's Online Privacy Protection Act (COPPA), which restricts data collection from children under 13. For EU users, we comply with Articles 8-14 of the GDPR regarding children's data.
If educational institutions or organizations use TDA services for educational purposes involving minors, those organizations are responsible for obtaining appropriate consent and implementing safeguards consistent with applicable laws (e.g., FERPA in the US, GDPR in the EU).
Parent/Guardian Rights: Parents and guardians have the right to review, request deletion, and prevent further collection of their child's personal data. Contact us at the address provided in the Contact Us section.
TDA may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes by:
This Privacy Policy is effective as of March 2026. Updates will be posted with new effective dates. Your continued use of TDA services after changes become effective constitutes your acceptance of the updated Privacy Policy.
We recommend reviewing this Privacy Policy periodically to stay informed about how TDA protects your information. Significant changes will be highlighted in our communications to you.
No Adverse Changes Without Consent: We will not unilaterally reduce your privacy protections or expand data sharing in ways that fundamentally change our relationship without your explicit consent (except where required by law).
If you have questions about this Privacy Policy, wish to exercise your privacy rights, or need to report a privacy concern, please contact TDA's Privacy Officer:
For general inquiries about TDA or to explore other ways to connect with us, visit our Contact Page.
We aim to respond to all privacy inquiries and data subject requests within:
If you are not satisfied with our response to your privacy concern, you have the right to lodge a complaint with your local data protection authority or supervisory authority in your jurisdiction.