How we collect, use, protect, and share information

1) Data we collect

We collect information in three ways: (a) information you provide voluntarily, (b) information collected automatically by your browser/device, and (c) information derived from usage patterns (aggregated and pseudonymized where possible).

• Information you submit

  When you contact us, we may collect your name, email address, phone number, and the content of your message. If you submit a request related to privacy, we may ask for additional details to verify your identity.

• Device and usage data

  We may collect IP address, approximate location (city/region), browser type, device type, operating system, referring pages, time spent, and interactions (e.g., clicks) to keep our website reliable and improve content.

• Cookies and local storage

  We use storage to remember preferences such as theme mode and cookie consent choices. Where analytics are used, they are controlled by your consent preferences (see “Cookies & consent”).

2) How we use data

We process personal data only when we have a valid legal basis and a clear purpose. Typical purposes include:

• Provide and maintain the website

  Ensure performance, prevent abuse, and keep systems secure.

• Communicate with you

  Respond to inquiries, support requests, and privacy rights requests.

• Improve content and UX

  Understand what content is helpful and refine navigation, accessibility, and readability.

• Compliance

  Meet legal obligations and demonstrate compliance with applicable privacy laws.

3) Legal bases for processing

Depending on your location and applicable law, we rely on one or more legal bases:

• Consent: for non-essential cookies and similar technologies where required.

• Legitimate interests: to keep the website secure, prevent fraud, and improve performance (balanced against your rights).

• Contract or steps prior to contract: to respond to program inquiries and provide requested information.

• Legal obligation: to comply with applicable laws and lawful requests.

4) Cookies & consent

Cookies and similar technologies help us remember your choices and improve the website. We classify storage into categories. You can change your preferences at any time using the cookie banner controls or by clearing your browser storage.

5) Sharing and disclosures

We do not sell personal information. We may share data only when necessary:

• Service providers: vendors that process data on our behalf (e.g., email delivery), under contractual confidentiality and security obligations.

• Legal and safety: where required by law, subpoena, or to protect rights, safety, and integrity of our users and services.

• Business changes: in connection with a merger, acquisition, or asset sale, subject to appropriate privacy safeguards.

6) Data retention

We retain personal data only as long as necessary for the purposes described in this policy, then delete or anonymize it. Typical retention periods:

• Contact inquiries: up to 24 months (or sooner if you request deletion), unless a longer period is required to resolve disputes or comply with law.

• Consent preferences: stored locally until you clear your browser storage or change your preference.

• Security logs: typically 30–180 days, depending on operational needs.

7) Security

We implement administrative, technical, and organizational measures designed to protect personal data. No method of transmission or storage is 100% secure, but our practices are built around risk reduction.

• Access controls

  Least-privilege access, credential hygiene, and auditing where appropriate.

• Secure transport

  HTTPS/TLS for website traffic when deployed with SSL.

• Incident response

  We investigate suspected incidents and take steps to contain, remediate, and notify as required.

• Data minimization

  We aim to collect only what’s needed and keep it for the shortest practical period.

8) Your rights and choices

Depending on your jurisdiction (e.g., GDPR/UK GDPR, CCPA/CPRA), you may have rights related to your personal data:

• Access: request a copy of personal data we hold about you.

• Correction: ask us to correct inaccurate or incomplete information.

• Deletion: request deletion when data is no longer needed or when you withdraw consent (subject to exceptions).

• Portability: receive data in a structured, commonly used format where applicable.

• Objection / restriction: object to or restrict certain processing in specific cases.

• Opt-out of “sale”/“sharing”: we do not sell personal information; if that changes, we will provide a clear opt-out mechanism.

9) International transfers

If data is transferred across borders, we use appropriate safeguards such as contractual protections and security measures to protect information in line with this policy.

10) Children’s privacy

Our website is not directed to children under 13 (or the minimum age required by applicable law). If you believe a child has provided personal information, contact us so we can take appropriate steps.

11) Changes to this policy

We may update this Privacy Policy to reflect changes in practices, technology, or legal requirements. We will revise the “Last updated” date and, where appropriate, provide additional notice.

12) Contact

For questions about this policy or to submit a privacy request, contact us:

• Email: [email protected]

• Phone: +1 (415) 782-6049

• Hours: Mon–Fri, 9:00–17:00 (local)