Privacy Policy
Introduction
This Privacy Policy explains how Fresh-Stack (“we”, “us”) collects, uses, shares, and protects personal data when visitors access our website and services, and outlines rights and choices under applicable laws such as the GDPR.
Data categories we collect
- Contact data: name, email, and message content submitted via forms.
- Usage data: pages visited, interactions, approximate region (when analytics are enabled with consent).
- Device data: browser type and basic settings for troubleshooting.
- Transaction context: product interest and order preferences when inquiries are made.
Purposes and legal bases
- Provide and improve the site and respond to inquiries — performance of a contract or legitimate interests.
- Optional analytics and personalization — consent (only after cookie consent “all”).
- Legal compliance and security — legal obligation and legitimate interests.
Cookies and tracking
We use an essential cookie to remember consent choices. Non‑essential cookies (e.g., analytics) are disabled until consent is granted, and their scripts should only load after “Accept all”. Our cookie sets SameSite=Lax to align with modern browser handling for navigation safety. Expiration for consent is set to 12 months (365 days). See Cookie Policy for details.
Retention
Contact form submissions are retained for as long as necessary to address inquiries and comply with legal requirements. Consent records are retained for up to 12 months before renewal.
Sharing and transfers
We do not sell personal data. Limited processors (such as a form handling service) may process data under contract. If data is transferred internationally, we rely on appropriate safeguards, such as Standard Contractual Clauses or equivalent mechanisms.
Data subject rights
Where applicable, individuals may request access, correction, deletion, restriction, objection, and portability. To exercise rights, contact us using the details below. We will verify identity and respond per statutory timelines.
Security
We implement administrative, technical, and organizational measures appropriate to the risk, such as transport encryption, access controls, and data minimization.
Children
Our site is not directed to children under 16, and we do not knowingly collect their data. If a guardian believes a child has provided data, contact us for prompt deletion.
Changes
We may update this policy to reflect operational, legal, or regulatory changes. The “Last updated” date indicates the latest revision.
Contacts
Privacy requests: privacy@fresh-stack.pics. Data controller: Fresh-Stack, 21 Cookline Rd, Suite 4, Riverport.
Last updated: