Privacy
Privacy policy scaffold.
This page lists the sections the reviewed privacy policy must cover. It is not publishable legal text.
Data controller identity
Placeholder: identify the legal data controller and contact details.
Data collected
Placeholder: describe email capture, payment data via Stripe, analytics, and operational records.
How data is used
Placeholder: explain lead magnet delivery, order fulfilment, support, compliance, and analytics uses.
Third-party processors
Placeholder: list Stripe, Resend, Cloudflare, D1/R2, and any other reviewed processors.
Cookies
Placeholder: explain essential storage and any analytics or marketing cookies if added.
Retention
Placeholder: define retention periods for leads, customers, orders, logs, and deletion requests.
GDPR data-subject rights
Placeholder: cover access, deletion, portability, objection, correction, and restriction rights.
Contact for data requests
Placeholder: provide the reviewed privacy contact route.
Legal basis
Placeholder: map each processing purpose to its reviewed legal basis.