Privacy Policy

Who We Are

This Privacy Policy explains how this website (the "Site") collects, uses, and protects personal data under the UK/EU General Data Protection Regulation (GDPR).

Data Controller contact: hicalebliu@gmail.com

Personal Data We Collect

• Account and profile data you provide, such as name, username, email address, birthday, and hashed password.
• Transaction-related data needed to process payments through Stripe, such as billing details and payment metadata.
• Email marketing data, such as email address, subscription status, and campaign engagement data handled through Mailchimp.
• Analytics and device data collected through Google Analytics, such as pages viewed, session duration, browser/device details, and approximate location based on IP.
• Technical and preference data, including cookies/local storage entries for login sessions, consent choices, and settings.

How We Use Personal Data

• To provide and operate the Site and its features.
• To create and manage accounts, sessions, and user preferences.
• To process payments and related fraud-prevention checks through Stripe.
• To send newsletters and updates through Mailchimp when you opt in.
• To measure and improve performance and usability through Google Analytics.
• To comply with legal obligations and enforce terms.

GDPR Legal Bases

• Consent (GDPR Article 6(1)(a)): for non-essential cookies/analytics and marketing emails.
• Contract (GDPR Article 6(1)(b)): to provide account access and requested services.
• Legitimate Interests (GDPR Article 6(1)(f)): to secure, maintain, and improve the Site.
• Legal Obligation (GDPR Article 6(1)(c)): where processing is required by law.

Third-Party Processors

• Google Analytics: used to analyze Site traffic and behavior patterns.
• Stripe: used to process payments securely. Payment card data is handled by Stripe and not stored in full by this Site.
• Mailchimp: used to manage and send email communications to subscribers.

These providers may process data in countries outside your jurisdiction. Where required, international transfers are protected using appropriate safeguards such as Standard Contractual Clauses or equivalent mechanisms.

Data Retention

• Account data is kept while your account remains active and for a limited period after deletion where needed for legal or security reasons.
• Payment records are retained as required by tax/accounting laws and anti-fraud obligations.
• Marketing subscription data is retained until you unsubscribe or request deletion.
• Analytics data is retained according to Google Analytics settings configured by the Site owner.

Your GDPR Rights

If GDPR applies to you, you may have the right to:

• Access your personal data.
• Correct inaccurate or incomplete data.
• Request erasure of your data ("right to be forgotten").
• Restrict or object to certain processing.
• Request portability of data you provided.
• Withdraw consent at any time for consent-based processing.
• Lodge a complaint with your local data protection authority.

To exercise any right, contact: hicalebliu@gmail.com

Cookies and Tracking

The Site uses cookies and local storage for authentication, consent preferences, and analytics. You can accept or decline non-essential cookies through the banner and adjust browser settings anytime.

Terms and Conditions

Contact Information

For privacy requests, data rights questions, or complaints, contact: hicalebliu@gmail.com

If you are not satisfied with the response, you may contact your local supervisory authority.