Privacy Policy

Contact form. When you submit our contact form, we collect your name, email address, optional phone number, the service you're interested in, and your message. This data is used only to respond to your inquiry.

Payment-related data. When you pay through our site, you are redirected to Stripe's PCI-compliant checkout. We never receive or store your full card number, CVV, or bank account details. Stripe may share with us limited transaction metadata (including your name, email address, billing address, transaction amount, and payment status), which we retain for fulfillment and accounting purposes.

Technical and security data. Our hosting provider Vercel automatically collects your IP address, browser type, device type, and request headers for security and performance purposes, including bot detection. This is governed by Vercel's privacy policy.

Analytics data. We use Vercel Analytics to understand how visitors find and use this site. It records the page you visited, where you came from (search engine, direct link, or referring site), your device type, operating system, browser, and your country and region. Country and region come from your IP address at request time; the IP itself is never stored. Vercel Analytics sets no cookies and keeps no personal identifiers. Full details in Section 9.

If you are located in the EU, UK, or EEA, we process your personal data under the following legal bases as set out in the UK/EU General Data Protection Regulation (GDPR):

Where we rely on legitimate interests, we have assessed that our interests do not override your rights and freedoms as a data subject.

• →To respond to project inquiries and provide quotes
• →To enter into and perform service agreements
• →To process payments and maintain accounting records
• →To protect our website against bots, fraud, and abuse
• →To understand how visitors find and use our site so we can improve it
• →To comply with applicable legal obligations

We do not sell, rent, trade, or share your personal information with third parties for their own marketing purposes.

We use the following service providers who may process your personal data on our behalf. Each operates under its own privacy policy and data processing agreements.

Your personal information may be processed in the United States or other countries where our service providers (Resend, Vercel, Stripe, and Google) operate. These countries may have data protection laws that differ from those in your country.

Where applicable, our service providers maintain appropriate safeguards for international transfers, including Standard Contractual Clauses approved by the European Commission, participation in recognized data transfer frameworks, or other legally accepted mechanisms.

Our services are intended for adults and business owners only. You must be at least 18 years old to use our services, submit inquiries, or enter into any service agreement with us. We do not knowingly collect, solicit, or store personal information from anyone under 18 years of age.

By submitting any form on this website, you confirm that you are at least 18 years of age and have the legal capacity to enter into contracts in your jurisdiction.

If you are a parent or legal guardian and believe your child has submitted personal information to us, please contact us immediately at contact@str8shift.com. We will delete that information promptly upon verification.

We retain personal data only as long as necessary for the purposes described in this policy:

We do not operate a user account system or maintain a database of personal profiles beyond what is described above.

Our website uses your browser's localStorage to remember your dark/light mode preference. This is stored locally on your device and is not transmitted to our servers.

Vercel's bot protection system may set a security cookie on your browser to verify legitimate visitors. This is strictly necessary for site security and cannot be opted out of — it is not used for advertising, analytics, or behavioral tracking.

Vercel Analytics sets no cookies and stores no personal identifiers in your browser.

Google Search Console sets no cookies on our site. It runs on Google's infrastructure; no Search Console scripts load on str8shift.com.

We don't use advertising cookies or tracking pixels.

Do Not Track. Because we do not engage in behavioral tracking or cross-site advertising, enabling your browser's Do Not Track signal has no additional effect on how we handle your data.

Depending on your location, you may have the following rights regarding your personal data. To exercise any right, email us at contact@str8shift.com. We may need to verify your identity before responding to protect against unauthorized requests.

We will respond to verified requests within 30 days. In some cases, we may extend this period by an additional 30 days where reasonably necessary.

We take reasonable steps to protect your personal information. Our website is served exclusively over HTTPS. Contact form submissions are transmitted via Resend's encrypted email infrastructure. All payment data is handled by Stripe's PCI DSS-compliant systems. We never receive your full card details on our servers.

No method of internet transmission or storage is 100% secure. While we do our best to protect your data, we cannot guarantee absolute security.

In the event we become aware of a security incident that compromises personal information, we will take prompt action to contain and assess the breach. We will notify affected individuals and relevant authorities as required by applicable law, including the GDPR (within 72 hours where feasible), state breach notification laws, and other applicable regulations.

We may update this Privacy Policy periodically. When we do, we will revise the “Last updated” date at the top of this page. Changes become effective when posted. Where required by law, we will provide additional notice of material changes (for example, via email or a prominent notice on our site).

If you have questions about this Privacy Policy, wish to exercise your rights, or want to report a concern about how we handle your data, please reach out: