Privacy Policy

We collect personal information for the following purposes:

• To provide our services: designing, building, and delivering your website
• To communicate with you: sending project updates, brand concepts, intake forms, and invoices via email
• To process payments: securely handling transactions through Stripe
• To improve our website: understanding how visitors use our site so we can make it better
• To run advertising: measuring the effectiveness of our Meta (Facebook/Instagram) ad campaigns

We will only use your information for the purpose it was collected, unless you give us permission to use it for something else.

We do not sell your personal information. We may share your data with the following third-party services that help us run our business:

• Cloudflare: website hosting and content delivery (USA/Global)
• Resend: transactional email delivery (USA)
• Stripe: payment processing (USA/Global)
• Google Analytics: anonymised website usage analytics (USA)
• Meta (Facebook): advertising measurement via Meta Pixel (USA)

Each of these providers has their own privacy policies and data protection measures. We only share the minimum information necessary for each service to function.

Our website uses the following cookies and tracking technologies:

• Google Analytics (gtag.js): collects anonymised data about page views, session duration, and traffic sources to help us understand how our site is used
• Meta Pixel: tracks conversions from our Facebook and Instagram ad campaigns, including page views and form submissions

These tools use cookies to identify returning visitors and measure advertising performance. You can disable cookies through your browser settings at any time, though this may affect some site functionality.

Most modern browsers allow you to manage cookie preferences. You can also opt out of Google Analytics tracking by installing the Google Analytics Opt-out Browser Add-on, and adjust your Meta ad preferences through your Facebook account settings.

Your data is stored securely using:

• Cloudflare D1: our contact and project data is stored in a Cloudflare D1 database with encryption at rest
• HTTPS: all data transmitted between your browser and our servers is encrypted using SSL/TLS
• Access controls: only authorised team members can access your project data

We retain your personal information for as long as necessary to provide our services and comply with our legal obligations. If you request deletion of your data, we will do so within a reasonable timeframe unless we are legally required to retain it.

Under the New Zealand Privacy Act 2020, you have the right to:

• Access: request a copy of the personal information we hold about you
• Correction: ask us to correct any inaccurate or outdated information
• Deletion: request that we delete your personal information, subject to any legal obligations we may have
• Complaint: lodge a complaint with the Office of the Privacy Commissioner if you believe your privacy has been breached

To exercise any of these rights, contact us at [email protected]. We will respond to your request within 20 working days, as required by law.

We may update this privacy policy from time to time to reflect changes in our services or legal requirements. Any changes will be posted on this page with an updated date. We encourage you to review this policy periodically.