Privacy Policy

1. Information We Collect

1.1 Information You Provide Directly

We collect information you voluntarily provide when you:

• Contact Us: Name, email address, phone number, company name, and message content
• Request a Quote: Project details, budget, timeline preferences
• Create an Account: Username, email, password, billing information
• Subscribe to Newsletter: Email address and communication preferences
• Make a Payment: Billing name, address, and payment details (processed securely by Stripe/PayPal)

1.2 Information Collected Automatically

When you visit our website, we automatically collect:

• Device Information: IP address, browser type, operating system, device type
• Usage Data: Pages visited, time spent on site, referring website, click data
• Cookies: See Section 6 for cookie details
• Location Data: Approximate geographic location based on IP address

1.3 Information from Third Parties

We may receive information from:

• Analytics providers (Google Analytics)
• Social media platforms (if you connect your accounts)
• Payment processors (Stripe, PayPal – transaction confirmations only)
• Marketing platforms (email engagement data)

2. How We Use Your Information

2.1 Provide Services

• Process and fulfill your project requests
• Communicate about projects and services
• Provide customer support
• Process payments and send invoices

2.2 Improve Our Services

• Analyze website usage and user behavior
• Improve website functionality and user experience
• Develop new features and services
• Conduct market research

2.3 Marketing and Communications

• Send newsletters and promotional materials (with your consent)
• Share relevant case studies and portfolio updates
• Invite you to webinars or events
• Request feedback and reviews

2.4 Legal and Security

• Comply with legal obligations
• Prevent fraud and abuse
• Enforce our Terms and Conditions
• Protect our rights and property

3. How We Share Your Information

3.1 We DO NOT Sell Your Data

We do not and will never sell, rent, or trade your personal information to third parties for their marketing purposes.

3.2 Service Providers

We share data with trusted third-party service providers:

• Hosting: AWS, DigitalOcean (website hosting)
• Email: Mailchimp, SendGrid (email communications)
• Payments: Stripe, PayPal (payment processing)
• Analytics: Google Analytics (website analytics)
• CRM: HubSpot (customer relationship management)

These providers are contractually obligated to protect your data and use it only for specified purposes.

3.3 Legal Requirements

We may disclose information if required by law or in response to:

• Court orders or legal processes
• Government or regulatory requests
• Protection of our legal rights
• Prevention of fraud or illegal activity

3.4 Business Transfers

If dropt.beer is involved in a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

4. Data Storage and Security

4.1 Where We Store Data

Your data is stored on secure servers in the United States. Some data may be processed in other countries where our service providers operate.

4.2 Security Measures

We implement industry-standard security measures including:

• SSL/TLS encryption for data transmission
• Encrypted storage for sensitive data
• Regular security audits and updates
• Access controls and authentication
• Employee training on data protection
• PCI DSS compliance for payment processing

4.3 Data Retention

We retain your personal information for as long as necessary to:

• Provide our services to you
• Comply with legal obligations (typically 7 years for financial records)
• Resolve disputes and enforce agreements

You may request deletion of your data at any time (see Your Rights below).

5. Your Rights

You have the following rights regarding your personal data:

5.1 Access

Request a copy of all personal information we hold about you

5.2 Correction

Request correction of inaccurate or incomplete data

5.3 Deletion

Request deletion of your personal data (subject to legal obligations)

5.4 Portability

Request data in a machine-readable format

5.5 Opt-Out

Opt-out of marketing communications at any time

5.6 Do Not Sell

California residents: We do not sell personal information

6. Cookies and Tracking

6.1 Essential Cookies

Required for website functionality (login, shopping cart, security)

6.2 Analytics Cookies

Help us understand how visitors use our website (Google Analytics)

6.3 Marketing Cookies

Track conversions and show relevant ads (Facebook Pixel, Google Ads)

You can control cookie preferences through your browser settings or our cookie banner.

7. Marketing Communications

7.1 Opt-In

We only send marketing emails with your consent. You can opt-in by:

• Subscribing to our newsletter
• Checking the marketing preference box
• Requesting information about our services

7.2 Opt-Out

Unsubscribe at any time by:

• Clicking “Unsubscribe” in any marketing email
• Emailing privacy@dropt.beer

We will still send essential service emails (invoices, project updates).

8. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights:

• Right to Know: What personal information we collect and how we use it
• Right to Delete: Request deletion of your personal information
• Right to Opt-Out: We do not sell personal information
• Right to Non-Discrimination: We will not discriminate against you for exercising your rights

To exercise CCPA rights, email: privacy@dropt.beer

9. Other US State Privacy Rights

Residents of Virginia, Colorado, Connecticut, and other states with privacy laws have similar rights to access, correct, delete, and opt-out. Contact us to exercise these rights.

10. International Users

If you are located outside the United States, your information may be transferred to and processed in the US. By using our services, you consent to this transfer.

11. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for their privacy practices. Please review their policies before providing any information.

12. Children’s Privacy

Our services are not directed to individuals under 18. We do not knowingly collect personal information from children. If you believe a child has provided us with information, please contact us immediately.

13. Data Breach Notification

In the event of a data breach affecting your information, we will:

• Notify you within 72 hours (as required by law)
• Report to relevant authorities
• Take immediate steps to mitigate harm
• Investigate and address the cause

14. Changes to This Policy

We may update this Privacy Policy periodically. We will:

• Post the updated policy on our website
• Update the “Last Updated” date
• Notify you of significant changes via email

Your continued use after changes constitutes acceptance of the updated policy.

15. Contact Us

For questions, concerns, or requests regarding this Privacy Policy or your personal data:

16. Acknowledgment

By using dropt.beer, you acknowledge that you have read and understood this Privacy Policy and consent to the collection, use, and disclosure of your information as described.