Privacy Policy

This Privacy Policy describes how stitchnsketch.com (the “Site” or “we”) collects, uses, and discloses your Personal Information when you visit or make a purchase from the Site.

Contact Information

After reviewing this policy, if you have additional questions, want more information about our privacy practices, or would like to make a complaint, please contact us by e-mail at info@stitchnsketch.com.

Collecting Personal Information

When you visit or shop on our Site, we collect different types of information to provide our services and improve your experience.

• Device information
  • Collected Data: IP address, browser type, time zone, referring pages, and browsing behavior.
  • Collection Method: Cookies, log files, tracking pixels.
  • Disclosure: Shared with analytics providers like Google Analytics.
• Order information
  • Purpose of collection: To provide products or services to you to fulfill our contract, to process your payment information, arrange for shipping, provide you with invoices and/or order confirmations, communicate with you, screen our orders for potential risk or fraud, and when in line with the preferences you have shared with us, provide you with information or advertising relating to our products or services.
  • Collected Data: Name, email address, phone number, billing/shipping address, payment details, information (including credit card numbers).
  • Collection Method: Collected from you.
  • Disclosure for a business purpose: Shared with our processor WordPress, PayPal, Viva wallet, and Stripe.
• Customer support information
  • Purpose of collection: To provide customer support and respond to inquiries.
  • Collected Data: Name, email, phone number, order history.
  • Collection Method: Collected by you
  • Disclosure for a business purpose: Shared with CRM tools (e.g., Klaviyo, SMS services).
• Image & Design Information
  We take the privacy and security of your uploaded images very seriously. All images provided for customization are treated as strictly confidential and are only accessed by our designer and production team. we DO NOT outsource the production of our products, which means everything is made by our team only.
  • Purpose: To edit and create the custom embroidered products based on user-provided images.
  • Collected Data: Photos and images uploaded by you.
  • Collection Method: User-uploaded images at checkout or via email.
  • Disclosure: Used internally for production, not shared with third parties.
  • Limited Access: Your images are only accessible to essential staff working on your order.
  • Secure Storage: Images are stored securely during the editing and embroidery process.
  • Automatic Deletion: All uploaded images are permanently deleted from our systems after 30 days once your order is completed.

Minors

We do not intentionally collect Personal Information from children. If you are the parent or guardian and believe your child has provided us with Personal Information, please contact us at the address above to request deletion.

Sharing Personal Information

We share personal information with select third parties to operate our business, including:

• We use Hostinger to power our online store. You can read more about how Hostinger uses your Personal Information here: https://www.hostinger.co.uk/legal/privacy-policy.
• We may share your Personal Information to comply with applicable laws and regulations, to respond to a subpoena, search warrant or other lawful request for information we receive, or to otherwise protect our rights.
• Shopify/WooCommerce: Online store platform.
• Payment Processors: Stripe, PayPal.
• Shipping Providers: GAP Akis Express, BOX NOW, DHL.
  You can read more about how Courier uses your Personal Information here:
  GAP Akis Express: https://gapakisexpress.com/gdpr/
  BOX NOW: https://boxnow.gr/en/personal-data-processing-notice
  DHL: https://www.dhl.com/content/dam/dhl/local/global/core/documents/pdf/MO-core-lela-local-pdp-policy.pdf 
• Marketing Services: Google, Facebook, Instagram, etc.

We may also disclose personal data if required by law.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Behavioural Advertising

As described above, we use your Personal Information to provide you with targeted advertisements or marketing communications we believe may be of interest to you. For example:

• We use Google Analytics to help us understand how our customers use the Site. You can read more about how Google uses your Personal Information here: https://www.google.com/intl/en/policies/privacy/. You can also opt-out of Google Analytics here: https://tools.google.com/dlpage/gaoptout.
• We share information about your use of the Site, your purchases, and your interaction with our ads on other websites with our advertising partners. We collect and share some of this information directly with our advertising partners, and in some cases through the use of cookies or other similar technologies (which you may consent to, depending on your location).

For more information about how targeted advertising works, you can visit the Network Advertising Initiative’s (“NAI”) educational page at https://www.networkadvertising.org/understanding-online-advertising/how-does-it-work.

You can opt out of targeted advertising by:

FACEBOOK – https://www.facebook.com/settings/?tab=ads
GOOGLE – https://www.google.com/settings/ads/anonymous
BING – https://advertise.bingads.microsoft.com/en-us/resources/policies/personalized-ads

Additionally, you can opt out of some of these services by visiting the Digital Advertising Alliance’s opt-out portal at: https://optout.aboutads.info/.

Using Personal Information

We use your personal Information to provide our services to you, which includes: offering products for sale, processing payments, shipping and fulfillment of your order, and keeping you up to date on new products, services, and offers.

Lawful basis

Pursuant to the General Data Protection Regulation (“GDPR”), if you are a resident of the European Economic Area (“EEA”), we process your personal information under the following lawful bases:

• Your consent.
• The performance of the contract between you and the Site.
• Compliance with our legal obligations.
• To protect your vital interests.
• To perform a task carried out in the public interest.
• For our legitimate interests, which do not override your fundamental rights and freedoms.

Retention

When you place an order through the Site, we will retain your Personal Information for our records unless and until you ask us to erase this information. For more information on your right of erasure, please see the ‘Your rights’ section below.

Automatic decision-making

If you are a resident of the EEA, you have the right to object to processing based solely on automated decision-making (which includes profiling), when that decision-making has a legal effect on you or otherwise significantly affects you.

We DO NOT engage in fully automated decision-making that has a legal or otherwise significant effect using customer data.

Our processor WordPress uses limited automated decision-making to prevent fraud that does not have a legal or otherwise significant effect on you.

Services that include elements of automated decision-making include:

• Temporary blacklist of IP addresses associated with repeated failed transactions. This blacklist persists for a small number of hours.
• Temporary blacklist of credit cards associated with blacklisted IP addresses. This blacklist persists for a small number of days.

Your rights

GDPR

If you are a resident of the EEA, you have the right to access the Personal Information we hold about you, to port it to a new service, and to ask that your Personal Information be corrected, updated, or erased. If you would like to exercise these rights, please contact us through the contact information above. 

Your Rights (GDPR – EEA Users)

• Access & Correction: Request a copy of your data or correct any errors.
• Deletion: Request deletion of your personal information.
• Data Portability: Receive a copy of your data in a portable format.
• Objection to Processing: Opt out of direct marketing.

CCPA

If you are a resident of California, you have the right to access the Personal Information we hold about you (also known as the ‘Right to Know’), to port it to a new service, and to ask that your Personal Information be corrected, updated, or erased. If you would like to exercise these rights, please contact us through the contact information above.

Your Rights (CCPA – California Users)

• Right to Know: Request details on what data we collect.
• Right to Delete: Ask us to delete your personal data.
• Right to Opt-Out: Refuse the sale of your data.

Cookies & Tracking Technologies

A cookie is a small amount of information that’s downloaded to your computer or device when you visit our Site. We use a number of different cookies, including functional, performance, advertising, and social media or content cookies. Cookies make your browsing experience better by allowing the website to remember your actions and preferences (such as login and region selection). This means you don’t have to re-enter this information each time you return to the site or browse from one page to another. Cookies also provide information on how people use the website, for instance whether it’s their first time visiting or if they are a frequent visitor.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

You can manage your cookie preferences via your browser settings.

MailPoet newsletter & emails

If you have subscribed to our newsletter or if you are a member of our website (you can log in) or if you have purchased on our website, there is a good chance you will receive emails from us.

We will only send you emails which you have signed up to receive, or which pertain to the services we provided to you.

To send you emails, we use the name and email address you provide us. Our site also logs the IP address you used when you signed up for the service to prevent abuse of the system.

This website can send emails throaugh the MailPoet Sending Service. This service allows us to track opens and clicks on our emails. We use this information to improve the content of our newsletters.

No identifiable information is otherwise tracked outside this website except for the email address.

Below is a list of cookies that may be generated by MailPoet (note that some cookies are only utilized when WooCommerce is installed and activated):

Cookie name: mailpoet_page_view
Cookie expiry: 3,650 days.
Cookie description: The purpose of this cookie is to track the last time a subscriber viewed any page on the site.

Cookie name: mailpoet_revenue_tracking
Cookie expiry: 14 days.
Cookie description: The purpose of this cookie is to track which newsletter sent from your website has acquired a click-through and a subsequent purchase in your WooCommerce store.

Cookie name: mailpoet_subscriber
Cookie expiry: 3,650 days.
Cookie description: The purpose of this cookie is to track subscriber engagement. It is used when the user logs in, signs up in a form, confirms subscription to a newsletter, or places an order through WooCommerce.
Note: User must be opted-in and a confirmed subscriber.

Cookie name: popup_form_dismissed_{$formId}
Cookie expiry: the expiration date varies and can be set per form.
Cookie description: This cookie is used to track if a user has previously dismissed a specific form, preventing the re-display of the form until the cookie’s expiration date. It is applicable for popup, slide-in, or fixed bar forms.

Do Not Track

Please note that because there is no consistent industry understanding of how to respond to “Do Not Track” signals, we do not alter our data collection and usage practices when we detect such a signal from your browser.

LiteSpeed Cache

This site utilises caching in order to facilitate a faster response time and better user experience. Caching potentially stores a duplicate copy of every web page that is on display on this site. All cache files are temporary, and are never accessed by any third party, except as necessary to obtain technical support from the cache plugin vendor. Cache files expire on a schedule set by the site administrator, but may easily be purged by the admin before their natural expiration, if necessary. We may use QUIC.cloud services to process & cache your data temporarily. Please see https://quic.cloud/privacy-policy/ for more details.

Changes

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated date.

Complaints

As noted above, if you would like to make a complaint, please contact us by e-mail: info@stitchnsketch.com.

If you are not satisfied with our response to your complaint, you have the right to lodge your complaint with the relevant data protection authority. You can contact your local data protection authority, or to our email here: info@stitchnsketch.com

Last updated: 17th February 2025