Privacy Policy

Your privacy is important to us. This policy explains how we collect, use, and protect your information.

Last updated:

Information We Collect

Personal Information

When you contact us through our website, we may collect:

  • Your name and email address
  • Company name and contact information
  • Project details and requirements you share with us
  • Any files or documents you upload through our contact form

Automatically Collected Information

We automatically collect certain information when you visit our website:

  • Browser type and version (user agent)
  • Pages visited and time spent on our site
  • Referring website information

Note: We do not collect or store IP addresses.

How We Use Your Information

Communication

To respond to your inquiries, provide project quotes, and communicate about potential services.

Analytics

To analyze website usage patterns and improve our site's functionality and user experience.

Security

To protect our website and services from fraud, abuse, and unauthorized access.

Legal Compliance

To comply with applicable laws, regulations, and legal processes.

Information Sharing

We Do Not Sell Your Information

We do not sell, trade, or otherwise transfer your personal information to third parties. We may share information only in the following limited circumstances:

  • With trusted service providers who assist in operating our website
  • When required by law or to protect our legal rights
  • In connection with a business transfer or merger
  • With your explicit consent

Data Security

We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction.

SSL Encryption

All data transmitted between your browser and our servers is encrypted

Access Controls

Limited access to personal information on a need-to-know basis

Regular Updates

Regular security audits and updates to protect against threats

Your Rights

You have the following rights regarding your personal information:

Access

Request a copy of the personal information we hold about you

Correction

Request correction of inaccurate or incomplete information

Deletion

Request deletion of your personal information

Opt-out

Withdraw consent for processing your information

Cookies and Tracking

Our website uses cookies and similar tracking technologies to enhance your browsing experience. You can control cookie settings through your browser preferences.

Types of Cookies We Use:

  • Essential Cookies: Required for basic website functionality
  • Analytics Cookies: Help us understand how visitors use our website
  • Preference Cookies: Remember your settings and preferences

Strictly Necessary Storage

In addition to cookies, we use browser localStorage to store certain information that is essential for our website to function properly and provide you with a better user experience. Under GDPR Article 6(1)(f), we process this data based on our legitimate interest to provide a functional and accessible website. You retain the right to opt out of optional features, though this may impact your experience.

What We Store Locally:

Cookie Consent Preferences

We remember your cookie consent choices (analytics, marketing, functional) so we don't repeatedly ask you. This prevents consent banner fatigue and respects your initial decision.

Theme Preference (Accessibility Feature)

Your selected visual theme (light, dark, holiday, or A11y high-contrast) is stored to maintain visual consistency across pages and visits. This prevents jarring theme changes during navigation and ensures accessibility for users with visual impairments.

Accessibility Justification: Our A11y theme meets WCAG 1.4.6 Level AAA standards (Contrast Enhanced), requiring a contrast ratio of at least 7:1 for normal text. Users with low vision or color blindness depend on this high-contrast theme for legible content. Storing the theme preference is necessary to deliver an accessible experience consistently across your browsing session, as required by accessibility regulations including the European Accessibility Act and WCAG guidelines. This constitutes a legitimate interest under GDPR Article 6(1)(f) and requires no consent.

Social Media Embed Cache

When you load social media embeds (Twitter, YouTube, etc.), we cache the public API responses locally to reduce repeated network requests. This improves page load times and reduces bandwidth usage for both you and the third-party services. No personal data is stored—only publicly available embed content.

Mastodon Instances (Requires Consent)

If you interact with Mastodon social sharing features and provide consent, we remember your preferred Mastodon instance(s) to streamline future interactions. We store up to 5 instances using a first-in-first-out approach. This feature requires explicit opt-in consent because your Mastodon instance choice can identify you and constitutes personal data under GDPR Article 4(1).

Error Logging (Sentry)

We use Sentry for error monitoring to identify and fix bugs quickly. Sentry may store session information locally to track errors across page loads. We configure Sentry to avoid collecting personally identifiable information (no emails, usernames, or IP addresses).

Your Choice: Theme preference, consent tracking, social embed caching, and error monitoring are classified as strictly necessary for providing a functional and accessible website. These features do not require consent. Optional features like Mastodon instance storage require opt-in consent through our Cookie Preference Center. Disabling optional storage will prevent the website from remembering your Mastodon preferences but will not affect core functionality or accessibility features.

Error Monitoring and Diagnostics

We use Sentry, a third-party error monitoring service, to help us identify and fix technical issues on our website. This helps us maintain a high-quality user experience and quickly resolve bugs.

What We Collect for Error Monitoring:

  • Browser Information: User agent (browser type and version) to help diagnose browser-specific issues
  • Error Details: Technical error messages, stack traces, and the sequence of actions leading to errors
  • Page Information: URLs visited and navigation history when errors occur

Privacy Protections:

  • No IP addresses collected or stored
  • No session replay or screen recording
  • No performance tracking or monitoring
  • Data is used solely for technical troubleshooting and bug fixes

Data Processing Agreement

Webstack Builders has signed a Data Processing Agreement (DPA) with Sentry to ensure that all error monitoring data is processed in compliance with GDPR and other data protection regulations. This agreement ensures that Sentry acts as a data processor on our behalf and implements appropriate security measures to protect your information.

Contact Us

If you have any questions about this Privacy Policy or would like to exercise your rights, please contact us:

Response Time

We respond to privacy requests within 30 days

Data Protection Officer

For questions specifically related to data protection and privacy compliance:

Kevin Brown

kevin@webstackbuilders.com

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of any material changes by posting the updated policy on this page and updating the "Last updated" date at the top of this policy. We encourage you to review this policy periodically.