Privacy Policy
How we handle your information (in plain English)
🗝️ The CoreStak Way
We built CoreStak to be different from other agencies - and that includes how we handle your privacy. No sneaky data collection, no selling your info, no confusing legal jargon. Just straight talk about what we collect, why we need it, and how we protect it.
This Privacy Policy explains how CoreStak ("we," "us," or "our") collects, uses, and protects your information when you visit our website (corestak.com) or use our SmartSite service.
The short version: We only collect what we need to provide your service, we never sell your data, and we protect it like it's our own.
What Information We Collect
🎯 Bottom Line
We collect what we need to build your SmartSite, process payments, and provide support. That's it.
Information You Give Us Directly
| What We Collect | Why We Need It | When We Collect It |
|---|---|---|
| Contact Information Name, email, phone number, business address |
To build your SmartSite, contact you about service, send reports | When you sign up or contact us |
| Business Information Business name, industry, services offered |
To customize your SmartSite for your specific business | During discovery call and setup |
| Payment Information Credit card details, billing address |
To process your $97/month subscription | When you sign up (processed by Stripe) |
| Website Content Photos, text, existing website info |
To create content for your SmartSite | During SmartSite build process |
Information We Collect Automatically
- Website Analytics: Pages you visit, how long you stay, what device you use (via Google Analytics)
- SmartSite Performance: Calls generated, forms submitted, reviews received (to track your results)
- Technical Info: IP address, browser type, operating system (for security and troubleshooting)
How We Use Your Information
💡 Simple Version
We use your info to provide your SmartSite service, track results for our guarantee, and communicate with you. We don't use it for anything else.
Primary Uses
- Provide SmartSite Service: Build and maintain your website, set up automations, process payments
- Track Results: Monitor calls, reviews, and form submissions to ensure our 60-day guarantee is met
- Customer Support: Answer questions, troubleshoot issues, provide monthly reports
- Service Improvement: Understand how to make SmartSites work better for all customers
- Legal Compliance: Meet our legal obligations and protect our rights
Communication
- Service Updates: Important information about your SmartSite
- Monthly Reports: Your results tracking (calls, reviews, performance)
- Support Communications: Responses to your questions or issues
- Billing Communications: Payment confirmations, failed payment notifications
What We DON'T Do
- ❌ Sell your information to third parties
- ❌ Send spam or promotional emails (unless you specifically opt in)
- ❌ Share your data with competitors
- ❌ Use your info for unrelated marketing purposes
When We Share Your Information
🔒 Our Rule
We only share your info when absolutely necessary to provide your service or when legally required. We never sell it.
Service Providers We Work With
| Service Provider | What They Do | What Info They Get |
|---|---|---|
| Stripe | Process payments | Payment info, billing address |
| Google Analytics | Website performance tracking | Anonymous usage data |
| GoHighLevel | SmartSite hosting and automation platform | Business info, website content, performance data |
| Email Service Provider | Send service emails and reports | Email address, name |
Legal Requirements
We may share your information if required by law, court order, or government regulation. We'll notify you unless legally prohibited.
Business Transfer
If CoreStak is sold or merged, your information may be transferred to the new owner. You'd be notified of any changes to how your info is handled.
How We Protect Your Information
🛡️ Security First
We protect your data like it's our own business info. Industry-standard security, encrypted connections, and regular security reviews.
Technical Safeguards
- Encryption: All data transmitted between your browser and our servers is encrypted (SSL/TLS)
- Secure Storage: Your information is stored on secure servers with restricted access
- Payment Security: Credit card info is processed by Stripe (PCI DSS compliant) - we never store payment details
- Access Controls: Only authorized CoreStak team members can access customer data
- Regular Updates: We keep all systems updated with latest security patches
Physical Safeguards
- Secure data centers with 24/7 monitoring
- Multi-factor authentication for all team accounts
- Regular security training for our team
🚨 Data Breach Policy
If a security breach affects your personal information, we'll notify you within 72 hours via email and explain what happened, what information was involved, and what steps we're taking to fix it.
Your Privacy Rights
👤 Your Data, Your Control
It's your information. You can access it, update it, or ask us to delete it anytime. No hoops to jump through.
What You Can Do
- Access: Request a copy of all personal information we have about you
- Update: Correct any inaccurate or incomplete information
- Delete: Ask us to delete your personal information (some service data may be retained for legal reasons)
- Portability: Get your data in a format you can use elsewhere
- Opt-out: Unsubscribe from marketing communications (service communications will continue)
- Restrict Processing: Ask us to limit how we use your information
How to Exercise Your Rights
Email us at [email protected] with your request. We'll respond within 30 days (usually much faster). You'll need to verify your identity for security purposes.
California Residents (CCPA)
If you're a California resident, you have additional rights under the California Consumer Privacy Act:
- Know what personal information we collect and how we use it
- Delete personal information we've collected
- Opt-out of the sale of personal information (we don't sell your info anyway)
- Non-discrimination for exercising your privacy rights
European Residents (GDPR)
If you're in the European Union, you have rights under the General Data Protection Regulation, including the right to object to processing and file complaints with supervisory authorities.
Cookies and Tracking
🍪 Cookie Policy
We use cookies to make our website work better and understand how people use it. You can control most cookies through your browser settings.
Types of Cookies We Use
| Cookie Type | Purpose | Can You Opt Out? |
|---|---|---|
| Essential Cookies | Make the website work (login, forms, security) | No - needed for basic functionality |
| Analytics Cookies | Understand how people use our site (Google Analytics) | Yes - through browser settings |
| Performance Cookies | Track SmartSite results for your guarantee | No - needed to fulfill our service |
Managing Cookies
- Browser Settings: Most browsers let you block or delete cookies
- Google Analytics Opt-out: Use Google's opt-out browser addon
- Do Not Track: We respect Do Not Track signals where possible
How Long We Keep Your Information
📅 Retention Policy
We keep your info as long as you're a customer, plus a reasonable period after to handle any issues. Then we delete it.
Retention Periods
- Active Customers: We keep all service-related information while your SmartSite is active
- After Cancellation: Most data deleted within 90 days, some records kept for 7 years for legal/tax reasons
- Financial Records: Payment and billing info kept for 7 years (legal requirement)
- Support Communications: Deleted after 3 years unless needed for ongoing issues
- Website Analytics: Aggregated data may be kept indefinitely (no personal identifiers)
Changes to This Privacy Policy
We may update this Privacy Policy occasionally to reflect changes in our practices or legal requirements. When we make changes:
- Notice: We'll email you about significant changes 30 days before they take effect
- Website Update: The updated policy will be posted here with a new "Last Updated" date
- Continued Use: Using our service after changes take effect means you accept the updated policy
💡 Our Promise
We won't make changes that significantly reduce your privacy rights without your explicit consent. If we need to make major changes, we'll give you the option to cancel your service if you don't agree.
Questions About Privacy?
Email: [email protected]
Phone: (401) 416-4001
Mail: CoreStak, Privacy Manager
Providence, RI
We respond to privacy requests within 30 days (usually much faster)