Rodz Dezigns is committed to protecting your privacy. This Privacy Policy explains what personal information we collect when you visit rodzdezigns.com, how we use it, with whom we share it, and what steps we take to keep it secure. By using our website you agree to the practices described here.
1. Information We Collect
We collect information in two ways — information you provide directly and information collected automatically.
Information you provide directly:
- Name and email address — submitted through our Custom Design Inquiry form.
- Phone number — optionally submitted through our inquiry form.
- Design request details — the description of the custom piece you would like created, including any text, scriptures, sizing, or style preferences you share.
- Payment information — collected directly by Stripe on their secure hosted checkout page. We never see, store, or handle your card number, expiration date, or CVV.
Information collected automatically:
- Cart data — the items you add to your shopping cart are stored in your browser's local storage. This data never leaves your device unless you proceed to checkout.
- Standard server logs — your IP address, browser type, referring page, and pages visited may be recorded in standard web server access logs maintained by our hosting provider (IONOS).
We do not use cookies for tracking, advertising, or analytics. We do not operate a newsletter or email marketing list.
2. How We Use Your Information
We use the information we collect solely for the following purposes:
- To respond to your custom design inquiry — your name, email, and design description are used exclusively to communicate with you about creating your piece.
- To process your payment — your cart items are transmitted to Stripe to create a secure checkout session. Once payment is confirmed, we receive only a notification that the transaction succeeded along with the order details (items and amounts).
- To send order-related emails — we send a confirmation email to acknowledge receipt of your inquiry. Stripe sends its own payment receipt separately.
- To maintain and improve the website — server log data may be reviewed to diagnose technical issues.
We do not use your information for targeted advertising, profiling, or any purpose unrelated to your order or inquiry.
3. Disclosure of Your Information
We do not sell, rent, or trade your personal information. We share your information only with the following service providers, and only to the extent necessary to operate the website:
Stripe
Payment processing. Receives your cart items and processes your card payment on their PCI-DSS compliant infrastructure. Stripe may retain transaction records as required by law.
Stripe Privacy Policy →
Resend
Transactional email delivery. Receives your name and email address to deliver inquiry confirmations and our internal order notifications.
Resend Privacy Policy →
IONOS
Web hosting provider. Stores website files and processes server-side PHP scripts. Standard access logs containing IP addresses may be retained per their data retention policy.
IONOS Privacy Policy →
Beyond the providers above, we may disclose your information if required to do so by law, court order, or governmental authority, or to protect the rights and safety of Rodz Dezigns or others.
4. Method of Disclosure
Information is transmitted to third-party service providers exclusively over encrypted HTTPS connections using industry-standard TLS (Transport Layer Security). Specifically:
- When you submit the Custom Design Inquiry form, your information is sent via an encrypted HTTPS POST request to our server, which then forwards it to Resend's API over HTTPS.
- When you proceed to checkout, your cart items are sent via an encrypted HTTPS POST request to our server, which creates a Stripe Checkout session via Stripe's API over HTTPS. You are then redirected to Stripe's hosted checkout page — your payment card details are entered directly on Stripe's servers and never transmitted to or through our website.
- No personal information is disclosed via email marketing, third-party advertising networks, data brokers, or social media platforms.
5. Security Practices
We take reasonable technical and organizational measures to protect your personal information:
- HTTPS / TLS encryption — all pages on rodzdezigns.com are served over HTTPS. Data in transit between your browser and our server is encrypted.
- API key protection — secret API keys (Stripe, Resend) are stored in a server-side configuration file that is explicitly blocked from public web access via server rules. Keys are never embedded in client-side JavaScript or HTML source code.
- No card data storage — we do not store, log, or process payment card information on our servers. All card handling is delegated to Stripe, which is certified to PCI DSS Level 1 — the highest level of payment security certification.
- Input validation and sanitization — all form submissions are validated and sanitized server-side before use to guard against injection attacks.
- Limited data retention — inquiry emails are retained only as long as necessary to fulfill your order and provide customer support. We do not maintain a separate database of customer records.
While we implement these safeguards, no method of internet transmission is 100% secure. We cannot guarantee absolute security, but we are committed to protecting your information using commercially reasonable means.
6. Children's Privacy
Our website is not directed to children under the age of 13, and we do not knowingly collect personal information from children. If you believe a child has submitted personal information to us, please contact us and we will promptly delete it.
7. Your Rights
You may contact us at any time to:
- Request access to the personal information we hold about you.
- Request correction or deletion of your information.
- Ask us not to contact you further.
We will respond to all reasonable requests within a reasonable timeframe. Note that certain information may be retained by our third-party providers (Stripe, IONOS) subject to their own policies and legal obligations.
8. Changes to This Policy
We may update this Privacy Policy from time to time. When we do, we will revise the effective date at the top of this page. Continued use of the website after changes are posted constitutes your acceptance of those changes. We encourage you to review this page periodically.