1. Overview

Cardikit is committed to protecting your privacy. This policy explains what data we collect, why, and how we safeguard it.

2. Data We Collect

  • Account data: name, email, and credentials you provide when registering.
  • Content data: cards, images, blog posts, and metadata you upload or create.
  • Usage data: device/browser info, IP address, and interactions for security and analytics.
  • Payment data: billing details are processed securely by our payment processor (Stripe). Cardikit does not store full payment card information.
  • Shipping data: name and address information provided for delivery of physical products, when applicable.

3. Third-Party Services

  • Cardikit uses trusted third-party service providers to operate the platform.
  • This includes payment processing (Stripe), analytics, hosting, and email delivery.
  • These providers process data only as necessary to perform their services and are subject to contractual data protection obligations.

4. Payments and Billing

  • All payments are processed by third-party payment processors.
  • Cardikit does not store complete credit card numbers.
  • Payment processors may collect and process data in accordance with their own privacy policies.

5. Shipping Information

  • When physical products are offered, we collect shipping information solely for the purpose of fulfilling and delivering those products.
  • Shipping data is shared only with carriers and fulfillment partners as required to complete delivery.

6. International Data Transfers

  • Cardikit is based in the United States. If you access the service from outside the U.S., your information may be transferred to and processed in the United States or jurisdictions where our service providers operate.

7. Children's Privacy

  • Cardikit is not intended from children under the age of 13.
  • We do not knowingly collect personal data from children.
  • If you believe a child has provided us with personal data, please contact us so we can delete it.

8. How We Use Data

  • To provide and improve Cardikit features.
  • To secure accounts, prevent abuse, and debug issues.
  • To send service-related communications (e.g., account changes). Marketing emails are opt-in.

9. Cookies & Analytics

We use cookies for essential functionality and analytics (Google Analytics). You can manage consent via the cookie banner.

10. Sharing

We do not sell your data. We share only with service providers required to operate Cardikit (e.g., hosting, analytics) under appropriate safeguards.

11. Data Retention

We retain data while your account is active or as needed for legal/security requirements. You may request deletion of your account and associated data.

12. Security

We use TLS, access controls, and industry-standard protections. No system is 100% secure; please use a strong password and protect your credentials.

13. Your Rights

Depending on your location, you may have rights under laws such as GDPR or CCPA, including the right to request access, correction, deletion, or portability of your personal data. We will respond to requests in accordance with applicable law.

14. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated through the service or by email. Continued use of Cardikit after updates constitutes acceptance.

15. Contact

Questions? Reach us at support@cardikit.com.