Privacy Policy

Last updated: April 20, 2026

Who We Are

This policy describes how Capture Client ("we," "us") handles personal information on Capture Client.

Capture Client is the data controller for information collected through this website. Our principal place of business is Knoxville, Tennessee, USA.

For any privacy question or request, email team@captureclient.net or call (865) 346-6111.

What We Collect

We collect only what we need to run the service.

Information you give us directly:

• Business name, owner name, phone number, and email
• Business type, services, and physical address
• Current website URL and social links (if provided)
• Logo and brand assets you send us (by email or shared link)
• Payment method details, handled by Stripe — we never see your card number

Information we collect automatically:

• IP address, browser type, device type, operating system, referring URL, and pages viewed
• Interaction events (clicks, form steps completed) when you give consent to analytics cookies
• Cookie identifiers set by the services listed below, when you give consent

Why We Collect It

We process your information for these specific purposes, each with a legal basis under GDPR:

• Providing the service (building and maintaining your site, contacting you about your project). Legal basis: contract.
• Billing, fraud prevention, and tax records. Legal basis: contract and legal obligation.
• Security, abuse prevention, and CAPTCHA (Cloudflare Turnstile). Legal basis: legitimate interest.
• Product analytics (which pages work, where people drop off). Legal basis: your consent.
• Advertising measurement and personalization (Google Ads). Legal basis: your consent.
• Responding to your support and privacy requests. Legal basis: legitimate interest and legal obligation.

We do not sell your personal information. We do not use your information to train AI models.

Cookies and Similar Technologies

We use three categories of cookies. You choose what we use on your first visit via the cookie banner, and you can change your choice any time via "Cookie settings" in the footer.

• Strictly necessary: required for the site to work, including CAPTCHA, form submission, and your consent preference itself. These are always on.
• Analytics: Google Analytics 4 and PostHog. Aggregate traffic and behavior. Off unless you accept.
• Advertising: Google Ads conversion and audience cookies. Off unless you accept.

We implement Google Consent Mode v2. When you reject advertising cookies, Google receives signals without identifiers and cannot build a profile from your visit.

Service Providers We Share Data With

We use a small number of vendors to run the service. Each one processes your data on our instructions, under a data processing agreement, and only for the purpose listed.

• Cloudflare, Inc. (USA): hosting, CDN, Turnstile CAPTCHA, DNS. Processes IP, request metadata, and form payloads.
• Google LLC (USA): Google Analytics 4 and Google Ads. Processes cookie ID, truncated IP, page views, and conversion events. Only when you consent to analytics or advertising.
• PostHog Inc. (USA): product analytics. Processes cookie ID, IP, and event metadata. Only when you consent to analytics.
• Stripe, Inc. (USA): payment processing. Processes your name, email, billing address, and card details. Stripe's own privacy policy applies to card data: https://stripe.com/privacy
• Resend (USA): transactional email delivery such as receipts, preview links, and support replies. Processes your email address and message content.
• Vercel Inc. (USA): hosting for some properties. Processes IP and request metadata.
• Axiom (USA): security and operational logs. Processes request IP, user agent, and URL path.

We do not share, rent, or sell your information to any other party.

International Transfers

Our providers are US-based and process data in the United States. If you are in the European Economic Area, the United Kingdom, or Switzerland, your information is transferred to the US under the Standard Contractual Clauses approved by the European Commission, or, where applicable, under the EU-US Data Privacy Framework for providers certified under it.

How Long We Keep It

We keep your information only as long as we need it for the purpose we collected it.

• Intake form data: up to 2 years from submission, or until you ask us to delete it (whichever is sooner).
• Payment records: up to 7 years, as required for tax and accounting.
• Analytics data (GA4, PostHog): 14 months, aggregated after that.
• Email correspondence: up to 2 years.
• Security and operational logs: up to 90 days.

We delete earlier when you request it, except where we must keep a record to meet a legal obligation.

Your Rights

If you are in the EU, UK, or Switzerland (GDPR), or anywhere else with similar laws, you have the right to:

• Access the personal information we hold about you
• Correct information that is wrong
• Delete your information ("right to be forgotten")
• Port your information to another provider
• Restrict or object to specific processing
• Withdraw consent at any time, without affecting processing we did before you withdrew
• Lodge a complaint with your local data protection authority

To exercise any of these, email team@captureclient.net. We will respond within 30 days. We will never charge you a fee or treat you differently for exercising a right.

California Residents (CCPA / CPRA)

If you are a California resident, you have the right to:

• Know what personal information we collect, use, and share
• Request a copy of the personal information we hold about you
• Request deletion of your personal information
• Correct inaccurate information
• Opt out of the "sale" or "sharing" of personal information for cross-context behavioral advertising
• Non-discrimination for exercising these rights

We do not sell personal information for money. We do "share" personal information for cross-context behavioral advertising only when you accept the Advertising cookie category. To opt out, click "Cookie settings" in the footer and uncheck Advertising, or use your browser's Global Privacy Control signal — we honor it automatically.

To make a request, email team@captureclient.net with the subject line "California Privacy Request."

Security

We encrypt data in transit (TLS) and at rest. Passwords and API keys are stored as secrets, never in plain text. Access to your information is limited to the people who need it to run the service. Payment card details never touch our servers — Stripe handles them directly.

No system is ever 100% secure. If we discover a breach that affects your information, we will notify you and the relevant authorities within the timeframes required by law.

Children

Our service is for business owners. We do not knowingly collect information from anyone under 16. If you believe we have, email team@captureclient.net and we will delete it.

Changes to This Policy

If we make a material change, we will update the "Last updated" date at the top and, for current customers, send an email notice at least 30 days before the change takes effect. Minor wording updates happen without notice.

Contact

For any privacy question, request, or complaint, email team@captureclient.net or call (865) 346-6111. We will respond within 30 days.