Overview
We take the protection of your data seriously. “Personal data” means any information that can identify you directly or indirectly. We process personal data only where necessary to provide this website, communicate with you, or fulfill a contract.
Legal bases
Depending on the purpose, processing is based on:
- Art. 6(1)(b) GDPR (contract / pre-contractual steps)
- Art. 6(1)(c) GDPR (legal obligation)
- Art. 6(1)(f) GDPR (legitimate interests: security, stability, abuse prevention)
- Art. 6(1)(a) GDPR (consent, where required)
Your rights
Depending on your situation, you may have the right to:
- access, rectification, erasure
- restriction of processing
- data portability
- object to processing based on legitimate interests
- withdraw consent at any time (future effect)
To exercise your rights, contact: support@ravenwood-labs.com
Complaints
You have the right to lodge a complaint with a data protection supervisory authority, especially in the EU member state of your habitual residence, place of work, or the place of the alleged infringement.
Website access (server logs)
When you access our website, our hosting provider may process technical log data such as:
- IP address
- date/time of access
- requested page/file
- browser and operating system information
- referrer URL
- status codes and transferred data volume
Purpose: technical delivery, stability and security (legitimate interest).
Contact (email / contact form)
If you contact us, we process the information you provide (e.g., name, email, message) to respond and, where applicable, take pre-contractual steps.
Digital products & templates
If you purchase a digital product, we process data required for payment and delivery.
Payment (Stripe Checkout)
We use Stripe Checkout for payment processing. Stripe processes payment and contact data (notably your email address, payment details, and potentially billing details) to complete the transaction.
Fulfillment (Firebase / Google Cloud)
To deliver your purchase reliably and prevent duplicate fulfillment on retries (e.g., webhook retries), we process technical order data such as:
- checkout session ID (verification / idempotency)
- email address (delivery)
- product/price identifiers
- timestamps and status (e.g., “processing”, “sent”, “error”)
- internal order number (e.g., RW-YYMM-000001)
Email delivery (SendGrid)
After successful payment, we send an email containing a time-limited download link to your email address.
Retention
We keep fulfillment/delivery data for a limited period (currently technically designed for approx. 90 days) to support delivery, support requests, and technical traceability. Payment/billing data may be retained longer by payment providers and where legally required.
Service providers
We use service providers depending on usage (e.g., hosting, Stripe, Google Cloud/Firebase, SendGrid). Some providers may process data outside the EEA (e.g., in the U.S.); where applicable, we rely on appropriate safeguards (e.g., Standard Contractual Clauses).
Cookies and similar technologies
This website may use cookies or similar technologies that are strictly necessary for basic functionality and security. If we use non-essential technologies (e.g., analytics/marketing), we will request your consent via a consent banner.
Updates
We may update this Privacy Policy if our processing changes or legal requirements evolve.