Privacy & Security

We collect information that you provide directly to us and information that is automatically collected when you use our website.

Information You Provide:

• Contact Form: When you submit our contact form, we collect your name, email address, and message content.
• Email Communications: When you email us directly, we collect your email address and any information you choose to include in your message.

Information Collected Automatically:

• IP Address: We collect your IP address for rate limiting and security purposes to prevent abuse of our services.
• Browser Information: We collect browser type, device information, and technical details through Cloudflare Turnstile for CAPTCHA verification.
• Error Logs: When errors occur, we collect technical information including error messages, stack traces, and user context through Sentry for debugging purposes.

We use the information we collect for the following purposes:

• To Respond to Inquiries: We use your contact information to respond to your questions, requests, and communications.
• To Send Email: We use Resend to deliver transactional emails related to your contact form submissions.
• To Prevent Abuse: We use IP addresses and Upstash Redis to implement rate limiting and prevent spam or malicious activity.
• To Verify Users: We use Cloudflare Turnstile to verify that form submissions are from real humans and not bots.
• To Monitor and Debug: We use Sentry to track errors, monitor application performance, and improve our services.
• To Comply with Legal Obligations: We may use and retain information as required by law or to protect our legal rights.

We use the following third-party services to operate our website. Each service has its own privacy policy governing how they handle your data:

• Resend: Email delivery service. View their privacy policy.
• Sentry: Error tracking and monitoring. View their privacy policy.
• Upstash: Redis database for rate limiting. View their privacy policy.
• Cloudflare Turnstile: CAPTCHA and bot detection. View their privacy policy.

Important: Your email address is logged to Sentry for debugging purposes when you use our contact form or when errors occur. Sentry data is retained for 90 days in accordance with our configuration.

We retain your information for the following periods:

• Contact Form Submissions: We retain your name, email, and message indefinitely to maintain a record of our communications and provide ongoing support.
• Rate Limiting Data (IP Addresses): IP addresses are stored temporarily in Upstash Redis. Daily quota data expires after 24 hours (UTC midnight), and monthly quota data expires after 30 calendar days.
• Error Logs (Sentry): Error logs, including user email addresses when applicable, are retained for 90 days before automatic deletion.
• Email Delivery Records (Resend): Email delivery metadata is retained according to Resend's data retention policies.

You may request deletion of your personal data at any time by contacting us. See Section 11 for contact information.

Depending on your location, you may have the following rights:

• Access: Request a copy of the personal data we hold about you.
• Correction: Request correction of inaccurate or incomplete personal data.
• Deletion: Request deletion of your personal data, subject to legal retention requirements.
• Object/Restrict: Object to or request restriction of certain processing activities.
• Data Portability: Receive your personal data in a structured, machine-readable format.
• Withdraw Consent: Where we rely on consent, you may withdraw it at any time.

To exercise these rights, please contact us using the information in Section 11. We will respond to your request within 30 days.

We implement appropriate technical and organizational security measures to protect your personal information:

• Encryption: All data transmitted between your browser and our servers is encrypted using HTTPS/TLS.
• Access Controls: Access to personal data is restricted to authorized personnel only.
• Rate Limiting: We implement rate limiting to prevent abuse and protect against brute force attacks.
• Bot Protection: Cloudflare Turnstile helps prevent automated attacks and spam.
• Monitoring: Sentry error tracking helps us detect and respond to security issues quickly.

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your personal information, we cannot guarantee absolute security.

Our website does not use traditional cookies for tracking or advertising purposes. However, third-party services we use may employ cookies or similar technologies:

• Cloudflare Turnstile: May use browser fingerprinting and challenge tokens to verify you are human.
• Sentry: May collect technical information about your browser and device for error tracking.

We do not use analytics services, advertising cookies, or third-party tracking for marketing purposes.

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that are different from your country's laws.

Our third-party service providers operate in various locations:

• Resend: United States
• Sentry: United States
• Upstash: Global (data stored in selected regions)
• Cloudflare: Global network

By using our website, you consent to the transfer of your information to these locations.

Our website is not directed to children under the age of 13. We do not knowingly collect personal information from children under 13.

If you are a parent or guardian and believe that your child has provided us with personal information, please contact us. We will delete such information from our records.

We may update this Privacy Policy from time to time. Changes will be posted on this page with a new "Last updated" date at the top.

We encourage you to review this Privacy Policy periodically. Your continued use of our website after changes are posted constitutes your acceptance of the updated policy.

If you have any questions about this Privacy Policy or how we handle your personal information, please contact us at:

Email: info@emberandtide.org

Contact Form: Visit our contact page

Company: Ember & Tide