Legal

Privacy Policy

Last updated: April 2026

Delisa Cares ("we," "us," or "our") is operated by a sole proprietor based in Washington State, USA. This Privacy Policy describes how we collect, use, disclose, and protect your personal information when you visit delisacares.com or purchase any product or service. It also describes the rights you have with respect to your personal information under applicable laws, including the California Consumer Privacy Act (CCPA) and the General Data Protection Regulation (GDPR). By using this site, you agree to the practices described in this policy.

1. Information We Collect

Information you provide directly

• Email address — collected when you join a waitlist, make a purchase, subscribe to our mailing list, or contact us directly.
• Purchase information — when you buy a product, our payment processor (Stripe) collects your payment card details and billing information. We do not receive or store your full card number.
• Communications — if you contact us by email, we retain the content of that communication and your email address in order to respond.

Information collected automatically

• Usage data — pages visited, time spent, referring URLs, and general navigation patterns.
• Device and browser information — browser type, operating system, screen resolution, and similar technical data.
• IP address — collected automatically by our hosting provider (Netlify) as part of standard web server logging.

Information we do not collect

We do not collect sensitive personal information such as government identification numbers, full financial account details, health or medical information, precise geolocation, racial or ethnic origin, religious beliefs, or biometric data.

2. How We Use Your Information

• To fulfill purchases — delivering digital products and providing post-purchase support.
• To communicate with you — sending transactional emails, responding to support inquiries, and sending updates to subscribers who have opted in.
• To operate and improve the site — understanding how visitors use our site and improving content and user experience.
• To maintain security — detecting and preventing fraud, abuse, and unauthorized access.
• To comply with legal obligations — retaining records as required by applicable law.

We do not use your personal information for targeted advertising, behavioral profiling, or sale to third parties.

3. Legal Basis for Processing (GDPR)

If you are located in the EEA, United Kingdom, or Switzerland, we process your personal data under the following legal bases: performance of a contract (Article 6(1)(b)), legitimate interests (Article 6(1)(f)), consent (Article 6(1)(a)), and legal obligation (Article 6(1)(c)).

4. How We Share Your Information

We do not sell, rent, or trade your personal information. We share information only with service providers who help us operate our business, when required by law, in the event of a business transfer, or with your consent.

5. Third-Party Services

• Stripe — payment processing. Stripe Privacy Policy
• Mailchimp (Intuit) — email list management. Mailchimp Privacy Policy
• Netlify — website hosting. Netlify Privacy Policy
• Substack — newsletter platform. Substack Privacy Policy

6. Cookies and Tracking

Our site uses a minimal number of cookies. We do not use cookies to serve targeted advertising or to track you across other websites.

7. Email Communications

Transactional emails (order confirmations, delivery) are not subject to marketing opt-out. Marketing emails are sent only to subscribers who have opted in. Every such email includes a clear unsubscribe link.

8. Data Retention

• Purchase records — retained for a minimum of 7 years.
• Email list data — retained until you unsubscribe or request deletion.
• Support communications — retained for up to 2 years after resolution.
• Server logs — typically retained by Netlify for up to 30 days.

9. Data Security

We implement reasonable technical and organizational measures to protect your personal information, including HTTPS encryption, use of reputable third-party processors, and limiting access to personal data.

10. Your Rights

All users may request access, correction, or deletion of their personal information. California residents have additional rights under the CCPA/CPRA. EEA/UK/Swiss residents have additional rights under the GDPR. To exercise any of these rights, email delisa@delisacares.com.

11. Children's Privacy

Delisa Cares is not directed at children. We do not knowingly collect personal information from anyone under the age of 16.

12. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last updated" date at the top of this page.

13. Contact Us

Email: delisa@delisacares.com
Location: Washington State, United States