Privacy Policy
In short: we collect only what we need to respond to you and deliver our services, we never sell your data, and your payment card details are handled by Stripe — not stored by us.
1. Overview
This Privacy Policy explains how Alterwaves (“we,” “us”), operated by Alterwaves LLC of Austin, Texas, USA, collects and uses personal data when you visit alterwavess.com, contact us, or purchase our services. For privacy questions, contact [email protected].
2. Information we collect
Information you give us
- Contact and inquiry details you submit (name, email address, project description, budget range, and anything you include in a message).
- Information exchanged during an engagement (for example, billing contact details and any access credentials you choose to share so we can do the work).
Information collected automatically
- Basic technical and usage data that web servers and any analytics we use may record, such as IP address, browser type, pages visited, and referring page. We keep this to the minimum needed to operate and secure the site.
Payment information
- When you pay, your card details are collected and processed directly by Stripe. We receive limited information such as confirmation of payment, the last four digits of the card, and billing metadata — never your full card number.
3. How we use your information
- To respond to inquiries and provide quotes.
- To deliver, support, and maintain the services you purchase.
- To process payments and send receipts and invoices.
- To keep records, comply with legal and tax obligations, and prevent fraud.
- To improve our website and services.
We do not sell your personal data, and we do not use it for third-party advertising.
4. Legal bases for processing
Where the GDPR or similar laws apply, we process personal data on the basis of: performance of a contract (delivering services you request), our legitimate interests (running and securing our business), consent (where you provide it, for example optional analytics), and compliance with legal obligations.
5. Sharing and service providers
We share personal data only with service providers that help us operate, and only as needed:
- Stripe — payment processing. See Stripe’s Privacy Policy.
- Vercel — website hosting and delivery. See Vercel’s Privacy Policy.
- Email provider — to receive and respond to your messages.
We may also disclose information where required by law, or to protect our rights, safety, and property.
6. Payments and Stripe
Payments are processed securely by Stripe, a PCI-DSS Level 1 certified payment processor. Card data is transmitted directly to Stripe over an encrypted connection. Alterwaves does not store your full card details on its own systems. Stripe acts as an independent controller of payment data it collects; please review Stripe’s privacy practices for details.
7. Cookies and analytics
This site aims to use as few cookies as possible. We do not use advertising or cross-site tracking cookies. If we add privacy-respecting analytics, it will be to understand aggregate usage only; where required, we will request consent first. You can control cookies through your browser settings.
8. Data retention
We keep personal data only as long as needed for the purposes above: inquiry data for a reasonable period to follow up, and engagement and billing records for as long as required by contract and by tax and accounting law. We then delete or anonymize it.
9. Your rights
Depending on where you live, you may have the right to access, correct, delete, or port your personal data, to object to or restrict certain processing, and to withdraw consent. Residents of the EEA/UK have rights under the GDPR; California residents have rights under the CCPA/CPRA, including the right to know and delete and the right not to be discriminated against for exercising them — and note that we do not sell or share personal information as those terms are defined. To exercise any right, email [email protected]. You may also have the right to lodge a complaint with your local data protection authority.
10. International transfers
Our service providers may process data in countries other than yours. Where personal data is transferred internationally, we rely on appropriate safeguards (such as standard contractual clauses) where required by law.
11. Security
The site is served over HTTPS. We use reputable providers and reasonable technical and organizational measures to protect personal data. No method of transmission or storage is completely secure, but we work to protect your information and limit access to it.
12. Children’s privacy
Our services are intended for businesses and adults. We do not knowingly collect personal data from children under 16. If you believe a child has provided us data, contact us and we will delete it.
13. Changes to this policy
We may update this policy from time to time. The “Last updated” date above reflects the current version. Material changes will be posted on this page.
14. Contact
For any privacy question or request, email [email protected] or use our contact page.