Privacy Policy

1. Overview

The InSite Company ("Company," "we," "us," or "our") is committed to protecting your personal data. This Privacy Policy explains what information we collect, how we use it, and your rights in relation to it when you use our website at theinsite.dev or engage our services.

Please read this policy carefully. By using our Service, you acknowledge that you have read and understood this Privacy Policy.

2. Information We Collect

2.1 Information You Provide

We collect information you voluntarily provide when you:

• Contact us via email or inquiry forms (name, email address, message content)
• Subscribe to our Service (name, email address, business details)
• Provide content and materials for your website (business information, images, copy)

2.2 Payment Information

All payment transactions are processed by Paddle.com Market Limited ("Paddle"), our Merchant of Record. We do not collect or store your payment card details. Paddle's handling of your payment data is governed by Paddle's Privacy Policy.

2.3 Usage Data

When you visit our website, we may automatically collect limited technical data such as your IP address, browser type, pages visited, and the date and time of your visit. This data is used solely for security monitoring and improving site performance.

3. How We Use Your Information

We use the information we collect to:

• Provide, operate, and improve the Service
• Communicate with you about your subscription, updates, and support
• Process transactions via our payment processor (Paddle)
• Comply with legal obligations
• Prevent fraud and ensure security

We do not sell, rent, or trade your personal data to third parties for marketing purposes.

4. Legal Basis for Processing

Where applicable under data protection law (including the GDPR), we process your personal data on the following legal bases:

• Contract performance — to deliver the Service you have subscribed to
• Legitimate interests — to operate and improve our business, provided these interests do not override your rights
• Legal obligation — to comply with applicable laws and regulations
• Consent — where you have provided explicit consent (e.g., marketing communications)

5. Data Sharing

We share your data only with trusted third parties necessary to provide the Service:

• Paddle — payment processing and billing (Merchant of Record)
• Vercel — website hosting and deployment infrastructure
• Google Fonts — font delivery (may log your IP address)

Each third party is required to handle your data in accordance with applicable privacy laws. We do not share your data with advertising networks or data brokers.

6. Data Retention

We retain your personal data for as long as your account is active or as needed to provide the Service. Upon cancellation of your subscription, we may retain your data for up to 12 months for legal and accounting purposes, after which it is securely deleted.

7. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

• Access — request a copy of the personal data we hold about you
• Rectification — request correction of inaccurate data
• Erasure — request deletion of your data ("right to be forgotten")
• Portability — request your data in a structured, machine-readable format
• Objection — object to processing based on legitimate interests
• Restriction — request that we limit processing of your data

To exercise any of these rights, contact us at support@theinsite.dev. We will respond within 30 days.

8. Cookies

Our website uses minimal cookies strictly necessary for the site to function (e.g., session management). We do not use tracking cookies, advertising cookies, or third-party analytics cookies without your consent.

9. Security

We implement industry-standard security measures including HTTPS encryption, secure headers, and access controls to protect your data. However, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

10. Children's Privacy

Our Service is not directed to individuals under the age of 18. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will promptly delete it.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or by posting a notice on our website. The "Last updated" date at the top of this page reflects when the policy was last revised.

12. Contact

For privacy-related questions or to exercise your rights, please contact: