Privacy Policy

Who we are

We want your business – not your data.

The traditional eCommerce business model thrives economically by using massive data collection to persuade the end user to convert a transaction. We are taking the opposite approach.

We collect the minimum amount of data required to legally process your transaction – and remove it from our servers within 30 days. Order data is then stored encrypted with names, addresses and emails anonymized from the data sets. Some data may be held longer by third-parties (partner privacy policies linked below).

eCommerce Sites Are Notoriously Leaky with Data

Web hosting providers, payment processors, and third party shipping companies all require data from the customer to function properly. Here is what we are doing to mitigate the impact of your data:

Web Hosting:

We take your security seriously and rebuilt Key Stack using open source tools WordPress and WooCommerce. Our hosting provider – WPEngine – sets the standard for security and privacy.

Payment Processors:

BTCPayserver for the win. Why use anything else? If you insist on using dirty fiat – we do accept it – but your stuck with using PayPal as our payment processor. PayPal is a data collecting company – and they don’t delete customer order data. Our recommendation is to use BTCpayserver and then stack more sats with your fiat.

Shipping:

We need an address so we know where to ship your order. We couldn’t find any third party shipping services that can handle your data to our standards so we are going back to old school hand-written shipping labels.

Metering out each shipment means we lose our bulk discount with third party shipping providers – but we gain back privacy.

International orders require additional information to clear customs and we do need to use a third-party to create the paperwork and ship these orders. We do this directly with USPS, skipping the additional third parties commonly used for ecommerce.

PRO TIP: Stop shipping online orders directly to your house! Use a PO Box and package mail forwarding services.

What personal data we collect and why we collect it

We need a shipping address, email address, recipient name and payment for us to successfully process your order. A telephone number is also required for international shipments. Within 30 days of order finalization your data (that we hold) will be anonymized.

What rights you have over your data

We like to make sure that we have a line of communication available from when you place your order until you receive it and are satisfied with your order. After that, we have no use for knowing your name, email address, and shipping address and are happy to expedite the data delete request. Email us at keystack@protonmail.com with the subject line Data Delete Request and we will take care of it right away.

We are required to retain sales data for accounting, tax and legal purposes that includes order invoice amounts and destination shipping zip codes.

Cookies

You can read our cookie policy here.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Who we share your data with

Depending on your order, any of the following third parties may receive information about your order. We’ve included links to their privacy policies below.

PayPal: https://www.paypal.com/us/webapps/mpp/ua/privacy-full

WPEngine: https://wpengine.com/legal/privacy/

BTCPayserver: https://blog.btcpayserver.org/privacy-policy/

ProtonMail: https://protonmail.com/privacy-policy

USPS: https://about.usps.com/who/legal/privacy-policy/full-privacy-policy.htm

Questions?

Email us at keystack@protonmail.com