Privacy Policy
Last updated: March 2026
Information We Collect
When you visit steepcha.com, we collect information you provide directly: name, email address, shipping address, and payment information when placing an order. We also collect basic analytics data (pages visited, browser type) to improve our site. We use Google OAuth for account sign-in, which provides your name and email from your Google profile.
How We Use Your Information
We use your information to: process and fulfill orders, send order confirmations and shipping updates, respond to customer service requests, improve our website and products, and send marketing communications (only with your consent). We never sell your personal information to third parties.
Payment Security
All payments are processed securely through Stripe. We never store your credit card information on our servers. Stripe is PCI-DSS Level 1 certified — the highest level of payment security certification.
Cookies
We use essential cookies to maintain your shopping cart and login session. We use analytics cookies (Google Analytics) to understand how visitors use our site. You can disable cookies in your browser settings.
Third-Party Services
We use the following third-party services: Stripe (payment processing), Google OAuth (account sign-in), Vercel (website hosting), and Cloudflare (DNS and security). Each service has its own privacy policy governing their use of your data.
Data Retention
We retain your order information for as long as needed to fulfill your order and comply with legal obligations. You can request deletion of your account and personal data at any time by contacting us.
Your Rights
You have the right to: access the personal data we hold about you, request correction of inaccurate data, request deletion of your data, opt out of marketing communications, and lodge a complaint with a data protection authority.
Contact
For privacy-related questions, contact us at hello@steepcha.com.