This Privacy Policy explains what data we collect, how we use it, and your rights regarding that data. It applies to sitdownkid.com and the digital book sold here.
We're based in Prague, Czech Republic, and we follow the EU General Data Protection Regulation (GDPR) and Czech privacy law.
01Who We Are
This website is operated by an individual seller based in Prague, Czech Republic. For privacy questions, contact us at hello@sitdownkid.com.
In plain English: We're a one-person operation. We don't have a marketing team selling your data. We don't have an ad network. We collect the minimum we need to sell you a book and deliver it.
02What Data We Collect
When you visit the website:
- Basic anonymous analytics (page views, country, browser type) collected by our hosting provider (Netlify) for security and performance purposes
- No tracking pixels, no Facebook Pixel, no Google Analytics by default
When you buy the book:
- Your email address — collected by Stripe at checkout, used to send your receipt and book download
- Billing details (name, country, postal code) — collected by Stripe for payment processing and tax compliance
- Payment information (card number, etc.) — handled entirely by Stripe; we never see or store this
When you email us:
- Whatever you choose to write to us, plus the email address you sent it from
03How We Use Your Data
We use your information only to:
- Process your payment and deliver the book you bought
- Send you a receipt and download link
- Respond to your questions or support requests
- Comply with legal obligations (tax records, etc.)
- Detect and prevent fraud or abuse
We do NOT:
- Sell your data to anyone, ever
- Use your data for advertising or marketing without your explicit consent
- Share your data with third parties except as listed below
04Who We Share Data With
We use these third-party services to operate the business. Each is a separate company with their own privacy policy:
- Stripe — payment processing (stripe.com/privacy)
- Netlify — website hosting (netlify.com/privacy)
- Cloudflare — domain and DNS services (cloudflare.com/privacypolicy)
We may also share data when required by law, court order, or to protect against fraud or abuse.
05How Long We Keep Data
- Purchase records: 10 years (required by Czech tax law)
- Email correspondence: 2 years after your last contact
- Anonymous website analytics: as set by Netlify (typically 30 days)
06Your Rights (GDPR)
If you are in the European Union (or Czech Republic), you have the following rights under GDPR:
- Access — request a copy of the personal data we hold about you
- Correction — ask us to correct inaccurate data
- Deletion — ask us to delete your data (subject to legal obligations like tax records)
- Restriction — ask us to limit how we use your data
- Portability — request your data in a portable format
- Objection — object to certain uses of your data
- Withdraw consent — withdraw any consent you previously gave
- Lodge a complaint — with the Czech Office for Personal Data Protection (uoou.cz) or your local data protection authority
To exercise any of these rights, email hello@sitdownkid.com. We'll respond within 30 days.
07Cookies
This website does not use any cookies for tracking, advertising, or analytics.
Our payment processor (Stripe) and hosting provider (Netlify) may set strictly necessary cookies when you interact with the checkout or website. These are essential for the services to function and do not require consent under EU law.
08International Data Transfers
Some of our service providers (Stripe, Netlify, Cloudflare) are based in the United States. When your data is transferred outside the EU, it is protected by approved transfer mechanisms (such as Standard Contractual Clauses) as required by GDPR.
09Children's Privacy
This website and the Book are intended for adults (18 and over). We do not knowingly collect data from anyone under 18. If you believe a minor has provided us with personal data, please contact us and we will delete it.
10Data Security
We use industry-standard security measures including encrypted connections (HTTPS), secure payment processing through Stripe, and access controls on our systems. However, no system is 100% secure. If a data breach occurs, we will notify affected users and authorities as required by law (within 72 hours under GDPR).
11Changes to This Policy
We may update this Privacy Policy from time to time. The current version will always be available on this page with the "Last updated" date at the top. Material changes will be communicated by email to active customers where possible.
12Contact
Questions about this Privacy Policy or your data? Email hello@sitdownkid.com.