Privacy Policy
This Privacy Policy explains how PixiePinesPress (“we”, “us”) collects and processes personal data when you use our website or contact us.
Last updated: 2026-01-21 (Europe/Amsterdam).
Controller: MrX Creative Studio (trade name: PixiePinesPress).
Contact: Use the contact form on this site or email us at the address provided in our replies.
1) What data we collect
- Contact data: name, email address, message content, and any links/assets you send (e.g., brand references, logos).
- Project data: information needed to deliver work (site requirements, content, preferences, revisions).
- Billing data: invoice details and payment confirmations (processed via your selected payment method/provider).
- Technical data: basic server logs (e.g., IP address, user agent, timestamps) for security and debugging.
2) Why we process your data (purposes)
- To respond to inquiries and provide Loom/email guidance.
- To prepare quotes, invoices, and deliver services.
- To operate and secure the website (anti-abuse, debugging, monitoring).
- To comply with legal obligations (accounting and tax requirements).
3) Legal bases (GDPR)
- Contract (Art. 6(1)(b)): to deliver services you request.
- Legitimate interests (Art. 6(1)(f)): to keep our site secure, prevent abuse, and communicate efficiently.
- Legal obligation (Art. 6(1)(c)): accounting/tax compliance.
- Consent (Art. 6(1)(a)): where required (e.g., optional analytics/marketing tools, if enabled).
4) Cookies and similar technologies
We use minimal cookies/local storage where needed for functionality (for example, remembering your currency selection).
If we add optional analytics/marketing tools in the future, we will update this policy and implement consent where required.
- Functional storage: currency preference (e.g.,
localStorage: pixie_ccy).
- No selling of personal data: we do not sell personal data.
5) Who we share data with (processors)
We only share data with service providers necessary to run the website and deliver the service.
Depending on your setup, this may include:
- Hosting / deployment: Namecheap (cPanel), Netlify, Vercel (if used for your project).
- Email delivery: our email provider used to communicate with you and deliver updates.
- Payments: payment processors/banks used for invoicing and payments.
6) International transfers
Some providers may process data outside the EEA. Where applicable, transfers rely on appropriate safeguards
(for example, Standard Contractual Clauses) provided by those vendors.
7) Data retention
- Inquiry messages: typically retained up to 24 months to maintain continuity and provide support.
- Project files: retained for the duration of the project and a reasonable period after delivery for support.
- Invoices/accounting: retained as required by law.
- Security logs: retained short-term for security and troubleshooting.
8) Your rights
Under GDPR you may have the right to:
- Access your data
- Rectify inaccurate data
- Delete data (where applicable)
- Restrict processing
- Data portability (where applicable)
- Object to processing based on legitimate interests
- Withdraw consent (where processing is based on consent)
To exercise your rights, contact us via the website form or email. We may need to verify your identity before fulfilling a request.
9) Security
We use reasonable technical and organizational measures to protect data. No method of transmission or storage is 100% secure.
10) Children
Our services are intended for business owners and creators. We do not knowingly collect personal data from children.
11) Changes to this policy
We may update this policy as the site and tool stack evolves. The “Last updated” date will be adjusted accordingly.
