Privacy Policy

Last Updated: April 3, 2025

1. Introduction

We respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you visit our website. It also outlines your rights under the General Data Protection Regulation (GDPR).

By using this website, you agree to the collection and use of information in accordance with this Privacy Policy.

2. Personal Data We Collect

When you visit and interact with our website, we collect the following types of personal data:

2.1 Automatically Collected Data

Through our website hosting provider, Squarespace, we automatically collect:

• Information about your browser, network, and device

• Web pages you visited prior to coming to this website

• Your IP address

• Website usage data, including clicks, internal links, pages visited, scrolling, searches, and timestamps

We collect this data to improve website performance and security.

2.2 Cookies and Tracking Technologies

We use cookies and similar technologies to analyze website traffic and improve user experience. These include:

• Necessary cookies: Required for website functionality (always enabled).

• Analytics and performance cookies: Used for site analytics (enabled only after user consent via the cookie banner).

For more information on the cookies used, visit The cookies Squarespace uses.

2.3 Data Collected When Making a Purchase

When you buy something on this website, we collect personal data necessary to process your order, including:

• Billing and shipping address

• Order details (e.g., product specifications)

• Email address

• Name

• Phone number

This information is shared with Squarespace (our online store provider) to facilitate order processing.

Additionally, if your purchase is fulfilled through Printify, your order details will be processed according to their privacy policy: Printify Privacy Policy.

For payments, we use Squarespace Payments, which integrates with Stripe and Sift for payment processing and fraud detection. You can review their privacy policies:

• Stripe: https://stripe.com/privacy

• Sift: https://sift.com/service-privacy

2.4 Data Shared with Third-Party Services

We use the following third-party services, which may receive limited personal data:

• Google Places API: Helps auto-complete addresses during checkout.

• Google Fonts and Adobe Fonts: To display fonts on our website. These services may collect your IP address and browser details.

3. Legal Basis for Processing Data

We process personal data under the following legal bases (GDPR Article 6):

• Contractual necessity: To fulfill purchases and provide customer service.

• Legitimate interest: To analyze website traffic and improve security.

• Consent: For optional cookies and analytics (obtained via cookie banner).

• Legal obligation: To comply with tax and regulatory requirements.

4. How Long We Retain Your Data

We retain personal data indefinitely, unless deletion is requested, for the following reasons:

• Order data: Retained indefinitely for customer service and record-keeping purposes.

• Analytics data: Retained indefinitely for business insights and website improvements.

• Customer service inquiries: Retained indefinitely to maintain service history.

If you request data deletion, we will securely erase or anonymize your personal data unless we are required to retain it for legal reasons.

5. How We Share and Protect Your Data

We do not sell your personal data. However, we may share it with:

• Squarespace (our website hosting provider)

• Payment processors (Stripe, Sift)

• Shipping and fulfillment partners (Printify, if applicable)

We implement security measures, such as encryption and access controls, to protect personal data from unauthorized access.

6. International Data Transfers

Some of our service providers (e.g., Squarespace, Stripe, Google) are based outside the European Economic Area (EEA). When transferring data internationally, we ensure GDPR compliance through:

• Standard Contractual Clauses (SCCs)

• Privacy Shield frameworks (where applicable)

7. Your Rights Under GDPR

As an EEA resident, you have the following rights regarding your personal data:

• Right to Access: Request a copy of your personal data.

• Right to Rectification: Request corrections to inaccurate data.

• Right to Erasure ("Right to be Forgotten"): Request deletion of your data (unless required for legal reasons).

• Right to Restriction: Request that we limit data processing.

• Right to Object: Object to data processing for marketing purposes.

• Right to Data Portability: Receive your data in a structured format.

• Right to Withdraw Consent: Revoke consent at any time (for consent-based processing).

To exercise your rights, contact us at hello@550am.net. We will respond within 30 days as required by GDPR.

8. Contact Information

If you have any questions about this Privacy Policy or how we handle your data, please contact us:

hello@550am.net