Privacy Policy

Effective date: August 31, 2025
Contact: cedric@confidentialmemo.com

This notice explains how we handle personal data for our email newsletter. As an EU-based company, we follow the GDPR. For California residents, CPRA rights also apply.

1) What Data We Collect

We collect only what’s needed to operate the newsletter.

1

Email address — provided through our signup form (single opt‑in).

2

Email engagement — standard open/click events recorded by our email provider to measure delivery and performance.

2) How We Use Your Data

  • Send the newsletter you requested (GDPR legal basis: consent).
  • Operate and improve email delivery and templates through our processor Mailjet (legal basis: legitimate interest).
  • Process payments if you purchase anything related to the newsletter via Stripe (legal basis: contract).

We do not sell personal data or use it for unrelated advertising or profiling.

3) Cookies & Tracking

Our emails may include a tracking pixel and link redirects operated by Mailjet for aggregate performance metrics. You can unsubscribe at any time, block images in your email client, or use available mail client preferences to limit tracking.

4) Data Sharing & Processors

We work with reputable providers under data processing agreements.

Mailjet (Sinch Mailjet SAS)
Email collection, list management, delivery, analytics

Data: email address, engagement events
Transfers outside the EEA rely on SCCs or equivalent safeguards.

Stripe, Inc. and affiliates
Payments

Data: email and payment identifiers handled by Stripe
Global infrastructure; transfers rely on SCCs or equivalents.

We do not share data with marketing partners or sell/share personal information for cross‑context advertising.

5) Data Retention

  • Subscriber emails: kept until you unsubscribe or request deletion.
  • Suppression records: minimal “do‑not‑contact” record retained to honor opt‑outs.
  • Payment records: retained as required by tax and accounting laws.

6) Your Rights (GDPR)

You can access, correct, delete, restrict, or object to certain processing, request portability, and withdraw consent at any time.

Use the unsubscribe link in any email or contact cedric@confidentialmemo.com.

7) California Privacy Rights (CPRA)

  • Right to know/access and request a copy of personal information collected.
  • Right to delete personal information (with legal exceptions).
  • Right to correct inaccurate personal information.
  • Right to opt out of sale/share — we do not sell or share personal information.
  • Right to limit use of sensitive personal information — we do not collect sensitive categories.

Exercise these rights via the unsubscribe link or email cedric@confidentialmemo.com. We verify requests using your email address.

8) Security

We apply common technical and organizational safeguards with our providers, including access controls and encryption in transit. Access is limited to legitimate business needs.

9) International Transfers

When data is transferred outside the EEA/UK, providers rely on Standard Contractual Clauses (SCCs) or other lawful transfer tools permitted by applicable law.

10) Policy Updates

If practices change, we’ll update this page and, if the changes are material, notify subscribers by email.

11) Contact

Questions or requests: cedric@confidentialmemo.com

12) Jurisdiction Notice

This policy is governed by Czech and EU law. Rights for California residents are described above.

Back to Home