Document effective May 25th, 2018

We take privacy seriously and will only use your personal information to administer your account.

Who we are

We are Gapcraft LLC, owners of the website.

What personal data we collect and why we collect it


We collect information about you during the checkout process on our store. This information may include, but is not limited to, your name, billing address, shipping address, email address, phone number, credit card/payment details and any other details that might be requested from you for the purpose of processing your orders.

Handling this data also allows us to:

  • Send you important account/order/service information.
  • Respond to your queries, refund requests, or complaints.
  • Process payments and to prevent fraudulent transactions. We do this on the basis of our legitimate business interests.
  • Set up and administer your account, provide technical and/or customer support, and to verify your identity.

Additionally we may also collect the following information:

  • Location and traffic data (including IP address and browser type) if you place an order, or if we need to estimate taxes and shipping costs based on your location.
  • Product pages visited and content viewed while your session is active.
  • Your comments and product reviews if you choose to leave them on our website.
  • Account email/password to allow you to access your account, if you have one.
  • If you choose to create an account with us, your name, address, and email address, which will be used to populate the checkout for future orders.

Contact forms

When you submit a question we collect your first name, last name and email address so that we can correspond with you.

Information submitted through the contact forms on our site is sent to our company email, hosted by SiteGround. SiteGround is GDPR-compliant as of May 25th, 2018 and you can find more information about that here.


When you subscribe to our newsletter we collect your name and email address so that we can correspond with you. Your personal data will be stored by MailChimp, the service we use to send our newsletters. MailChimp is GDPR-compliant as of May 25th, 2018 and you can find more information about that here.


When you submit a testimonial we collect your name, email address and potentially other information like your business name and website address. This information is stored in our database for verification and customer service purposes.

Your testimonial may be published on our website and your submitted information, except for your email address, may be visible to the public in the context of the testimonial.


Sometimes, to help debug a plugin-related issue on your site, we may ask you to share a copy of your site with us or provide temporary admin access.

If providing a copy of your site, since it is your site, you are responsible for its data and we strongly encourage you to remove any personal information from the database before sharing it with us.

If providing temporary admin access, we strongly encourage you to use a plugin like Temporary Login Without Password to help ensure security.

Important points about those two scenarios:

  • We use that copy or access strictly for debugging.
  • We do not share that data with anyone outside of the company.
  • We destroy this information after the issue is resolved.
  • Your support tickets are only accessible to you and our support staff. They are not public.
  • We cannot be held responsible for any loss of private information from databases. You should have a fully working backup of any site you share with us.


When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: After approval of your comment, your profile picture is visible to the public in the context of your comment.


If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.


Most web browsers are set to accept cookies by default. If you choose to remove or reject cookies, your ability to use our site may be affected.

Our site uses the following cookies:

Google Analytics – For monitoring and tracking visitor behavior on the site.

WordPress – If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information. Login cookies last for two days. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

Easy Digital Downloads – Used by the Easy Digital Downloads plugin and its officially approved add-ons to track visitors and their purchased items in the cart.

Social Sharing

Our website may include social sharing features for common social networks. These features are served from third-party services that may serve their own cookies. For more information about the purpose and scope of data collection and processing in connection with social sharing features, please visit the privacy policies of those services.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.


In addition to Google Analytics, we are using the following statistics on our site for performance and monitoring:

Awesome Support – Regarding our support ticket process: how many tickets created, resolved, pending, etc.

Easy Digital Downloads – Regarding our sales, conversion rates, refunds, etc.

Who we share your data with

PayPal – When using PayPal to checkout, a customer will provide login information and credit card information which is processed directly within this gateway payment and is not saved on our site.

Stripe – When using Stripe to checkout, a customer will provide credit card information which is processed directly within this gateway payment and is not saved on our site.

Who can see my personal information

If you are not a registered customer in our site, there is no personal information we have or can see about you.

If you are a customer with an account (by making a purchase or submitting a support request), your personal information can be accessed by:

  • Our site administrators.
  • Our support staff when necessary to provide support.

How long we retain your data

When you submit a support ticket or a comment, its metadata is retained until (if) you tell us to remove it. We use this data so that we can recognize you and approve your comments automatically instead of holding them for moderation.

If you register on our website, we also store the personal information you provide in your user profile. You can see, edit, or delete your personal information at any time (except changing your username). Website administrators can also see and edit that information.

How we protect your data

We use SSL/HTTPS throughout all our sites. This encrypts our user communications with the servers so personal identifiable information is never captured by third parties without authorization.

We take reasonable measures to help protect all information about you from loss, theft, misuse and unauthorized access, disclosure, alteration and destruction.

In case of a data breach, site administrators will immediately go through affected users and will attempt to reset passwords if needed after informing the user.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

Visitor comments may be checked through an automated spam detection service.

Changes to this privacy policy

We reserve the right to modify this privacy policy at any time, so please review it frequently. Changes and clarifications will take effect immediately upon their posting on the website. If we make material changes to this policy, we will notify you here that it has been updated, so that you are aware of what information we collect, how we use it, and under what circumstances, if any, we use and/or disclose it.

Contact information

If you have questions, contact us here: