Privacy Policy of mermaidcreative.co

Last Updated: September 9, 2025 

IINTRODUCTION

The website mermaidcreative.co (the “Website”) is owned by Mermaid Creative Co., LLC, a Hawaiʻi limited liability company (“Mermaid Creative Co.,” “we,” “us,” or “our”).

We are committed to protecting your privacy and handling your personal data responsibly. This Privacy Policy explains how we collect, use, store, share, and protect personal information in connection with our Website and Services.

By accessing or using the Website, you acknowledge that you have read this Privacy Policy and agree to its terms. IF YOU DO NOT AGREE, PLEASE LEAVE THIS WEBSITE.


DEFINITIONS

“Website” = mermaidcreative.co and all pages/content and services offered through it.

“We,” “us,” “our” = Mermaid Creative Co., LLC.

“User,” “you,” “your” = website visitors, clients/customers, and any other users.

“Services” = branding and brand strategy; website design and development (including Showit); copywriting; SEO support; templates; digital products; courses; consulting; and related offerings.

“Personal Information” = data that identifies or can be reasonably linked to an individual (e.g., name, email, phone, billing address, payment details, project info).

“Processing” = any operation performed on Personal Information (collection, storage, use, disclosure, etc.).


PERSONAL INFORMATION WE COLLECT

We collect Personal Information that you voluntarily provide and certain information automatically via the Website:

1) You provide it:
 - Contact & inquiry data (e.g., name, email, phone, message content) when you submit forms, DM us, book calls, or respond to questionnaires.
- Opt-ins & subscriptions (e.g., name, email) when you request resources or join our mailing list.
- Purchase & project data when you engage our Services (e.g., name, email, billing address, limited payment details processed by third-party gateways, project briefs, brand assets).
- UGC (content you post or send, such as testimonials, comments, photos, or portfolio permissions).

2) Collected automatically:
- Technical/usage data (e.g., IP address, device/browser type and version, pages viewed, timestamps, referral URLs) via cookies, pixels, and analytics tools (e.g., Google Analytics, Meta/ Facebook Pixel).
- Cookie data (session and persistent). See “Cookies & Tracking” below.
- We generally act as Data Controller for Personal Information collected through the Website. We may use vetted Data Processors (see “Sharing”).


HOW WE USE PERSONAL INFORMATION

We use Personal Information to:
1. Respond to inquiries and communicate with you.
2. Provide and improve our Services, deliver proposals, contracts, assets, and support.
3. Process transactions and manage client accounts (through secure third-party payment processors).
4. Send communications you request or consent to (resources, updates, service-related notices).
5. Market responsibly (e.g., email, audience building on ad platforms, with respect for opt-out choices).
6. Operate, maintain, and secure the Website; diagnose issues; analyze performance and usage.
7. Comply with legal obligations and enforce our agreements.

We do not make automated decisions about you that produce legal or similarly significant effects.


LAWFUL BASES (GDPR where applicable)

Depending on context, we process data on one or more of these bases: consent, contract, legitimate interests (e.g., communicating with users, improving services, reasonable direct marketing), and legal obligation.


SHARING OF PERSONAL INFORMATION

We do not sell your Personal Information. We share it only as needed to run our business, including with:
- Service providers / processors: e.g., Showit (website platform), Google Workspace (email/cloud), HoneyBook or similar (CRM/contracts/invoicing), Stripe/PayPal (payments), analytics/ad platforms (Google/Meta), cloud storage, and email marketing tools.
- Professional advisors: legal, tax, or accounting, as necessary.
- Business transfers: in connection with a merger, acquisition, or similar event.
- Legal compliance & safety: to comply with law, court orders, or to protect rights, safety, and security.
- All third parties are expected to keep data confidential and use it only for the purposes we specify.


INTERNATIONAL TRANSFERS & STORAGE

Personal Information may be stored and processed in the United States and other jurisdictions where our providers operate. If your data is transferred internationally, we rely on appropriate safeguards permitted by applicable law.


DATA SECURITY

We use commercially reasonable measures (e.g., SSL, access controls, reputable vendors) to protect Personal Information. No method of transmission or storage is 100% secure. If a data incident occurs, we will notify affected users and/or authorities when legally required.


DATA RETENTION

We retain Personal Information only as long as necessary for the purposes described (e.g., client records, legal/tax obligations, dispute resolution). When no longer needed, data is deleted or anonymized.


YOUR RIGHTS

Subject to applicable law, you may have rights to access, receive a copy of, correct, delete/erase, restrict processing, or object to certain processing, and to withdraw consent at any time (without affecting prior lawful processing).
To exercise rights or make a request, contact us at:
Email: aloha@mermaidcreative.co

You can unsubscribe from marketing emails via the link in our messages or by contacting us. Service-related emails (e.g., invoices, project notices) may still be sent when necessary.


COOKIES & TRACKING

We use cookies and similar technologies to operate and improve the Website, remember preferences, measure traffic, and support marketing/analytics.

Session cookies expire when you close your browser; persistent cookies remain until deleted or expired.

You may disable cookies in your browser; some features may not function properly.

Our Website currently does not respond to “Do Not Track” signals.

Third-party tools (e.g., Google Analytics, Meta) collect usage data under their own policies.


EXTERNAL LINKS & SOCIAL MEDIA

Links to third-party websites or platforms are provided for convenience. Their privacy practices are not governed by this Policy. Review those sites’ policies before sharing information. Your use of social platforms (e.g., Instagram, Facebook, Pinterest) is governed by the respective platform terms and privacy policies.


PASSWORDS / ACCOUNT ACCESS

If you create credentials for any client portal or course area, you are responsible for keeping your username/password confidential and for any activity under your account. Notify us promptly of unauthorized access.


CHILDREN

This Website is intended for users 18 years and older. We do not knowingly collect Personal Information from children under 18. If you believe a child has provided Personal Information, contact us to request deletion.


STATE/REGIONAL NOTICES (e.g., CCPA/CPRA, GDPR)

Where applicable, you may have additional rights under laws like the CCPA/CPRA (California) or GDPR (EU/UK), including disclosure of specific data categories collected, sources, purposes, and third-party disclosures. We do not sell Personal Information as defined by these laws. To submit a rights request, use the contact information below. We will verify and respond within required timeframes.


GOVERNING LAW

This Policy and any disputes arising from it are governed by the laws of the United States and the State of Hawaiʻi, without regard to conflict of law principles.


CHANGES TO THIS PRIVACY POLICY

We may update this Policy at any time. Changes take effect upon posting to this page, identified by the “Last Updated” date. Your continued use of the Website after changes are posted constitutes acceptance of the revised Policy.


CONTACT

Questions about this Privacy Policy or your Personal Information?
Email: support@mermaidcreative.co