← Back to site
Legal · Your privacy

Privacy & Cookie Policy

Effective 1 June 2026 Last updated 1 June 2026 Controller Pipelinestack, Inc.

01Who we are

This policy explains how Pipelinestack, Inc. ("Pipelinestack", "we", "us") handles personal data collected through pipelinestack.ai and our related services. For the purposes of the EU/UK GDPR, Pipelinestack is the data controller for the personal data described here.

Registered address: [Company registered address]. Questions? Reach us anytime at privacy@pipelinestack.ai.

The short version: we collect only what we need to reply to you and run a working website. We never sell your data and never enroll you in a nurture sequence without your say-so.

02What we collect

Information you give us

  • Contact form — your business email and phone number (required), plus any message you write. Personal email domains (Gmail, Yahoo, Outlook, etc.) are rejected at submission.
  • Booking a call — when you schedule via our Google-powered calendar, the booking details (name, email, time) are processed by Google on our behalf.

Information collected automatically

  • Privacy-first analytics — if you allow the Analytics cookie category, we use Plausible Analytics, which is cookie-less and does not track you across sites or collect personal data. It records aggregate page views, referrers and country only.
  • Security — our anti-spam check (Cloudflare Turnstile) processes limited technical signals to confirm you are human.

03How we use your data

  • To respond to your enquiry and schedule an introductory call.
  • To operate, secure and improve the website and contact experience.
  • To protect the form against spam and abuse.
  • To meet our legal and accounting obligations.

We do not sell your personal data, and we do not use it for automated decision-making that produces legal effects about you.

05Cookies & tracking

Nothing non-essential loads until you choose. You can change or withdraw your choices anytime via the Cookie settings link in the website footer.

CategoryPurposeSet by default?
NecessaryKeep the site and contact form working; remember your cookie choices.Always on
FunctionalLoad the Google booking calendar widget.Only with consent
AnalyticsCookie-less, aggregate usage stats via Plausible.Only with consent

The Google calendar and Cloudflare Turnstile may set their own third-party cookies when loaded; these are governed by their respective privacy policies.

06Who we share data with

We share data only with service providers ("processors") who help us run the site, under contracts that require them to protect it:

  • Formspree — delivers your contact-form submission to our inbox.
  • Google — powers the appointment-booking calendar.
  • Cloudflare — provides bot/spam protection (Turnstile).
  • Plausible Analytics — privacy-first, cookie-less analytics (only if you consent).
  • Our hosting / email providers — to serve the site and correspond with you.

We may also disclose data where required by law, or to protect our rights, safety, or property.

07How long we keep it

We keep enquiry and booking data only as long as needed to respond and, where relevant, to manage our business relationship — typically up to 24 months after our last contact, unless a longer period is required by law. Aggregate analytics contain no personal data and may be kept indefinitely.

08Your rights

Depending on where you live (e.g. the EU/UK under GDPR, or California under CCPA/CPRA), you may have the right to:

  • Access the personal data we hold about you;
  • Correct inaccurate data or complete incomplete data;
  • Delete your data ("right to be forgotten");
  • Restrict or object to certain processing;
  • Receive your data in a portable format;
  • Withdraw consent at any time, without affecting prior processing;
  • Opt out of any "sale" or "sharing" of personal information — note we do not sell or share data in this sense.

To exercise any right, email privacy@pipelinestack.ai. We will respond within the timeframe required by law. EU/UK users may also lodge a complaint with their local data-protection authority.

09Security

The site is served over HTTPS, and we apply technical and organisational measures appropriate to the risk. In line with our service model, customer data we work with on engagements stays inside your systems — we operate on it, we don't take custody of it. No method of transmission over the internet is 100% secure, but we work hard to protect your information.

10International transfers

Our providers may process data in the United States and other countries. Where data leaves the EU/UK, we rely on appropriate safeguards such as the EU Standard Contractual Clauses and the UK Addendum, or an adequacy decision, to protect it.

11Children

Pipelinestack is a business-to-business service and is not directed to anyone under 16. We do not knowingly collect data from children.

12Changes to this policy

We may update this policy from time to time. Material changes will be reflected in the "Last updated" date above and, where appropriate, communicated to you.

13Contact us

For any privacy question or request:

Prefer to talk it through? Book a 30-minute call and we'll answer in person.