Skip to main content

LEGAL

Privacy Policy

Last updated: April 2026

1. Information We Collect

Information You Provide

When you use our contact form or communicate with us, you may provide:

  • Name
  • Email address
  • Company name
  • Message content describing your inquiry

We do not require account registration to browse the Site.

Information Collected Automatically

When you visit the Site, we automatically collect certain usage data through our analytics platform (PostHog), including:

  • Pages viewed and navigation patterns
  • Referring URL
  • Device type, browser type, and operating system
  • Approximate geographic location (country/region level)
  • Session duration and interaction patterns

We use PostHog in privacy-preserving mode, which relies on server-side identification rather than persistent tracking cookies. We do not use advertising cookies, cross-site tracking, or third-party analytics platforms.

Security Cookies

Our CDN provider (Cloudflare) sets strictly necessary cookies for security and performance purposes:

  • __cf_bm: Bot management (expires after 30 minutes)
  • __cflb: Load balancing (session duration)
  • __cfruid: Rate limiting (session duration)

These cookies are essential for the secure operation of the Site and cannot be disabled.

2. How We Use Your Information

We use information collected through the Site to:

  • Respond to your inquiries and provide requested services
  • Understand how visitors use the Site to improve content and functionality
  • Maintain the security and integrity of the Site
  • Comply with legal obligations

We do not sell, rent, or share your personal information with third parties for their marketing purposes.

3. Third-Party Service Providers

We use the following service providers to operate the Site:

  • PostHog (analytics): Collects anonymous usage data to help us understand Site performance. PostHog processes data on our behalf and does not use your data for its own purposes.
  • Cloudflare (CDN and security): Provides content delivery, DDoS protection, and SSL encryption.
  • Resend (email delivery): Delivers email notifications from our contact form. Resend processes message data on our behalf and maintains SOC 2 compliance.

Each provider is contractually bound to process data only as directed by us and to maintain appropriate security measures.

4. Data Retention

  • Contact form submissions: Retained for up to three (3) years for business relationship management, then deleted.
  • Analytics data: Retained for up to twenty-four (24) months, then automatically purged.
  • Security logs: Retained for up to twelve (12) months for incident investigation purposes.

5. Data Security

We implement reasonable administrative, technical, and physical safeguards to protect the information we collect, including:

  • TLS encryption for all data in transit
  • Access controls limiting data access to authorized personnel
  • Regular security monitoring and patching
  • Secure hosting infrastructure with reputable cloud providers

No method of electronic transmission or storage is completely secure. While we strive to protect your information, we cannot guarantee absolute security.

6. Your Rights

You may:

  • Request access to the personal information we hold about you
  • Request correction of inaccurate information
  • Request deletion of your personal information
  • Withdraw consent for any processing based on consent

To exercise any of these rights, contact us at contact@northwerk.com. We will respond within thirty (30) days.

7. California Residents

While Northwerk does not meet the thresholds requiring compliance with the California Consumer Privacy Act (CCPA/CPRA), we voluntarily extend the following rights to California residents:

  • The right to know what personal information we collect and how it is used
  • The right to request deletion of personal information
  • The right to non-discrimination for exercising privacy rights

We do not sell personal information as defined under the CCPA.

8. Children's Privacy

The Site is not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If we become aware that we have collected information from a child under 16, we will take steps to delete that information promptly.

9. International Users

The Site is operated from the United States. If you access the Site from outside the United States, your information may be transferred to and processed in the United States, where data protection laws may differ from those in your jurisdiction.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated “Last Updated” date. Material changes will be communicated through a prominent notice on the Site.

11. Contact

If you have questions about this Privacy Policy or our data practices, contact us:

Northwerk LLC

contact@northwerk.com