Privacy Policy — Beehive Bakery CDA, LLC

Effective date: August 23, 2025

This Privacy Policy explains how Beehive Bakery CDA, LLC (“Beehive Bakery,” “we,” “us,” or “our”) collects, uses, and shares information when you visit our website, purchase products, or attend events. By using our services, you agree to this Policy.

1) Information We Collect

  • Identifiers & Contact Info: name, email, phone, billing/shipping address.

  • Order & Payment Info: products purchased, order history, and limited payment details. Card processing is handled by our payment processors (e.g., Stripe, Square, PayPal); we do not store full card numbers.

  • Account Data: login, preferences, saved addresses.

  • Communications: messages, support requests, reviews.

  • Internet/Device Data: IP address, browser type, device identifiers, pages viewed, referring/exit pages, date/time stamps, and similar analytics.

  • Location Data: approximate location derived from IP address.

  • Event/Class Data: ticket details, attendance status, dietary notes you choose to share.

2) How We Use Information

  • Provide services: process orders, deliver products, run classes and events.

  • Customer support: respond to questions, handle returns/cancellations.

  • Improve & personalize: analyze site usage, improve recipes, classes, and content.

  • Marketing (with consent where required): send updates about new classes, products, and offers; you can opt out anytime.

  • Security & fraud prevention: detect, investigate, and prevent fraudulent or illegal activity.

  • Legal compliance: tax, accounting, and regulatory obligations.

If you are in the EEA/UK, our lawful bases include contract performance, legitimate interests (e.g., site security, product improvement), legal obligations, and consent where required.

3) Cookies & Analytics

We and our service providers use cookies and similar technologies for core site functionality, performance, and marketing. You can manage cookies in your browser settings and via on-site controls (if implemented). We may use analytics tools (e.g., Google Analytics) to understand aggregate usage. Some tools provide their own opt-outs.

4) How We Share Information

We share information with:

  • Service providers (website platform/hosting, payment processors, shipping carriers, email/SMS tools, analytics).

  • Business partners/venues for specific classes or co-hosted events, as needed to run the event.

  • Authorities when required by law, to protect rights, or investigate fraud.
    We do not sell your personal information for money. We may “share” or use targeted advertising depending on how our site is configured; see “Your Privacy Rights” for opt-out options.

5) Data Retention

  • Orders & transactions: retained as required for tax and accounting (generally up to 7 years).

  • Marketing contacts: kept until you unsubscribe or request deletion.

  • Class records: typically 24 months after the event for customer support and scheduling.
    We also retain data as needed to resolve disputes and comply with legal obligations.

6) Security

We use reasonable administrative, technical, and physical safeguards designed to protect personal information. No method of transmission or storage is 100% secure.

7) Children’s Privacy

Our site and services are not directed to children under 13. If we learn we have collected personal information from a child under 13, we will delete it.

8) Your Privacy Rights

Depending on your location, you may have rights to:

  • Access the personal information we hold about you.

  • Correct inaccurate information.

  • Delete your information.

  • Portability (receive your data in a usable format).

  • Opt out of marketing emails at any time (unsubscribe link).

  • Opt out of targeted advertising or certain data “sharing” (see below).

California/Colorado/Virginia/Connecticut/Utah Residents

You may have additional rights to limit, opt out of sale/sharing, or limit use of sensitive data (we do not intentionally collect sensitive data beyond dietary notes you voluntarily share). Where legally required, we will honor browser-based opt-out signals (e.g., Global Privacy Control) for sale/sharing. To exercise rights, see “How to Contact Us.”

EEA/UK Residents

You have the rights listed above plus the right to object to processing based on legitimate interests and to lodge a complaint with your local supervisory authority. When we rely on consent, you can withdraw it at any time.

9) International Transfers

If you access our site from outside the United States, your data may be processed in the U.S. We use appropriate safeguards where required.

10) Do Not Track

Our site may not respond to browser “Do Not Track” signals. We do honor legally required GPC signals for sale/sharing opt-outs where applicable.

11) Third-Party Links

Our site may link to third-party websites or apps. Their privacy practices are governed by their own policies.

12) Changes to This Policy

We may update this Policy from time to time. Material changes will be noted by updating the “Effective date” above. Continued use of the site after changes means you accept the updated Policy.

13) How to Contact Us / Submit a Privacy Request

  • Email: tinateets@gmail.com

  • Privacy Requests: Please include your name, email, request type (access/correct/delete/opt-out), and sufficient detail to verify your identity. We will respond within the timeframe required by law.