Privacy Policy

Privacy Policy

Last updated: June 8, 2026

Summary: We collect only the data necessary to provide our services, use trusted third-party processors such as Stripe, and take reasonable measures to protect your information.

1. Who We Are

24TechDesign LLC ("24TechDesign," "we," "us," or "our") provides website design, development, and maintenance services through multitenant platforms. For the purposes of data protection laws, we act primarily as a data processor for client data and a data controller for our own business operations.

Data Isolation: While our platform uses shared codebase architecture, client data is logically separated and isolated. Each client website operates independently with its own data boundaries.

Shared Authentication: User authentication is managed at the platform level using phone number verification (SMS one-time passcodes). This means an account created at one merchant on our platform can be used to sign in at other merchants on the same platform. However, each merchant's customer data — including order history, loyalty points, and preferences — is fully isolated per merchant and is never shared between merchants.

2. Information We Collect

Information You Provide

  • Contact details (name, email, phone number, business name)
  • Billing and payment details (processed securely by a third‑party payment processor; we do not store full card numbers)
  • Website content and assets you submit
  • Support requests and communications

Information Collected Automatically

  • IP address, browser type, device information
  • Usage and performance analytics
  • Error logs and service diagnostics
  • Subscription and payment status via a third‑party payment processor

Categories of Personal Information Collected (CCPA)

For purposes of the California Consumer Privacy Act, as amended ("CCPA"), in the preceding twelve (12) months 24TechDesign has collected the following categories of personal information. Each category may be shared with the service providers described in Section 7 (Information Sharing) for the business purposes of operating, securing, and improving the services. We do not sell personal information; see Section 11.

Category Collected Shared for a Business Purpose
Identifiers — real name, postal address, email address, phone number, account name, unique personal identifier Yes Yes
Online Identifiers — IP address, device identifier, advertising identifier, cookies, push notification tokens Yes Yes
Protected Classification Characteristics — age, gender, race, national origin, etc. No No
Commercial Information — records of products or services purchased, order history, consuming histories or tendencies Yes Yes
Biometric Information No No
Internet or Network Information — browsing and search activity within our services, interaction with our website or mobile app Yes Yes
Geolocation Data — approximate device location when permitted by the user, used for store-locator and pickup/delivery features Yes Yes
Sensory Information — audio, electronic, visual, or similar information No No
Professional or Employment Information No No
Education Information No No
Inferences — preferences, characteristics, or tendencies drawn from other categories (e.g., favorite items inferred from order history) Yes Yes
Financial Information — payment tokens and partial card data (last 4, brand, expiration); 24TechDesign does not store full card numbers, which are tokenized and processed by the third-party payment processor Yes (tokens only) Yes
Medical or Health Information No No

We collect the categories above directly from you, from your interactions with our services, from your merchant's POS provider where you have authorized that integration, and from the third-party service providers listed in Section 7.

3. Data Collection for POS Integration

POS Marketplace Integration: For merchants using our online ordering platform integrated with a third-party point-of-sale ("POS") provider, we collect and process additional data as described below.

Data Collection from the POS Provider

To provide our services, we collect and store specific information from your POS provider account, including:

  • Merchant details: Store hours, branding assets, and business information
  • Inventory data: Menu items, categories, modifiers, and pricing
  • Customer information: Name, contact details, and transaction history

External Loyalty Database

To facilitate our multi-tier rewards program, customer contact information and loyalty point balances are stored securely on our external servers. This data is used to track loyalty status, apply rewards, enable the rewards program functionality, and for platform analytics and service improvement. Each merchant's loyalty data is isolated and independent from other merchants on the platform.

Payment Security for POS Integration

We do not store or process raw credit card data on our servers. Where payments are accepted through the platform, all payment transactions are handled by the merchant's POS provider or by a third-party payment processor, in each case using a hosted, PCI-DSS compliant payment form or iFrame and tokenization of sensitive payment information. Payment tokens are securely transmitted to the applicable processor for authorization and settlement.

4. Mobile Application Data Collection

Mobile Apps: 24TechDesign develops and publishes mobile applications on behalf of our clients. As the app developer and publisher, we collect and process the following data through these applications.

Information Collected Through Mobile Apps

  • Device information: Device model, operating system version, unique device identifiers, and mobile network information
  • Push notification tokens: Used to deliver order updates, promotions, and announcements on behalf of the business
  • Location data: When permitted by the user, approximate location may be used for store locator features and delivery/pickup services. Users can disable location access through their device settings
  • Order history: Items ordered, order totals, and order status within the app
  • App usage analytics: Screen views, feature usage, and crash reports to improve app performance
  • Account information: Name, email, phone number, and loyalty program data when provided by the user

How Mobile App Data Is Used

  • Processing and fulfilling orders placed through the app
  • Sending push notifications for order updates, promotions, and business announcements
  • Providing store locator and location-based features
  • Managing loyalty and rewards programs
  • Improving app performance and user experience
  • Communicating with users about their accounts

Third-Party Services in Mobile Apps

  • Apple App Store / Google Play Store: App distribution and in-app purchases are subject to Apple's Privacy Policy and Google's Privacy Policy
  • Push notification services: Apple Push Notification Service (APNs) and Firebase Cloud Messaging (FCM) for delivering notifications
  • Analytics providers: Crash reporting and usage analytics to improve app stability

Data Relationship for Mobile Apps

24TechDesign acts as the app developer and publisher on behalf of our business clients. Each business client is the data controller for their customer data collected through the app. 24TechDesign processes this data on their behalf to provide app functionality. Users should refer to the individual business's policies for information about how the business uses their data.

5. SMS Messaging

24TechDesign operates an SMS messaging program on behalf of its merchant clients. We use two separate consent paths for two distinct categories of SMS:

Transactional SMS (OTP)

When you tap "Send Code" to sign in via phone verification, you consent to receive a one-time SMS verification code from the merchant whose site you are signing into. This consent is scoped to the verification code itself.

Marketing SMS

Marketing and promotional messages are sent only to customers who separately opt in by checking the marketing consent box at checkout — on the merchant's website or inside their mobile app. Message frequency varies. Marketing SMS may include offers, rewards, new menu items, and announcements from the specific merchant.

Email Communications

Promotional emails, loyalty updates, and marketing campaigns may be sent on behalf of the merchant. You can unsubscribe at any time using the unsubscribe link in any email.

Opt-Out

You can cancel SMS messages at any time. Reply STOP to any message to unsubscribe. After texting STOP, you will receive one final SMS confirming your unsubscription. No further messages will be sent unless you re-opt in.

Help

If you are experiencing issues with the messaging program, reply HELP for assistance, or contact us at contact@24techdesign.com.

No Third-Party Sharing of SMS Data

No mobile information (including phone numbers and SMS opt-in consent) will be shared with third parties or affiliates for marketing or promotional purposes. All other categories exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties.

Message and Data Rates

Message and data rates may apply depending on your mobile carrier plan.

6. How We Use Information

  • Provide and maintain our services
  • Process recurring payments and subscriptions
  • Communicate regarding accounts, updates, and support
  • Improve service reliability and security
  • Comply with legal and tax obligations

7. Information Sharing

Payment Processing: For payment processing, we use Stripe. Please review their Stripe Legal and Stripe Privacy for more information.
  • Payment processors: payment processing and fraud prevention
  • Hosting and infrastructure providers: service delivery
  • Email and analytics providers: communications and performance insights

We may also disclose information if required by law, to protect our rights, or as part of a business transfer.

Payment-related line items, including platform fees and payment processor fees, may appear on invoices or billing statements provided to website owners.

8. Data Security

  • Encryption in transit where applicable
  • PCI-DSS compliant payment processing via a third‑party payment processor
  • Access controls and regular system updates

No method of transmission or storage is 100% secure; therefore, absolute security cannot be guaranteed.

9. Data Retention

  • Account data: retained while active
  • Payment records: retained as required by applicable tax and legal obligations (payment transaction data is also independently retained by our third-party payment processor per their own policies)
  • Client website data: deleted within 30 days after service termination
  • Aggregated analytics data may be retained indefinitely

Account Deletion

Users can delete their account at any time through the app or website account settings. Deleting an account at a specific merchant removes all data associated with that merchant, including loyalty points, rewards history, and per-user notification preferences. Accounts at other merchants on the platform are not affected. When no merchant accounts remain, authentication credentials are permanently deleted from the platform.

Users may also request a full platform-wide deletion of all data across all merchants by emailing contact@24techdesign.com. Such requests will be processed within 30 days.

10. Your Rights

Depending on your location, you may have rights to access, correct, delete, restrict, or object to processing of your personal data. You may exercise these rights as follows:

  • Account deletion: You can delete your account at a specific merchant directly through the app or website account settings.
  • Full platform-wide deletion: You can request deletion of all your data across all merchants by emailing contact@24techdesign.com.
  • Data access and correction: Requests can be submitted to contact@24techdesign.com.

We will respond to all data rights requests within 30 days.

11. California Privacy Rights (CCPA/CPRA)

California residents have the right, subject to applicable exceptions, to (i) know what categories and specific pieces of personal information are collected about them, (ii) request deletion or correction of personal information, (iii) opt out of the sale or sharing of personal information, and (iv) be free from discriminatory treatment for exercising these rights. To exercise these rights, contact us at contact@24techdesign.com. We will verify requests using information already on file (such as the email address or phone number associated with your account).

Sale of Personal Information

We do not sell PII data. 24TechDesign does not sell, as that term is defined under the CCPA, your Personal Information to third parties. In the preceding twelve (12) months, 24TechDesign has not sold any personal information and has not shared personal information for cross-context behavioral advertising.

Categories and Sources

The categories of personal information we collect, the sources from which we collect them, and the categories of third parties with whom they are shared for a business purpose are described in Section 2 (Categories of Personal Information Collected) and Section 7 (Information Sharing). We do not use sensitive personal information for any purpose other than those permitted under CCPA § 1798.121(a) (i.e., providing the services requested by the consumer).

Authorized Agents

You may designate an authorized agent to submit a request on your behalf. We may require the agent to provide written authorization signed by you and may require you to verify your identity directly with us.

12. Cookies

  • Essential cookies for functionality
  • Analytics cookies for performance insights
  • Payment processor cookies for payments and fraud prevention

13. International Data Transfers

Your information may be processed in the United States. Appropriate safeguards are used where required by law.

14. Changes

We may update this policy periodically. Continued use of our services constitutes acceptance of the updated policy.

15. Children and Minors

Our services are not directed to, and we do not knowingly collect personal information from, individuals under the age of thirteen (13). We do not knowingly market to or solicit information from children. If you are a parent or legal guardian and believe that your child under 13 has provided personal information to us, please contact us at contact@24techdesign.com and we will promptly delete the information from our systems and terminate any associated account.

For users between the ages of thirteen (13) and sixteen (16), 24TechDesign does not knowingly sell or share personal information without the affirmative authorization required by applicable law (including the CCPA's affirmative "right to opt in" for consumers under 16). As stated in Section 11, we do not sell personal information.

Mobile applications published by 24TechDesign on behalf of merchant clients are rated and categorized in accordance with Apple App Store and Google Play Store age-rating guidelines. Merchants are responsible for ensuring that any age-restricted goods or services offered through the platform (for example, alcohol, tobacco, or cannabis products, where lawful) comply with all applicable age verification and sales laws in the merchant's jurisdiction.

Where a merchant's offering is directed to children under 13, the merchant is solely responsible for compliance with the Children's Online Privacy Protection Act ("COPPA") and analogous laws, including obtaining verifiable parental consent. 24TechDesign acts as a service provider in such cases and processes data only on behalf of and under the instructions of the merchant.

16. Contact

24TechDesign LLC
United States
Privacy inquiries: Email: contact@24techdesign.com
Response time: within 30 days
White Logo
24TechDesign is a web design and development company based in Allen Park, Michigan. We specialize in creating custom websites and web applications for small businesses and startups.
Contact
© 2026 | 24TechDesign - All rights reserved.