Privacy Policy for Parfait LLC
Effective Date: June 6, 2026 | Last Updated: June 6, 2026
Introduction
At Parfait LLC, accessible from https://parfait.cloud, the privacy and security of our visitors is a top priority. This Privacy Policy describes what personal data we collect, why we collect it, how we use and protect it, and what rights and choices you have.
This policy applies to information collected through our website only. It does not cover data collected offline or via third-party services that link to or from our site.
By accessing or using Parfait LLC, you acknowledge that you have read and agree to this Privacy Policy. Questions or requests may be sent to hello@parfait.cloud.
Definitions
- Personal Data: Any information relating to an identified or identifiable person, including name, email, IP address, and online identifiers.
- Processing: Any operation on personal data, including collection, storage, use, transfer, and deletion.
- Data Controller: Parfait LLC, determining the purposes and means of processing personal data on Parfait LLC.
- You / User: Any individual accessing or using Parfait LLC.
Information We Collect
1. Information You Provide Directly
- Contact form submissions: name, email address, and message content
2. Automatically Collected Data
- IP address, browser type and version, operating system, and device type
- Pages visited, time and date of visit, duration, and referring URL
- HTTP request headers and server log data
- Cookie identifiers, session tokens, and similar tracking data (see Cookies section)
- Usage analytics collected via PostHog, including pages visited, device data, browser data, and interaction data
- Interaction data from embedded third-party content (e.g. videos, social widgets, maps)
How We Use Your Information
We process personal data for the following purposes:
| Purpose | Examples | Legal Basis (GDPR) |
|---|---|---|
| Service Delivery | Operating the website; responding to support requests | Contract / Legitimate Interests |
| Analytics & Improvement | Understanding usage patterns; improving features | Legitimate Interests |
| Security & Fraud Prevention | Detecting malicious activity; protecting user accounts | Legitimate Interests |
| Legal Compliance | Meeting tax, regulatory, and court-ordered obligations | Legal Obligation |
Cookies and Tracking Technologies
Parfait LLC uses cookies, web beacons, and similar technologies. Cookies are small text files placed on your browser to help us deliver and improve our services. We use the following categories:
| Category | Purpose | Examples | Duration |
|---|---|---|---|
| Strictly Necessary | Core functionality, security, session management. Cannot be disabled. | Session cookies, CSRF tokens, auth tokens | Session |
| Analytics & Performance | Uses first-party cookies and local storage to track user paths, session durations, unique visitors, and site interactions via PostHog. | PostHog cookies and local storage | 1 year |
| Functional / Preference | Remembering your settings: language, dark mode, layout. | Theme preference, locale cookies | Up to 1 year |
| Embedded Content | Set by third-party content embedded in our pages. | YouTube, Google Maps, social media widgets | Varies by provider |
Managing Cookies & Opt-Outs: You can control or delete cookies through your browser settings. For US-based users, we recognize the following industry-standard opt-out mechanisms:
Industry Opt-Out Tools: You may use the Digital Advertising Alliance (DAA) WebChoices Tool to manage your preferences for interest-based advertising across participating companies.
Browser Settings: Most browsers allow you to block or delete cookies. Note that disabling “Strictly Necessary” cookies may impair website functionality.
Cookie Consent: Where required by law (e.g. GDPR, ePrivacy Directive), you will be presented with a cookie consent banner on your first visit. Your preference is stored and honoured on subsequent visits.
Analytics & Session Recording
We use PostHog to analyse traffic, optimise user experience, and understand how visitors interact with our website. PostHog uses first-party cookies and local storage to collect data about device types, operating systems, pages visited, and user actions such as clicks, scrolling, and navigation paths.
Our privacy configuration for PostHog includes:
- No Data Selling/Sharing: Data collected via PostHog is owned by Parfait LLC and is not sold or shared with third parties for advertising purposes.
- Data Minimisation: We minimise collection of personally identifiable information (PII) within our analytics pipelines.
- Data Processing Terms: PostHog Inc. processes analytics data for us as a service provider/processor under applicable data processing terms.
Depending on your choices in our cookie consent banner, PostHog may also use Session Replay features to visually recreate user sessions for debugging and interface improvements. Sensitive input fields such as passwords and payment card fields are masked or excluded from recording.
Embedded Third-Party Content
Our pages may include embedded content from YouTube, Twitter/X, Spotify, Google Maps, or social media platforms. Embedded content behaves as if you visited the originating website directly and may collect data, set cookies, and track your interaction independently. We encourage you to review each provider’s privacy policy before interacting with embedded content.
How We Share Your Information
We do not sell your personal information. Data is shared only in these limited circumstances:
- Service Providers: Trusted processors under contract who help operate our website, including PostHog Inc. for analytics and session recording; they may only process data as instructed by us.
- Legal Requirements: Where required by law, regulation, subpoena, or court order. We notify you where legally permitted before disclosing.
- Safety: To protect the rights, property, or safety of Parfait LLC, our users, or the public.
- Business Transfers: In a merger, acquisition, or asset sale, your data may transfer. You will be notified via a prominent website notice and, where feasible, by email.
- With Your Consent: For any other purpose with your explicit prior consent.
Data Security
We implement appropriate technical and organisational measures to protect your personal data:
- HTTPS/TLS 1.2+ encryption for all data in transit
- Role-based access controls limiting data access to authorised personnel
- Regular security assessments, penetration testing, and vulnerability scanning
- Real-time monitoring systems for detecting suspicious activity
In the event of a personal data breach likely to result in risk to your rights, we will notify affected individuals and relevant supervisory authorities within the legally mandated timeframe (e.g. 72 hours under GDPR).
Data Retention
We retain personal data only as long as necessary to fulfil stated purposes or as required by law:
| Data Type | Retention Period | Reason |
|---|---|---|
| Server access logs | 90 days | Security monitoring and abuse prevention |
| PostHog analytics and session replay data | Up to 14 months | Trend analysis, product usage analysis, debugging, and interface improvement |
| Contact form submissions | 3 years | Correspondence records and dispute resolution |
Your Privacy Rights
Depending on your location, you may have rights to access, correct, delete, restrict, or transfer your personal data. You may exercise these rights by contacting us at hello@parfait.cloud. We will respond within the timeframe required by applicable law. You will never be penalised or discriminated against for exercising your privacy rights.
CCPA / CPRA - California Consumer Privacy Rights
The California Consumer Privacy Act (CCPA), as amended by the CPRA (effective January 1, 2023), grants California residents:
- Right to Know: Disclosure of categories and specific pieces of personal information collected, sources, purposes, and third parties with whom data is shared.
- Right to Delete: Request deletion of personal information, subject to exceptions (completing transactions, security, legal obligations).
- Right to Correct: Request correction of inaccurate personal information we hold.
- Right to Opt Out of Sale or Sharing: Opt out of the sale or sharing of personal information for cross-context behavioural advertising. We do not sell personal information. Should this change, we will add a “Do Not Sell or Share My Personal Information” link to our homepage.
- Right to Limit Sensitive Personal Information: Restrict use of sensitive personal information to necessary purposes only.
- Right to Non-Discrimination: We will not deny service, charge different prices, or provide lower quality because you exercised a CCPA right.
Personal information collected in the past 12 months: Identifiers (name, email, IP address); Internet or network activity (browsing history, site interactions); Commercial information (if purchases made); Geolocation data (if location features used); Inferences drawn to build user profiles.
Submit CCPA requests to hello@parfait.cloud. We verify identity and respond within 45 days (extendable by 45 days). Authorised agents may submit requests on your behalf with proper documentation.
Other US State Privacy Rights: Residents of Virginia (VCDPA), Colorado (CPA), Connecticut (CTDPA), Texas (TDPSA), Oregon (OCPA), and other states with similar privacy laws may exercise equivalent rights by contacting hello@parfait.cloud.
COPPA - Children’s Online Privacy Protection
Parfait LLC is not directed to children under 13 years of age. We do not knowingly collect personal information from children under 13 (or under 16 in jurisdictions where a higher threshold applies, such as certain EU member states under GDPR Art. 8).
If we discover we have inadvertently collected data from a child under the applicable age threshold without verified parental consent, we will delete it immediately. Parents or guardians who believe their child has submitted data on Parfait LLC should contact us at hello@parfait.cloud. We will investigate and take corrective action within 72 hours of notification.
Links to External Websites
Parfait LLC may contain links to third-party websites. Once you leave our site, this Privacy Policy no longer applies. We have no control over and accept no responsibility for external sites’ content, privacy policies, or practices. We recommend reviewing the privacy policy of any third-party site you visit.
Do Not Track (DNT) Signals
Some browsers transmit “Do Not Track” signals to websites. There is currently no universally accepted standard for how websites must respond to DNT signals. At this time, Parfait LLC does not alter its data collection practices in response to DNT browser signals. We will review this position as industry standards evolve.
Changes to This Privacy Policy
We may update this Privacy Policy periodically. When material changes are made, we will update the “Last Updated” date at the top and post a prominent notice on our website. Your continued use of Parfait LLC after any modification constitutes acceptance of the revised policy. We encourage you to review this page periodically.
Contact Us
For questions, data subject requests, or privacy complaints, please contact us:
- Website: https://parfait.cloud
- Email: hello@parfait.cloud
We aim to respond to all enquiries within 5 business days, and within applicable legal deadlines for formal data subject requests.