Privacy Policy

Effective Date: April 6, 2026 · Last Updated: April 6, 2026

      Your privacy matters to us. WeShopCars collects only the information necessary to deliver your car research report and process payments. We do not sell, rent, or share your personal information with advertisers or data brokers.
    

1. Who We Are

WeShopCars ("we," "us," or "our") is a car research service operated by Steven Miller. Our website is located at weshopcars.com. You can reach us at steven@weshopcars.com.

2. Information We Collect

We collect the following categories of information:

Contact information — your name and email address, provided when you submit a report request.
Survey responses — your car preferences, budget, driving habits, and other details you provide in the intake form, used solely to generate your research report.
Report access codes — a randomly generated 6-character code tied to your report and email address.
Payment information — if you purchase a report unlock, your payment is processed by Stripe. We never receive or store your full card number, CVV, or banking credentials. Stripe provides us only with a transaction confirmation and the email used at checkout.
Usage data — basic technical information such as IP address, browser type, and page-view timestamps, collected automatically by our hosting provider (Netlify) for security and uptime purposes.

3. How We Use Your Information

To generate, deliver, and display your personalized car research report.
To send you your access code and report-ready notification via email.
To process payments for report unlocks via Stripe.
To respond to your questions or support requests.
To detect and prevent fraudulent or abusive use of our service.

We do not use your information for advertising, profiling, or any purpose unrelated to delivering the car research service you requested.

4. Data Sharing and Third-Party Services

We share your information only with the following service providers, and only to the extent necessary to operate the service:

Supabase — our database provider, which stores your name, email, access code, and report content. Supabase processes data in the United States and operates under SOC 2 Type II compliance. Supabase Privacy Policy →
Stripe — our payment processor. Stripe handles all payment card data and is PCI-DSS Level 1 certified. We receive only a payment confirmation; your card data never touches our servers. Stripe Privacy Policy →
SendGrid (Twilio) — our email delivery provider. Your email address is transmitted to SendGrid solely to deliver your report notification email. SendGrid Privacy Policy →
Netlify — our hosting and serverless functions provider. Netlify may collect anonymized request logs. Netlify Privacy Policy →

We do not sell, rent, or otherwise disclose your personal information to any other third party.

5. Data Retention

We retain your report and associated personal information for up to 2 years from the date of delivery, so that you can re-access your report using your code. After that period, reports may be deleted from our systems. You may request earlier deletion at any time (see Section 7).

6. Security

We take reasonable technical and organizational measures to protect your data, including:

HTTPS encryption for all data in transit (enforced by Netlify).
Row-level security on our database — report content is accessible only via authenticated server-side functions, never directly from the browser.
Access codes are randomly generated and contain no personally identifiable information.
Payment processing entirely delegated to Stripe's PCI-compliant infrastructure.
API rate limiting to prevent automated abuse.

No method of transmission or storage is 100% secure. If you believe your information has been compromised, please contact us immediately at steven@weshopcars.com.

7. Your Rights and Choices

You have the right to:

Access the personal information we hold about you.
Correct inaccurate information.
Delete your information and report from our systems.
Opt out of any future email communications (other than transactional messages related to a pending report).

To exercise any of these rights, email us at steven@weshopcars.com with your name and the email address associated with your report. We will respond within 30 days.

8. Cookies

WeShopCars does not use tracking cookies or third-party advertising cookies. Our hosting provider (Netlify) may set essential session cookies for security and performance purposes. We do not use cookies for behavioral tracking or advertising.

9. Children's Privacy

Our service is not directed at children under 13. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we will delete it promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last Updated" date at the top of this page. Continued use of the service after changes are posted constitutes your acceptance of the updated policy.

11. Contact Us

For any privacy-related questions, concerns, or requests:

Steven Miller — WeShopCars
Email: steven@weshopcars.com
Website: weshopcars.com