Privacy Policy
This Privacy Policy explains what information we collect when you visit Fidelity Check at patriotdossier.com, what we do with that information, who we share it with, and the choices you have. We treat your information as if it were our own.
1. Who we are
Fidelity Check (the "Service") is operated by the merchant of record listed on your payment receipt and on our About page. References to "we", "us", and "our" in this Policy refer to that operator.
2. What we collect
2.1. Information you provide on the customization form
When you customize your dossier you submit:
- A first and last name to feature in the dossier (required).
- A phone number for the dossier persona (required).
- An age and gender for the dossier persona (required).
- A relationship label that controls the dossier's tone (required).
- An email address and ZIP code for the dossier persona (optional).
This information is used solely to merge into the templated narrative of the dossier you purchase. We do not look any of it up, validate any of it against external databases, share any of it, or use it for any other purpose.
2.2. Information you provide at checkout
To complete a purchase you submit:
- Your full name (for order records and the email greeting).
- Your email address (to deliver the dossier and customer-support correspondence).
- Your phone number (provided by you and recorded for fraud-prevention purposes).
Payment-card or PayPal-account information is collected and processed by our payment processors (PayPal and Stripe). We never see, store, or have access to your full card number, CVV, or PayPal credentials. Our records contain only a transaction reference, an order total, and the last four digits of the card or a masked PayPal identifier.
2.3. Automatically collected technical information
When you visit the site we automatically collect:
- IP address, browser type, operating system, language, referring URL, and time of request (standard web-server logs).
- Cookies and similar technologies used to operate the site (see Section 4 below).
3. How we use it
| Purpose | Data used |
|---|---|
| Generate your dossier | Customization-form inputs |
| Deliver your dossier by email | Email address, full name |
| Process payment and prevent fraud | Name, email, phone, payment reference, IP address |
| Issue refunds | Email address, payment reference, transaction ID |
| Respond to support inquiries | Email address, order data you reference |
| Comply with legal/tax obligations | Order amount, date, payment reference |
| Measure aggregate site performance | Cookies, technical metadata |
4. Cookies and analytics
We use a small number of first-party cookies and pixels to operate the site:
- Session storage. We use browser session storage to carry your customization-form inputs between steps. This data is cleared when you close the tab.
- Stripe and PayPal. Our payment processors set their own cookies when their secure payment widgets load on our checkout page. They use these cookies for fraud detection and to process the payment.
- Meta (Facebook) Pixel. We use a Meta Pixel to measure the effectiveness of advertising and to report conversion events to Meta. The pixel sets cookies in your browser when the page loads.
You can disable cookies in your browser settings or use private browsing. Some site functionality (such as payment) requires cookies to work.
5. How long we keep your information
| Data category | Retention |
|---|---|
| Customization-form inputs (name, phone, age, etc. for the persona) | Stored only as long as needed to generate the dossier; deleted from our active systems within 30 days of delivery. |
| Your delivered dossier (HTML document) | Stored at a private link for 12 months after delivery, then deleted, unless you request earlier deletion. |
| Order and payment records (name, email, payment reference, amount, date) | Kept for the period required by applicable tax and accounting law (typically 5–7 years). |
| Support correspondence | Kept for 24 months after the most recent message. |
| Web-server logs | 30–90 days. |
6. Who we share it with
We share information only with service providers strictly necessary to operate the Service:
- Payment processors. PayPal and Stripe process your payment and provide fraud screening. Each operates under its own privacy policy and is bound to use your data only to provide payment services.
- Email delivery. A transactional-email provider (Resend) delivers your dossier and order confirmations.
- Hosting and infrastructure. Our website is hosted with a commercial web-hosting provider that processes web-server logs.
- Advertising and analytics. Meta (Facebook) receives conversion pings from our Pixel as described in Section 4.
We do not sell or rent personal information to anyone. We do not share customization-form inputs with anyone for any purpose.
We may disclose information when required by law, court order, or valid legal process; to prevent fraud or imminent harm; or in connection with a merger, acquisition, or sale of all or part of our business (in which case successors are bound to honor the commitments in this Policy).
7. Your rights
Depending on your jurisdiction, you may have the right to access, correct, delete, restrict the processing of, or port your personal information; to object to certain processing; and to withdraw consent. You also have the right to lodge a complaint with a supervisory authority.
To exercise any of these rights, email support@patriotdossier.com. We respond to all verifiable requests within 30 days.
7.1. California residents
If you are a California resident, the California Consumer Privacy Act ("CCPA") and the California Privacy Rights Act ("CPRA") give you specific rights, including the right to know what personal information we collect, the right to request deletion, and the right to opt out of "sale" or "sharing" of personal information. We do not sell or share your personal information as those terms are defined under the CCPA/CPRA.
7.2. EU/UK residents
If you are located in the European Economic Area or the United Kingdom, you have additional rights under the GDPR and UK GDPR, including the rights set out in Section 7 above. The legal basis for our processing is either (a) performance of a contract (to deliver the dossier you ordered); (b) compliance with a legal obligation (for tax and accounting records); or (c) our legitimate interest in operating, securing, and improving the Service. Transfers of personal information outside the EEA/UK are made with appropriate safeguards.
8. Security
We protect your information with reasonable administrative, technical, and physical safeguards, including HTTPS/TLS encryption for all data in transit, access controls on our internal systems, and segregation of payment data through certified payment processors. No system is perfectly secure, however, and we cannot guarantee the absolute security of any information you submit.
9. Children
The Service is intended for adults aged 18 and over. We do not knowingly collect personal information from anyone under 18. If we learn that we have collected information from a person under 18, we will delete it promptly. If you believe a minor has provided us with information, please email support@patriotdossier.com.
10. International transfers
Our service providers operate in multiple countries. Where personal information is transferred to a country whose laws may differ from yours, we ensure appropriate safeguards are in place, including contractual clauses, processor commitments, and (for EEA/UK transfers) Standard Contractual Clauses where applicable.
11. Changes to this Policy
We may update this Privacy Policy from time to time. Material changes will be reflected in the "Last updated" date at the top of this page, and (where appropriate) notified to you by email. Continued use of the Service after a change constitutes acceptance of the updated Policy.
12. Contact
Questions about this Privacy Policy or our handling of your personal information? Email support@patriotdossier.com. We respond to all inquiries within one business day.