PermitContainerhomes.com (“we”, “our”, “us”) is committed to protecting your privacy and personal information. This combined Privacy and Cookie Policy explains how we collect, use, disclose, and safeguard your data when you visit or purchase from our website, create accounts, or interact with us. By using PermitContainerhomes.com, you agree to the practices described in this policy.

📌 Quick Summary: We collect personal information necessary to process orders and provide services. We do not sell your data. You have rights to access, update, or delete your information. We use cookies to improve website functionality. Contact us anytime with privacy concerns.

1. Information We Collect

We collect the following categories of information to provide and improve our services to customers purchasing container home plans and accessing our website resources.

Personal Identification Information

  • Full name as provided during account creation or checkout
  • Email address for order confirmations and communications
  • Billing and shipping address for transaction processing
  • Phone number for order-related customer service

Payment Information

Payment details are securely processed by third-party payment gateways: Lemon Squeezy, Stripe India, Paddle, and PayPal. We do not store full credit card details on our servers. Only transaction references, payment status, and order amounts are retained for fulfillment, record-keeping, and Indian GST compliance requirements.

✅ Payment Security: All payment transactions use industry-standard SSL/TLS encryption. Your sensitive payment data never touches our servers—it goes directly to PCI-DSS compliant payment processors.

User Account Data

When you create an account on PermitContainerhomes.com, we store:

  • Username and encrypted password (never stored in plain text)
  • Account preferences and notification settings
  • Order history and digital product download records
  • Wishlist items and saved shopping cart contents

Usage Data

We automatically collect technical information when you visit our website through cookies and server logs:

  • IP address and approximate geographic location
  • Browser type, version, and operating system
  • Device information (desktop, mobile, tablet)
  • Pages visited, time spent on pages, and navigation patterns
  • Referral source (how you found our website)
  • Timestamps of visits and interactions

Communications

Messages you send through our contact forms, support tickets, or email correspondence are stored to provide customer service, resolve technical issues, and maintain records of our interactions with customers.

2. How We Use Your Information

We process your personal information for legitimate business purposes essential to operating our digital product business and providing excellent customer service.

Order Processing and Fulfillment

We use your personal and payment information to process and fulfill orders for container home plans, including generating invoices, delivering digital downloads, sending order confirmations, and maintaining purchase records for tax compliance with Indian GST regulations and US sales tax requirements where applicable.

Account Management

Your account information enables us to create and manage your user profile, verify your identity during login, maintain your download history, and provide access to purchased digital products. This ensures you can re-download plans and access updates to products you’ve purchased.

💡 Account Benefits: Registered accounts provide lifetime access to download purchased plans, receive product updates, track order history, and get priority customer support.

Customer Communications

We use your contact information to send:

  • Transactional Emails: Order confirmations, download links, receipts, and shipping notifications (required for service delivery)
  • Customer Service: Responses to support requests, technical assistance, and order-related inquiries
  • Account Security: Password reset requests, login alerts, and security notifications
  • Marketing Communications: New product announcements, special offers, and educational content (only with your explicit consent—you can opt out anytime)

Website Improvement and Analytics

Usage data helps us analyze website performance, identify popular content, understand customer needs, fix technical issues, optimize user experience, and make data-driven decisions about new features and product development.

Legal Compliance and Tax Obligations

We maintain records to comply with applicable laws, taxation requirements (including Indian GST for our India-based business and US state sales tax where applicable), financial auditing, and record-keeping obligations mandated by regulatory authorities.

3. Data Sharing and Disclosure

We do not sell or rent your personal information to third parties. Your data is never used for unauthorized marketing purposes or shared with data brokers. We only share information in the following limited, necessary circumstances.

Payment Processors

We share necessary transaction information with our payment processors:

  • Lemon Squeezy: Merchant of record for digital product sales
  • Stripe India: Credit/debit card and UPI payment processing
  • Paddle: Global payment processing and subscription management
  • PayPal: PayPal and credit card transactions

These providers operate under their own privacy policies and maintain PCI-DSS compliance for secure payment handling. We only receive confirmation of successful payment—not your full card details.

Service Providers and Technology Partners

We work with trusted third-party service providers who assist in operating our website:

Service ProviderPurposeData Shared
HostingerWebsite hosting and infrastructureAll website data (secured on servers)
Google AnalyticsWebsite usage analyticsAnonymized usage statistics
LiteSpeed CachePerformance optimizationPage cache data (no personal info)
ImagifyImage optimizationImage files only
Rank Math SEOSEO optimizationContent structure data
Email Service ProviderTransactional & marketing emailsEmail address, name, order data

Note: All service providers are contractually obligated to protect your data confidentiality and use information only as authorized for providing their specific services.

⚠️ Third-Party Obligations: Every service provider with access to your data signs agreements requiring data protection, confidentiality, and compliance with applicable privacy laws including GDPR and Indian data protection regulations.

Legal and Regulatory Requirements

We may disclose your information when required by law or to protect our legitimate interests:

  • Compliance with legal obligations, court orders, and regulatory requirements
  • Responding to government or law enforcement requests
  • Protecting our rights, property, or safety and that of our users
  • Enforcing our Terms of Service and preventing fraud or abuse
  • Investigating potential violations of law or our policies

4. Cookies and Tracking Technologies

Cookies are small text files placed on your device when you visit our website. They help us recognize your browser, remember preferences, maintain shopping cart contents, and provide personalized experiences that enhance website functionality.

Types of Cookies We Use

Essential Cookies (Required)

Purpose: Necessary for basic website operation, security, and core functionality

Examples:

  • WooCommerce Session Cookies: Maintain shopping cart contents across pages
  • Authentication Tokens: Keep you logged in during your session
  • Security Cookies: CSRF protection and form security
  • Load Balancing: Distribute traffic for optimal performance

Duration: Session-based (deleted when browser closes) or short-term (24 hours)

Can You Disable Them? No—these are essential for website functionality. Disabling breaks checkout, account access, and security features.

Performance/Analytics Cookies

Purpose: Collect anonymous information about website usage to improve performance

Examples:

  • Google Analytics: Page views, bounce rate, session duration, traffic sources
  • LiteSpeed Cache: Performance optimization and page load speed analysis
  • Heatmap Tools: Understand how visitors interact with page elements

Duration: Up to 26 months (Google Analytics default)

Data Collected: Aggregated, anonymized statistics—we cannot identify individual users from this data

Can You Disable Them? Yes—use cookie consent banner or browser settings. Also use Google Analytics Opt-out Browser Add-on

Functionality Cookies

Purpose: Remember your preferences and enhance user experience

Examples:

  • Language Preferences: Remember your selected language
  • Display Settings: Font size, layout preferences
  • Region Settings: Currency and measurement unit preferences
  • Notification Preferences: Which alerts you want to see

Duration: Typically 6-12 months

Can You Disable Them? Yes—but you’ll need to reset preferences on each visit

Marketing/Advertising Cookies (Limited Use)

Purpose: Deliver relevant advertisements and measure campaign effectiveness

Current Status: Limited use on our site—primarily for retargeting campaigns

Examples:

  • Facebook Pixel: Track conversions from Facebook ads (if applicable)
  • Google Ads: Retargeting visitors who viewed specific products

Duration: Typically 30-90 days

Can You Disable Them? Yes—use cookie consent banner, browser settings, or ad preference managers from Google and Facebook

Third-Party Cookies and Privacy Policies

Third-party services integrated into our website may set their own cookies. Review their privacy policies for detailed information:

Managing Your Cookie Preferences

You have complete control over cookies on your device:

  • Cookie Consent Banner: Use our cookie consent tool (appears on first visit) to accept or reject non-essential cookies
  • Browser Settings: Configure your browser to block, delete, or alert you about cookies (see your browser’s Help menu for instructions)
  • Browser Examples:
    • Chrome: Settings → Privacy and Security → Cookies and other site data
    • Firefox: Settings → Privacy & Security → Cookies and Site Data
    • Safari: Preferences → Privacy → Manage Website Data
  • Google Analytics Opt-Out: Install the Google Analytics opt-out browser add-on
⚠️ Impact of Disabling Cookies: Blocking essential cookies will impair core website functionality including checkout, account login, shopping cart, and security features. Performance and functionality cookies can be disabled without breaking the site, though your experience may be less personalized.

5. Data Retention

We retain your personal data only as long as necessary to fulfill the purposes outlined in this policy, comply with legal obligations, resolve disputes, and enforce our agreements. When data is no longer required, it is securely deleted or anonymized.

Retention Periods by Data Type

Data TypeRetention PeriodLegal/Business Reason
Order Information & Invoices7 yearsIndian GST tax compliance, financial audits
Account DataUntil deletion request or 3 years of inactivityService provision, download access
Payment Transaction Records7 yearsFinancial record-keeping, dispute resolution
Customer Support Communications3 yearsQuality assurance, dispute resolution
Website Analytics Data26 monthsGoogle Analytics default, usage analysis
Marketing Email ListsUntil unsubscribe or 2 years of inactivityPermission-based marketing
Cookies (varies by type)Session to 26 monthsFunctionality, analytics, preferences

Note: Retention periods comply with Indian tax law requirements (7 years for financial records), international data protection regulations, and industry best practices. Some data may be retained longer if required by law or necessary for legal proceedings.

Early Deletion Requests

You may request early deletion of your personal data by contacting us through our contact form. We will comply with deletion requests subject to:

  • Legal retention requirements (e.g., tax records must be kept 7 years)
  • Ongoing contractual obligations
  • Pending disputes or legal proceedings
  • Fraud prevention and security investigations

After legal retention periods expire, data is permanently deleted from active systems and backups within 90 days.

6. Data Security

We employ industry-standard security measures to protect your personal information from unauthorized access, disclosure, alteration, and destruction. Data security is a top priority in our operations.

Technical Security Measures

  • Encryption in Transit: All data transmitted between your browser and our servers uses SSL/TLS encryption (HTTPS protocol with 256-bit encryption)
  • Encryption at Rest: Sensitive data stored on servers is encrypted using AES-256 encryption
  • Secure Payment Processing: PCI-DSS compliant payment gateways (Lemon Squeezy, Stripe India, Paddle, PayPal) handle all payment data—we never store full card numbers
  • Password Protection: User passwords are encrypted using industry-standard bcrypt hashing (never stored in plain text)
  • Secure Hosting Infrastructure: Professional hosting with firewalls, intrusion detection systems, and DDoS protection
  • Regular Security Updates: WordPress core, themes, and plugins are updated promptly to patch security vulnerabilities
  • Automated Backups: Daily encrypted backups stored in geographically separate locations
  • Database Security: Database access restricted by IP whitelist, strong passwords, and principle of least privilege

Organizational Security Measures

  • Access Controls: Limited employee/contractor access to personal data on strict need-to-know basis
  • Confidentiality Agreements: All personnel with data access sign confidentiality agreements
  • Security Training: Regular training on data protection, phishing prevention, and security best practices
  • Incident Response Plan: Documented procedures for detecting, responding to, and reporting security breaches
  • Vendor Management: Third-party service providers undergo security assessments before engagement
⚠️ Security Limitations: While we implement robust security measures and continuously monitor for threats, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security but remain committed to protecting your data using industry-leading practices and responding promptly to any security concerns.

Your Role in Security

You play a critical role in protecting your account:

  • Use Strong Passwords: Create unique passwords with 12+ characters, mixing letters, numbers, and symbols
  • Never Share Credentials: Don’t share your password or let others access your account
  • Enable Two-Factor Authentication: If available, enable 2FA for added security
  • Log Out on Shared Devices: Always log out after using public or shared computers
  • Report Suspicious Activity: Contact us immediately if you notice unauthorized access or suspicious emails
  • Keep Software Updated: Maintain updated browsers and antivirus software on your devices

Security Breach Notification

In the unlikely event of a data breach affecting your personal information, we will notify you within 72 hours via email with details about the breach, affected data, potential risks, and steps we’re taking to address the situation. We will also notify relevant regulatory authorities as required by applicable laws.

7. Your Rights and Choices

Depending on your jurisdiction (including GDPR for EU users, CCPA for California residents, and emerging Indian data protection laws), you have specific rights regarding your personal data. We honor these rights for all users regardless of location.

Access and Portability Rights

  • Right to Access: Request a copy of all personal data we hold about you, including account information, order history, and communications
  • Right to Data Portability: Receive your data in a structured, machine-readable format (typically CSV or JSON) for transfer to another service
  • How to Exercise: Submit a request through our contact form with subject line “Data Access Request”—we respond within 30 days

Correction and Deletion Rights

  • Right to Rectification: Update or correct inaccurate or incomplete personal data in your account
  • Self-Service Option: Log into your account and update profile information directly
  • Right to Erasure (“Right to be Forgotten”): Request deletion of your personal data, subject to legal retention requirements (e.g., tax records)
  • Account Deletion: We will close your account and delete personal data within 30 days, except data required for legal compliance

Control and Objection Rights

  • Right to Restrict Processing: Limit how we use your data in certain circumstances (e.g., while disputing data accuracy)
  • Right to Object: Object to data processing based on legitimate interests or for direct marketing purposes
  • Right to Withdraw Consent: Withdraw consent for marketing communications or optional data processing at any time
  • Effect of Withdrawal: Doesn’t affect lawfulness of processing before withdrawal; essential processing for service delivery continues

Marketing Communication Preferences

You have complete control over marketing emails:

  • Opt-Out Link: Click “unsubscribe” at the bottom of any marketing email for instant removal
  • Account Settings: Update communication preferences in your account dashboard
  • Contact Us: Request removal from all marketing lists through our contact form
  • Response Time: Marketing opt-outs take effect within 48 hours (you may receive emails already scheduled)
📌 Important Note: Opting out of marketing emails does NOT stop transactional emails (order confirmations, download links, password resets, customer service responses) which are necessary for service delivery and account security.

Cookie Management

Control cookie usage through:

  • Cookie consent banner (appears on first visit)
  • Browser privacy settings (block or delete cookies)
  • Third-party opt-out tools (Google Analytics opt-out add-on, ad preference managers)

Complaints and Regulatory Authority

If you believe we haven’t adequately addressed your privacy concerns, you have the right to lodge a complaint with data protection authorities:

  • Indian Users: Ministry of Electronics and Information Technology (MeitY) or upcoming Data Protection Authority
  • EU Users: Your local Data Protection Authority (DPA)—find your DPA at EDPB website
  • California Users: California Attorney General’s Office or California Privacy Protection Agency
  • Other Jurisdictions: Contact your local data protection or consumer protection authority

Exercise Your Privacy Rights

To exercise any of these rights, make privacy-related requests, or ask questions about data protection, contact us through our dedicated privacy inquiry form. We respond to all requests within 30 days.

Contact Us About Your Privacy →

8. Children’s Privacy

PermitContainerhomes.com does not knowingly collect, use, or disclose personal information from children under the age of 13. Our services, products, and content are intended exclusively for adults involved in construction, real estate development, or container home projects.

Age Verification and Requirements

By creating an account, making a purchase, or using our services, you confirm that you are:

  • At least 18 years of age, OR
  • Have reached the age of majority in your jurisdiction (may be 19 or 21 in some locations)

We do not intentionally market to or solicit information from minors. Our content focuses on technical construction information, building codes, and professional-grade architectural plans unsuitable for children.

Parental Responsibility

If you are a parent or legal guardian and become aware that your child has provided us with personal information without your consent, please contact us immediately through our contact form with subject line “Child Privacy Concern”.

📌 Discovery Protocol: If we discover that we have inadvertently collected personal information from a child under 13, we will take immediate steps to delete that information from our systems, terminate any associated account, and prevent future unauthorized access. We will also investigate how the information was collected to prevent recurrence.

What We Do Upon Discovery

If we learn we have collected data from a child under 13:

  1. Immediately suspend the account and prevent further access
  2. Delete all personal information associated with the account within 48 hours
  3. Remove the information from active systems and schedule deletion from backups
  4. Notify the parent/guardian if contact information is available
  5. Review our verification processes to prevent future occurrences

9. Changes to This Policy

We may update this Privacy and Cookie Policy periodically to reflect changes in our practices, technologies, legal requirements, business operations, or user feedback. Transparency and clear communication are priorities when policy updates occur.

How We Notify You of Changes

  • Effective Date Update: The “Effective Date” and “Last Updated” date at the top of this policy will be revised to reflect the most recent changes
  • Website Notice: Significant changes affecting your rights will be prominently displayed on our homepage with a banner notice
  • Email Notification: For material changes that substantially affect how we collect, use, or share your data, we will send email notifications to registered users at least 30 days before implementation
  • Account Dashboard Alert: Logged-in users will see a notification prompting review of the updated policy
  • Continued Use Constitutes Acceptance: Your continued use of our services after changes are posted indicates acceptance of the updated policy
⚠️ What Constitutes “Material Changes”: Material changes include: expanding data collection significantly, sharing data with new categories of third parties, changing data retention periods substantially, reducing user rights, or changing the legal basis for processing your data.

Your Options If You Disagree

If you disagree with policy changes:

  • Contact us to discuss your concerns before the effective date
  • Exercise your right to delete your account and data (subject to legal retention requirements)
  • Stop using our services before the new policy takes effect

Review Recommendations

We encourage you to review this policy periodically (we recommend every 6 months) to stay informed about how we protect your information, what rights you have, and how our practices may evolve. Check the “Last Updated” date to identify when the policy was most recently revised.

Policy Version History

Major policy updates and their implementation dates:

  • September 1, 2025: Original policy published
  • December 16, 2025: Updated with enhanced cookie documentation, GDPR compliance details, and payment gateway updates

10. Contact Us

If you have questions, concerns, or requests regarding this Privacy and Cookie Policy, data protection practices, your personal information, or exercising your privacy rights, we’re here to help.

Contact Methods

  • Primary Contact: Visit our Contact Us page for fastest response
  • Privacy-Specific Inquiries: Use subject line “Privacy Inquiry” or “Data Protection Request” for routing to our privacy team
  • Response Time Commitment: We aim to respond to all privacy-related requests within 30 days (often much sooner for simple inquiries)
  • Urgent Security Concerns: If you believe there’s a security vulnerability or breach, use subject line “URGENT: Security Issue” for immediate escalation

What to Include in Your Request

To help us process your request efficiently, please provide:

  • Identity Verification: Your full name and email address associated with your account
  • Clear Description: Specific details about your request or concern (e.g., “I want to delete my account and all associated data”)
  • Relevant Details: Order numbers, account usernames, or approximate dates if applicable (helps us locate your information)
  • Preferred Contact Method: How you’d like to receive our response (email is default)
  • Verification Documents: For sensitive requests (account deletion, data access), we may request identity verification for security

Types of Requests We Handle

  • Data access requests (copies of your personal information)
  • Data correction or update requests
  • Account deletion and data erasure requests
  • Marketing opt-out or preference changes
  • Cookie and tracking technology questions
  • Security concerns or breach reports
  • General privacy policy questions and clarifications
  • Third-party data sharing inquiries
  • Complaints about data handling
✅ Commitment to Privacy: We take your privacy seriously and are committed to transparent, respectful handling of your personal information. Every privacy inquiry receives careful attention from our team, and we continuously improve our practices based on user feedback.

Legal Information & Governing Law

Governing Law: This Privacy and Cookie Policy is governed by the laws of India. Any disputes arising from this policy shall be subject to the exclusive jurisdiction of courts in Ujjain, Madhya Pradesh, India.

International Users: If you access our website from outside India, please note that your information may be transferred to, stored, and processed in India where our servers and business operations are located. By using our services, you consent to this transfer, storage, and processing. We implement appropriate safeguards to protect your data in accordance with this policy.

Data Transfer Mechanisms: For transfers of EU personal data, we rely on adequacy decisions where applicable and implement standard contractual clauses with service providers as required by GDPR.

Business Information:

  • Legal Business Name: RF Architects
  • Trade Name: PermitContainerhomes.com
  • Business Location: Ujjain, Madhya Pradesh, India – 456001
  • GST Registration Number: 23BYMPK5259G1Z8
  • Udyam Registration: UDYAM-MP-49-0093904
  • Business Type: Micro Enterprise – Digital product sales (container home architectural plans and building resources)
  • Business Classification: Architecture and engineering activities; technical consultancy services
  • Registration Date: December 5, 2025
  • Contact: Contact Us Page

Policy Interpretation: If any provision of this policy is found to be unenforceable or invalid, that provision will be limited or eliminated to the minimum extent necessary so that the policy otherwise remains in full force and effect.

Language: This policy is written in English. While we may provide translations for convenience, the English version is the official, legally binding document in case of any discrepancies.