Privacy Policy

Last updated: October 4, 2025

Last updated: October 4, 2025

1. INTRODUCTION

QUILT LOGGER LLC, a Michigan Limited Liability Company ("Company," "we," "us," or "our"), is committed to protecting the privacy and security of personal information collected through our quilting business management software platform (the "Service"). This Privacy Policy explains how we collect, use, store, and protect your personal information.

This Privacy Policy applies to all users of our Service, including quilting business owners and their customers whose information may be stored in the Service.

2. INFORMATION WE COLLECT

2.1 Information You Provide Directly

Account Information: When you create an account, we collect:

  • Name and email address
  • Business name and contact information
  • Payment information (processed securely through Stripe, we store NO credit card information)
  • Account credentials and security information

Customer Data You Input: Through your use of the Service, you may input:

  • Customer names and contact information
  • Quilt project details and specifications
  • Materials and costs information
  • Communication records with customers
  • Invoice and payment records
  • Any other business data you choose to store in the Service

2.2 Information Automatically Collected

Technical Information: We automatically collect:

  • IP address and device information
  • Browser type and version
  • Service usage patterns and feature utilization
  • Error logs and performance data

Communication Data: When using our notification features:

  • SMS delivery status (via AWS SNS)
  • Email delivery status (via AWS SES)
  • Communication preferences and settings

2.3 Information from Third Parties

Payment Processing: Stripe processes payment information on our behalf and may share transaction status and payment-related information with us in accordance with their privacy policy.

2.4 Mobile Phone Numbers for SMS

With your consent, we collect mobile phone numbers to send transactional SMS updates related to quilt project status (e.g., started, in progress, completed, ready for pickup). We do not use mobile numbers for marketing or promotional messaging.

  • Consent is recorded with a timestamp in your account.
  • You can opt out at any time by replying STOP to any message.
  • Message frequency varies; message and data rates may apply.

Website Analytics: We use Google Analytics on our marketing website (but not within the application) to understand website usage patterns. This is governed by Google's privacy policy.

3. HOW WE USE YOUR INFORMATION

3.1 Service Provision

We use your information to:

  • Provide, maintain, and improve the Service
  • Process subscription payments and manage billing
  • Enable communication features between you and your customers
  • Generate invoices and business reports
  • Provide customer support and respond to inquiries
  • Ensure service security and prevent fraud

3.2 Business Operations

We may use aggregated, de-identified data to:

  • Analyze service usage patterns
  • Improve service features and performance
  • Develop new features and capabilities

3.3 Legal Compliance

We may use your information to:

  • Comply with applicable laws and regulations
  • Respond to legal requests and court orders
  • Protect our rights and interests
  • Investigate potential violations of our Terms of Service

3.4 SMS Communications

We use your mobile number solely to deliver transactional SMS updates you requested. For help, reply HELP to any message or contact support at support@quiltlogger.comor +1-734-340-0140.

4. HOW WE SHARE YOUR INFORMATION

4.1 No Third-Party Data Sharing

We do not sell, rent, or share your personal information or customer data with third parties for their marketing purposes. Your quilting business data and customer information remain confidential and are not shared with competitors or other businesses.

4.2 Service Providers

We may share information with trusted service providers who assist us in operating the Service:

Stripe, Inc.: Payment processing services

  • Purpose: Process subscription payments
  • Data Shared: Payment information, billing details
  • Location: United States
  • Privacy Policy: https://stripe.com/privacy

Amazon Web Services (AWS): Cloud hosting and communication services

  • Purpose: Data storage, email and SMS notifications
  • Data Shared: Service data, communication messages
  • Location: United States
  • Privacy Policy: https://aws.amazon.com/privacy/

4.3 Legal Requirements

We may disclose information when required by law, including:

  • Response to subpoenas, court orders, or legal process
  • Compliance with data breach notification laws
  • Protection of our rights, property, or safety
  • Investigation of potential fraud or security incidents

4.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, customer information may be transferred as part of the business assets, subject to equivalent privacy protections.

4.5 SMS Delivery and Metadata

To deliver SMS messages, we use trusted providers (e.g., AWS SNS). These providers process limited metadata such as recipient number, timestamp, and delivery status. We do not sell or share mobile numbers or SMS metadata with third parties for their marketing purposes.

5. DATA SECURITY

5.1 Security Measures

We implement industry-standard security measures to protect your information:

  • Encryption: All data is encrypted both in transit and at rest using AES-256 encryption
  • Access Controls: Strict access controls limit employee access to customer data
  • Network Security: Firewalls and intrusion detection systems protect our infrastructure
  • Regular Audits: We conduct regular security assessments and vulnerability testing

5.2 Data Storage

Your data is stored in secure, encrypted databases hosted on Amazon Web Services (AWS) infrastructure in the United States. AWS maintains SOC 2 Type II and ISO 27001 certifications.

5.3 Incident Response

In the event of a security incident that may compromise personal information, we will:

  • Investigate and contain the incident promptly
  • Assess the scope and nature of compromised information
  • Notify affected users within 72 hours when feasible
  • Comply with Michigan data breach notification laws (MCL 445.72)
  • Take corrective actions to prevent future incidents

6. DATA RETENTION

6.1 Active Accounts

We retain your account information and service data while your subscription remains active and for a reasonable period afterward to provide continued service.

6.2 Account Termination

After account termination or subscription expiration:

  • You have 90 days to export your data
  • We retain data for up to two (2) years for backup and recovery purposes
  • After two years, all data is permanently deleted from our systems

6.3 Legal Hold

We may retain information longer when required by law or to resolve disputes, even after account termination.

6.4 SMS Consent and Metadata Retention

We retain SMS consent records and delivery metadata for up to two (2) years, or longer where required by law or to establish, exercise, or defend legal claims. This aligns with our overall retention schedule described above.

7. YOUR PRIVACY RIGHTS

7.1 Access and Correction

You have the right to:

  • Access your personal information stored in our systems
  • Correct inaccurate or incomplete information
  • Update your account settings and preferences

7.2 Data Export

You may export all of your business data, including customer information and quilt records, at any time through the Service interface.

7.3 Account Deletion

You may delete your account at any time, which will result in:

  • Immediate termination of service access
  • Deletion of personal account information
  • Retention of business data according to our retention schedule
  • Permanent deletion of all data after the retention period

7.4 Communication Preferences

You may opt out of:

  • Marketing communications (if any)
  • Non-essential service notifications
  • Third-party analytics tracking on our website

To opt out of SMS updates, reply STOP to any message. For assistance, reply HELP or contact support at support@quiltlogger.com or +1-734-340-0140. Message frequency varies; message and data rates may apply.

8. CHILDREN'S PRIVACY

The Service is not intended for use by individuals under 18 years of age. We do not knowingly collect personal information from children under 18. If we become aware that we have collected such information, we will delete it promptly.

9. CALIFORNIA PRIVACY RIGHTS

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA). However, because our Service is designed for business-to-business use and we do not sell personal information, most CCPA requirements do not apply to our operations.

For California residents, we provide the following information:

  • Categories of Information Collected: As described in Section 2
  • Business Purposes: As described in Section 3
  • No Sale of Information: We do not sell personal information to third parties
  • Service Providers: As described in Section 4.2

10. INTERNATIONAL DATA TRANSFERS

Our Service is operated from the United States. If you are located outside the United States, please be aware that information you provide will be transferred to and stored in the United States. By using the Service, you consent to this transfer.

11. MICHIGAN-SPECIFIC PRIVACY RIGHTS

11.1 Data Breach Notification

In accordance with Michigan Compiled Laws § 445.72, we will notify Michigan residents of data breaches that may cause substantial loss, injury, or identity theft without unreasonable delay.

11.2 Personal Information Definition

Under Michigan law, personal information includes your name in combination with Social Security number, driver's license number, or financial account information. We implement appropriate safeguards for all such information.

12. UPDATES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will post the updated Privacy Policy on our website and notify you of material changes via email or through the Service.

Your continued use of the Service after the effective date of any changes constitutes your acceptance of the updated Privacy Policy.

13. THIRD-PARTY LINKS AND SERVICES

The Service may contain links to third-party websites or integrate with third-party services. This Privacy Policy does not apply to those third-party services. We encourage you to review the privacy policies of any third-party services you access.

14. BUSINESS CONTINUITY

14.1 Service Availability

We strive to maintain continuous service availability, though we do not guarantee 100% uptime. We maintain backup systems and disaster recovery procedures to minimize service disruptions.

14.2 Data Backup

We maintain regular backups of all customer data in geographically separate locations to ensure data availability and recovery capabilities.

15. COMPLIANCE AND CERTIFICATIONS

Our Service and data handling practices are designed to comply with:

  • Michigan data protection laws
  • Federal trade regulation requirements
  • Industry best practices for data security
  • SOC 2 Type II standards (through AWS infrastructure)

16. CONTACT INFORMATION

16.1 Privacy Questions

For questions about this Privacy Policy or our privacy practices, contact us at:

Privacy Officer

Quilt Logger LLC
PO Box 116
Milan, Michigan 48160-0116
Email: privacy@quiltlogger.com
Phone: 1-734-340-0140

16.2 Data Subject Requests

To exercise your privacy rights or submit data-related requests:

Email: data@quiltlogger.com
Subject Line: "Privacy Rights Request"

Please include your full name, email address associated with your account, and specific details about your request. We will respond within 30 days.

16.3 Security Incidents

To report security concerns or potential data breaches:

Email: security@quiltlogger.com
Phone: 1-734-340-0140 (for urgent security issues)

Effective Date: This Privacy Policy is effective as of the date posted above and supersedes any previous privacy policies.