Account and profile information
When you create a local account, we store your name, email address, and a password hash rather than your plain-text password. You may also provide optional phone and address details for your profile.
Google Sign-In information
If you choose Google Sign-In, we may store your Google account identifier, name, email address, and verified-email status so your account can be created, linked securely where appropriate, and signed in.
Messages, enquiries, and orders
We store information you submit through the contact form, service or project enquiry form, and theme checkout, such as message content, project requirements, contact details, order details, payment status information, transaction references, and notes where provided.
Registration metadata
When an account is registered, we may record the IP address, user agent, detected browser, operating system, device type, country when available, timezone, language, referrer, and registration date. This supports security, troubleshooting, and service operation.
Analytics and views
We record basic page-view statistics, page or content paths, locale, and unique-view protection data. We use hashed visitor signals based on request information to reduce repeated refresh counting, and filter common automated bots where possible.
Cookies and authentication sessions
We use cookies and authentication or session tokens to sign you in, keep sessions secure, maintain language preferences, and protect form submissions. You can end an active authenticated session by logging out.
How we use information
We use this information to operate accounts, provide requested services and theme orders, respond to messages, maintain security, measure site performance, and improve the website experience. Syed Stack does not sell personal data.
Access and security
Access to system-detected registration metadata is restricted to authorized administrators and is not displayed in the public client dashboard. We use reasonable application controls such as authentication, protected admin access, and request security measures, but no online service can promise absolute security.
Service providers
The website may rely on Google OAuth for Google Sign-In, hosted MongoDB and Redis services for application data and sessions, and Google Fonts when fonts are loaded externally. These providers may process data required to deliver their services under their own policies.
Retention
We retain account, enquiry, message, order, security, and operational information for as long as reasonably needed to provide the service, meet legitimate recordkeeping needs, resolve issues, or maintain security. Retention may vary by record type.
Your requests
You may request access to, correction of, or deletion of your account or submitted personal information by using the contact page. Please provide the email address connected with the account, order, message, or enquiry so we can verify and handle the request safely.