Privacy Policy

Last Updated: August 30, 2025

1. Identification and Contact Information

This Privacy Policy applies to data collected by Bite Blueprint (“we,” “us,” “our”). Bite Blueprint is the data controller responsible for your personal information.

If you have any questions about this Privacy Policy or our data protection practices, please contact us at:

  • Business Name: Bite Blueprint
  • Address: Inarawan, City of Antipolo, Philippines
  • Email: [email protected]

2. What Personal Information We Collect

We collect several categories of personal information from and about our website users.

A. Information You Directly Provide to Us:

  • Identifiers: When you fill out our contact form, we collect your name, email address, website URL, and the IP address associated with your submission.

B. Information We Collect Automatically:

  • Internet or Other Electronic Network Activity Information: As you navigate our website, we automatically collect certain information using cookies and server logs. This includes your IP address, browsing history on our site, and information about your interaction with our website.

C. Information from Third Parties:

  • Commercial Information: When you purchase our services through our payment processors (PayPal or Stripe), we receive commercial information about the transaction, such as your name, the service you purchased, and the payment status. We do not directly collect or store your full credit card information on our servers.

3. How and From Where We Collect Information

We collect personal information from the following sources:

  • Directly from you when you provide it to us, for example, by filling out the contact form on our website.
  • Automatically as you navigate our website. Information collected automatically may include usage details, IP addresses, and information collected through cookies and other tracking technologies.
  • From third-party business partners, such as our payment processors who provide us with details about your transactions.

4. Why We Collect and Use Your Information (and Our Legal Basis)

We use the personal information we collect for specific, legitimate business purposes. Under the GDPR, we must have a “lawful basis” for each use. We use your information for the following purposes:

  • To Respond to Your Inquiries and Fulfill Your Requests: We use your Identifiers (name, email, website) to provide you with the information or services you request, such as sending you a website audit or scheduling a consultation.
  • Lawful Basis (GDPR): Performance of a Contract (meaning, taking steps at your request before entering into a contract).
  • To Process Your Transactions: We use Commercial Information provided by our payment processors to fulfill the services you purchase from us.
  • Lawful Basis (GDPR): Performance of a Contract.
  • For Security and Spam Prevention: We use your IP address to maintain the security and integrity of our website, including to prevent fraudulent activity and spam.
  • Lawful Basis (GDPR): Our Legitimate Interests in protecting our business and website.
  • For Analytics and Website Improvement: We use Internet Activity Information collected via cookies and trackers (like Google Analytics and Facebook Meta Pixel) to understand how users interact with our website. This helps us improve our services and user experience.
  • Lawful Basis (GDPR): Your Consent, which you provide through our cookie banner, or our Legitimate Interests in improving our website.

5. Who We Share Your Information With

We do not sell your personal information. We only share your information with the following categories of third-party service providers to help us operate our business and provide our services:

  • Website Hosting Providers: We share data with Hostinger, which hosts our website and stores data such as IP addresses on its servers.
  • Email Marketing and Communication Platforms: We use MailerLite to store your contact information (name, email, website) and to communicate with you.
  • Payment Processors: We share transaction information with PayPal and Stripe to process payments for our services.
  • Scheduling Tools: We use TidyCal to allow you to schedule consultations with us. When you book a meeting, your name and email address are shared with this service.
  • Analytics Providers: We share information about your device and your activity on our site with Google Analytics and Facebook (Meta Pixel) to analyze website performance and user engagement.

These service providers are contractually obligated to protect your data and are restricted from using it for any purpose other than providing services to us.

6. International Data Transfers

We may transfer, store, and process your personal information in a country other than your own, including the United States, where our third-party service providers’ servers are located. Your business is located in the Philippines, and we serve clients globally.

When we transfer your data internationally, we ensure that it is protected by implementing legal safeguards as required by laws like the GDPR, such as using Standard Contractual Clauses (SCCs) or relying on other valid transfer mechanisms.

7. How Long We Keep Your Information

We retain your personal information for no longer than is necessary to fulfill the purposes for which it was collected. The criteria we use to determine our retention periods include:

  • The duration of our relationship with you as a client or potential client.
  • Whether we have a legal obligation to retain the data (for example, for tax and accounting purposes).
  • Whether retention is advisable in light of our legal position (such as for statutes of limitations or regulatory investigations).

We will securely delete or anonymize your information when it is no longer needed for these purposes.

8. How We Protect Your Information

We have implemented appropriate technical and organizational security measures designed to protect your personal information from accidental loss and from unauthorized access, use, alteration, and disclosure. These measures include:

  • Using Secure Sockets Layer (SSL) technology to encrypt data in transit.
  • Implementing firewalls and access controls to protect our systems.
  • We restrict access to personal information to only those employees and third-party service providers who have a legitimate business need to know.

While we do our best to protect your data, no method of transmission over the Internet is 100% secure.

9. Your Data Rights

You have certain rights regarding the personal information we hold about you. Depending on your location, these rights may include the right to access, correct, delete, or object to the processing of your data.

To exercise any of your rights, please contact us at [email protected]. We will respond to your request in accordance with applicable data protection laws.

10. Cookies and Tracking Technologies

We use cookies and similar tracking technologies, like the Facebook Meta Pixel, to help our website function and to analyze its performance. Cookies are small data files stored on your browser or device.

We use cookies for necessary functions, security, performance, and analytics. For more detailed information about the cookies we use, how we use them, and how you can manage your preferences, please see our Cookie Policy.

11. Children’s Privacy

Our services are not directed to or intended for individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have inadvertently collected personal information from a child, we will take steps to delete it as soon as possible.

12. Changes to Our Privacy Policy

We may update this Privacy Policy from time to time. The date the policy was last revised is identified at the top of the page. We encourage you to review this policy periodically to stay informed. For any material changes, we will notify you by a prominent notice on our website or by other means.

13. Additional Information for Residents of the European Economic Area (EEA)

If you are a resident of the European Economic Area (EEA), you have certain additional rights and protections under the General Data Protection Regulation (GDPR).

  • Your Data Subject Rights: You have the following rights regarding your personal information:
  • The right to access: You can request a copy of the personal data we hold about you.
  • The right to rectification: You can ask us to correct any inaccurate information we hold about you.
  • The right to erasure (the ‘right to be forgotten’): You can ask us to delete your personal data in certain circumstances.
  • The right to restrict processing: You can ask us to limit the use of your personal data.
  • The right to data portability: You have the right to receive your data in a machine-readable format to transfer it to another service provider.
  • The right to object: You have the right to object to us processing your data, particularly for direct marketing purposes.
  • Right to Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority in your member state if you feel we have not complied with data protection laws.

To exercise any of these rights, please contact us at [email protected].

14. Your Rights Under the Philippines Data Privacy Act of 2012 (DPA)

If you are a resident of the Philippines, you have specific rights protected by the Data Privacy Act of 2012. Our data processing is guided by the core DPA principles of Transparency, Legitimate Purpose, and Proportionality.

Your rights under the DPA include:

  • The Right to be Informed: You have the right to know that your personal data is being processed.
  • The Right to Object: You can object to the processing of your data.
  • The Right to Access: You can request access to the contents of your personal data.
  • The Right to Rectification: You can ask us to correct any inaccurate data.
  • The Right to Erasure or Blocking: You have the right to have your data removed or blocked from our systems under certain conditions.
  • The Right to Data Portability: You can obtain a copy of your data in an electronic, structured format.

To exercise any of these rights, please contact us at [email protected].

15. Your California Privacy Rights

If you are a resident of California, you have specific rights under the California Consumer Privacy Act (CCPA/CPRA).

Your rights as a California resident include:

  • The Right to Know: You can request that we disclose the categories and specific pieces of personal information we have collected about you.
  • The Right to Delete: You can request that we delete your personal information, subject to certain legal exceptions.
  • The Right to Correct: You have the right to request the correction of inaccurate personal information we hold about you.
  • The Right to Opt-Out of Sale or Sharing: You have the right to direct us not to “sell” or “share” your personal information. While we do not sell your data for money, the use of certain analytics and tracking technologies may be considered “sharing” under California law. You can exercise this right by clicking the link below.
  • The Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights.

To exercise any of your other rights, please contact us at [email protected].