Legal

Privacy Policy

Last updated: January 1, 2026

Brantech Company LLC ("Brantech", "we", "our", "us") respects your privacy and is committed to protecting the personal information you share with us. This Privacy Policy describes how we collect, use, disclose and safeguard your information when you visit brantechcompanyllc.com or engage our SaaS consultancy services. We are the data controller for the personal data we collect through this site.

1. Information we collect

We collect three categories of information:

Information you provide directly — your name, company, email address, phone number, billing address, the content of messages you send through our contact, booking and checkout forms, and any information you share during a consultancy engagement.
Payment information — when you purchase a package, your card number, CVC and expiry are submitted directly to our payment processor, Stripe, Inc. We do not see, store or process this information ourselves. We receive only a payment confirmation, the last four digits of the card, the card brand, the billing email and the transaction reference.
Information collected automatically — IP address, browser type, device identifiers, referring URLs, pages viewed and interaction events, collected via cookies and similar technologies for analytics, security and theme preferences.

2. How we use your information

We use your information to:

Deliver the consultancy services you have purchased.
Process payments securely through Stripe.
Respond to enquiries and provide customer support.
Send service-related communications (receipts, scheduling, deliverables).
Maintain account and site security, including fraud prevention.
Comply with legal, tax and accounting obligations.
Improve our website, content and service offerings.

We do not sell your personal information. We do not share your information for cross-context behavioural advertising.

3. Legal bases (GDPR / UK GDPR)

If you are in the EEA, UK or Switzerland, our legal bases are:

Contract: to deliver the services you purchased.
Legal obligation: tax, accounting and anti-fraud compliance.
Legitimate interests: to operate, secure and improve the website and services, where not overridden by your rights.
Consent: for non-essential cookies and any optional marketing communications. You may withdraw consent at any time.

4. Cookies & tracking

We use first-party and limited third-party cookies for essential functionality (session, security), theme preferences (dark/light mode), and aggregate analytics (page views, referrers). You can control cookies via our cookie banner or your browser settings. Disabling cookies may limit some site functionality (for example, your theme preference will not persist).

5. Third-party processors

We rely on a small number of trusted processors. Each is contractually required to safeguard your data and process it only on our instructions:

Stripe, Inc. — payment processing. Stripe is a PCI Service Provider Level 1 (the highest level of payment-card security certification). See Stripe's privacy policy at stripe.com/privacy.
Supabase — backend data infrastructure (booking and contact submissions, account data).
Email delivery providers — transactional email (receipts, scheduling, support).

6. Payment-card security

Brantech does not collect, store or transmit full payment-card data on our servers. All card data is captured directly by Stripe's embedded checkout inside an iframe served from stripe.com, transmitted over TLS, and stored in Stripe's PCI-DSS Level 1 environment. We retain only non-sensitive metadata (transaction ID, last four digits, brand, billing email) needed for receipts, refunds and accounting.

7. Data retention & security

We retain personal data only for as long as necessary to provide services, comply with legal and tax obligations, and resolve disputes. Typical retention windows: enquiry messages (24 months), booking submissions (24 months), purchase and tax records (7 years, as required by U.S. and EU tax law), engagement deliverables (7 years).

We apply industry-standard safeguards including TLS encryption in transit, encryption at rest, role-based access control, single sign-on for staff, quarterly access reviews and regular security review.

8. Your rights

Depending on your jurisdiction (including the EU GDPR, UK GDPR, California CCPA/CPRA, Virginia VCDPA, Colorado CPA, Connecticut CTDPA and other US state laws), you may have the right to:

Access the personal data we hold about you.
Request correction of inaccurate data.
Request deletion of your data, subject to legal retention requirements.
Receive a portable copy of your data.
Restrict or object to certain processing.
Withdraw consent for processing based on consent.
Lodge a complaint with your local data protection authority.

To exercise any of these rights, email privacy@brantechcompanyllc.com. We will respond within 30 days (or as required by your local law).

9. International transfers

Brantech operates from the United States and works with global clients. Your information may be transferred to and processed in countries other than your own, including the United States. Where required (for example, for transfers from the EEA or UK), we use appropriate safeguards such as Standard Contractual Clauses and the UK International Data Transfer Addendum.

10. Children's privacy

Our services are intended for businesses and not directed to children under 16. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us and we will delete it.

11. Changes to this policy

We may update this Privacy Policy periodically. The "Last updated" date above reflects the most recent revision. Material changes will be highlighted on the site or notified by email where appropriate.

12. Contact us

Brantech Company LLC
1309 Coffeen Avenue, Sheridan, WY 82801, USA
Email: privacy@brantechcompanyllc.com
General support: support@brantechcompanyllc.com