Login

Privacy Policy

Last updated: January 10, 2026

1. Who We Are

Our website address is: https://www.theeverydaychallenge.org.

2. Information We Collect

2.1 Comments

When visitors leave comments, we collect:

  • Data entered in the comment form
  • Visitor’s IP address and browser user agent string (for spam detection)

2.2 Media Uploads

If you upload images, avoid embedding location data (EXIF GPS). Other visitors may download and extract such data.

2.3 Cookies

We use cookies to enhance your experience. For example:

  • Comments: You may opt-in to save your details in cookies (lasts 1 year).
  • Login: Temporary cookies test browser acceptance; login cookies last 2 days, “Remember Me” persists for 2 weeks.
  • Content Publishing: Cookies track post IDs of recently edited articles (expires after 1 day).

2.4 Embedded Content

Articles may include embedded content (e.g., videos, images). These behave as if you visited the external site, which may collect data, use cookies, or track your interactions.

2.5 Store & Checkout Data

When you shop with us, we collect:

  • Products viewed (to display recently viewed items)
  • Location, IP address, browser type (for taxes & shipping estimates)
  • Shipping/billing addresses
  • Payment details
  • Account information (if you register)

We also store order history, reviews, and optional account details for convenience.

2.6 Social Login Data

If you use social login, we collect:

  • Email, name, social provider ID, access token
  • Optional profile picture and synced fields (Pro version)
    This data is stored on our site and not shared with third parties (except tokens used for authentication).

3. How We Use Your Information

We use the collected information to:

  • Process orders and payments
  • Respond to requests, refunds, and complaints
  • Set up and manage accounts
  • Detect and prevent fraud
  • Improve our store offerings
  • Send account updates and marketing messages (if opted in)
  • Comply with legal obligations (e.g., taxes, accounting)

4. Who We Share Your Data With

  • Password resets: Your IP address may be included in reset emails.
  • Payment processors: We share necessary details with Stripe to process payments. See the Stripe Privacy Policy.
  • Spam detection: Visitor comments may be checked via automated spam detection services.

5. Data Retention

  • Comments: Stored indefinitely for moderation history.
  • User accounts: Profile data is retained until account deletion (username cannot be changed).
  • Orders: Retained for [insert number of years] to comply with tax/accounting laws.
  • Social login data: Deleted when a user is removed from WordPress.

6. Your Rights

You may request to:

  • Receive an exported file of the personal data we hold about you
  • Request deletion of your personal data (except where required for legal or security purposes)

7. Who on Our Team Has Access

Our administrators and shop managers can access:

  • Order details (items purchased, shipping info)
  • Customer details (name, email, billing/shipping info)
    This access is used solely to fulfill orders, process refunds, and provide support.

8. Data Security & Cookies in Social Login

  • Social login creates necessary cookies to secure authentication flows.
  • These cookies are temporary and required for redirecting users safely.

9. Third-Party Services

We do not sell your data. However, third-party services (like PayPal or Gravatar) may handle your data under their own policies.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Updates will be posted on this page with a revised date.