Sewing Arts Lab (“we,” “us,” or “our”) operates the website www.sewingartslab.com and provides sewing, fashion design, and textile arts education in Los Angeles, California. This Privacy Policy explains how we collect, use, share, and protect personal information when you use our website or services.
INFORMATION WE COLLECT
INFORMATION YOU PROVIDE DIRECTLY
- Name, email address, and phone number — when registering, contacting us, or signing up for our newsletter
- Student information including name, age, and birthdate — when registering minors for classes or summer camp
- Emergency contact name and phone number — during registration
- Electronic signature — when completing the liability release form
- Interest preferences — when subscribing to our newsletter
INFORMATION COLLECTED AUTOMATICALLY
- IP address — used for rate limiting and security
- Browser type — via standard server logs
- Session cookies — required for cart and checkout functionality
INFORMATION WE DO NOT COLLECT
We do not collect credit card numbers or payment card data. Credit card payments are processed entirely by Square, Inc. through their secure payment form. Card data goes directly to Square and never passes through our server.
HOW WE USE YOUR INFORMATION
We use the information we collect to:
- Process registrations, orders, and payments
- Send order confirmations, registration reminders, and payment instructions
- Communicate about your enrolled classes, camps, or sessions
- Respond to your questions and contact form submissions
- Send our newsletter (only if you opt in)
- Maintain the security of our website (rate limiting, fraud prevention)
- Comply with legal obligations
We do not sell your personal information. We do not use your information for behavioral advertising or profiling.
THIRD PARTIES WE SHARE DATA WITH
We share personal information only with the following service providers, and only as necessary to operate our business:
- Square, Inc. — payment amount and order reference code, for credit card payment processing
- Mailchimp (Intuit) — name, email, and interest preferences, for newsletter delivery (opt-in only)
- Proton Mail (SMTP) — name and email in message content, for sending transactional emails such as confirmations and reminders
We do not share your information with any other third parties, data brokers, or advertisers.
COOKIES
Our site uses the following cookies:
- PHPSESSID — session management (cart, checkout, forms). Expires when you close your browser.
- sal_subscribed — remembers newsletter signup to suppress popup. Expires after 1 year.
- sal_popup_dismissed — remembers popup dismissal. Expires after 30 days.
We do not use tracking cookies, analytics cookies, or third-party advertising cookies.
DATA RETENTION
- Order and registration data is retained for business and legal record-keeping purposes.
- Contact form submissions are retained until addressed, then deleted.
- Newsletter subscriptions are retained until you unsubscribe.
- Session data expires automatically when you close your browser.
YOUR RIGHTS UNDER CALIFORNIA LAW (CCPA/CPRA)
If you are a California resident, you have the right to:
- Know what personal information we have collected about you
- Access your personal information in a portable format
- Delete your personal information (subject to certain exceptions)
- Correct inaccurate personal information
- Opt out of the sale or sharing of your personal information (we do not sell or share your data, so this right is already satisfied)
- Non-discrimination — we will not treat you differently for exercising your privacy rights
To exercise any of these rights, contact us at info@sewingartslab.com or (818) 269-1361. We will verify your identity and respond within 45 days as required by law.
CHILDREN'S PRIVACY
Our programs serve students ages 6 through adult. Registration for minors is completed by a parent or legal guardian, and we collect student names, ages, and birthdates only as necessary to administer the program. We do not knowingly collect personal information directly from children under 13 without parental consent. If you believe we have inadvertently collected information from a child under 13 without appropriate consent, please contact us immediately and we will delete it.
DATA SECURITY
We protect your information using HTTPS encryption, secure session management, server-side input validation, and access controls on our systems. Payment card data is handled entirely by Square's PCI-compliant infrastructure and never stored on our servers.
CHANGES TO THIS POLICY
We may update this Privacy Policy from time to time. The “Last updated” date at the top reflects the most recent revision. Continued use of our website after changes constitutes acceptance of the updated policy.