Privacy Policy

Effective Date: April 15, 2026

Fastw3b LLC ("Fastw3b", "we", "us", or "our") operates the website fastw3b.com and provides software products, support services, and related offerings. This Privacy Policy explains how we collect, use, store, share, and protect your personal information when you use our website, client area, and services.

This policy applies to all visitors, registered users, and customers regardless of location. We are committed to protecting your privacy in compliance with applicable laws including the EU General Data Protection Regulation (GDPR), the California Consumer Privacy Act and California Privacy Rights Act (CCPA/CPRA), Canada's Personal Information Protection and Electronic Documents Act (PIPEDA), and the Australian Privacy Principles (APPs).

Data Controller:
Fastw3b LLC
8 The Green, Ste 4
Dover, DE 19901, USA
Email: privacy@fastw3b.com

1. Information We Collect

1.1 Account Information

When you register, we collect:

• First name and last name
• Email address
• A password is generated automatically and sent to your email
• Your IP address at the time of registration
• Your country, determined via IP geolocation

1.2 Profile Information (Optional)

You may choose to provide additional information in your account profile:

• Company name
• Mailing address (street, city, state, postal code)
• Phone number
• Timezone
• Date of birth and gender
• Profile photo

1.3 Authentication Data

We support multiple login methods:

• Email and password: Your password is stored as a one-way cryptographic hash. We never store or have access to your plain-text password.
• Google Sign-In: If you sign in with Google, we receive your Google account ID, email address, and name from Google's OAuth service.
• Facebook Sign-In: If you sign in with Facebook, we receive your Facebook account ID, email address, and name from Facebook's OAuth service.

1.4 Login and Security Data

Each time you log in, we automatically record:

• Your IP address
• Your browser and operating system (user agent)
• The login method used
• Whether the login was successful or failed
• Date and time of the attempt

This data helps us detect unauthorized access to your account.

1.5 Technical and Analytics Data

• IP Geolocation: We use third-party geolocation services (ip-api.com, ipstack, or MaxMind) to determine your approximate location from your IP address. This data is cached for up to 90 days.
• Session Cookie: We use a single session cookie (fw_session) that is essential for the website to function. It expires after 8 hours of inactivity and is configured with HTTPOnly and SameSite=Lax flags for security.
• Analytics: We use Matomo, a self-hosted analytics platform, to understand how visitors use our website. Matomo runs on our own servers at analytics.fastw3b.com. No analytics data is shared with third parties. Analytics tracking only activates after you provide consent via our cookie banner. If you decline, we use a cookieless mode that does not identify individual visitors. When analytics is active, we collect: pages visited, referral source, browser and device type, approximate location, and for logged-in users, a user identifier.
• Cookie Consent: Your consent choice (accept or decline) is stored in your browser's local storage, not as a cookie.

1.6 Payment Information

Payments are processed by Stripe and PayPal. We do not store your credit card numbers, bank account details, or other payment credentials on our servers. We only store:

• Transaction identifiers from Stripe or PayPal
• Payment amount and status
• Subscription identifiers (for recurring payments)
• Date of payment

1.7 Support Data

When you create a support ticket, we collect:

• Ticket subject and message content
• File attachments you upload
• Your satisfaction ratings when a ticket is closed

1.8 Website Credentials

For support purposes, you may voluntarily provide your website's administrative or FTP login credentials. These are stored with application-level encryption and are accessible only to authorized support staff working on your request. You can remove these credentials at any time from your account. All stored credentials are permanently deleted if you delete your account.

1.9 Communications

We send transactional emails related to your account activity (registration, payments, support replies, subscription reminders). We may also send product update notifications and marketing communications. You can manage your email preferences in your account settings or unsubscribe from any email using the link provided in each message.

2. How We Use Your Information

We use your personal information for the following purposes:

Purpose	Legal Basis (GDPR)
Creating and managing your account	Contract performance
Processing payments and managing subscriptions	Contract performance
Providing customer support	Contract performance
Sending transactional emails (receipts, password resets, support notifications)	Contract performance
Delivering product updates and downloads	Contract performance
Detecting and preventing fraud or unauthorized access	Legitimate interest
Analyzing website usage to improve our services	Consent (via cookie banner)
Sending marketing communications about new products or offers	Consent
Complying with legal and accounting obligations	Legal obligation
Determining your approximate location for localization	Legitimate interest

3. Cookies and Tracking Technologies

We use a minimal set of cookies and similar technologies:

Technology	Purpose	Duration	Consent Required
Session cookie (fw_session)	Maintains your login session and security tokens	8 hours	No (strictly necessary)
Local storage (consent flags)	Remembers your cookie consent choice	Persistent	No (strictly necessary)
Matomo analytics cookies	Tracks website usage patterns	13 months	Yes

When you first visit our website, a banner asks you to accept or decline analytics tracking. If you accept, Matomo uses cookies to track your visits. If you decline, Matomo operates in cookieless mode using aggregated, non-identifying data. You can change your preference at any time by clearing your browser's local storage.

4. Data Sharing and Third Parties

We share your personal information only with the following categories of service providers, and only to the extent necessary:

• Payment Processors: Stripe and PayPal receive your payment details to process transactions. They operate under their own privacy policies.
• IP Geolocation Providers: ip-api.com, ipstack, or MaxMind receive your IP address to determine your approximate location. Only the IP address is transmitted.
• OAuth Providers: Google and Facebook receive an authorization request only when you choose to sign in with their services.

We do not sell, rent, or trade your personal information to third parties. We do not share data with advertising networks, data brokers, or social media platforms for their own marketing purposes.

5. International Data Transfers

Your personal information is stored and processed in the United States. If you are located outside the United States, your data will be transferred to and processed in the US. We take the following safeguards depending on your location:

• EU/EEA Users: Transfers are conducted under Standard Contractual Clauses (SCCs) as approved by the European Commission, or other appropriate safeguards under GDPR Chapter V.
• Canadian Users: We process your data with your informed consent as required by PIPEDA.
• Australian Users: In accordance with Australian Privacy Principle 8, we take reasonable steps to ensure overseas recipients handle your information consistently with the APPs.

6. Data Retention

We retain your personal information for the following periods:

Data Type	Retention Period
Account and profile data	Until you delete your account
Login history	Duration of account, deleted on account deletion
IP geolocation cache	90 days
Session data	8 hours (auto-expires)
Payment and transaction records	Retained indefinitely for legal and accounting obligations
Support tickets and messages	Retained indefinitely; anonymized upon account deletion
Website credentials	Until you remove them, or upon account deletion
Email queue	Deleted after successful delivery
Analytics data	Managed by Matomo retention policies on our servers

7. Your Rights

7.1 All Users

Regardless of your location, you have the right to:

• Access the personal information we hold about you
• Correct inaccurate personal information via your account profile
• Delete your account and associated personal data
• Opt out of marketing communications at any time

7.2 Account Deletion

You can request account deletion from your account settings. The process works as follows:

1. You submit a deletion request and receive a confirmation email.
2. You confirm the request via a secure link (valid for 24 hours).
3. A 30-day grace period begins, during which you can still log in and cancel the deletion.
4. After 30 days, your account is permanently anonymized: your name, email, address, phone number, avatar, and other personal fields are removed or replaced with generic values. Login history, website credentials, and authentication records are permanently deleted.
5. Payment records and support ticket content are retained in anonymized form for legal and accounting purposes.

7.3 EU/EEA Residents (GDPR)

Under the General Data Protection Regulation, you additionally have the right to:

• Data Portability (Art. 20): Request a copy of your personal data in a structured, commonly used format. Contact privacy@fastw3b.com to submit a portability request. We will respond within 30 days.
• Restriction of Processing (Art. 18): Request that we limit how we use your data in certain circumstances.
• Object to Processing (Art. 21): Object to processing based on legitimate interest.
• Withdraw Consent: Where processing is based on consent (such as analytics), you may withdraw consent at any time without affecting the lawfulness of prior processing.
• Lodge a Complaint: You have the right to lodge a complaint with your local data protection supervisory authority.

We are in the process of appointing a representative in the European Union pursuant to Article 27 of the GDPR. In the meantime, please direct all inquiries to privacy@fastw3b.com.

7.4 California Residents (CCPA/CPRA)

Under the California Consumer Privacy Act and California Privacy Rights Act, California residents have the right to:

• Know what categories and specific pieces of personal information we collect about you.
• Delete personal information we hold about you, subject to certain exceptions.
• Opt out of the sale of personal information. We do not sell your personal information.
• Non-discrimination for exercising your privacy rights.

Categories of personal information collected (as defined by CCPA):

• Identifiers (name, email, IP address, account ID)
• Commercial information (purchase and transaction history)
• Internet or electronic network activity (login history, browsing behavior via analytics)
• Geolocation data (approximate location from IP address)

To exercise your rights, contact privacy@fastw3b.com. We will verify your identity before processing your request.

7.5 Canadian Residents (PIPEDA)

Under the Personal Information Protection and Electronic Documents Act, you have the right to:

• Access your personal information held by us
• Challenge the accuracy of your personal information and request corrections
• Withdraw consent for the collection, use, or disclosure of your personal information, subject to legal or contractual restrictions
• File a complaint with the Office of the Privacy Commissioner of Canada if you believe we have not handled your information appropriately

7.6 Australian Residents

Under the Australian Privacy Principles, you have the right to:

• Access the personal information we hold about you (APP 12)
• Request correction of inaccurate, out-of-date, or incomplete information (APP 13)
• Lodge a complaint with the Office of the Australian Information Commissioner (OAIC) if you believe we have breached the APPs

Your personal information is transferred to and stored in the United States. We take reasonable steps to ensure that overseas recipients handle your information in accordance with the APPs.

8. Data Security

We implement the following measures to protect your personal information:

• All website traffic is encrypted via HTTPS/TLS
• Passwords are stored using strong one-way cryptographic hashing (bcrypt)
• Session cookies are configured with HTTPOnly and SameSite flags to prevent cross-site attacks
• No credit card numbers or payment credentials are stored on our servers
• Website credentials you provide for support are stored with application-level encryption
• Administrative access to personal data is restricted to authorized staff
• Our analytics platform is self-hosted, keeping all usage data on our own infrastructure

While we take reasonable precautions, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security of your data.

9. Children's Privacy

Our website and services are not directed at individuals under the age of 16. We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child under 16, we will take steps to delete that information promptly. If you believe a child has provided us with personal information, please contact us at privacy@fastw3b.com.

10. Marketing Communications

We may send you emails about product updates, new features, special offers, or other information we believe may be of interest to you. Every marketing email includes an unsubscribe link. You can also manage your email preferences in the notification settings of your account.

We will never send marketing emails without your consent. Transactional emails (such as payment confirmations, support replies, and account notifications) are sent regardless of your marketing preferences, as they are necessary for the services you use.

11. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make material changes, we will notify you by email or by posting a prominent notice on our website. The "Effective Date" at the top of this page will be updated accordingly.

Your continued use of our website and services after changes are posted constitutes your acceptance of the updated policy.

12. Contact Us

If you have questions about this Privacy Policy, wish to exercise any of your rights, or have concerns about how we handle your personal information, please contact us:

Fastw3b LLC
8 The Green, Ste 4
Dover, DE 19901, USA
Email: privacy@fastw3b.com

For GDPR-related inquiries, we aim to respond within 30 days. For CCPA requests, we will respond within 45 days. For PIPEDA and APP requests, we will respond within 30 days.