Privacy Policy
Effective Date: April 15, 2026
Fastw3b LLC ("Fastw3b", "we", "us", or "our") operates the website fastw3b.com and provides software products, support services, and related offerings. This Privacy Policy explains how we collect, use, store, share, and protect your personal information when you use our website, client area, and services.
This policy applies to all visitors, registered users, and customers regardless of location. We are committed to protecting your privacy in compliance with applicable laws including the EU General Data Protection Regulation (GDPR), the California Consumer Privacy Act and California Privacy Rights Act (CCPA/CPRA), Canada's Personal Information Protection and Electronic Documents Act (PIPEDA), and the Australian Privacy Principles (APPs).
Data Controller:
Fastw3b LLC
8 The Green, Ste 4
Dover, DE 19901, USA
Email: privacy@fastw3b.com
1. Information We Collect
1.1 Account Information
When you register, we collect:
- First name and last name
- Email address
- A password is generated automatically and sent to your email
- Your IP address at the time of registration
- Your country, determined via IP geolocation
1.2 Profile Information (Optional)
You may choose to provide additional information in your account profile:
- Company name
- Mailing address (street, city, state, postal code)
- Phone number
- Timezone
- Date of birth and gender
- Profile photo
1.3 Authentication Data
We support multiple login methods:
- Email and password: Your password is stored as a one-way cryptographic hash. We never store or have access to your plain-text password.
- Google Sign-In: If you sign in with Google, we receive your Google account ID, email address, and name from Google's OAuth service.
- Facebook Sign-In: If you sign in with Facebook, we receive your Facebook account ID, email address, and name from Facebook's OAuth service.
1.4 Login and Security Data
Each time you log in, we automatically record:
- Your IP address
- Your browser and operating system (user agent)
- The login method used
- Whether the login was successful or failed
- Date and time of the attempt
This data helps us detect unauthorized access to your account.
1.5 Technical and Analytics Data
- IP Geolocation: We use third-party geolocation services (ip-api.com, ipstack, or MaxMind) to determine your approximate location from your IP address. This data is cached for up to 90 days.
- Session Cookie: We use a single session cookie (
fw_session) that is essential for the website to function. It expires after 8 hours of inactivity and is configured with HTTPOnly and SameSite=Lax flags for security. - Analytics: We use Matomo, a self-hosted analytics platform, to understand how visitors use our website. Matomo runs on our own servers at analytics.fastw3b.com. No analytics data is shared with third parties. Analytics tracking only activates after you provide consent via our cookie banner. If you decline, we use a cookieless mode that does not identify individual visitors. When analytics is active, we collect: pages visited, referral source, browser and device type, approximate location, and for logged-in users, a user identifier.
- Cookie Consent: Your consent choice (accept or decline) is stored in your browser's local storage, not as a cookie.
1.6 Payment Information
Payments are processed by Stripe and PayPal. We do not store your credit card numbers, bank account details, or other payment credentials on our servers. We only store:
- Transaction identifiers from Stripe or PayPal
- Payment amount and status
- Subscription identifiers (for recurring payments)
- Date of payment
1.7 Support Data
When you create a support ticket, we collect:
- Ticket subject and message content
- File attachments you upload
- Your satisfaction ratings when a ticket is closed
1.8 Website Credentials
For support purposes, you may voluntarily provide your website's administrative or FTP login credentials. These are stored with application-level encryption and are accessible only to authorized support staff working on your request. You can remove these credentials at any time from your account. All stored credentials are permanently deleted if you delete your account.
1.9 Communications
We send transactional emails related to your account activity (registration, payments, support replies, subscription reminders). We may also send product update notifications and marketing communications. You can manage your email preferences in your account settings or unsubscribe from any email using the link provided in each message.
2. How We Use Your Information
We use your personal information for the following purposes:
| Purpose | Legal Basis (GDPR) |
|---|---|
| Creating and managing your account | Contract performance |
| Processing payments and managing subscriptions | Contract performance |
| Providing customer support | Contract performance |
| Sending transactional emails (receipts, password resets, support notifications) | Contract performance |
| Delivering product updates and downloads | Contract performance |
| Detecting and preventing fraud or unauthorized access | Legitimate interest |
| Analyzing website usage to improve our services | Consent (via cookie banner) |
| Sending marketing communications about new products or offers | Consent |
| Complying with legal and accounting obligations | Legal obligation |
| Determining your approximate location for localization | Legitimate interest |
3. Cookies and Tracking Technologies
We use a minimal set of cookies and similar technologies:
| Technology | Purpose | Duration | Consent Required |
|---|---|---|---|
Session cookie (fw_session) | Maintains your login session and security tokens | 8 hours | No (strictly necessary) |
| Local storage (consent flags) | Remembers your cookie consent choice | Persistent | No (strictly necessary) |
| Matomo analytics cookies | Tracks website usage patterns | 13 months | Yes |
When you first visit our website, a banner asks you to accept or decline analytics tracking. If you accept, Matomo uses cookies to track your visits. If you decline, Matomo operates in cookieless mode using aggregated, non-identifying data. You can change your preference at any time by clearing your browser's local storage.
4. Data Sharing and Third Parties
We share your personal information only with the following categories of service providers, and only to the extent necessary:
- Payment Processors: Stripe and PayPal receive your payment details to process transactions. They operate under their own privacy policies.
- IP Geolocation Providers: ip-api.com, ipstack, or MaxMind receive your IP address to determine your approximate location. Only the IP address is transmitted.
- OAuth Providers: Google and Facebook receive an authorization request only when you choose to sign in with their services.
We do not sell, rent, or trade your personal information to third parties. We do not share data with advertising networks, data brokers, or social media platforms for their own marketing purposes.
5. International Data Transfers
Your personal information is stored and processed in the United States. If you are located outside the United States, your data will be transferred to and processed in the US. We take the following safeguards depending on your location:
- EU/EEA Users: Transfers are conducted under Standard Contractual Clauses (SCCs) as approved by the European Commission, or other appropriate safeguards under GDPR Chapter V.
- Canadian Users: We process your data with your informed consent as required by PIPEDA.
- Australian Users: In accordance with Australian Privacy Principle 8, we take reasonable steps to ensure overseas recipients handle your information consistently with the APPs.
6. Data Retention
We retain your personal information for the following periods:
| Data Type | Retention Period |
|---|---|
| Account and profile data | Until you delete your account |
| Login history | Duration of account, deleted on account deletion |
| IP geolocation cache | 90 days |
| Session data | 8 hours (auto-expires) |
| Payment and transaction records | Retained indefinitely for legal and accounting obligations |
| Support tickets and messages | Retained indefinitely; anonymized upon account deletion |
| Website credentials | Until you remove them, or upon account deletion |
| Email queue | Deleted after successful delivery |
| Analytics data | Managed by Matomo retention policies on our servers |
7. Your Rights
7.1 All Users
Regardless of your location, you have the right to:
- Access the personal information we hold about you
- Correct inaccurate personal information via your account profile
- Delete your account and associated personal data
- Opt out of marketing communications at any time
7.2 Account Deletion
You can request account deletion from your account settings. The process works as follows:
- You submit a deletion request and receive a confirmation email.
- You confirm the request via a secure link (valid for 24 hours).
- A 30-day grace period begins, during which you can still log in and cancel the deletion.
- After 30 days, your account is permanently anonymized: your name, email, address, phone number, avatar, and other personal fields are removed or replaced with generic values. Login history, website credentials, and authentication records are permanently deleted.
- Payment records and support ticket content are retained in anonymized form for legal and accounting purposes.
7.3 EU/EEA Residents (GDPR)
Under the General Data Protection Regulation, you additionally have the right to:
- Data Portability (Art. 20): Request a copy of your personal data in a structured, commonly used format. Contact privacy@fastw3b.com to submit a portability request. We will respond within 30 days.
- Restriction of Processing (Art. 18): Request that we limit how we use your data in certain circumstances.
- Object to Processing (Art. 21): Object to processing based on legitimate interest.
- Withdraw Consent: Where processing is based on consent (such as analytics), you may withdraw consent at any time without affecting the lawfulness of prior processing.
- Lodge a Complaint: You have the right to lodge a complaint with your local data protection supervisory authority.
We are in the process of appointing a representative in the European Union pursuant to Article 27 of the GDPR. In the meantime, please direct all inquiries to privacy@fastw3b.com.
7.4 California Residents (CCPA/CPRA)
Under the California Consumer Privacy Act and California Privacy Rights Act, California residents have the right to:
- Know what categories and specific pieces of personal information we collect about you.
- Delete personal information we hold about you, subject to certain exceptions.
- Opt out of the sale of personal information. We do not sell your personal information.
- Non-discrimination for exercising your privacy rights.
Categories of personal information collected (as defined by CCPA):
- Identifiers (name, email, IP address, account ID)
- Commercial information (purchase and transaction history)
- Internet or electronic network activity (login history, browsing behavior via analytics)
- Geolocation data (approximate location from IP address)
To exercise your rights, contact privacy@fastw3b.com. We will verify your identity before processing your request.
7.5 Canadian Residents (PIPEDA)
Under the Personal Information Protection and Electronic Documents Act, you have the right to:
- Access your personal information held by us
- Challenge the accuracy of your personal information and request corrections
- Withdraw consent for the collection, use, or disclosure of your personal information, subject to legal or contractual restrictions
- File a complaint with the Office of the Privacy Commissioner of Canada if you believe we have not handled your information appropriately
7.6 Australian Residents
Under the Australian Privacy Principles, you have the right to:
- Access the personal information we hold about you (APP 12)
- Request correction of inaccurate, out-of-date, or incomplete information (APP 13)
- Lodge a complaint with the Office of the Australian Information Commissioner (OAIC) if you believe we have breached the APPs
Your personal information is transferred to and stored in the United States. We take reasonable steps to ensure that overseas recipients handle your information in accordance with the APPs.
8. Data Security
We implement the following measures to protect your personal information:
- All website traffic is encrypted via HTTPS/TLS
- Passwords are stored using strong one-way cryptographic hashing (bcrypt)
- Session cookies are configured with HTTPOnly and SameSite flags to prevent cross-site attacks
- No credit card numbers or payment credentials are stored on our servers
- Website credentials you provide for support are stored with application-level encryption
- Administrative access to personal data is restricted to authorized staff
- Our analytics platform is self-hosted, keeping all usage data on our own infrastructure
While we take reasonable precautions, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security of your data.
9. Children's Privacy
Our website and services are not directed at individuals under the age of 16. We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child under 16, we will take steps to delete that information promptly. If you believe a child has provided us with personal information, please contact us at privacy@fastw3b.com.
10. Marketing Communications
We may send you emails about product updates, new features, special offers, or other information we believe may be of interest to you. Every marketing email includes an unsubscribe link. You can also manage your email preferences in the notification settings of your account.
We will never send marketing emails without your consent. Transactional emails (such as payment confirmations, support replies, and account notifications) are sent regardless of your marketing preferences, as they are necessary for the services you use.
11. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make material changes, we will notify you by email or by posting a prominent notice on our website. The "Effective Date" at the top of this page will be updated accordingly.
Your continued use of our website and services after changes are posted constitutes your acceptance of the updated policy.
12. Contact Us
If you have questions about this Privacy Policy, wish to exercise any of your rights, or have concerns about how we handle your personal information, please contact us:
Fastw3b LLC
8 The Green, Ste 4
Dover, DE 19901, USA
Email: privacy@fastw3b.com
For GDPR-related inquiries, we aim to respond within 30 days. For CCPA requests, we will respond within 45 days. For PIPEDA and APP requests, we will respond within 30 days.
