Privacy Policy for Ilovefdl.com
Effective Date: May 5, 2026
I Love Local LLC (“we,” “our,” “us”), based in Fond du Lac, Wisconsin, respects your privacy. This Policy explains what we collect, how we use it, and the choices you have.
1. Marketplace Disclosure
Ilovefdl.com is a multi-vendor marketplace. When you place an order, your contact and shipping details are shared with the relevant Vendor so they can fulfill the order. Each Vendor is independently responsible for how they handle that information once it leaves the Platform; we recommend reviewing the individual Vendor's storefront for any contact details before purchasing.
2. Information We Collect
Information you give us directly:
- Name, email, phone number
- Billing and shipping address
- Account credentials (password is hashed using bcrypt; we never see the plaintext)
- Newsletter subscription preferences
- Comments, reviews, or other content you post
- Vendor onboarding information (storefront name, description, banking details collected by Stripe Connect)
Information collected automatically:
- IP address, browser type, device type, operating system
- Pages viewed, links clicked, time on site
- Referring URL and search terms
- Cookies and similar technologies (see Section 7)
Information collected from third parties:
- Stripe shares the last 4 digits and brand of your card, billing ZIP, and dispute / refund status — never the full card number
- Vendor inventory integrations (Shopify, Square, WooCommerce) provide product and order data tied to the Vendor, not to you personally
3. How We Use Your Information
We use your information to:
- Process orders, payments, refunds, and disputes
- Share order details with the relevant Vendor for fulfillment
- Send transactional email (order confirmations, refund notifications, password resets)
- Send marketing email if you've opted in to the newsletter (you can unsubscribe at any time)
- Improve site performance, security, and user experience
- Detect and prevent fraud, abuse, and unauthorized access
- Comply with legal obligations (tax records, subpoenas, etc.)
4. Sharing of Information
We share information with:
| With whom | Why |
|---|---|
| Vendors | To fulfill your order |
| Stripe | Payment processing |
| Resend | Email delivery (transactional + newsletter) |
| Cloudflare R2 | Image and file storage |
| Vercel | Hosting infrastructure and analytics |
| Google Analytics | Anonymized usage analytics (IP is anonymized at collection) |
| Sentry | Error monitoring |
| Neon | Database hosting |
| Law enforcement | When legally required (subpoenas, court orders) |
We do not sell your personal information.
5. Vendor Data Practices
When you place an order, your name, contact info, shipping address, and the contents of your order are made available to the Vendor fulfilling it. Each Vendor is independently responsible for how they store and use that information. Claims related to a Vendor's misuse of your data must be addressed directly with that Vendor; the Platform is not liable for Vendor data practices.
6. Data Security
We use industry-standard practices to protect your data:
- HTTPS/TLS for all traffic
- Bcrypt password hashing
- Encrypted secrets (signing secrets, OAuth tokens) at rest in our database
- Stripe-tokenized payment details — full card numbers never reach our servers
- Per-vendor data scoping so one Vendor cannot read another Vendor's orders or customer information
No system is perfectly secure, and you use the Platform at your own risk.
Wisconsin breach notification. In the event of a security breach involving the unauthorized acquisition of personal information of a Wisconsin resident, we will notify affected individuals as required by Wisconsin Statute § 134.98, generally within 45 days of discovery, by email or written notice. Where the breach affects more than 1,000 individuals, we will also notify the major consumer-reporting agencies. Notice may be delayed if law enforcement requests delay for the integrity of an investigation.
7. Cookies & Tracking
We use:
- Essential cookies for authentication (NextAuth session) and shopping cart state — these cannot be disabled without breaking checkout
- Analytics cookies (Google Analytics, Vercel Analytics) for aggregated usage statistics
- Performance cookies to remember your preferences
You can disable non-essential cookies through your browser settings. Doing so may degrade some site features.
8. Your Rights
Depending on your jurisdiction, you may have the right to:
- Access the personal data we hold about you
- Correct inaccurate data
- Request deletion of your account and associated data
- Opt out of marketing emails (use the unsubscribe link or the /unsubscribe page)
- Request a copy of your data in a portable format
To exercise any of these rights, email info@ilovefdl.com. We may need to verify your identity before processing the request.
9. Data Retention
We retain personal data only as long as necessary to:
- Maintain your active account
- Comply with tax, accounting, and legal recordkeeping obligations (typically 7 years for transaction records)
- Resolve disputes and enforce our Terms
When data is no longer needed, it is deleted or anonymized.
10. Children's Privacy
The Platform is not directed at children under 13 and we do not knowingly collect their information. If you believe a minor has provided us with personal data, contact us at info@ilovefdl.com and we will delete it.
11. International Users
The Platform is hosted in the United States. By using the Platform from outside the U.S., you consent to your data being transferred to and processed in the U.S.
12. Changes to This Policy
We may update this Policy from time to time. The “Effective Date” at the top will reflect the most recent revision. Material changes will be communicated by email or a site notice.
13. Contact
I Love Local LLC
Fond du Lac, Wisconsin
Email: info@ilovefdl.com
Website: https://ilovefdl.com