top of page

Privacy Policy

R. E. McCormick Art

R. E. McCormick Art is  a small business, and I believe that privacy is a foundational principle for any healthy society. I also believe that anyone bound by a law or a contract should be able to read and understand it easily.

As such, I have elected to write this policy document in plain language, as a reflection of my actual practices, rather than resorting to obscure legal boilerplate with little resemblance to reality. 

This policy may change from time to time; if major revisions are made, we will make a record of the prior versions available prior versions available.

What data do I collect?

As a rule, I collect only what I need in order to do business.

While you're browsing my web site:

My web site exists to provide a basic exposition of our available services, and give you a means to contact me. Unless you use my contact form, we don't need to know anything about you, and so we don't try to find out.

I do no direct logging of your IP address, location, or browser fingerprint. My infrastructure partners may inject cookies into the site when they serve it to you. These would be very narrow in scope and, as "first party" cookies, cannot be used to track your activity across multiple web sites. You can also choose to block them, if you're not sure; I recommend using a privacy-first browser such as Brave, to make this as easy as possible.

If you use the contact form, I will collect only the data you choose to give me.

While we're working for you:

As part of my process can be personal, there may be pieces of information that I  encounter about you in the course of doing business.  This will always be limited to what you choose to share with me, and will remain confidential.

With whom do I share your data?

Your data is available on a need-to-know basis to employees or subcontractors who are involved in your projects. 

Like any modern business, the daily operations depend on several software and infrastructure partners, each of whom has access to some subset of the information that we touch. 

I currently utilize Google Workspace as an email and documents solution; Google could read your emails to me, and the emails I send to you, if they wanted to, and they can read anything we store in a Google Doc or Google Sheet. For this reason, we do not use email, or cloud document solutions, for the most sensitive data; if needed, these we'll exchange with you via a secure channel.

My payment processor, Stripe, will process your credit card information (I don't ever see it). 

What I can promise you is that my web team  always vets every relationship carefully. Thanks to GDPR and other privacy legislation, every major company I deal with has a well designed privacy policy, and my terms of service with each of them include standard clauses deemed acceptable by the  by the European Union and other privacy-conscious jurisdictions.

bottom of page