Privacy Policy

1) Who We Are

This website is operated by ACFA Creative House (“ACFA,” “we,” “us,” “our”).
We publish essays, artwork, comics, and creative work (and yes, we also track whether anyone is actually reading it).

Contact for privacy requests: ce.applehousefarm@gmail.com

2) What We Collect (And Why)

We collect the minimum data needed to run the site, improve it, and deliver the things you asked for.

A) Newsletter Subscriptions (MailerLite)

If you subscribe to our newsletter, we collect:

  • Email address (required)
  • Name (only if you choose to provide it)
  • Signup metadata (such as date/time of subscription and basic technical info)
  • Engagement data (e.g., opens and clicks) if tracking is enabled

Why: to send you newsletters/updates and manage subscription preferences.

We use MailerLite to manage subscriptions and send email. MailerLite stores and processes subscriber data on our behalf refer to their MailerLite Privacy Policy

You can unsubscribe anytime using the link at the bottom of every email. No tricks. No guilt trips.

B) Analytics (Google Analytics 4)

We use Google Analytics 4 (GA4) to understand how people use the site (traffic sources, popular pages, navigation paths, and general performance). Google requires us to disclose this. For more information, refer to Google’s Analytics data practices.

GA4 may collect data such as:

  • Pages viewed and time spent
  • Device/browser information
  • Approximate location (based on IP address)
  • Referrer information (where you came from)
  • Cookies or similar identifiers (depending on settings)

We use this information to improve site structure and content—not to identify you personally or follow you around like a suspicious raccoon.

C) Search Performance (Google Search Console)

We use Google Search Console (GSC) to understand how the site appears in Google Search (indexing, search queries, impressions, and technical issues). This data is aggregated and used to improve visibility and site health.

D) Comments (If Enabled)

If comments are enabled and you leave one, we may collect:

  • Information you submit (name, email, comment text)
  • IP address and browser user agent string (anti-spam/security)

E) Contact Emails / Messages

If you email us, we receive the information you send. We use it to respond and provide support.

F) Purchases & Digital Downloads (Buy Me a Coffee)

If you purchase a digital download or send support through Buy Me a Coffee (BMAC), your payment is processed by BMAC. We do not receive or store your full payment details (such as full card numbers).

We may receive limited transaction details needed to fulfill your purchase (such as your email address, purchase confirmation, and what you bought).

BMAC’s processing of your data is governed by their own privacy policy. 

G) Physical Products (Merch)

  • If you buy physical merch, we may receive:
    • name
    • shipping address
    • email
    • order details
  • Orders may be fulfilled by:
    • Printful (production + shipping, when used)
    • manual fulfillment by ACFA Creative House (when shipped directly)
  • Payment is processed by third-party platforms (BMAC, Printful/Stripe/PayPal, etc.)
  • ACFA does not store full card details.

3) Cookies & Tracking

We use cookies and similar technologies for:

  • Analytics (GA4)
  • Site functionality and security (WordPress and hosting basics)
  • Embedded content (if present—such as video embeds—which may set third-party cookies)

You can control cookies through your browser settings. Blocking cookies may cause parts of the site to function less gracefully. (Not maliciously. Just… poorly.)

See our Cookie Policy for details.

4) How We Use Your Information

We use your information to:

  • Send newsletters and updates (MailerLite)
  • Improve site structure and performance (GA4/GSC)
  • Process digital downloads and support transactions through BMAC
  • Respond to messages and support requests
  • Prevent spam and abuse
  • Maintain site security and integrity

5) What We Share (And What We Don’t)

We do not sell or share personal information for targeted advertising.
We do not rent it, lease it, or hand it to marketing goblins.

We may share limited data with trusted service providers that help operate the site, including:

  • MailerLite (newsletter subscriptions and delivery)
  • Google Analytics 4 (site analytics)
  • Google Search Console (search visibility and indexing diagnostics)
  • Buy Me a Coffee (BMAC) (payment processing and digital delivery
  • Printful (merch production + shipping, when used)
  • Payment processing providers (PayPal, Stripe or credit card companies)
  • Website hosting/security providers (to keep the site online and safe)

These providers process data under their own policies and contractual obligations.

6) Data Retention

We keep data only as long as necessary for the purposes described above.

  • Newsletter subscriptions: until you unsubscribe or request deletion
  • Analytics data: retained according to GA4 settings
  • Purchase records: kept as needed for fulfillment, customer support, and basic accounting/recordkeeping
  • Contact emails: retained as long as needed for support or recordkeeping
  • Comments: retained unless removed

7) Your Rights & Choices

Depending on your location, you may have the right to:

  • Access the personal data we hold about you
  • Request correction or deletion
  • Object to certain processing
  • Withdraw consent (such as unsubscribing from emails)

To make a request, email: ce.applehousefarm@gmail.com

Newsletter opt-out: You can unsubscribe at any time using the link included in every email.

8) International Visitors

Our service providers (MailerLite, Google, BMAC, hosting) may process data in countries outside your own. By using the site, you acknowledge that your information may be processed in those jurisdictions under their applicable policies. 

9) Children’s Privacy

This site is not intended for children under 13, and we do not knowingly collect personal data from children.

10) Security + Data Breach Policy

We take reasonable measures to protect your information and keep this website secure. However, no website, online platform, or transmission method is ever 100% secure.

Despite our efforts, unauthorized access, hacking, or a data breach may occur.

If we become aware of a security incident involving personal data, we will take appropriate steps consistent with applicable laws and reasonable best practices, which may include:

  • investigating the incident
  • securing the affected systems
  • notifying affected users when legally required
  • providing information about protective steps you can take (when relevant)

We do not guarantee absolute security, but we do commit to responding responsibly if something goes sideways.

11) Third Party Policies (Links)

12) Changes to This Policy

We may update this Privacy Policy as the site evolves. When we do, we’ll update the “Last updated” date at the top.