Privacy Policy

Last updated: April 21, 2026 · Effective: April 21, 2026

This Privacy Policy explains how Starseed ("Starseed," "we," "our," or "us") collects, uses, shares, and protects information when you visit starseed.co, purchase one of our digital products, or otherwise interact with us (collectively, the "Services"). It also describes the choices and rights you have regarding your information.

We've tried to write this in plain language. Where the law requires specific terminology, we've kept it. If anything is unclear, email readings@starseed.co and a real person will reply.

By using the Services you acknowledge that you have read this Policy. Continued use after we update it means you accept the updated version.

Quick summary

We collect information you give us at checkout, information your browser sends automatically when you visit, and a limited amount of information from third-party sources to verify and supplement what you've provided.
We use this information to deliver the products you bought, prevent fraud and abuse, improve our website, communicate with you, and (where lawful) measure and personalize advertising.
We share information with the service providers who help us run the business — payment processing, email delivery, hosting, analytics, customer support, and advertising platforms — under contracts that limit how they may use it.
We do not sell your personal information for money. We do "share" certain information with advertising partners for cross-context behavioral advertising; you can opt out at any time.
You have rights to access, delete, correct, and limit the use of your information. Instructions are below.

The summary above is for convenience and is not a substitute for the full Policy. Where the summary and the full Policy differ, the full Policy controls.

1. Information we collect

1.1 Information you provide to us

When you purchase a product, contact us, or otherwise interact with the Services, we may collect information you choose to share, including:

Identifiers — email address, name, billing address.
Order information — products purchased, amount, currency, transaction date, order identifier, refund requests.
Communications — the content of emails, support requests, and feedback you send to us.
Payment information — payment is processed by our third-party payment processor. We do not store your full payment card details. We may receive limited information such as the payment method type, the last four digits of the card, the issuing bank's country, and an internal token used to identify the transaction.

1.2 Information collected automatically

When you visit or interact with the Services, we and our service providers may automatically collect information about your device and your activity, including:

Device and connection information — IP address, approximate location derived from IP, time zone, language preferences, browser type and version, operating system, screen resolution, color depth, device memory, hardware concurrency, network type and speed, and similar technical attributes.
Identifiers and pseudonymous identifiers — randomly generated visitor and session identifiers stored in your browser's local or session storage, identifiers derived from a combination of device characteristics for the purpose of fraud prevention and analytics, and identifiers set by our advertising and analytics partners.
Usage information — pages viewed, links clicked, the order in which you interact with content, scroll depth and direction, mouse movement and click patterns, keyboard cadence on non-sensitive fields, time spent on each section, exit and re-entry patterns, and similar interaction data.
Session recordings — to diagnose bugs and improve usability we may record visual reproductions of your browsing session using session-replay technology. Form fields marked as sensitive (passwords, payment fields, fields with autocomplete disabled) are masked at capture time.
Performance data — measurements of how quickly the page loads, render times, animation timing, and similar performance signals.
Referral information — the URL that referred you to the Services and any campaign parameters such as UTM tags.
Cookies and similar technologies — see Section 5.

1.3 Information we receive from third parties

We may obtain information about you from third parties for purposes including verification, fraud prevention, analytics, marketing, and improving the Services, including:

Public records and commercially available sources — we may supplement information you provide with information from publicly accessible sources and commercial data providers, such as professional profiles, public business information, and similar reference data.
Email reputation and verification providers — to detect disposable, fraudulent, or compromised email addresses, and to obtain related signals such as a public profile photo associated with the email address.
Payment partners — risk signals, fraud scores, and limited transaction metadata associated with your purchase.
Advertising and analytics partners — measurement events, hashed identifiers, and aggregated audience information that they share with us as part of providing their services.
Hosting and security partners — security telemetry such as IP reputation scores, bot-likelihood scores, and TLS connection fingerprints.

1.4 Aggregated and de-identified information

We may aggregate, de-identify, or anonymize information collected through the Services so that the resulting information no longer identifies you. We may use, retain, and disclose aggregated, de-identified, or anonymized information for any purpose. This Policy does not restrict our use of information once it has been aggregated, de-identified, or anonymized.

2. How we use information

We use the information described above for purposes that include:

Providing and maintaining the Services — processing your order, delivering digital products, fulfilling our contractual obligations, providing customer support, sending transactional emails, and maintaining account records.
Securing the Services — detecting, investigating, and preventing fraudulent activity, unauthorized access, abuse, piracy, security incidents, and other harmful or illegal activity, and enforcing our Terms.
Improving and developing the Services — understanding how visitors interact with our pages, identifying usability problems, debugging, conducting research, testing new features, and developing new products and offerings.
Personalizing your experience — tailoring the content, messaging, and product recommendations you see based on what we know about your interests and prior interactions with the Services.
Marketing and advertising — measuring the effectiveness of our marketing, promoting our products on third-party platforms, building and refining audiences (including custom and lookalike audiences), and serving you advertising for our products on other websites and apps.
Communicating with you — replying to your inquiries, sending you updates about your purchase, and (with your consent or as otherwise permitted) sending you marketing communications.
Legal, regulatory, and compliance — complying with applicable laws and regulations, responding to lawful requests by public authorities, defending against legal claims, and protecting our rights and the rights of others.
Business operations — bookkeeping, tax compliance, audits, internal reporting, and similar administrative purposes.
Machine learning and analytics — using aggregated, de-identified, or pseudonymous information to develop, test, and improve analytical models that help us understand customer behavior and improve the Services.
Other purposes you consent to or that are consistent with the purposes for which we collected the information.

Where required by law, we rely on one or more of the following legal bases when we process your personal data: performance of a contract with you (or to take steps at your request before entering into a contract); compliance with a legal obligation; your consent (which you may withdraw at any time); and our legitimate interests, including operating, securing, and improving our business, except where those interests are overridden by your rights and freedoms.

3. How we share information

We share information with categories of recipients described below. We require our service providers to handle information consistent with this Policy and applicable law and to use it only for the purposes for which it was disclosed.

3.1 Service providers

We share information with vendors and service providers that perform services on our behalf, including for payment processing, email delivery, web hosting, content delivery, database hosting, file storage and downloads, customer relationship and support, error monitoring, security and bot mitigation, analytics, session replay, A/B testing, marketing automation, and email reputation and verification. These service providers are contractually limited to using information only as needed to provide their services to us. A current list of key service providers is available on request by emailing readings@starseed.co.

3.2 Advertising partners

We share certain information with advertising platforms (including, for example, Meta, Google, and TikTok) to measure the performance of our marketing and to deliver targeted advertising for our products. This sharing may include hashed identifiers (such as an irreversible hash of your email address), event identifiers, IP address, and information about your interactions with the Services. Some of this sharing constitutes "sharing" of personal information for cross-context behavioral advertising under California law. See Section 6.2 for the choices available to you.

3.3 Affiliates and business transfers

We may share information with our parent, subsidiaries, affiliates, and any successor or acquiring entity, including in connection with a merger, acquisition, financing, reorganization, sale of assets, bankruptcy, or similar transaction. The recipient will be required to honor this Policy with respect to information received in connection with such a transaction.

3.4 Legal, regulatory, and protective purposes

We may disclose information if we believe in good faith that such disclosure is necessary to: comply with a law, regulation, legal process, or governmental request; respond to a subpoena, court order, or other legal process; enforce our agreements, policies, and terms; protect the rights, property, or safety of Starseed, our customers, or others; investigate or address suspected fraud, security, or technical issues; or in connection with any legal claim or proceeding.

3.5 With your direction or consent

We may share your information for any other purpose disclosed to you at the time we collect the information or with your consent.

We do not sell your personal information for monetary consideration.

4. Retention

We retain personal information for as long as necessary to fulfill the purposes for which it was collected, provide the Services, comply with our legal obligations (including tax, accounting, and other recordkeeping requirements), resolve disputes, prevent fraud and abuse, and enforce our agreements. Specific retention periods depend on the type of information and the context of use. For example:

Order and transaction records are retained for at least seven (7) years to comply with tax and accounting requirements.
Telemetry and analytics data, including session recordings, are typically retained for up to ninety (90) days, after which they are deleted or aggregated.
Customer support communications are retained for as long as necessary to address the matter and to resolve any related disputes.
Backups containing personal information may persist for up to one (1) year following deletion from production systems.
Aggregated, de-identified, and anonymized information may be retained indefinitely.

5. Cookies and tracking technologies

We and our partners use cookies, web beacons, pixels, tags, software development kits (SDKs), local and session storage, device identifiers, and similar tracking technologies (collectively, "Tracking Technologies") in connection with the Services. We use Tracking Technologies for purposes that include:

Strictly necessary — to enable core functionality of the Services (for example, maintaining your session, processing payments, and recognizing returning visitors).
Analytics and product improvement — to understand how visitors interact with the Services, measure performance, and identify areas for improvement.
Advertising and measurement — to measure the performance of advertising campaigns, attribute conversions, and (where applicable) deliver targeted advertising for our products.
Personalization — to remember your preferences and tailor your experience.
Security and fraud prevention — to detect and prevent fraudulent activity, automated abuse, and security threats.

Most browsers allow you to control Tracking Technologies through your browser settings. You can also use industry opt-out tools, such as the Digital Advertising Alliance's opt-out page and the Network Advertising Initiative's opt-out page. Disabling certain Tracking Technologies may limit functionality of the Services.

6. Your privacy choices and rights

6.1 Access, deletion, correction, and portability

Subject to applicable law and certain exceptions, you may request to (a) confirm whether we process your personal information and obtain a copy of that information; (b) correct inaccurate personal information; (c) delete your personal information; (d) receive a copy of your personal information in a portable, machine-readable format; and (e) limit our use of certain sensitive personal information. You may submit a request by emailing readings@starseed.co. We may need to verify your identity before fulfilling certain requests. We will respond within the time period required by applicable law (typically forty-five (45) days, with the possibility of an additional forty-five (45) day extension where reasonably necessary). Some information may be retained as permitted or required by law (for example, transaction records required for tax purposes).

6.2 California (CCPA / CPRA)

If you are a California resident, you have the rights described in Section 6.1 with respect to your personal information, plus the right to opt out of the "sale" or "sharing" of your personal information (as those terms are defined under California law) and the right to limit the use and disclosure of "sensitive personal information." We do not sell personal information for monetary consideration. We do "share" certain information with advertising partners for cross-context behavioral advertising. To exercise your right to opt out of sharing, visit our Do Not Sell or Share My Personal Information page or email readings@starseed.co. We honor opt-out preference signals such as the Global Privacy Control (GPC) when transmitted by your browser. You may also designate an authorized agent to make a request on your behalf, subject to verification.

California residents have the right not to receive discriminatory treatment for exercising their privacy rights. We will not deny goods or services, charge different prices, or provide a different level or quality of goods or services because you exercised your rights.

Categories of personal information we have collected, the categories of sources, the business or commercial purposes for collecting them, and the categories of recipients with which we share them are described in Sections 1, 2, and 3 of this Policy.

6.3 Other US state privacy laws

If you are a resident of Colorado, Connecticut, Virginia, Utah, Texas, Oregon, Montana, or another state with a comprehensive privacy law, you may have rights similar to those described in Section 6.1, which may include the right to access, delete, correct, port, and opt out of certain processing (such as targeted advertising, sale, or profiling that produces legal or similarly significant effects). To exercise these rights, email readings@starseed.co. You may also have the right to appeal a refusal to act on your request; if we deny your request, we will explain how to appeal.

6.4 Marketing communications

You may opt out of receiving marketing emails from us at any time by clicking the unsubscribe link in any marketing email or by emailing readings@starseed.co. You will continue to receive transactional and service-related communications (such as order confirmations and download links) regardless of your marketing preferences.

6.5 Browser signals

We respond to Global Privacy Control (GPC) signals as required by California law. We do not currently respond to Do Not Track ("DNT") signals because there is no industry standard for how to do so.

7. Security

We implement and maintain reasonable administrative, technical, and physical safeguards designed to protect personal information against unauthorized access, disclosure, alteration, and destruction. This includes encryption of data in transit using TLS, encryption of data at rest where supported by our infrastructure providers, access controls, secret management, and routine review of our security practices. No method of transmission over the internet or method of electronic storage is completely secure, and we cannot guarantee absolute security.

8. International transfers

We are based in the United States and primarily operate from the United States. Information we collect may be processed and stored in the United States or in other countries where our service providers operate. These countries may have data protection laws that are different from the laws of your country. Where required by law, we use appropriate safeguards such as Standard Contractual Clauses approved by the European Commission, or rely on derogations or other lawful transfer mechanisms.

9. Children

The Services are intended for adults aged eighteen (18) and over and are not directed to children under the age of thirteen (13). We do not knowingly collect personal information directly from children under thirteen. If you believe we have collected personal information from a child under thirteen, please contact readings@starseed.co and we will take steps to delete that information.

10. Third-party links

The Services may contain links to third-party websites, products, or services that are not operated or controlled by us. We are not responsible for the privacy practices of any third party. We encourage you to review the privacy policies of every third party you interact with.

11. Changes to this Policy

We may update this Policy from time to time to reflect changes to our practices, the Services, or applicable law. When we update the Policy, we will revise the "Last updated" date at the top. If we make material changes, we will provide additional notice (such as by posting a prominent notice on the Services or, where required, by sending you an email). Your continued use of the Services after the effective date of the updated Policy constitutes your acceptance of it.

12. Contact

Questions, requests, or concerns about this Policy or our privacy practices? Email readings@starseed.co.