Privacy Policy – Cedar & Linen

Last updated: May 12, 2026

Dear reader,

At Cedar & Linen, we believe transparency shouldn’t feel like a legal chore. This page explains what happens with your information when you visit our site, written as plainly as we’d explain it to a friend.

Your Data Journey — step by step

Here is exactly what happens from the moment you land on our pages:

  1. Page request: Your browser asks our server to show you a page.
  2. Server log: Our server notes your IP address, browser type, and the page you requested. This is fleeting — logs are deleted after 60 days.
  3. Ad delivery: Our advertising partners check whether a cookie already exists on your device. If it does, they use it to show you a more relevant ad. If it doesn’t, they may set one.
  4. Analytics: We look at aggregated numbers — not individual visitors — to understand which content is most helpful.

That’s it. No tracking beyond this. No profiling. No mysterious data brokers.

What we collect (and why)

Data pointPurposeRetention
IP addressSecurity, fraud detection, geographic aggregate stats60 days
Browser & device infoEnsuring the site displays correctly60 days
Pages visitedUnderstanding content popularity60 days (aggregated)
Cookie IDsEnabling relevant advertising by third‑party partnersSet by each partner

What we never do

  • We never ask for your name, email, or phone number unless you write to us.
  • We never combine your IP address with your cookie ID to identify you.
  • We never sell, rent, or auction your personal data.
  • We never process sensitive data (health, religion, politics, biometrics).

About advertising cookies

Our advertising partners — carefully selected networks that help fund our content — place cookies on your browser. These cookies store a pseudonymous identifier. No personal contact information is ever held in them. You can remove or block these cookies at any time through your browser settings.

Your rights under the GDPR (EU/EEA visitors)

You have the following rights regarding your personal data:

  • Access: Receive a copy of the data we hold about you.
  • Rectification: Correct inaccurate or incomplete data.
  • Erasure: Request deletion of your data.
  • Restriction: Limit how we process your data.
  • Portability: Obtain your data in a structured, machine‑readable format.
  • Objection: Object to processing based on legitimate interest.
  • Consent withdrawal: Revoke your consent for advertising cookies at any time.

To exercise these rights, email [email protected]. We will respond within one calendar month, at no cost to you. If you are dissatisfied with our response, you may lodge a complaint with your national data protection supervisory authority.

Your rights under the CCPA (California residents)

Under the California Consumer Privacy Act, you may:

  • Request that we disclose what personal information we collect, the sources, and the business purpose.
  • Request deletion of your personal information.
  • Opt out of the sale of your personal information. We do not sell personal data, and we have not done so in the past 12 months.

We will never discriminate against you for exercising your CCPA rights. To submit a request, email [email protected] with “CCPA Request” in the subject line. We will respond within 45 days.

Legal basis for processing (EU/EEA)

  • Legitimate interest: We process server logs to maintain site security and produce anonymous usage statistics. We have assessed that this processing does not override your fundamental rights and freedoms.
  • Consent: Advertising cookies are placed only after you have given your consent, which you may withdraw at any time.

Who processes your data

  • Our hosting provider processes server logs on our behalf under a data processing agreement.
  • Advertising networks process cookie data as independent data controllers. We encourage you to read their privacy policies for full details.
  • Legal authorities: We may disclose data if required by law or court order.

Data transfers outside the EU/EEA

Some of our advertising partners are based in countries outside the European Economic Area. Where this applies, they rely on Standard Contractual Clauses approved by the European Commission to ensure your data receives an adequate level of protection.

Security

We use HTTPS encryption, access controls, and regular software updates to protect your data. However, no method of electronic transmission or storage is 100% secure, and we cannot provide an absolute guarantee.

Children’s privacy

This website is not intended for children under the age of 16. We do not knowingly collect personal information from anyone under 16. If you believe a child has provided us with personal data, please contact us immediately so we can delete it.

Policy updates

We may revise this Privacy Policy from time to time. The “Last updated” date at the top of the page will reflect the most recent changes. For material updates, we will post a notice on our homepage.

Contact us

For any questions, concerns, or to exercise your data protection rights, please write to:

📧 [email protected]

Thank you for taking the time to read this. Your trust matters to us.