Privacy & Policy

1. Who We Are

• Website: https://synergy0fl0ve.moe/
• Owner: Gabriel, operating under the professional name Synergy Of Love.
• Contact Email: synergy0flove@proton.me
• Platform: This website is hosted and powered by WordPress.org.

2. Personal Data We Collect and Why

This website functions as a portfolio and commission portal. By default, no personal data is collected from casual visitors. Data is only gathered when a user voluntarily provides it.

• Name or Alias: Provided by the client to identify the commission and address deliverables.
• Email Address: Used for commission correspondence, progress updates (WIPs), and final file delivery.
• Commission Brief: Character references, pose descriptions, background details, and stylistic preferences submitted by the client.
• Payment Information: Processed externally via PayPal, cryptocurrency (USDC, USDT), AstroPay, or Fiverr. The website itself does not store credit card numbers or banking details.

• Contractual Necessity: Data collected during commissions is processed to fulfill the service agreement between the client and the artist.
• Consent: By submitting a commission request or contacting us, the client actively consents to data processing for the duration of the commission and agreed retention period.

3. Comments

When visitors leave comments on the website, the following data may be collected:

• Name and Email Address: Included in the comment form, stored to display the commenter’s identity and enable follow-up replies.
• Website URL (Optional): If the commenter provides a website link, it is displayed alongside their comment.
• IP Address and User Agent: Stored by WordPress in comment metadata for spam detection purposes.

Comments and their metadata are retained indefinitely to recognize and approve follow-up comments automatically.

4. Media

If users upload media files (e.g., character reference images) as part of a commission brief, the following applies:

• Uploaded files are typically accessible only to the artist and are used for reference during the commission process.
• Clients should assume uploaded reference images may be visible if shared in WIP previews unless a private commission is agreed upon in advance.
• Recommended file types: JPG, PNG, PDF. Files are stored on the WordPress hosting server.

5. Contact Forms

This website may include contact forms for inquiries and commission requests. When a visitor submits a contact form, the following data is captured:

• Name or Alias: Used to address the inquiry.
• Email Address: Used to reply to the inquiry.
• Message Content: The body of the inquiry, including any attached files or commission details.

Contact form submissions are retained for six (6) months after the last correspondence, unless the client requests earlier deletion. Data from contact forms is not used for marketing purposes unless explicit consent is provided.

6. Cookies

This website uses only the default cookies installed by WordPress. No third-party tracking cookies, advertising cookies, or analytics cookies are active.

• Comment Cookies: When you leave a comment, cookies may be set to save your name, email, and website for convenience during future comments. These cookies last for one year.
• Login Cookies: If you log in (e.g., as a registered user or administrator), WordPress will set temporary cookies to determine if your browser accepts cookies. These contain no personal data and expire at the end of your browser session.
• Screen Option Cookies: Cookies saved to customize your interface when logged in. These last for one year.
• Editor Autosave Cookies: If you edit or publish an article, an additional cookie may be set for one day to preserve editor state.

7. Analytics

By default, WordPress does not collect analytics data. Currently, no analytics plugin or service is active on this website.

Your web hosting provider may collect basic server log data (IP address, browser type, referrer URL, timestamp) for infrastructure and performance monitoring. This data is anonymous and aggregated.

If analytics services are added in the future, this policy will be updated to reflect the change.

8. Who We Share Your Data With

By default, WordPress does not share personal data with third parties. Data collected through this website is shared only with the following service providers when necessary to fulfill a commission:

• PayPal: If you pay via PayPal, your transaction data (name, email, amount) is shared with PayPal to process the payment. See PayPal Privacy Notice.
• Fiverr: If you commission through Fiverr, your order data is processed within Fiverr’s platform. See Fiverr Privacy Policy.
• Cryptocurrency Networks (USDC, USDT): Public blockchain transaction hashes are visible on-chain. Your wallet address is shared only to confirm payment receipt.
• AstroPay: If you pay via AstroPay, transaction data is shared with AstroPay for processing. See AstroPay Privacy Policy.

No data is sold, rented, or shared with advertisers or data brokers.

9. How Long We Retain Your Data

We retain personal data only for as long as necessary to fulfill the purposes outlined in this policy:

• Commission Records: Retained for twelve (12) months after project completion to handle revisions, inquiries, and delivery confirmations.
• Contact Form Submissions: Retained for six (6) months after the last correspondence.
• Comments and Metadata: Retained indefinitely to enable automatic approval of follow-up comments.
• Comment Cookies: Retained for one (1) year.
• Uploaded Reference Media: Retained for six (6) months after commission completion, unless the client requests earlier deletion.

10. Your Data Rights

Depending on your jurisdiction, you may have the following rights over your personal data:

• Right to Access: Request a copy of the personal data we hold about you.
• Right to Rectification: Request correction of inaccurate or incomplete data.
• Right to Erasure: Request deletion of your personal data, subject to contractual obligations (e.g., active commissions).
• Right to Portability: Request your data in a structured, machine-readable format.
• Right to Object: Object to data processing based on legitimate interests or direct marketing.
• Right to Withdraw Consent: If processing is based on consent, withdraw it at any time without affecting prior processing.

To exercise any of these rights, send an email to synergy0flove@proton.me with the subject line “Privacy Request”. We will respond within thirty (30) days.

11. Where Your Data Is Sent

Your data may be transferred to and processed in countries outside your residence. The following describes where data goes and how it is safeguarded:

• WordPress Hosting Server: Website data, including comments and uploads, is stored on the hosting provider’s servers. Server location and data protection measures are governed by the hosting provider’s terms and privacy policy.
• PayPal: If applicable, transaction data is processed on PayPal’s servers, which may be located in the United States. PayPal maintains adequacy safeguards and Standard Contractual Clauses (SCCs) for cross-border transfers.
• Fiverr: If applicable, order data is processed on Fiverr’s servers (Israel / United States). Fiverr complies with applicable data protection regulations.
• Cryptocurrency Blockchains: Transaction hashes are publicly recorded on decentralized blockchain networks (global).

For European Union residents: data transferred outside the EU is safeguarded through Standard Contractual Clauses (SCCs), adequacy decisions, or other mechanisms recognized under the General Data Protection Regulation (GDPR), as applicable to each service provider.

12. How We Protect Your Data

We implement reasonable technical and organizational measures to protect your personal data:

• SSL/TLS Encryption: Data transmitted between your browser and the website is encrypted via HTTPS.
• Secure Email: Primary contact email uses ProtonMail, which employs end-to-end encryption.
• Access Control: Commission files and reference images are accessible only to the artist and the commissioning client.
• Regular Updates: WordPress core, themes, and plugins are updated to apply the latest security patches.
• Minimal Data Collection: Only data necessary for commission fulfillment is collected, reducing exposure.

13. Data Breach Procedures

In the event of a confirmed or suspected personal data breach, the following procedures apply:

• Internal Assessment: Upon detection, the scope and impact of the breach are evaluated within forty-eight (48) hours.
• Client Notification: Affected clients will be notified via email at the address on file, describing the nature of the breach, data involved, and recommended actions.
• Regulatory Notification: If required by applicable law (e.g., GDPR), the relevant supervisory authority will be notified within seventy-two (72) hours of awareness.
• Remediation: Corrective measures will be implemented to prevent recurrence, and this policy will be updated if necessary.

To report a potential breach or security concern, email synergy0flove@proton.me with the subject line “Security Report”.

14. Third Parties We Receive Data From

Outside of data you voluntarily provide, this website may receive the following data from third parties:

• Fiverr: When a commission is placed through Fiverr, order details (buyer name, email, order description, payment confirmation) are transmitted to the artist via Fiverr’s messaging and order system.
• PayPal: Payment notifications include the payer’s name, email, and transaction amount.
• Web Hosting Provider: Server logs may include your IP address, browser user agent, and referrer URL, collected automatically by the hosting infrastructure.

No data is received from advertisers, data brokers, or social media platforms, as no advertising or social media tracking is currently active on this website.

15. Automated Decision Making and Profiling

As of the effective date of this policy, this website does not use automated decision-making or profiling of user data. No algorithms are used to evaluate personal aspects, predict performance, or generate user profiles for advertising or service personalization.

If automated processing is introduced in the future, this policy will be updated with a thirty (30) day notice.

16. Children’s Privacy

This website is generally directed at adults and is not specifically targeted at children under the age of thirteen (13).

• Voluntary Submission: If a child under 13 submits personal data through a contact form or commission request, the parent or guardian is deemed to have consented to the processing of that data for the purpose of the inquiry.
• Deletion Request: If a parent or guardian believes a child has provided personal data, they may email synergy0flove@proton.me with the subject line “Children’s Data Deletion”, and the data will be deleted within thirty (30) days.
• COPPA Compliance: For purposes of the Children’s Online Privacy Protection Act (COPPA), no data is knowingly collected from children under 13 without verifiable parental consent.

17. Industry Regulatory Disclosure

This website operates as a freelance art commission service. The following regulatory frameworks may apply depending on your jurisdiction:

• GDPR (General Data Protection Regulation): Applicable for visitors residing in the European Economic Area (EEA). Data subjects enjoy the full set of rights outlined in Section 10.
• CCPA / CPRA (California Consumer Privacy Act): Applicable for California residents. You have the right to know, delete, and opt out of the “sale” of personal data. As of this policy’s effective date, personal data is not sold.
• COPPA (Children’s Online Privacy Protection Act): Applicable for visitors under 13 in the United States. See Section 16.

18. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other reasons. When updated:

• The “Last updated” date at the top of this page will be revised.
• Significant changes will be communicated via email to clients with active commissions or recent inquiries.
• Continued use of the website after the updated policy takes effect constitutes acceptance of the changes.

We recommend reviewing this page periodically to stay informed about how we protect your data.

19. Contact Information

For privacy-specific questions, data requests, or general inquiries regarding this policy:

• Email: synergy0flove@proton.me
• Website: https://synergy0fl0ve.moe/
• Response Time: Privacy requests are typically answered within thirty (30) calendar days.