Privacy Policy

Version: v1.0 · Effective: 2026-06-02 · Owner: P&L Marketing Solutions LLC (“PLMKS”)

This Privacy Policy explains what information PLMKS collects when you visit plmks.com, sign up for a care plan, or contact us — and what we do with it. It is written in plain English. If anything below is unclear, email info@plmks.com and we will answer.

1. Who we are

P&L Marketing Solutions LLC (“PLMKS,” “we,” “us,” “our”) is a California limited liability company based in Chatsworth, California. We provide WordPress care plans, custom website builds, and design services to small businesses, primarily in the San Fernando Valley and greater Los Angeles area.

2. Information we collect

2.1 Information you give us directly

When you contact us, sign up for a care plan, or pay an invoice, you may provide:

  • Name and business name
  • Email address
  • Phone number
  • Mailing or billing address
  • Website URL and access credentials (only when you authorize us to maintain your site)
  • Project briefs, brand assets, content, and other materials you share for the work you’ve engaged us for

2.2 Payment information

PLMKS never sees or stores your full credit card number. All payments are processed by Stripe, Inc. through their hosted checkout. Stripe is a PCI-DSS Level 1 certified processor. We receive only: your name, email, billing address (when collected), and a Stripe customer ID that lets us look up your subscription status — never the card details themselves.

2.3 Automatically collected information

Like most websites, our server logs basic technical data when you visit:

  • IP address (truncated where feasible)
  • Browser type and version
  • Operating system
  • Pages visited and time spent
  • Referring URL (the site that linked you to us)

This is used for diagnostics, security monitoring, and aggregate analytics. We do not attempt to identify individual visitors from server logs.

2.4 Cookies and tracking

We use a small number of cookies:

  • Strictly necessary cookies — used by WordPress to maintain login sessions and CSRF protection. These cannot be disabled.
  • Analytics cookies — if Google Analytics 4 is enabled on this site, it sets cookies (typically prefixed _ga) to count unique visitors and measure traffic patterns. IP anonymization is enabled. You can opt out via the Google Analytics opt-out browser add-on or by enabling “Do Not Track” in your browser.
  • Stripe checkout cookies — set only on the Stripe-hosted checkout page (not on plmks.com itself) to detect fraud and complete payments. See Stripe’s privacy policy.

We do not use advertising tracking cookies, Facebook Pixel, or third-party retargeting on this site.

3. How we use your information

We use the information you provide to:

  • Deliver the services you have engaged us for (build, host, maintain your site)
  • Process payments and send invoices and receipts
  • Respond to your questions and provide ongoing support
  • Send service-related emails (renewal reminders, maintenance reports, billing notices) — not marketing
  • Improve our website and services through aggregate, non-identifying analytics
  • Comply with legal obligations (tax records, fraud prevention)

We do not sell, rent, or trade your personal information to anyone, ever.

4. Third parties we share data with

We share data only with service providers that help us run the business. Each is contractually bound to handle data securely:

  • Stripe — payment processing (stripe.com/privacy)
  • Google Workspace — business email (policies.google.com/privacy)
  • Google Analytics — anonymous traffic analytics, if enabled (policies.google.com/privacy)
  • DigitalOcean & Laravel Forge — server hosting infrastructure
  • Cloudflare — DNS routing
  • Resend — transactional email delivery (for service notifications)

We may also disclose information when legally required (subpoena, court order) or to protect the rights, property, or safety of PLMKS, our clients, or others.

5. How long we keep data

  • Active client records — for as long as you are an active client, plus seven (7) years after termination for tax and accounting recordkeeping.
  • Contact form submissions — up to twenty-four (24) months, then deleted.
  • Server logs — typically 30 to 90 days.
  • Analytics data — Google Analytics retention is set to fourteen (14) months on event-level data.

6. Your rights

6.1 California residents (CCPA / CPRA)

You have the right to:

  • Know what personal information we have about you.
  • Delete personal information we hold (with limited exceptions — for example, completed transaction records we are required to retain).
  • Correct inaccurate personal information.
  • Opt out of “sale” or “sharing” — although PLMKS does not sell or share personal information for cross-context behavioral advertising, this right is yours under the CPRA.
  • Non-discrimination — we will not deny services or charge different prices for exercising any of these rights.

6.2 European Economic Area / UK residents (GDPR / UK GDPR)

If you are located in the EEA or UK, you have the rights of access, rectification, erasure, restriction of processing, data portability, and to object to processing, under Articles 15–22 of the GDPR.

6.3 How to exercise your rights

Email info@plmks.com with “Privacy Request” in the subject line and tell us which right you are exercising. We will respond within thirty (30) days. We may need to verify your identity before fulfilling the request.

7. Security

We take reasonable measures to protect your data:

  • HTTPS / TLS encryption on all pages
  • HTTP Strict Transport Security (HSTS) header to prevent downgrade attacks
  • Regular WordPress core, theme, and plugin security updates as part of all care plans
  • Daily automated backups with off-server retention
  • Two-factor authentication on all administrative accounts (Stripe, Google Workspace, hosting)
  • Principle of least privilege for any team members or contractors with access

No system is 100% secure. If we ever experience a breach involving your personal information, we will notify affected users without undue delay and in accordance with applicable law.

8. Children

This site and our services are not directed at children under thirteen (13). We do not knowingly collect personal information from anyone under thirteen. If you believe we have collected such information, email us and we will delete it.

9. International transfers

PLMKS operates in the United States. If you visit from outside the U.S., your data will be transferred to and processed in the United States. Where required, we rely on Standard Contractual Clauses (SCCs) or equivalent safeguards in our agreements with sub-processors that are also based in the U.S.

10. Links to other sites

Our site links to external sites (client portfolios, third-party tools, social platforms). We are not responsible for the privacy practices of those sites. Review their policies before sharing personal information.

11. Changes to this policy

We may update this Privacy Policy from time to time. When we do, we will revise the “Effective” date at the top and, for material changes, notify active clients by email. The current version is always available at plmks.com/privacy-policy/.

12. Contact

For any privacy question or to exercise any right described above:

  • Email: info@plmks.com (subject: “Privacy Request”)
  • Phone: 818-518-4135
  • Mail: P&L Marketing Solutions LLC, Chatsworth, CA 91311

This Privacy Policy is provided as plain-English disclosure of our practices. It is not legal advice. If you have specific compliance obligations (HIPAA, COPPA, sector-specific rules), consult licensed counsel.