Privacy Policy

Last updated: February 9, 2026

Overview

Toastcard, LLC ("we", "us", or "our") operates the toastcard.com website. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service to create, order, and send printed postcards.

By using Toastcard, you agree to the collection and use of information in accordance with this policy.

Information We Collect

Account Information

When you create an account, we collect:

  • Name and email address
  • Authentication data if you sign in with Google, Facebook, or Apple

Postcard Content

When you create postcards, we collect:

  • Photos you upload
  • Messages and text you add to your postcards
  • Design choices and customizations

Mailing Addresses

To deliver your postcards, we collect recipient mailing addresses. We also store your return address if you provide one.

Payment Information

Payments are processed by Stripe. We do not store your credit card number, CVV, or full payment details on our servers. Stripe handles all payment data in accordance with PCI-DSS standards. We receive only a transaction confirmation and the last four digits of your card for order reference purposes.

Automatically Collected Information

When you visit our site, we may collect:

  • IP address and approximate location
  • Browser type and device information
  • Pages visited and time spent on the site
  • Referring website address

How We Use Your Information

We use the information we collect to:

  • Create, print, and mail your postcards
  • Process your orders and payments
  • Manage your account and saved contacts
  • Send order confirmations and delivery updates
  • Improve our service and fix issues
  • Respond to your questions and support requests

We do not sell your personal information to third parties. We do not use your photos for any purpose other than fulfilling your postcard orders.

Third-Party Services

We use the following third-party services:

  • Stripe — payment processing
  • Google Analytics — website usage analytics
  • Google, Facebook, and Apple — optional sign-in via OAuth
  • Print fulfillment partners — to print and mail your postcards

Each of these services has its own privacy policy governing how they handle your data. We share only the minimum information necessary for each service to function.

Cookies

We use cookies to keep you logged in and to remember your preferences. We also use analytics cookies (via Google Analytics) to understand how visitors use our site.

You can disable cookies in your browser settings, but some features of the site may not work properly without them.

Data Retention

We retain your account information and postcard data for as long as your account is active. Uploaded photos and postcard designs are kept so you can reorder or reference past postcards.

If you delete your account, we will remove your personal information and uploaded photos within 30 days. Some data may be retained longer if required for legal or business purposes (e.g., order records for tax compliance).

Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Export your data in a portable format

To exercise any of these rights, please contact us at our contact page.

Security

We take reasonable measures to protect your personal information, including encrypted connections (HTTPS), secure password storage, and restricted access to personal data. However, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes by posting the new policy on this page and updating the "Last updated" date above.

Contact Us

If you have any questions about this Privacy Policy, please reach out via our contact page.