Privacy policy.

Last updated: April 2026

We collect as little as we can, share it only with the providers you ask to be matched with, and delete it when you tell us to. The rest of this page is the long version.

What we collect

  • Lead form data: the name, email, ZIP code, timing, and message you submit when you ask us to match you with a provider.
  • Contact form data: name and email when you write to us through the contact page.
  • Site analytics: page views, country-level location, referrer, and broad device type, collected via Plausible Analytics (a privacy-focused analytics provider that does not use cookies and does not track individuals across sites).
  • Server logs: Cloudflare records IP addresses and request metadata in standard server logs for up to 30 days for security and abuse prevention.

We do not use third-party advertising trackers. We do not embed Facebook pixels, Google ads tags, or session-replay tools. We do not run retargeting against grief-related search terms.

What we do with it

  • Lead form data is forwarded to the provider(s) you specifically asked to be matched with, and to our internal email inbox so we can answer questions you raise.
  • Contact form data is read by our operations team and used only to reply to you.
  • Analytics data is used in aggregate to understand which pages are useful and which need rewriting. We do not link analytics to identifiable people.

Who we share it with

  • Providers you select. When you submit a lead form, your details go to the providers we match you with — typically two or three. They are bound by contract to use your data only to contact you about the service you asked about, not to add you to marketing lists or sell to third parties.
  • Service providers we use. Resend (email transit), Cloudflare (hosting and security), Plausible (analytics). Each is bound by their own privacy policies and contractual data-processing agreements with us.
  • Nobody else. We do not sell, rent, or trade your data. Ever.

How long we keep it

Lead form data: up to 24 months after submission, unless you ask us to delete it sooner. We use the 24 months to follow up if a provider drops the ball, and to track our matching quality. After 24 months it is deleted.

Email correspondence: up to 36 months, then archived in cold storage for one year, then deleted. This timeline matches our editorial-correction promise of three years.

Server logs: 30 days, then automatically deleted by Cloudflare.

Your rights

Wherever you live, you can email hello@lovingplan.com and ask us to:

  • Show you what we have on you.
  • Correct it.
  • Delete it.
  • Stop sharing it with providers (we will instruct any provider holding your data to delete it; we have contractual right to do so).
  • Send you a portable copy.

We respond within 30 days. If you live in California, the CCPA / CPRA gives you these rights as a matter of law and we comply. If you live in the European Union or the United Kingdom, GDPR principles apply and we treat you the same way (we do not target the EU or UK as primary markets, but we honor data rights regardless).

Children

This site is for adults. We do not knowingly collect data from anyone under 18.

Changes to this policy

If we change this policy in a material way, we update the "Last updated" date at the top and post a note on the homepage for at least seven days. Trivial changes (typos, link fixes) we make without notice.

Contact

Privacy questions: hello@lovingplan.com. We read every message.