Security Policy

Leaf & Latch

Last Updated: January 1, 2026

At Leaf & Latch, we take your privacy and data security seriously. We implement reasonable administrative, technical, and physical safeguards designed to protect your personal information. This Security Policy explains how we protect your data and manage security risks related to our website and services.

Please read this policy carefully. By using our website and services, you agree to the practices described below.

What We Protect

We work to safeguard the following types of information:

  • Personal information you provide to us (e.g., name, email address, billing/shipping details)
  • Transaction and order information
  • Account and login credentials
  • Communication records (e.g., customer support emails)
  • Usage and analytics data

How We Protect Your Information

We take a layered approach to security that includes, but is not limited to:

Technical Safeguards

  • Secure transmission of data using encryption (HTTPS/TLS)
  • Firewalls and intrusion detection systems on supported services
  • Secure storage systems with controlled access

Administrative Safeguards

  • Limited employee or contractor access based on job needs
  • Policies to manage access, use, and protection of data
  • Use of trusted third-party services with strong security practices

Physical Safeguards

  • Protection of physical servers through our third-party service providers
  • Restricted access to facilities managing data infrastructure

Third-Party Services & Security

We rely on reputable third-party service providers to help run our business and deliver services, including:

  • Ecommerce platforms (e.g., Shopify)
  • Payment processors (e.g., Stripe, PayPal)
  • Email marketing and CRM providers
  • Analytics and performance tools
  • Fulfillment partners (e.g., Printify)

These providers have their own robust security practices and comply with applicable data protection standards. Leaf & Latch carefully selects providers that demonstrate strong security commitments.

Limitations & No Absolute Guarantees

While we strive to protect your personal information, no system is completely secure. Security risks include, but are not limited to:

  • Unauthorized access by third parties
  • Cyberattacks, malware, or phishing attempts
  • Human error
  • Limitations of internet or device security

By using our site, you acknowledge that we cannot guarantee the complete prevention of security breaches or unauthorized access.

Your Role in Security

You also play an important part in protecting your information. You agree to:

  • Use strong, unique passwords for any accounts
  • Keep your login credentials secure
  • Update your password regularly
  • Notify us immediately if you suspect unauthorized access

If you believe your account has been compromised, please contact us promptly so we can assist you.

Incident Response & Notification

In the unlikely event of a confirmed security breach affecting user personal data, we may:

  • Investigate the incident using qualified personnel
  • Notify affected users in a timely and appropriate manner
  • Take corrective measures to prevent future occurrences
  • Comply with applicable breach notification laws

We will communicate through the contact information you have provided.

Changes to This Policy

We may update this Security Policy to reflect changes in technology, legal requirements, or how we operate our services. We will post the updated policy on this page with a revised “Last Updated” date.

Your continued use of the website or services after changes are posted means you accept the updated policy.

Contact Us

If you have questions about this Security Policy or want to report a suspected issue, you can contact us:

Founder & Owner: Amber Hanks
Email: leafandlatch.studio@gmail.com
Phone: 503-936-0296

Shop Leaf & LatchContact Us