Privacy Policy

The Short Version

How UnlockMoment Works

UnlockMoment is a 100% client-side web application. This means:

• All processing happens locally in your web browser
• Your gift codes are encrypted using AES-256 in your browser before being embedded in the HTML file
• We never transmit, store, or have access to your data
• No servers process your information
• No databases store your gifts
• The HTML files you download contain only encrypted data that only you can decrypt

Data We Do NOT Collect

• Personal Information: No names, emails, phone numbers, addresses
• Gift Content: We never see your gift codes, messages, or PDFs
• Usage Data: No analytics, page views, or user behavior tracking
• Technical Data: No IP addresses, browser fingerprints, or device information
• Cookies: None. Zero. Not even functional ones.
• Third-Party Data: No external scripts, tracking pixels, or data sharing

Payment Information (Premium Features)

If you purchase premium templates or All Access, payment processing is handled entirely by Stripe, a PCI-DSS compliant payment processor.

If you lose your serial key: Since we don't store customer information, we cannot recover your key. However, Stripe maintains payment records. Contact Stripe support directly with your email address used for purchase, and they can verify your transaction and potentially help you recover your purchase information.

Stripe's privacy policy applies to payment data: stripe.com/privacy

LocalStorage Usage

UnlockMoment may use your browser's LocalStorage to save non-personal preferences such as:

• Your purchased license key (stored locally only)
• UI preferences (e.g., last selected template)
• Draft gift data (only while creating, never transmitted)

This data never leaves your device and can be cleared at any time by clearing your browser's local storage.

Security & Encryption

Your gift codes are protected using:

• AES-256 Encryption: Military-grade encryption standard used by governments and banks
• Client-Side Processing: Encryption happens in your browser, not on our servers
• WebCrypto API: Browser-native cryptography for maximum security
• No Backdoors: We cannot decrypt your gifts, even if we wanted to

Third-Party Services

UnlockMoment uses the following third-party services:

• Stripe: Payment processing for premium features (only when you make a purchase)
• Cloudflare: Website hosting and DDoS protection (does not track users)

We do NOT use:

• Google Analytics or any analytics service
• Facebook Pixel or social tracking
• Ad networks or remarketing
• Third-party cookies
• CDNs that track users

Your Rights

Since we collect zero data, your rights are simple:

• Right to Access: There's nothing to access because we have no data about you
• Right to Deletion: There's nothing to delete because we store nothing
• Right to Portability: All your gifts are downloaded as HTML files you fully control
• Right to Object: There's no processing to object to

Compliance

UnlockMoment is fully compliant with:

• GDPR (General Data Protection Regulation - EU)
• CCPA (California Consumer Privacy Act - USA)
• LGPD (Lei Geral de Proteção de Dados - Brazil)
• POPIA (Protection of Personal Information Act - South Africa)
• WCAG 2.1 AA (Web Content Accessibility Guidelines)

Compliance is easy when you collect zero data.

Children's Privacy

UnlockMoment does not knowingly collect data from anyone, including children under 13 (or under 16 in the EU). Since we collect zero data, the service is safe for all ages.

Changes to This Policy

If we ever change how we handle privacy (spoiler: we won't), we'll update this page with a new "Last Updated" date. The core principle will never change: we collect zero data.

Contact

Questions about privacy? While there's not much to ask (we collect nothing), you can reach us at: