Privacy policy
How we handle the information you share with us.
Last reviewed:
This is a plain-language description of what we collect, why, and what we do with it. It is not legal advice; we are revising this page with our lawyer before our public launch.
Who runs this site
WilCo Guide is operated by WilCo Guide LLC, based in Georgetown, Texas. References to "we," "us," and "our" on this page mean WilCo Guide LLC.
What we collect when you visit the site
We run a single first-party cookie on the public site: wg-onboarding-session. It is set when you start our subscribe flow and exists only to remember your progress between steps. It is httpOnly (not readable by JavaScript), it is scoped to this site only, and it expires after 24 hours.
We do not run third-party analytics packages (no Google Analytics, no Plausible, no Posthog, no Vercel Analytics) on the public site at this time. We do not load third-party tracking pixels. [TODO: legal review — confirm before any future analytics integration; this page must be updated before any analytics package ships.]
Our hosting provider records standard server logs (request URL, response code, IP, user agent) for short retention to operate the site and diagnose problems.
What we collect when you subscribe to the newsletter
When you submit your email to subscribe to The Daily Brief, we store the email plus the source page (e.g. "footer", "subscribe-flow") and any UTM parameters from your URL. We send your email and these fields to Beehiiv, our email service provider, which delivers the newsletter and manages unsubscribes.
Beehiiv has its own privacy policy at beehiiv.com/privacy. We do not control what Beehiiv does with subscriber data; we use their service so we can deliver email reliably.
What we collect when you claim a business
The business claim form collects: your name, email, phone, the business you are claiming, and an optional message. We store this in our database to verify the claim, and we relay a copy to our submission helper (Web3Forms) for operator notification. We use this information to verify ownership before approving a claim.
What we collect when you pay for Pro
Pro upgrades are processed by Stripe via Stripe Checkout. We never see or store your card number, expiration date, or CVC — Stripe handles all of that. After a successful payment, Stripe sends us a webhook that records the subscription on our side: which business, which tier, and Stripe's session identifier. Stripe's privacy policy is at stripe.com/privacy.
What we do not collect
We do not buy data about you from third parties. We do not run cross-site retargeting. We do not sell your email or any other information. We do not run ad networks or behavioral profiling on the public site.
Your choices
- Unsubscribe from any newsletter using the unsubscribe link at the bottom of every email.
- Email us at the contact address to request deletion of your subscriber record or your claim submission. We will confirm and delete, except where we are legally required to retain a record (e.g. fraud-prevention logs).
- Use your browser's privacy controls. We do not respond to Do Not Track headers because there is no industry consensus on what they mean. [TODO: legal review — confirm DNT stance.]
Children
This site is not directed at children under 13. We do not knowingly collect information from anyone under 13. If you believe we have, contact us and we will delete it. [TODO: legal review — verify language meets COPPA.]
Changes to this policy
When we change this policy, we update the "Last reviewed" date at the top of the page. Material changes will also be announced in our newsletter so subscribers see them.
Contact
Questions about this policy go to the email address on our Contact page.