Privacy Policy

Last Updated: February 5, 2026

1. Introduction

Welcome to Custom Dream Stairs (“we,” “our,” or “us”). We respect your privacy and are committed to protecting your personal data. This privacy policy explains how we collect, use, disclose, and safeguard your information when you use our services at https://customdreamstairs.com/.

Custom Dream Stairs specializes in custom staircase design, manufacturing, and installation services. We work with homeowners, builders, and contractors to create beautiful, functional staircases tailored to your specific needs and architectural requirements.

By using our services, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Personal Information

We may collect the following types of personal information:

• Contact Information: Name, email address, phone number, mailing address
• Account Information: Username, password, and account preferences
• Payment Information: Credit card details, billing address (processed securely through payment processors)
• Usage Data: IP address, browser type, device information, pages visited, time spent on pages
• Location Data: Geographic location based on IP address or GPS (with permission)
• Communications: Messages, feedback, and correspondence with us
• Project Information: Project details, specifications, measurements, design preferences, photos of installation sites
• Property Information: Information about your property relevant to staircase installation and design

2.2 Automatically Collected Information

When you access our services, we automatically collect:

• Log data (IP address, browser type, operating system)
• Cookies and similar tracking technologies
• Device identifiers
• Usage patterns and preferences

2.3 Third-Party Information

We may receive information about you from third-party sources including:

• Social media platforms (if you connect your account)
• Analytics providers
• Marketing partners
• Public databases

3. How We Use Your Information

We use your information for the following purposes:

• Service Delivery: To provide, maintain, and improve our services
• Account Management: To create and manage your account
• Communication: To send you updates, newsletters, marketing materials, and respond to inquiries
• Payment Processing: To process transactions and send billing information
• Personalization: To customize your experience and provide relevant content
• Security: To protect against fraud, unauthorized access, and security threats
• Analytics: To understand how users interact with our services
• Legal Compliance: To comply with legal obligations and enforce our terms
• Business Operations: To conduct research, development, and business analysis

4. Legal Basis for Processing (GDPR)

For users in the European Economic Area (EEA), we process your personal data based on:

• Consent: You have given explicit consent for specific purposes
• Contract: Processing is necessary to fulfill our contract with you
• Legal Obligation: Processing is required by law
• Legitimate Interests: Processing is necessary for our legitimate business interests, provided these don’t override your rights

5. How We Share Your Information

We may share your information with:

5.1 Service Providers

Third-party vendors who perform services on our behalf:

• Payment processors
• Cloud hosting providers
• Email service providers
• Analytics platforms
• Customer support tools

5.2 Business Transfers

In connection with mergers, acquisitions, or sale of assets, your information may be transferred.

5.3 Legal Requirements

When required by law or to:

• Comply with legal processes
• Enforce our terms and policies
• Protect our rights, property, or safety
• Prevent fraud or security threats

5.4 With Your Consent

We may share information with third parties when you provide explicit consent.

We do not sell your personal information to third parties.

6. Data Retention

We retain your personal information for as long as necessary to:

• Provide our services
• Comply with legal obligations
• Resolve disputes
• Enforce our agreements

Specific retention periods:

• Account data: Retained while your account is active plus 30 days after deletion
• Transaction records: Retained for 7 years for tax and accounting purposes
• Marketing data: Retained until you unsubscribe or object to processing
• Log data: Retained for 12 months

7. Your Privacy Rights

Depending on your location, you may have the following rights:

7.1 General Rights

• Access: Request access to your personal data
• Correction: Request correction of inaccurate or incomplete data
• Deletion: Request deletion of your personal data (“right to be forgotten”)
• Portability: Request a copy of your data in a portable format
• Objection: Object to certain processing of your data
• Restriction: Request restriction of processing in certain circumstances
• Withdraw Consent: Withdraw consent at any time (where processing is based on consent)

7.2 California Privacy Rights (CCPA)

California residents have additional rights:

• Know what personal information is collected
• Know if personal information is sold or disclosed
• Opt-out of the sale of personal information
• Access personal information
• Request deletion of personal information
• Non-discrimination for exercising privacy rights

7.3 European Privacy Rights (GDPR)

EEA residents have rights under GDPR including:

• Right to lodge a complaint with a supervisory authority
• Right to data portability
• Right to object to automated decision-making

To exercise your rights, contact us at Sales@CustomDreamStairs.com

8. Cookies and Tracking Technologies

We use cookies and similar technologies to:

• Remember your preferences
• Understand how you use our services
• Improve user experience
• Provide targeted advertising

Cookie Types:

• Essential Cookies: Required for service functionality
• Analytics Cookies: Help us understand usage patterns
• Marketing Cookies: Used for advertising and retargeting
• Preference Cookies: Remember your settings and preferences

You can control cookies through your browser settings. Note that disabling cookies may limit service functionality.

9. Third-Party Links

Our services may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies.

10. Data Security

We implement appropriate technical and organizational measures to protect your data:

• Encryption of data in transit and at rest
• Regular security assessments
• Access controls and authentication
• Employee training on data protection
• Incident response procedures

However, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place:

• Standard Contractual Clauses (SCCs)
• Privacy Shield frameworks (where applicable)
• Adequacy decisions by relevant authorities

12. Children’s Privacy

Our services are not intended for children under 13 (or 16 in the EEA). We do not knowingly collect personal information from children. If you believe we have collected information from a child, contact us immediately at Sales@CustomDreamStairs.com.

13. Do Not Track Signals

Some browsers have “Do Not Track” features. Currently, there is no industry standard for handling DNT signals. We do not respond to DNT signals at this time.

14. Changes to This Privacy Policy

We may update this privacy policy periodically. We will notify you of material changes by:

• Posting the updated policy on our website
• Updating the “Last Updated” date
• Sending email notifications (for significant changes)

Your continued use of our services after changes constitutes acceptance of the updated policy.

15. Contact Us

For questions, concerns, or to exercise your privacy rights, contact us:

Custom Dream Stairs
Email: Sales@CustomDreamStairs.com
Address: 11 Cidermill Avenue, Unit 6, Concord, ON, L4K 4B6
Phone: +1 (905) 660 8001

For EEA residents, our Data Protection Officer can be reached at: Sales@CustomDreamStairs.com

---

Jurisdiction-Specific Provisions

For California Residents

This privacy policy supplements our general privacy practices with California-specific disclosures required by the California Consumer Privacy Act (CCPA).

For EEA Residents

We are committed to GDPR compliance. Our lawful basis for processing your data is detailed in Section 4. You have the right to lodge a complaint with your local supervisory authority.

For Nevada Residents

Nevada residents have the right to opt-out of the sale of their personal information. We do not sell personal information as defined by Nevada law.