Legal

Privacy Policy

Last updated: May 12, 2026

This is the short, honest version. Got It Done is a one-person operation auditing small-business websites. We collect only what we need to run an audit and deliver it. We do not sell, rent, or share your data with anyone except the third-party services listed below, which are required to run the business.

What we collect

From the audit request form

• Your name
• Your email address
• Your domain
• A short note about where you are in your launch cycle

Submitted to our form processor (Web3Forms), which relays the contents to audit@gotitdone.net.

From payments

If you purchase an audit, payment is processed by Stripe. We never see or store your card number. Stripe shares with us only what we need to fulfill the order: your name, email, billing country, and the amount paid. See Stripe's privacy policy.

From visiting the site

Standard server access logs (IP address, user agent, request path, timestamp) generated by Cloudflare, our hosting and CDN provider. These logs are used for security and abuse prevention. We do not run any third-party advertising, tracking pixels, or behavioral analytics on this site at this time. If we add privacy-respecting analytics later (Cloudflare Web Analytics or Plausible), we will update this page first.

During an audit

We crawl the public pages of the domain you submit. We may also use publicly accessible third-party tools (Google PageSpeed Insights, schema validators, etc.) which receive your domain name as part of the request. We do not log into your accounts unless you explicitly grant access for a Fix Pack engagement.

How we use it

• To respond to your audit request with a tier recommendation and a quote
• To deliver the audit findings you paid for
• To send invoices, receipts, and engagement-related correspondence
• To improve our process based on what types of issues we find across audits (in aggregate, never identifying any specific client without permission)

Who we share it with

• Stripe — payment processing
• Cloudflare — hosting, CDN, DNS, security
• Web3Forms — relays the contact form to our inbox
• Google Workspace / our email host — to receive and respond to your messages

That is the entire list. We do not share your data with marketers, data brokers, advertisers, or AI training providers.

How long we keep it

• Audit request emails: kept indefinitely in our inbox unless you ask us to delete them.
• Audit findings and deliverables: kept for as long as you might need a rescan or follow-up, then archived.
• Payment records: kept as long as required by US tax law (currently 7 years).

Your rights

You can email audit@gotitdone.net at any time to:

• Get a copy of the data we hold about you
• Correct anything that is wrong
• Have your data deleted (subject to tax-record retention requirements above)
• Opt out of any future correspondence

We will respond within one business day.

Cookies

This site does not set first-party cookies for tracking. Third-party services we link out to (Stripe checkout, etc.) set their own cookies governed by their own policies.

Children

This service is for business owners. We do not knowingly collect data from anyone under 13.

Changes to this policy

If we change this policy in any meaningful way, we will update the "Last updated" date above and, if you are an active client, email you to flag the change.

Contact

Privacy questions or requests: audit@gotitdone.net. Phone: (413) 225-1201.