Privacy Policy

What personal information do we collect? Names, phone numbers, email addresses, property addresses, and payment transaction references (card data is handled exclusively by Stripe).

Do we process sensitive personal information? No — we do not collect government IDs, health data, or financial account credentials.

Do we sell your data? Never. Your data is never sold, rented, or traded to any third party.

Who do we share data with? Only Stripe (payment processing) and Resend (email delivery). No marketing companies, no data brokers.

How long do we keep your data? Booking records for 2 years; signed agreements for 3 years; payment records for 7 years as required by law.

What are your rights? You can request access, correction, or deletion of your data by emailing bookings@prismmediaphoto.com.

Do we use tracking cookies? No — only essential cookies required for the booking flow to function.

When you book a shoot or interact with Prism Media, we collect the following categories of personal information:

• Identity & contact data — your full name, email address, and phone number, as provided when completing the booking form or contacting us directly.
• Property data — the address and details of the property to be photographed, including property type, square footage, and any access instructions you provide.
• Payment data — credit and debit card payments are processed entirely by Stripe, Inc. Prism Media never receives, stores, or has access to your full card number, CVV, or banking credentials. The only payment-related data we retain is the booking amount, date, and a Stripe-generated transaction reference. See Stripe's privacy policy at stripe.com/privacy.
• Booking & communication records — your booking details, any notes or special instructions you submit, and the content of emails or messages you send us.
• Digital signature — if you sign a client agreement through our platform, your signature image and the timestamp of signing are stored as part of your agreement record.

We do not collect sensitive personal information such as government ID numbers, biometric data, health information, or financial account data beyond what Stripe handles independently.

We use the personal information we collect solely for the following purposes:

• Booking confirmations — to confirm your appointment, send calendar details, and communicate shoot logistics (time, location, access instructions).
• Shoot coordination — to coordinate arrival, property access, and any on-site requirements before and on the day of your session.
• Image delivery — to send you a notification and download link when your edited photos are ready.
• Invoicing and payment — to generate and deliver invoices and to process payment through Stripe.
• Email notifications — transactional emails (booking confirmations, receipts, delivery notices, and rescheduling notices) are sent via Resend, our email delivery provider. We do not send unsolicited marketing emails.
• Customer service — to respond to questions, revision requests, or complaints you direct to us.
• Legal and business records — to maintain records required by applicable law, resolve disputes, and enforce our Terms of Service.

We do not use your information for advertising, behavioral profiling, or any purpose beyond what is described above.

Prism Media does not sell, rent, trade, or otherwise disclose your personal information to third-party marketers, data brokers, or advertisers under any circumstances.

We share limited data only with the following service providers, and only to the extent necessary for them to perform their function:

• Stripe, Inc. — payment processing and saved card storage. When you submit a payment, your card data is transmitted directly to Stripe and never passes through our servers. Stripe is PCI-DSS Level 1 certified. Additionally, your payment card is saved securely on file via Stripe at the time of booking so that a $300 no-access fee can be collected if Prism Media arrives at the scheduled property and is unable to gain access. By completing a booking, you authorize this card-on-file arrangement as described in the Client Agreement. Card data is handled and stored exclusively by Stripe — Prism Media never stores full card numbers, CVVs, or banking credentials. The saved card may be charged after the shoot date if a no-access situation occurs. stripe.com/privacy
• Resend — transactional email delivery. Your name and email address are passed to Resend solely to deliver booking-related emails. Resend does not use this data for any other purpose. resend.com/legal/privacy-policy

No other third parties receive your personal data. In the unlikely event of a business acquisition or asset transfer, we will notify affected clients and honor all existing privacy commitments.

We retain your personal information only for as long as necessary to fulfill the purposes described in this policy and to comply with applicable legal obligations:

• Booking records (client name, contact info, property address, shoot details) — retained for 2 years from the date of the session, consistent with standard business record-keeping practices.
• Signed agreements and signatures — retained for 3 years from the date of signing, in the event of any dispute regarding the scope of services or licensing terms.
• Payment records — retained for 7 years as required by U.S. tax law and standard accounting obligations. Full payment card data is held exclusively by Stripe and subject to their retention policies.
• Email correspondence — retained for 2 years unless a longer period is required to resolve an ongoing dispute.

After the applicable retention period, records are permanently deleted or anonymized. You may request early deletion of your data as described in Section 5 below, subject to any overriding legal retention requirements.

Depending on your location, you may have rights under applicable privacy law, including the right to:

• Access — request a copy of the personal information we hold about you.
• Correction — request that inaccurate or incomplete information be corrected.
• Deletion — request that your personal data be permanently deleted from our records, subject to any legal retention obligations.
• Opt-out of communications — unsubscribe from any non-transactional emails at any time.
• Data portability — request your data in a structured, machine-readable format.

To exercise any of these rights, email us at bookings@prismmediaphoto.com with the subject line "Privacy Request." We will respond within 10 business days. We may ask you to verify your identity before processing the request.

Note that certain data cannot be deleted if it is required by law or needed to resolve an outstanding dispute or enforce our Terms of Service.

The Prism Media website uses only essential cookies — strictly necessary for the site to function (for example, maintaining your booking session state). We do not use tracking cookies, advertising cookies, analytics cookies, or any third-party cookies that monitor your browsing behavior.

Because we use only essential cookies, no cookie consent banner is required under most jurisdictions. If you disable cookies in your browser, some features of the booking flow may not work correctly.

We do not use Google Analytics, Meta Pixel, or any behavioral advertising technology.

We take reasonable technical and organizational measures to protect your personal information against unauthorized access, disclosure, alteration, or destruction. These measures include:

• All data transmitted between your browser and our servers is encrypted via HTTPS/TLS.
• Payment card data is handled exclusively by Stripe, which is PCI-DSS Level 1 certified — the highest level of payment security certification available.
• Booking and client records stored in our system are accessible only to authorized Prism Media personnel.

No method of electronic transmission or storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security. In the event of a data breach that affects your personal information, we will notify you as required by applicable law.

Prism Media's services are intended for adults and real estate professionals. We do not knowingly collect personal information from individuals under the age of 18. If we become aware that we have inadvertently collected data from a minor, we will delete it promptly. If you believe we have collected information from a minor, please contact us at bookings@prismmediaphoto.com.

We may update this Privacy Policy periodically to reflect changes in our practices, technology, or applicable law. When we make material changes, we will update the "Last Updated" date at the top of this page. We encourage you to review this policy before each booking. Continued use of our services after any update constitutes your acceptance of the revised policy.

For all privacy-related questions, requests, or concerns, contact us at:

• Email: bookings@prismmediaphoto.com
• Phone: (360) 763-3155
• Business: Prism Media — Professional Real Estate Photography, Washington State

We are committed to resolving privacy concerns promptly and transparently.