This Privacy Policy explains how HTMLBasket ("we", "our", "us") collects, uses, discloses, and protects your information when you use our websites, products, and services. We are committed to complying with the GDPR, UK‑GDPR, CPRA/CCPA.
HTMLBasket operates globally with a head office in the United States and a core development team in India. This policy applies to visitors, customers, and partners who interact with our websites, forms, chat, support channels, or subscribe to our services.
Data Controller: HTMLBasket
Contact: [email protected]
Primary contact
If you are located in the EEA/UK, we may appoint an EU/UK representative for GDPR/UK‑GDPR compliance. Contact us for the latest details.
We process personal data under these legal grounds where applicable:
We use cookies and similar technologies to operate our site, remember preferences, analyze traffic, and (where enabled) support marketing campaigns.
You can manage cookie preferences via our cookie banner or your browser settings. Where required by law, non‑essential cookies load only after consent.
We do not sell personal information. We share data only with service providers (processors) that help us deliver our services, such as:
These providers are bound by contracts that limit their use of your data and require appropriate security measures.
We operate globally. When data is transferred across borders (e.g., EEA ↔ US/India), we implement appropriate safeguards such as Standard Contractual Clauses (SCCs) and conduct risk assessments where required.
We keep personal data only as long as necessary for the purposes described in this policy, including to meet legal, accounting, or reporting requirements. Typical retention periods:
Depending on your location, you may have the right to:
To exercise rights, contact us at [email protected]. We will verify your request and respond within applicable timelines.
California residents may request disclosures about categories of personal information we collect and how we use/share it, request deletion, and opt out of certain sharing. We do not sell personal information. If we ever use cross‑context behavioral advertising, an opt‑out link will be provided.
You may lodge a complaint with your local supervisory authority, such as the ICO (UK) or your EEA DPA. We aim to resolve issues directly first.
You may contact our support to access, correct, or delete personal data and to raise grievances with the Data Protection Board if unresolved.
Our services are not directed to children under 13 (or under 16 in certain jurisdictions). We do not knowingly collect data from children. If you believe a child has provided us data, contact us to remove it.
We implement technical and organizational measures to protect personal data, including encryption in transit, access controls, least‑privilege practices, and vendor due diligence. No method of transmission or storage is 100% secure; we encourage you to use strong, unique passwords and enable available security features.
We may update this Privacy Policy from time to time to reflect changes in law, technology, or our operations. The “Effective date” below indicates the latest revision. We will notify you of material changes as required.
Effective date: 07 November 2025
For questions, requests, or complaints about this policy or your data, contact:
HTMLBasket – Privacy
Email: [email protected]
If your request concerns a data access/erasure/objection (DSAR), please indicate: your full name, email used with us, country/region, and the right you wish to exercise.
