Privacy Policy

This policy explains what information we collect when you use yevcards.com and the Decksterity membership, how we use it, and what rights you have over it. We've written it in plain English because we think that's the only way a privacy policy is actually useful.

1. Who We Are

Mind Art Group LLC is a Wyoming limited liability company. We operate the YEVCARDS brand and the Decksterity cardistry membership. When this policy says "we," "us," or "our," it means Mind Art Group LLC.

Contact for privacy matters: [email protected]

2. What Information We Collect

Information you give us directly

• Account information — your name and email address when you sign up.
• Payment information — your card number, billing address, and related details at checkout. We do not store your raw card data. Payments are processed by Stripe, Inc., which stores and handles payment credentials on our behalf under its own PCI-compliant systems.
• Communications — anything you send us via email or support tickets.

Information collected automatically

• Device and browser data — IP address, browser type, operating system, and the pages you visit on yevcards.com.
• Usage data — which course content you access, how long you spend on pages, and actions you take inside the member portal at login.yevcards.com.
• Cookies and tracking pixels — we use cookies, the Meta Pixel, and Google Analytics. These tools collect data about how you found our site and how you interact with it. See Section 5 for details.

3. How We Use Your Information

• To create and manage your Decksterity membership account.
• To process payments and handle billing, including recurring monthly charges and any one-time purchases.
• To deliver course content and community access you paid for.
• To send you transactional emails (receipts, billing notices, password resets).
• To send you marketing emails about new content, promotions, or product updates — you can opt out of these at any time using the unsubscribe link in any marketing email.
• To run advertising campaigns on Meta (Facebook/Instagram) and Google, including retargeting people who visited our site.
• To analyze and improve our website and content.
• To comply with legal obligations.

4. Who We Share Your Information With

We do not sell your personal data. We share it only with the service providers that help us operate:

• Stripe, Inc. — payment processing and billing. Stripe stores your payment credentials. Stripe Privacy Policy.
• GoHighLevel (HighLevel, Inc.) — our CRM and marketing automation platform. Your name, email, and funnel activity are stored there.
• Meta Platforms, Inc. — the Meta Pixel on our site sends event data (page views, purchase events) to Meta for ad measurement and retargeting.
• Google LLC — Google Analytics collects anonymized usage data. We may also run Google Ads retargeting.
• Law enforcement or regulators — if required by law or to protect our rights.

5. Cookies and Tracking Technologies

We use the following types of cookies:

• Essential cookies — required for the site and member portal to function. You cannot opt out of these.
• Analytics cookies — Google Analytics uses these to count visits and understand how people use the site. You can opt out via Google's opt-out tool.
• Advertising cookies — the Meta Pixel and Google Ads tags use cookies to measure conversions and show you relevant ads. You can manage Meta ad preferences at facebook.com/adpreferences.

Most browsers let you block or delete cookies through their settings. Blocking some cookies may break parts of the site or member portal.

6. Data Retention

We keep your account data for as long as your membership is active and for a reasonable period after it ends (typically 3 years) for legal and accounting purposes. Payment records are retained as required by applicable law. You can request deletion of your personal data at any time — see Section 9.

7. California Residents — CCPA Rights

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA):

• Right to Know — you can ask us what personal information we have collected about you and why.
• Right to Delete — you can ask us to delete your personal information (subject to certain exceptions for billing records and legal obligations).
• Right to Opt Out of Sale — we do not sell personal data, so there is nothing to opt out of. If this changes, we will update this policy and provide an opt-out mechanism.
• Right to Non-Discrimination — we will not treat you differently because you exercised a privacy right.

To exercise these rights, email [email protected] with the subject line "California Privacy Request." We will respond within 45 days.

8. EEA and UK Residents — GDPR Rights

If you are in the European Economic Area or the United Kingdom, additional rights apply under the GDPR (or UK GDPR):

• Right to Access — request a copy of the personal data we hold about you.
• Right to Rectification — ask us to correct inaccurate data.
• Right to Erasure ("right to be forgotten") — ask us to delete your data, subject to legal retention requirements.
• Right to Data Portability — receive your data in a structured, machine-readable format.
• Right to Object — object to processing based on legitimate interests, including direct marketing.
• Right to Restrict Processing — ask us to pause processing in certain circumstances.

Our legal basis for processing is: (a) contract performance — for delivering the membership you purchased; (b) legitimate interests — for analytics and fraud prevention; (c) consent — for marketing emails. You may withdraw marketing consent at any time.

To exercise GDPR rights, email [email protected]. We will respond within 30 days. You also have the right to lodge a complaint with your local data protection authority.

9. How to Make a Privacy Request

Email [email protected] with the subject line "Privacy Request." Tell us what you're requesting (access, deletion, correction, portability). We may ask you to verify your identity before we respond.

10. Security

We use industry-standard security measures including HTTPS/TLS for data in transit and rely on Stripe's PCI-compliant infrastructure for payment data. No transmission over the internet is 100% secure, but we take reasonable precautions.

11. Children

Decksterity is not directed at children under 13. We do not knowingly collect personal data from children under 13. If you believe we have done so, contact us and we will delete the data.

12. Changes to This Policy

If we make material changes, we will update the "Last updated" date at the top and, for significant changes, notify you by email. Your continued use of the service after changes take effect means you accept the updated policy.

13. Contact

Mind Art Group LLC
Email: [email protected]
Website: yevcards.com