CXC

CROSS + COVENANT

God Loves You!
The MissionThe WordDevotionalShopCollaborateShop the Collection

Legal

Privacy Policy

The Lord is a refuge for the oppressed, a stronghold in times of trouble.Psalm 9:9

Last updated: June 9, 2026

Cross + Covenant (“we,” “our,” “us”) operates crossandcovenant.co. This policy explains what information we collect, how we use it, and the choices you have. We treat your information the way we would want ours treated. Stewardship over surveillance.

1. Information we collect

When you place an order or sign up for our list, we collect what is necessary to fulfill it and stay in touch:

  • Name, email, shipping and billing address, phone number
  • Payment information (processed by Shopify Payments and Stripe; we never store full card numbers)
  • Order history and the products you view
  • Device, browser, IP address, and traffic source via cookies and analytics

2. How we use it

  • To process orders, ship products, and provide customer support
  • To send order confirmations, shipping notifications, and care emails
  • To send marketing emails and SMS only when you opt in (you can unsubscribe anytime)
  • To improve the site, fix bugs, and detect fraud or abuse
  • To comply with legal obligations

3. Cookies and tracking

Essential cookies keep the shop working: your cart, your session, and a first-party referral cookie if you arrive through an ambassador link. These are always on.

Analytics and advertising cookies stay off until you accept them. We use Vercel Analytics, which is cookieless. If you choose “Accept all” in the cookie banner, we may also use Google Analytics, the Meta Pixel, the Pinterest tag, and the TikTok pixel to understand what works and reach more people with the Gospel. You can change your choice anytime through the “Cookie preferences” link in the footer.

Do Not Sell or Share. Choosing “Essential only” keeps all analytics and advertising trackers off (EU/UK GDPR) and opts you out of any sale or sharing of personal information for targeted advertising (California CPRA). You can also email us to make the request directly.

4. How we share information

We share information only with service providers who help us run the business: Shopify (commerce platform), Printify (production and fulfillment), Stripe (payments), Vercel (hosting), Klaviyo (email when enabled), and shipping carriers. We do not sell your personal information.

5. Your rights

You can request access to, correction of, or deletion of your personal information at any time. California residents have additional rights under the CCPA. EU and UK residents have rights under the GDPR. To exercise any right, email sarah@modernmustardseed.com.

6. Data retention and security

We keep order and account information as long as needed to provide service and comply with tax, accounting, and legal requirements. We use industry-standard safeguards including TLS encryption in transit and tokenized payment processing.

7. Children

Our site is not directed to children under 13. We do not knowingly collect information from children under 13. If you believe we have, contact us and we will delete it.

8. Changes to this policy

We may update this policy as we grow. We will post the updated date above and notify you of material changes by email if you have an account.

9. Contact

Questions, requests, or concerns: sarah@modernmustardseed.com.