Privacy Policy

Effective Date: June 10, 2026

1. Information Collected

Pen and Key LLC collects the following data when you use our website or services:

  • Payer Information: Name, email address, and phone number.
  • Subscriber Information: Prisoner name, Michigan Department of Corrections (MDOC) number, and facility name.
  • Financial Information: Payment details are collected directly by third-party payment processors (e.g., Stripe, PayPal, Square). Pen and Key LLC does not collect, process, or store credit card numbers or bank account details on our servers.
  • Feedback and Correspondence: Survey responses, comments, and communications sent to our email addresses.

2. Use of Information

The collected information is used for the following purposes:

  • To deliver requested legal newsletters and updates to the specified prisoner via JPay or other institutional messaging systems.
  • To verify prisoner identities and locations within the MDOC system.
  • To communicate with the payer and prisoner regarding subscription status, billing issues, service updates, and marketing communications.
  • To evaluate service feasibility and improve business operations based on user feedback.

3. Disclosures to Third Parties

Pen and Key LLC discloses information only to entities necessary to fulfill our services. We do not sell user data. Information is disclosed to:

  • Payment Processors: Payer data required to process billing cycles and subscription payments.
  • Institutional Communications Services: Prisoner names and MDOC numbers are submitted to services such as JPay to deliver the digital newsletters.
  • Service Providers: Cloud hosting and database providers (e.g., Google Firebase, Google Workspace) used to host the website and store operational data.
  • Legal Authorities: Data may be disclosed if required to comply with subpoenas, court orders, or state and federal law.

4. Method of Disclosure

Information is disclosed to third parties exclusively through electronic transmission via internet protocols. Communications with payment processors and database providers occur via Application Programming Interfaces (APIs). Delivery of services to subscribers occurs via the web portals provided by institutional messaging providers.

5. Security Practices

Pen and Key LLC implements the following measures to safeguard collected information:

  • Encryption: Data transmission between the user's browser and our databases utilizes Secure Socket Layer/Transport Layer Security (SSL/TLS) encryption.
  • Access Control: Administrative access to the underlying databases and Google Sheets is restricted by password authentication and limited to authorized personnel.
  • Data Authentication: Automated data transfers between our payment processors and databases are authenticated using cryptographic signature verification and secure tokens.
  • Vendor Security: We utilize enterprise-grade vendors (Google and leading payment processors) that maintain compliance with strict data security standards.

6. Contact Information

For questions regarding this policy or the handling of data, please contact: paralegal9393@gmail.com.