Privacy Policy

Account Information. When you create an account, we collect your name, email address, and password (stored as a cryptographic hash). If you set up a team, we also collect team name, sport/boat class, and branding preferences.

Contact and Donor Data. As you use the Service, you may upload or enter information about your contacts and donors, including names, email addresses, phone numbers, organizations, and donation histories. This data belongs to you and is stored on your behalf.

Usage Data. We automatically collect information about how you interact with the Service, including pages visited, features used, browser type, IP address, and timestamps. This data is used to improve the Service and diagnose issues.

Communication Content. We store newsletters, thank-you messages, and other content you create within the Service to enable you to access and use these features.

Payment Information. If you subscribe to a paid plan, payment processing is handled by our third-party payment processor. We do not store full credit card numbers on our servers.

We use the information we collect to:

• Provide, maintain, and improve the Service
• Process transactions and send related information (receipts, confirmations)
• Send administrative messages, security alerts, and support responses
• Respond to your comments, questions, and requests
• Monitor and analyze usage patterns to improve product functionality
• Detect, investigate, and prevent fraudulent transactions and abuse
• Comply with legal obligations

We do not use the personal data you store about your donors or contacts for our own marketing, nor do we sell, rent, or share it with third parties except as described in this policy.

To deliver certain features, we share data with trusted third-party providers under our direction:

• Zoom — When you connect Zoom, recording scheduling and retrieval is handled through Zoom's API. Meeting metadata (topic, time, duration) is transmitted to Zoom. Recordings and transcripts are returned to us and stored in your account. Zoom's privacy policy governs Zoom's own data practices.
• Lob — If you use the physical thank-you card feature (Pro plan), recipient names and mailing addresses are transmitted to Lob to fulfill physical mail. Lob's privacy policy governs their data practices.
• AI Content Services — Transcript text from recordings may be processed by an AI model to generate article drafts. We use providers that process data under data processing agreements and do not use your content to train their models.
• Hosting & Infrastructure — We use cloud infrastructure providers (database, storage, compute) that process data on our behalf under appropriate data processing agreements.

We retain your account data for as long as your account is active. Contact, donation, and communication data is retained for the lifetime of your account plus 90 days following account closure, after which it is permanently deleted.

You may export or delete your data at any time from your account settings. Deletion requests will be processed within 30 days.

We may retain certain data for longer periods where required by law (for example, financial transaction records required by tax law) or to resolve disputes.

We implement industry-standard technical and organizational measures to protect your information against unauthorized access, alteration, disclosure, or destruction. These include encryption of data in transit (TLS), cryptographic hashing of passwords, access controls, and regular security reviews.

Despite these measures, no security system is impenetrable. In the event of a data breach that is likely to result in a high risk to your rights and freedoms, we will notify you and relevant authorities as required by applicable law.

Depending on where you reside, you may have the following rights regarding your personal data:

• Right to Access — You may request a copy of the personal data we hold about you.
• Right to Correction — You may request correction of inaccurate or incomplete data.
• Right to Deletion — You may request deletion of your personal data, subject to certain legal exceptions.
• Right to Portability — You may request a machine-readable export of your data.
• Right to Opt Out — California residents may opt out of the sale of their personal information. We do not sell personal information.
• Right to Non-Discrimination — We will not discriminate against you for exercising any of these rights.

To exercise these rights, contact us at privacy@sailingmoney.com. We will respond within 30 days (or the timeframe required by applicable law).

We use cookies and similar tracking technologies to maintain your session and remember your preferences. See our Cookie Policy for details.

The Service is not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected personal data from a minor without parental consent, we will delete that information promptly.

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting a notice on the Service or by email. Your continued use of the Service after changes take effect constitutes your acceptance of the revised policy.

For privacy-related questions or requests: privacy@sailingmoney.com

This document is a template pending formal legal review. It does not constitute legal advice.