Privacy Policy

1. Introduction

Raise2Spin ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our fundraising campaign platform.

2. Information We Collect

3. How We Use Your Information

• To provide and maintain our platform
• To process spin-to-win entries and award prizes
• To send winner notifications on your behalf (when Gmail is connected)
• To communicate with you about your account and campaigns
• To improve our services and develop new features
• To detect and prevent fraud or abuse

4. Email Provider Integrations

You may connect your Gmail or Microsoft account to send campaign emails. Our use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:

• We only request the minimum permissions needed (send email and read your email address)
• We only use email access to send emails you explicitly trigger through our platform
• We do not read, scan, or access your inbox or email content
• We do not use email data for advertising purposes
• We do not sell or share email data with third parties
• You can revoke access at any time from your campaign settings

5. Data Sharing & Third-Party Services

We do not sell your personal information. We use the following third-party services to operate our platform:

• Cloudflare - For security and file storage
• Resend - For sending system emails (password resets, account notifications)
• CharityExtra - If your campaign integrates with CharityExtra, donation data is synced from their platform

We may also share information:

• To comply with legal obligations or respond to lawful requests
• To protect our rights, privacy, safety, or property
• In connection with a merger, acquisition, or sale of assets

6. Data Security

We implement appropriate technical and organizational measures to protect your information, including:

• Industry-standard encryption for OAuth tokens and SMTP credentials
• Secure password hashing using industry-standard algorithms
• HTTPS encryption for all data in transit
• Rate limiting and bot protection to prevent abuse

7. Data Retention

We retain your information for as long as your account is active or as needed to provide services. Campaign data is retained for the duration of the campaign plus a reasonable period for reporting purposes. You may request deletion of your data at any time.

8. Your Rights

You have the right to:

• Access the personal information we hold about you
• Request correction of inaccurate information
• Request deletion of your account and associated data
• Revoke third-party access (like Gmail) at any time
• Export your campaign data

9. Cookies

We use essential cookies only to maintain your session and authentication state. We do not use analytics or tracking cookies. You can control cookie settings through your browser, but disabling cookies may prevent you from using the platform.

10. Children's Privacy

Our platform is not intended for children under 13. We do not knowingly collect information from children under 13. If you believe we have collected such information, please contact us immediately.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date.

12. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us at:

Email: [email protected]