Legal

Privacy Policy

Plain language. No surprises. Your data belongs to you.

Last updated: March 2026

The Short Version

We collect what we need to provide our service. We don't sell your data. We don't use it to train AI. We don't share it with advertisers. When you delete your account, we delete your data. That's it.

Data Controller

The data controller for information collected through the Service is:

Equipoise LLC

4 Deerview Ln
Asheville, NC 28804
legal@equipoi.se

What We Collect

Information you provide

  • Account information: Name, email address, password (hashed, never stored in plain text)
  • Payment information: Handled by Square and Stripe. We never see or store your full card number.
  • Content you create: Products, events, messages, and other content you add to the platform
  • Communications: Support requests, feedback, and other messages you send us

Information collected automatically

  • Usage data: Pages visited, features used, and actions taken within the platform
  • Device information: Browser type, operating system, and device identifiers
  • Log data: IP addresses, access times, and referring URLs

How We Use Your Information

We use your information to:

  • Provide and maintain the service
  • Process transactions and send related information
  • Send administrative messages (account updates, security alerts)
  • Respond to your comments, questions, and support requests
  • Monitor and analyze usage patterns to improve the service
  • Detect, prevent, and address technical issues and abuse

We do NOT use your information to:

  • Sell to third parties
  • Target you with advertising
  • Train machine learning models
  • Build profiles for marketing purposes
  • Share with data brokers

Data Sharing

We share your information only in these limited circumstances:

Service providers

We work with companies that help us operate the platform (payment processing, email delivery, hosting). These providers only access data necessary to perform their services and are contractually obligated to protect it.

Legal requirements

We may disclose information if required by law, subpoena, or court order, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.

Business transfers

If Equipoise is acquired or merged, your information may be transferred. We'll notify you before your data becomes subject to a different privacy policy.

With your consent

We may share information for any other purpose with your explicit consent.

Your Rights

You have the right to:

  • Access: Request a copy of all data we have about you
  • Correction: Update or correct inaccurate information
  • Deletion: Request deletion of your data (we'll delete it within 30 days)
  • Portability: Export your data in standard formats (CSV, JSON)
  • Objection: Opt out of specific data processing activities

To exercise these rights, contact us at legal@equipoi.se.

Your Communication Preferences

When you subscribe to communications from an organization on our platform, you have control over your subscription:

  • You control your subscription: You can unsubscribe at any time via the link in any email. Organizations cannot override your unsubscribe preference.
  • Your contact information: You may provide an email address and name for communications. This information is separate from your account data.
  • Preferences are organization-specific: You can have different subscription preferences for different organizations on the platform.
  • Separate from CRM data: Organizations may maintain their own records about your relationship (purchases, donations, attendance), but your communication preferences are yours to manage.

Note: Unsubscribing from an organization's communications stops emails but doesn't delete your purchase history, donation records, or other transaction data. To delete that data, contact the organization directly or exercise your data deletion rights above.

Cookies and Tracking

We use only essential cookies required for the platform to function. We do not use any advertising, analytics, or tracking cookies.

Essential Cookies We Use

Cookie Name Purpose Duration
_equipoise_session Maintains your login session and remembers your authentication state Session (deleted when browser closes)
_csrf_token Protects against cross-site request forgery attacks Session
cookie_consent Remembers that you've acknowledged our cookie notice 1 year
timezone Displays dates and times in your local timezone 1 year
remember_token Keeps you logged in if you select "Remember me" 2 weeks

What We Don't Use

We do NOT use:

  • Google Analytics or similar tracking tools
  • Facebook Pixel or social media tracking
  • Advertising or retargeting cookies
  • Third-party behavioral analytics
  • Fingerprinting or device identification

Third-Party Cookies

Some services we integrate may set their own cookies:

  • Square (Payment Processing): Sets cookies for fraud prevention and secure payment processing. See Square's Privacy Policy.
  • Stripe (Payment Processing): Sets cookies for fraud prevention and secure payment processing. See Stripe's Privacy Policy.
  • YouTube/Vimeo (Embedded Videos): If you play embedded videos, these services may set cookies. We load videos with privacy-enhanced mode when available.

Managing Cookies

You can control cookies through your browser settings. Note that disabling essential cookies will prevent you from logging in and using core features. For instructions on managing cookies in your browser, visit aboutcookies.org.

Data Security

We implement appropriate technical and organizational measures to protect your data, including:

  • AES-256 encryption for data at rest
  • TLS 1.3 for data in transit
  • Regular security audits and vulnerability assessments
  • Access controls and audit logging
  • Employee security training

Data Retention

We retain your data for as long as your account is active or as needed to provide services. When you delete your account, we delete your data within 30 days, except where retention is required by law (tax records, legal disputes).

International Transfers

Your data may be transferred to and processed in the United States. We ensure appropriate safeguards are in place for international transfers in compliance with applicable data protection laws.

California Residents (CCPA)

California residents have additional rights under the California Consumer Privacy Act:

  • Right to know what personal information we collect and how it's used
  • Right to delete personal information
  • Right to opt-out of the sale of personal information (we don't sell, but the right exists)
  • Right to non-discrimination for exercising your rights

European Users (GDPR)

If you're in the European Economic Area, you have additional rights under GDPR:

  • Right to access, rectify, or erase your personal data
  • Right to restrict or object to processing
  • Right to data portability
  • Right to withdraw consent at any time
  • Right to lodge a complaint with a supervisory authority

Children's Privacy

Our service is not directed to children under 13. We don't knowingly collect information from children. If you believe a child has provided us with personal information, please contact us.

Changes to This Policy

We may update this policy from time to time. We'll notify you of significant changes by email or through the platform. Continued use after changes constitutes acceptance.

Contact Us

Questions about this policy? Contact us at legal@equipoi.se.

We use essential cookies to make this site work. Learn more