Infaque

Privacy Policy

Last updated: January 25, 2024

At Infaque, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our donor management platform and related services. Please read this policy carefully. By using Infaque, you consent to the data practices described in this statement.

1. Information We Collect

We collect information that you provide directly to us when you create an account, make a donation, set up a fundraising campaign, or contact our support team. This includes:

  • Account Information: Name, email address, phone number, and organizational details when you register for an account.
  • Payment Information: Credit card numbers, bank account details, and billing addresses processed through our third-party payment providers (Stripe and PayPal). Infaque does not store full payment card numbers on our servers.
  • Donation Data: Donation amounts, frequencies, campaign allocations, and associated donor information.
  • Usage Data: Browser type, IP address, pages visited, time spent on pages, and other diagnostic data collected automatically when you use our platform.
  • Communication Data: Email addresses and message content when you use our email campaign tools or contact support.

2. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our donor management platform.
  • Process donations and payment transactions securely.
  • Generate tax receipts and financial reports for nonprofit organizations.
  • Send transactional emails, including donation confirmations and receipts.
  • Enable nonprofit organizations to communicate with their donors through our email campaign tools.
  • Analyze usage patterns to improve the user experience and develop new features.
  • Detect, prevent, and address fraud, abuse, and technical issues.
  • Comply with legal obligations, including tax reporting requirements.

3. Data Protection & Security

We implement industry-standard security measures to protect your personal information. All data transmitted between your browser and our servers is encrypted using TLS (Transport Layer Security). Payment information is processed through PCI-DSS compliant payment processors and is never stored on our servers in unencrypted form.

We use Firebase and Google Cloud infrastructure, which provide enterprise-grade security including data encryption at rest, automated backups, and regular security audits. Access to personal data is restricted to authorized personnel who need it to perform their job functions.

4. Cookies & Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience on our platform. These include:

  • Essential Cookies: Required for the platform to function properly, including authentication and session management.
  • Analytics Cookies: Help us understand how users interact with our platform so we can improve it.
  • Marketing Cookies: Used to track the effectiveness of fundraising campaigns, including UTM parameters and Meta Conversion API integration for donation attribution.

You can control cookie preferences through your browser settings. Disabling certain cookies may limit functionality on our platform.

5. Third-Party Services

We work with trusted third-party service providers to operate our platform. These include:

  • Stripe and PayPal: For secure payment processing. These providers have their own privacy policies governing how they handle your payment data.
  • Google Firebase: For hosting, authentication, and database services.
  • Meta (Facebook): For conversion tracking through the Meta Conversions API, used to measure fundraising campaign effectiveness.

We do not sell, rent, or share your personal information with third parties for their direct marketing purposes.

6. Your Rights & Choices

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request that we correct inaccurate or incomplete information.
  • Deletion: Request that we delete your personal data, subject to legal retention requirements.
  • Portability: Request a machine-readable copy of your data.
  • Opt-Out: Unsubscribe from marketing communications at any time using the link provided in our emails.

To exercise any of these rights, please contact us at the email address listed below. We will respond to your request within 30 business days.

7. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of any material changes by posting the updated policy on our website and updating the “Last updated” date above. Your continued use of Infaque after any changes constitutes your acceptance of the revised policy.

8. Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at:

Email: support@infaque.com