Privacy Policy

1. Introduction

GiveCheck LLC ("GiveCheck," "we," "us," or "our") operates the website located at givecheck.com (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our platform. By accessing or using the Service, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

We collect the minimum amount of data necessary to operate the GiveCheck verification platform:

• Email address: Collected when you join our waitlist or create an account.
• Basic account information: Name, company name, and profile details provided through Clerk authentication.
• Stripe revenue data (read-only): When you connect your Stripe account via Stripe Connect, we access aggregate revenue totals (Monthly Recurring Revenue) through read-only API access. We do not access individual customer data, payment methods, personal financial details, or transaction-level information.
• Donation records: We retrieve donation amounts and recipient nonprofit information through the Every.org API to verify your giving percentage.

3. What We Do NOT Collect

GiveCheck is designed with data minimization in mind. We do not access or store:

• Your customers' personal data or payment information
• Credit card numbers, bank account details, or payment methods
• Individual transaction or invoice details from Stripe
• Personal financial information beyond aggregate revenue totals
• Donation fund routing details (handled entirely by Every.org)

4. How We Use Your Information

• Monthly Recurring Giving (MRG) verification: We cross-reference your Stripe revenue data with Every.org donation records to calculate and verify your giving percentage.
• Leaderboard ranking: Verified giving percentages are used to rank companies on our public leaderboard.
• Badge display: Your verified giving status powers the dynamic GiveCheck badge widget you embed on your website.
• Account management: To communicate with you about your account, provide customer support, and send service-related notifications.
• Waitlist communications: If you join our waitlist, we use your email to notify you when access is available.

5. Cookies and Tracking

We use session cookies provided by Clerk to manage authentication and keep you signed in. We may also use analytics tools to understand how visitors interact with our website. These cookies are essential for the functioning of the Service and are not used for advertising purposes.

6. Third-Party Services

We rely on the following third-party services to operate the platform. Each has its own privacy policy governing data use:

• Clerk — Authentication and user management
• Stripe — Revenue verification via Stripe Connect (read-only OAuth)
• Every.org — Donation processing and verification (a 501(c)(3) fiscal sponsor)
• Vercel — Website hosting and edge functions
• Neon — PostgreSQL database hosting

GiveCheck does not sell, rent, or trade your personal information to any third party for marketing purposes.

7. Donation Processing

All charitable donations facilitated through GiveCheck are processed by Every.org, a registered 501(c)(3) nonprofit organization. GiveCheck does not handle, hold, or route donation funds at any point. Tax receipts are issued directly by Every.org.

8. Data Retention

We retain your account information and verification data for as long as your account is active or as needed to provide our services. If you delete your account, we will remove your personal information from our systems within 30 days, except where retention is required by law or for legitimate business purposes (such as resolving disputes or enforcing our agreements).

9. Your Rights and Choices

Depending on your jurisdiction, you may have the following rights regarding your personal data:

• Access: Request a copy of the personal data we hold about you.
• Correction: Request correction of inaccurate or incomplete personal data.
• Deletion: Request deletion of your personal data, subject to certain exceptions.
• Portability: Request your data in a structured, machine-readable format.
• Opt-out: Unsubscribe from non-essential communications at any time.

To exercise any of these rights, contact us at privacy@givecheck.com.

10. California Residents (CCPA)

If you are a California resident, you have the right to know what personal information we collect, request its deletion, and opt out of its sale. GiveCheck does not sell personal information. To make a verifiable consumer request, contact us at privacy@givecheck.com.

11. European Residents (GDPR)

If you are located in the European Economic Area, we process your personal data based on legitimate interest (providing and improving our services) and consent (where required). You have the right to lodge a complaint with your local data protection authority if you believe your rights have been violated.

12. Data Security

We implement appropriate technical and organizational security measures to protect your personal data, including encryption in transit (TLS) and at rest, access controls, and regular security reviews. However, no method of transmission over the internet or electronic storage is 100% secure, and we cannot guarantee absolute security.

13. Children's Privacy

The Service is not directed at individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child, we will take steps to delete it promptly.

14. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page with a revised "Last updated" date. Your continued use of the Service after any changes constitutes acceptance of the updated policy.

15. Contact Us

If you have questions or concerns about this Privacy Policy, please contact us at: