Privacy Policy

Information we collect

• Account data: email, hashed password, roles, email-verification state, age self-certification, and (for minors) guardian email + consent.
• Athlete profile data: display name, sport, graduation year, home state, school name, and any photo URL you choose to share.
• Payment metadata: contribution amount, pool, timestamps, and Stripe identifiers (payment intent id, transfer id). Card numbers are handled by Stripe; we never see or store them.
• Technical logs: IP address, user agent, request id, and rate-limit counters, retained per our audit and security policies.

How we use information

To operate the platform: create accounts, route pledges to pools, run eligibility checks, and trigger Stripe settlements. To fight fraud: review high-risk activity and block abuse. To improve the product: aggregate analytics that do not identify you.

Sharing

We share data with service providers that help us operate the platform: Stripe (payments), AWS (hosting and email), and any analytics vendor enabled in production. We do not sell personal information. Public leaderboards display only the fields a user opts in to (display name, sport, total raised).

Minors

Users under 18 must supply a parent or guardian email and consent during registration. We use guardian email only for verification and account-recovery messages. Accounts for users under 13 are not permitted.

Retention & deletion

We retain audit logs and payment records for as long as required for reconciliation, dispute handling, and tax/regulatory purposes. You can request account deletion at support@fanfund.314-apps.com; records tied to completed payments may be retained in redacted form.

Your rights

Depending on your jurisdiction (e.g. CCPA, GDPR), you may have rights to access, correct, or delete your data. Contact us to exercise those rights. This policy will be updated with explicit regional disclosures after counsel review.