Privacy
Policy

At OrgSets, we believe privacy is a fundamental right, not an afterthought. We only collect the data we absolutely need.

Version 2.4April 2026
Data
Protection

Our Promise

At OrgSets, we believe privacy is a fundamental right, not an afterthought.

This page explains how we handle your information when you use OrgSets. We operate on a simple rule: we only collect the data we absolutely need to make the app work for you and your organization. Nothing more, nothing less.

1. What We Collect

We only collect what we need to run your organization smoothly:

  • The Basics: Your name, email address, and login details so you can access your account.
  • Your Group's Setup: Information about your organization's structure and who has what role.
  • Payment Receipts: If you pay dues, our partner Stripe securely handles your credit card. We never see your card numbers; we just keep the receipt records so everyone knows who paid what.
  • Your Content: Any messages, announcements, or files you choose to upload to the app.

2. How We Use It

We only use your data to make the app work for you. For example:

  • Running the platform and making sure your group's tools work properly.
  • Sending you important updates, like if you have a new message or if there's a security alert.
  • Fixing bugs and making the app faster.

Data Retention

We retain your personal information only for as long as is necessary for the purposes set out in this Privacy Policy. When you delete your account, we will delete your personal data within 30 days from our active servers, and from our secure backups within 90 days.

We will never sell your personal data to third parties. Ever.

3. How We Protect It

Our Security Promise

We lock down your data like it's ours. Everything is heavily encrypted (both while it's sitting on our servers and while it's traveling across the internet). We also keep your organization's data strictly separated from everyone else's so there are no accidental leaks.

We enforce strict technical and administrative access controls designed to ensure our team cannot access your private data unless you explicitly give us temporary permission to help you fix a bug, or if we are legally forced to by a valid court order.

4. Your Rights

It's your data, and you should have complete control over it. You always have the right to:

Take It With You

You can download a complete export of your organization's data at any time.

Delete It Forever

If you want out, click a button and we'll wipe your personal data from our servers completely.

5. State & Regional Privacy Rights

California Residents (CCPA/CPRA)

Under the California Consumer Privacy Act, California residents have the right to know what personal information is collected, the right to delete it, and the right to opt-out of the sale or sharing of their information. While we do not sell your personal data, you can still exercise your right to know and delete by contacting our privacy team. We will not discriminate against you for exercising your privacy rights.

European Economic Area Residents (GDPR)

Our legal basis for processing your personal data is typically to fulfill our contract with you (Terms of Service) and our legitimate interest in providing the Service securely. You have the right to access, rectify, or erase your personal data, restrict its processing, object to its processing, and the right to data portability. You also have the right to lodge a complaint with a supervisory authority.

Legal & Compliance Contact

For GDPR requests, DPA agreements, or any security concerns, please contact our Legal Infrastructure team directly.