HealthCommons
Legal

Privacy Policy

Last updated: April 13, 2026

Important Notice — Not for PII or Sensitive Data

HealthCommons is not designed for collecting personally identifiable information (PII), protected health information (PHI), or any highly sensitive data. Receivers must not collect or display such information through the Platform. Donors should not share sensitive personal data via campaign content, perspectives, or comments.

1. Information We Collect

We collect the following types of information:

Account Information

  • Full name, email address, password (encrypted)
  • Role (Donor, Receiver, Admin)
  • Profile image (optional)

Receiver / Organization Data

  • Legal organization name, entity type, EIN (Employer Identification Number)
  • Organization address, website (optional)
  • IRS 501(c)(3) determination letter (for nonprofits)
  • Stripe Connect account ID (for receiving funds)

Donation & Payment Data

  • Donation amounts, dates, and associated campaigns
  • Payment method tokens (we do NOT store full card numbers — handled by Stripe)
  • Receipts and refund records

Campaign Content

  • Campaign descriptions, budgets, milestones, media uploads (images, PDFs, videos)
  • Perspectives and updates posted by receivers

Technical Data

  • IP address, browser type, device info (for security and analytics)
  • Session tokens (for authentication)
  • Audit logs of administrative actions

2. How We Use Your Information

  • To provide, maintain, and improve the Platform
  • To process donations and disburse funds to receivers via Stripe
  • To verify receiver organizations and prevent fraud
  • To communicate updates, receipts, and important platform notices
  • To enforce our Terms of Service and respond to legal requirements
  • To produce aggregate, anonymized analytics about platform usage

3. Third-Party Service Providers

We share limited data with the following third-party services strictly for platform operations:

  • Stripe — payment processing and Stripe Connect for fund disbursement. Subject to Stripe’s Privacy Policy.
  • AWS S3 — storage for uploaded media (images, PDFs, videos).
  • SMTP / email providers — transactional emails (receipts, notifications, password resets).

We do not sell, rent, or trade your personal information to any third party for marketing purposes.

4. Data Retention

  • Active accounts: We retain your data while your account is active.
  • Deleted accounts: Most personal information is removed within 30 days of deletion. However, donation records, receipts, and refund history are retained for compliance and tax purposes (typically 7 years).
  • Email anonymization: When an account is deleted, your email is anonymized so you (or another user) can re-register with the same email.

5. Your Rights

You have the right to:

  • Access the personal information we hold about you
  • Correct inaccurate information via your profile settings
  • Delete your account (subject to retention rules above)
  • Opt out of marketing emails (transactional emails cannot be opted out)
  • Request a copy of your donation history

To exercise these rights, contact privacy@healthcommons.org.

6. Cookies & Tracking

We use cookies (and similar technologies) for essential platform functions: maintaining login sessions, remembering preferences, and understanding aggregate usage patterns. We do not use third-party advertising or cross-site tracking cookies.

7. Security

We implement reasonable industry-standard safeguards including:

  • HTTPS encryption for all data in transit
  • Bcrypt password hashing
  • Two-factor authentication (mandatory for admins)
  • Role-based access control on admin operations
  • Audit logging of sensitive admin actions

However, no system is 100% secure. We cannot guarantee absolute security and disclaim liability for unauthorized access beyond our reasonable control.

8. Children's Privacy

HealthCommons is not intended for use by individuals under 18. We do not knowingly collect information from minors. If you believe a minor has registered, contact us immediately for account removal.

9. Public Information

Campaign details (title, description, budget, milestones, media, perspectives) are publicly visible by design once a campaign goes live. Receiver organization names are also public. Donor names are visible unless the donor opts in to anonymous donation.

10. International Users

HealthCommons is operated from the United States. By using the Platform, you consent to the transfer and processing of your data in the U.S., which may have different data protection laws than your country.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email or in-app notice. Continued use of the Platform after changes constitutes acceptance of the revised policy.

12. Contact

For privacy questions or to exercise your rights, contact privacy@healthcommons.org.

By using HealthCommons, you acknowledge that you have read and understood this Privacy Policy.

View Terms of Service →