🔒 Privacy Policy

Effective Date: August 4, 2025

1. Introduction

KeepOrBurn ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our commitment challenge platform.

2. Information We Collect

Personal Information:

  • Email addresses (for you and your witness, to send challenge and confirmation emails)
  • Challenge details (description, amount, deadline)
  • Payment information (processed securely by Stripe; we never store your card details)

Usage Data:

  • Basic analytics (no tracking or profiling)
  • Server logs and technical data
  • Cookie data (with your consent)

3. How We Use Your Information

  • To process your commitment challenges and payments
  • To notify you and your witness about challenge status
  • To process payments and refunds via Stripe
  • To send you receipts and transaction confirmations
  • To improve our service (aggregate, anonymous stats only)
  • To comply with legal obligations

4. Legal Basis for Processing (EU)

  • Contract performance: To provide our commitment challenge services
  • Legitimate interest: To improve our services and prevent fraud
  • Consent: For cookies and optional communications
  • Legal obligation: To comply with financial and tax regulations

5. Data Sharing and Transfers

We do not sell your personal data. We may share your information with:

  • Stripe: For payment processing (US-based, GDPR compliant)
  • Service providers: For hosting and email services
  • Legal authorities: When required by law

Data transfers outside the EU are protected by appropriate safeguards.

6. Your Rights (GDPR)

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate data
  • Erasure: Request deletion of your data
  • Portability: Receive your data in a structured format
  • Objection: Object to processing based on legitimate interests
  • Withdrawal: Withdraw consent for cookies/communications

7. Cookies and Tracking

We use essential cookies for website functionality. Optional analytics cookies require your consent. You can manage cookie preferences through your browser settings.

8. Data Retention

  • Active commitments: Until completion + 7 years (legal requirements)
  • Payment records: 7 years (tax compliance)
  • Email communications: 2 years
  • Analytics data: 26 months

9. Security

We implement appropriate technical and organizational measures to protect your data, including encryption, secure servers, and access controls.

10. Children's Privacy

Our service is not intended for users under 18. We do not knowingly collect personal information from children.

11. Changes to This Policy

We may update this Privacy Policy. Significant changes will be notified via email or website notice.

12. Contact Information

For privacy questions or to exercise your rights, contact us at:

Email: szollosee@gmail.com

Data Protection Officer: Available upon request

EU Representative: Available for EU residents