Privacy Policy

1. Who We Are

Dealifi is a brand of Dealifi, an unincorporated brand operating under the entity identified at support@dealifi.io ("we," "us," "our"). This Privacy Policy explains how we collect, use, disclose, and protect personal information when you visit dealifi.io or use any Dealifi product, calculator, AI tool, or service ("Services").

2. Information We Collect

2.1 You Provide

• Account info: name, email address, password (hashed), business/LLC name
• Payment info: billing address; payment card data is processed by Lemon Squeezy/Stripe — we do NOT store full card numbers
• Your Content: data you enter into Dealifi templates, calculators, or AI tools (deal information, LLC details, capital contributions, etc.)
• Support communications: emails, chat messages, support tickets
• Email-list signups: email address + (optionally) name

2.2 Collected Automatically

• Usage data: pages visited, features used, time on page, referrer URL, click events
• Device info: browser type, operating system, IP address, screen resolution
• Cookies & similar tech: session cookies for authentication, analytics cookies (privacy-preserving, can be declined)

3. How We Use Information

• Provide, operate, maintain, and improve Dealifi products and services
• Process payments and deliver downloads
• Send transactional emails (receipts, password resets, security notices)
• Send marketing emails IF you opted in (you can unsubscribe in one click)
• Provide customer support
• Comply with legal obligations (tax reporting, fraud prevention, response to lawful requests)
• Aggregate and anonymize for product analytics and market research

4. What We DO NOT Do

• We do NOT sell your personal information
• We do NOT share your saved deals, LLC documents, or Your Content with other Dealifi users
• We do NOT train AI models on your private content without explicit permission
• We do NOT send your data to advertisers for retargeting outside of standard analytics

5. Sharing With Third Parties

We share personal information only with service providers necessary to operate Dealifi, under contractual confidentiality:

• Payment processors: Lemon Squeezy, Stripe
• Email service providers: ConvertKit / Beehiiv (for marketing emails) and Postmark (for transactional emails)
• Hosting providers: Cloudflare Pages or Vercel (static hosting), Supabase (database when applicable)
• AI providers: Anthropic (Claude API) for AI-powered features — Anthropic does NOT use our API content to train models per Anthropic's commercial terms
• Analytics: privacy-preserving analytics (e.g., Plausible or Fathom) — no cross-site tracking
• Legal compliance: we may disclose information if required by law, subpoena, or to protect our legal rights

6. Cookies

We use cookies for: (a) authentication (required), (b) preferences (optional), (c) analytics (optional). Our cookie banner gives you control. You can also block cookies via your browser settings; some features may not function without authentication cookies.

7. Data Retention

• Account data: retained while your account is active + 12 months after closure (for tax/audit purposes)
• Payment records: retained 7 years per IRS recordkeeping requirements
• Your Content: retained while your account is active; deleted within 30 days of account closure on request
• Email-list data: retained until you unsubscribe
• Support communications: 3 years

8. Your Rights

Depending on your jurisdiction (U.S. state, EU, UK, etc.) you may have the right to:

• Access the personal information we hold about you
• Correct inaccurate information
• Delete your personal information ("right to be forgotten")
• Export your data in a portable format
• Opt out of marketing emails (one-click unsubscribe in every email)
• Restrict or object to certain processing
• Withdraw consent at any time (for processing based on consent)

To exercise any right, email privacy@dealifi.io. We respond within 30 days.

9. California Residents (CCPA / CPRA)

California residents have additional rights under the California Consumer Privacy Act / California Privacy Rights Act, including the right to know, delete, correct, and opt out of "sale" or "sharing" of personal information. We do NOT sell personal information. To exercise rights, email privacy@dealifi.io.

10. European Union (GDPR)

EU users have rights under the General Data Protection Regulation including data access, correction, deletion, portability, and the right to lodge a complaint with their national data protection authority. Our lawful basis for processing is (a) contract performance (delivering purchased products), (b) legitimate interest (operating our business, fraud prevention), or (c) consent (marketing emails). EU users seeking to exercise rights should email privacy@dealifi.io. Note: Dealifi targets U.S. users; EU users access at their own risk.

11. Children

Dealifi is NOT directed at children under 18. We do not knowingly collect personal information from anyone under 18. If we learn we have collected such information, we will delete it.

12. Security

We use industry-standard security: HTTPS, encrypted-at-rest databases, hashed passwords, restricted access to production systems, third-party security audits where available. No system is 100% secure; you use Dealifi at your own risk. In case of breach, we notify affected users in accordance with applicable law.

13. International Transfers

Dealifi is operated from the United States. If you access Dealifi from outside the U.S., your data is transferred to and processed in the U.S., where data protection laws may differ from those in your jurisdiction.

14. Changes

We may update this Privacy Policy at any time. The "Last updated" date reflects the most recent revision. Material changes will be announced via email or homepage banner. Continued use after changes constitutes acceptance.

15. Contact

Privacy questions or requests? Email privacy@dealifi.io. We are operated by Dealifi, an unincorporated brand operating under the entity identified at support@dealifi.io.