Perkfinity logo Contact Us

🔒 Privacy Policy

Effective Date: March 23, 2025  |  Last Updated: March 23, 2025

1. Introduction

Welcome to Perkfinity ("we," "our," or "us"). Perkfinity operates the website www.perkfinity.net and the Perkfinity mobile application (iOS and Android). We are committed to building a privacy-first ecosystem that connects people with local businesses through perks and rewards.

This Privacy Policy explains how we collect, use, protect, and handle your information when you use our website, mobile app, and related services.

🛡️ Our Core Promise: Your data stays yours, always. We do not sell, rent, or trade personal data to third parties. Merchants do not receive your personal contact information through our platform.

2. Information We Collect

We collect different information depending on whether you use our services as a Member (consumer) or as a Merchant (business owner).

A. For Members (Consumers)

  • Account Information: Name, email address, and password when you create an account. If you sign up via Apple Sign-In or Google Sign-In, we receive your name and email from those providers.
  • Profile Information: Zip code and notification preferences you provide during onboarding.
  • Activity Data: Records of perks you claim, activate, and redeem via QR codes at participating businesses. This data is used solely to facilitate your rewards.
  • Device Information: Device type, operating system, and push notification tokens if you opt in to receive notifications.
  • Location Data: Only your zip code (entered manually), used to show nearby participating merchants. We do not track your GPS location.

B. For Merchants

  • Business Information: Business name, address, suite, city, state, zip code, and website.
  • Contact Information: Contact person name, phone number, and email address.
  • Account Credentials: Password for merchant portal access (stored securely using industry-standard hashing).
  • Business Assets: Logo and other branding materials you upload.
  • Subscription & Billing: Subscription tier selection and payment information (processed securely by our payment provider — we never store your full card number).

C. Automatically Collected Information

  • IP address, browser type, device type, and pages visited on our website.
  • App usage analytics (crash reports, feature usage) to improve our services.

3. How We Use Your Information

  • Providing Services: Facilitating the scanning, claiming, activating, and redeeming of digital perks and rewards.
  • Communications: Sending campaign emails from merchants about their offers (via our email service), transactional emails (password resets, welcome emails), and push notifications about new perks.
  • Account Management: Administering member accounts, merchant portals, and subscription billing.
  • Improvement: Analyzing aggregated, anonymized platform usage to improve our services.
  • Security: Detecting and preventing fraud, abuse, and unauthorized access.

4. How We Protect and Share Your Information

The Perkfinity Privacy Promise

We do not sell, rent, or trade personal data to third parties.

What Merchants See

When a Member redeems a perk at a business, the Merchant does not receive the Member's personal contact information (email, phone number) through our platform. Merchants receive only:

  • Aggregated data (e.g., "15 perks redeemed today")
  • Offer status (created, pending, redeemed, expired) without personal identifiers visible
  • Member count totals for their campaigns

Third-Party Services

We use the following trusted services to operate Perkfinity:

  • Brevo (Sendinblue): For sending campaign and transactional emails on behalf of merchants. Your email address is shared with Brevo solely for email delivery.
  • Firebase Cloud Messaging: For sending push notifications to your device. Your device token is shared with Firebase solely for notification delivery.
  • Vercel: For hosting our backend services.
  • Neon: For secure database hosting (all data encrypted at rest).
  • Apple & Google: If you use Apple Sign-In or Google Sign-In, your authentication is handled by their respective services.

Security Measures

  • Passwords are hashed using bcrypt with 12 salt rounds
  • All data transmitted via HTTPS/TLS encryption
  • JWT-based authentication with token expiry
  • Database encrypted at rest

5. Campaign Emails

When a merchant creates a campaign or announcement, we send emails to qualifying members on behalf of that merchant. These emails:

  • Are sent from noreply@perkfinity.net with the merchant's store name as the display name
  • Contain the campaign offer details, merchant logo, and store address
  • Include an unsubscribe option in compliance with CAN-SPAM regulations

Your email address is never directly shared with the merchant.

6. Push Notifications

If you opt in during app onboarding, we may send push notifications about:

  • New perks available from merchants you've visited
  • Expiring offers
  • Important account updates

You can disable push notifications at any time in your device settings.

7. Your Choices and Rights

  • Opt-Out of Emails: Unsubscribe from marketing emails at any time by clicking the "unsubscribe" link in any email or contacting us.
  • Disable Notifications: Turn off push notifications in your device's Settings app.
  • Data Access: Request to review or receive a copy of the personal information we hold about you.
  • Data Deletion: Request deletion of your account and associated data by contacting us. We will process your request within 30 days.
  • Account Portability: Request an export of your data in a commonly used format.

8. Data Retention

We retain your personal data for as long as your account is active or as needed to provide services. If you request deletion:

  • Account data is deleted within 30 days
  • Anonymized/aggregated data may be retained for analytics
  • Certain data may be retained as required by law

9. Children's Privacy

Perkfinity's services are not directed to individuals under the age of 13 (or 16 in certain jurisdictions). We do not knowingly collect personal information from children. If we become aware that we have inadvertently collected such data, we will promptly delete it.

10. California Privacy Rights (CCPA)

If you are a California resident, you have the right to:

  • Know what personal information we collect and how it is used
  • Request deletion of your personal information
  • Opt out of the sale of personal information (we do not sell your data)
  • Non-discrimination for exercising your privacy rights

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page with a new "Last Updated" date. Continued use of our services after changes constitutes acceptance of the updated policy.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy, please contact us: