MemberUp

Privacy policy

Effective: April 20, 2025

This Privacy Policy (“Privacy Policy”) explains how MemberUp, Inc. (“MemberUp,” “we,” “us,” or “our”) collects, uses, shares, and protects personal data through our websites, platform, and related services (collectively, the “Services”). It also describes your rights and choices regarding your data. Please review this Privacy Policy carefully.

A reference to “MemberUp” includes our company and any affiliates involved in the collection or processing of personal data.

Please click the following links to learn more about our Privacy Policy:

  • Responsible Entity
  • Scope of This Policy
  • What Information We Collect
  • Device and Usage Information
  • How We Use Your Information
  • Sharing of Your Data
  • Cross-Border Data Transfers
  • Children's Data
  • Data Retention
  • Your Rights and Choices
  • Data Security
  • Changes to This Policy
  • Contacting Us

1. Responsible Entity

MemberUp, Inc. (“MemberUp”) is the controller of your Personal Data as described in this Privacy Policy, unless stated otherwise.

This Privacy Policy does not apply in cases where we process Personal Data solely on behalf of our customers, such as when we provide our software, platform, or services to community admins or other users who act as the controller of the data they collect through MemberUp. In those instances, MemberUp acts only as a processor or service provider, and the applicable customer's privacy policy governs their collection and use of data.

If you are a member of a community hosted on MemberUp, and that community is managed by an admin or organization using our platform, please refer directly to that admin or organization for information about how they handle your Personal Data. MemberUp is not responsible for the data practices of our customers, which may differ from those described in this Privacy Policy.

For additional details, see Section 10.5 below.

2. Processing Activities Covered

This Privacy Policy applies to the processing of Personal Data collected by MemberUp when you:

  • Visit our websites that reference or link to this Privacy Policy;
  • Interact with our official pages on social media platforms;
  • Communicate with us via email, phone, text message, or other channels;
  • Use our software, platform, or services as an end user where MemberUp acts as the controller of your Personal Data; or
  • Apply for a job or engage with us regarding employment opportunities.

Please note that our Services may contain links to third-party websites or services. If you follow a link to any third-party site, be aware that those sites operate under their own privacy policies, and we are not responsible for their data practices. We encourage you to review those policies before submitting any personal information.

3. Categories of Personal Data Collected

MemberUp collects certain categories of Personal Data that may include, but are not limited to: identifiers, geolocation data, professional or employment-related information, visual data, internet or electronic network activity, and inferences derived from such information. The scope of data collection depends on the nature of your interaction with our Services and may occur under the following circumstances:

  • When you express interest in our Services, submit inquiries, contact support, register for an account, or otherwise engage with the platform, we may collect identifiers and contact details, including but not limited to your name, organization name, address, email address, telephone number, username, and password.
  • When you interact with our websites or receive email communications, we may collect internet or other electronic network activity data automatically through technologies such as cookies, web beacons, and similar tools. This includes, without limitation, Internet Protocol (IP) address, browser type, operating system, device identifiers, and interaction data. Such data may constitute Personal Data under applicable law (see also Section 4 below).
  • When you use our Services, we may collect usage data through log files, device metadata, and telemetry records, which may also include identifiers or other technical data about your device, system configurations, or browsing patterns.
  • When you communicate with us via telephone, we may record such communications, where permitted by applicable law, for quality assurance, training, and recordkeeping purposes.
  • When you submit information voluntarily—such as through contact forms, surveys, event registrations, or similar interactions—we collect any Personal Data you provide as part of that submission.

If you provide us, or permit our service providers to provide us, with Personal Data relating to any other individual, you hereby affirm that you are authorized to do so, have obtained all legally required consents, and that such disclosure is lawful under applicable privacy laws. If you have reason to believe that such data was submitted in violation of this Privacy Policy or applicable law, or if you wish to exercise your rights under applicable data protection statutes, please contact us using the details provided in Section 13 of this Privacy Policy.

4. Device and Technical Data We Collect

We use industry-standard data collection technologies, including cookies, pixels, beacons, and similar tools, to collect certain types of technical and usage data when you interact with our websites, applications, or communications. This section describes the categories of device and usage data we may collect, how such data is processed, and your options for managing this information.

1. Device and Usage Information

When you access or interact with the MemberUp platform or related services, we may automatically collect technical data associated with your device and usage patterns. This includes identifiers (such as your IP address or device ID), commercial information (such as interactions with content), and internet or electronic network activity information (such as system and browser configuration, language preferences, and referring URLs). These data points may be collected via our own systems or through the use of third-party service providers.

Specific categories of information may include, but are not limited to: device type, browser type and version, operating system, mobile network data, screen resolution, plug-ins, time zone setting, pages and files viewed, time spent on pages, navigation paths, referring and exit pages, clickstream data, and timestamps of access. We may also collect information regarding your interactions with our platform, including feature usage metrics, search terms, session metadata, and error logs.

We use this data to maintain the security of the platform, improve user experience, assess usage patterns, monitor performance, diagnose issues, ensure legal compliance, and support analytics and business operations. Certain technical information may be personally identifying when used in combination with other data, but is generally used in an aggregated or anonymized format unless specifically required for security, compliance, or operational needs.

2. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to facilitate your navigation of the platform, remember your preferences, deliver personalized experiences, and analyze aggregate usage patterns. Cookies are small data files stored on your device that allow us to recognize you on return visits and help customize your experience.

Some cookies are essential to the functioning of the site (e.g., session cookies), while others are used for performance, functionality, or marketing purposes. We may deploy first-party and third-party cookies, including analytics and advertising cookies, subject to your browser settings and preferences.

You can manage or disable cookies through your browser settings. Most modern browsers offer controls to block or delete cookies, alert you when a cookie is being set, or restrict the types of cookies that may be stored. Note that disabling some cookies may impair functionality or performance of the site. For more information on managing cookies, please consult your browser documentation or our Cookie Policy.

3. Do-Not-Track ("DNT") Signals

Some browsers and devices offer a Do-Not-Track setting, which allows users to signal that they do not wish to have their activity tracked across websites. Because there is no industry consensus on how to interpret and respond to DNT signals, MemberUp does not currently respond to browser-initiated DNT requests. We continue to monitor developments in this area and will update our practices as appropriate.

5. Purposes for Processing Personal Data

We process your Personal Data only as necessary and for specific, legitimate purposes in accordance with applicable data protection laws. These purposes include, but are not limited to:

  • Providing and operating our websites, platforms, and Services, including related functionality and support, and fulfilling our contractual obligations to you under applicable terms of service;
  • Ensuring the integrity, security, and lawful use of our Services by tracking usage patterns, detecting and investigating fraud, verifying user accounts and activity, preventing unauthorized access, and enforcing our policies and legal terms;
  • Managing user accounts and registrations, including account setup, user authentication, account maintenance, and service communications necessary to fulfill our contractual obligations to you;
  • Responding to inquiries, support requests, and other communications initiated by you, including any communications made via forms, email, phone, or other means;
  • Analyzing trends, diagnosing service issues, improving user experience, and developing or enhancing our products and Services, including conducting internal analytics and service audits;
  • Identifying potential customer opportunities and improving marketing strategies based on aggregated usage data, where legally permissible;
  • Recording communications, where permitted or required by applicable law, for purposes of training, quality assurance, compliance, and service optimization, and providing options to object where required;
  • Complying with legal and regulatory obligations, including cooperation with governmental authorities, responding to lawful requests or court orders, ensuring public and user safety, enforcing our rights, protecting property, preventing fraud or misuse, and complying with legal processes or audit requirements.

If we are required to collect Personal Data from you by law or under an agreement we have entered into with you, and you fail to provide such data when requested, we may be unable to perform the contract or provide the associated Services.

6. Disclosure of Personal Data to Third Parties

We may disclose your Personal Data to the following categories of recipients, where such disclosure is lawful, necessary, and subject to appropriate contractual and confidentiality obligations:

  • Service Providers: We may share your Personal Data with third-party service providers, vendors, contractors, and subprocessors who perform services on our behalf and who require such information to support the operation, maintenance, or improvement of the Services. These include providers of cloud hosting, analytics, customer support, email and communication platforms, payment processing, moderation, and infrastructure services. These parties are subject to contractual obligations to process Personal Data only in accordance with our instructions and applicable data protection laws. In some instances, service providers may collect Personal Data directly from you pursuant to their own privacy policies.
  • Professional Advisors: In certain circumstances, we may disclose your Personal Data to legal, financial, insurance, or other professional advisors acting as processors, controllers, or joint controllers, where such disclosure is necessary for obtaining professional services, including legal compliance, financial reporting, audits, and the protection or enforcement of our rights.
  • Corporate Transactions: We may disclose or transfer your Personal Data to a third party in connection with or during negotiations of any actual or proposed merger, acquisition, reorganization, sale of assets, investment, financing, bankruptcy, or other change in control. Where required by applicable law, we will provide you with notice of such transfer and ensure appropriate safeguards are in place.

In addition, we may share aggregated, anonymized, or otherwise de-identified data that does not identify you individually with service providers or other third parties, for purposes including analytics, business development, reporting, and improving the Services. Such data is not considered Personal Data under this Privacy Policy.

For more information regarding the parties with whom we may share your Personal Data, please refer to the “Contact Us” section of this Privacy Policy.

7. Cross-Border Transfers of Personal Data

Your Personal Data may be accessed, transferred to, processed, or stored in the United States or other jurisdictions in which MemberUp or its affiliates, partners, or service providers maintain facilities or operations. This includes transfers necessary for the performance of a contract with you or for the implementation of pre-contractual measures taken at your request.

Such cross-border transfers may result in the processing of your Personal Data in jurisdictions that do not provide the same level of data protection as your home country. Where required by applicable data protection laws, we implement appropriate safeguards to ensure that your Personal Data remains protected in accordance with this Privacy Policy and applicable legal requirements. These safeguards may include reliance on adequacy decisions, standard contractual clauses approved by competent authorities, or other legally recognized mechanisms. If you wish to receive further information about these safeguards or request a copy of the applicable standard contractual clauses, you may do so by contacting us through the means set forth in the “Contact Us” section below.

8. Children's Privacy

The Services are not directed to individuals under the age of thirteen (13), and we do not knowingly collect or solicit Personal Data from children under 13. In the event that we become aware that we have collected Personal Data from a child under the age of 13 without verified parental consent, we will take reasonable steps to promptly delete such data from our records. If you believe that a child under 13 may have provided us with Personal Data, please contact us immediately using the information provided in the “Contact Us” section of this Privacy Policy so that we may take appropriate action.

9. Data Retention

We retain your Personal Data for a duration consistent with the original purpose for which it was collected, as outlined in the “Purposes for Which We Process Personal Data” section above, or as long as necessary to fulfill our legal, regulatory, or contractual obligations. The specific retention period is determined based on factors such as the nature and sensitivity of the data, the potential risk of harm from unauthorized disclosure or use, our ability to achieve the purpose of processing through other means, and applicable legal requirements, including statutes of limitation.

Upon expiration of the relevant retention period, we will delete or anonymize your Personal Data, unless technical limitations prevent complete deletion. In such cases, we will implement safeguards to ensure continued protection and restricted access. For more information regarding data retention practices, please refer to the “Contact Us” section below.

10. Your Rights Relating to Your Personal Data

1. Your Rights

You may have certain rights regarding your Personal Data under applicable privacy and data protection laws. These may include:

  • Accessing the Personal Data we hold about you
  • Knowing how we process your Personal Data
  • Correcting inaccurate or incomplete Personal Data
  • Deleting or requesting erasure of your Personal Data, where permitted by law
  • Restricting or objecting to certain types of data processing, including direct marketing
  • Withdrawing consent where processing is based on your consent
  • Receiving your Personal Data in a structured, commonly used, machine-readable format (data portability)
  • Opting out of automated decision-making or profiling
  • Limiting disclosures of your Personal Data to third parties
  • Exercising your rights without discrimination

2. Additional Disclosures for California, Colorado or Virginia Residents

Certain U.S. state laws, including those in California, Colorado, and Virginia, require us to provide specific information regarding how we collect, use, and disclose Personal Data, as well as the rights afforded to residents of those states. If you reside in one of these states, you may have additional rights under applicable data protection laws. You may contact us at any time to exercise your rights, and we will respond to your request in accordance with applicable law.

These state laws also require us to disclose the categories of Personal Data we may use for “business purposes,” such as performing services on our behalf or enhancing our Services and platform functionality.

We disclose the following categories of Personal Data for our business purposes:

  • Identifiers;
  • Personal information as defined in California Civil Code section 1798.80;
  • Internet or other electronic network activity information;
  • Visual information;
  • Professional or employment-related information;
  • Education information;
  • Inferences drawn from the above categories.

Sensitive Categories of Personal Data:

  • Account log-in information; and
  • Geolocation data.

Several jurisdictions provide state residents with specific rights, including the right to access particular categories of Personal Data, the right to understand how we handle Personal Data, the right to know whether and how we disclose or sell Personal Data, the right to opt out of any such sale, the right to request deletion of Personal Data in defined situations, and the right to equal service and pricing even after exercising these rights.

Under California law, you are additionally entitled to request details about the disclosure of your personal information to third parties for their direct marketing purposes. MemberUp does not share your personal information with third parties for those third parties' direct marketing purposes.

MemberUp has not sold personal information in the twelve months preceding the effective date of this Privacy Policy.

For instructions on how to exercise your rights, please refer to Section 10.4 below.

If you are an authorized agent acting on behalf of a state resident, please reach out using the details in the "Contact us" section and include a valid copy of the consumer's written authorization designating you as their representative. We may require verification of your identity and place of residence prior to processing the request.

3. Additional Disclosures for Data Subjects in the EEA and the U.K.

Residents of the European Economic Area and the United Kingdom (collectively referred to in this Privacy Policy as the "EEA"), as well as certain other jurisdictions, may be entitled to additional rights and disclosures concerning their Personal Data.

Our legal bases for collecting and using your Personal Data include:

  • The performance of a contract with you or taking steps at your request prior to entering into a contract. For example, this includes processing your registration, providing access to our services, platforms, and products, and delivering customer support.
  • Our legitimate business interests. For example, ensuring the security of our systems, protecting against fraud, and maintaining, improving, and analyzing our services.
  • Compliance with legal obligations. For example, retaining administrative records for mandated periods, or processing Personal Data to verify your identity when responding to data rights requests.
  • Your consent, in situations where no other legal basis applies. You may withdraw consent at any time.

In certain jurisdictions, including where you are located in the EEA, you may have the right to:

  • Access your Personal Data;
  • Correct any inaccurate Personal Data;
  • Request deletion of your Personal Data without undue delay;
  • Request restriction of processing of your Personal Data;
  • Request portability of your Personal Data; and
  • Object to the processing of your Personal Data.

To exercise these rights, please contact us using the details provided in the "Contact Us" section below. Kindly specify which privacy right(s) you wish to invoke. We may require identity verification before honoring your request.

If you believe that our handling of your Personal Data does not comply with applicable law, you have the right to lodge a complaint with a supervisory authority in the EEA. However, we would appreciate the opportunity to address your concerns directly and encourage you to contact us first via the "Contact Us" section below.

4. How to Exercise Your Rights

To exercise your rights, please contact us using the details provided in the "Contact Us" section below. We may process your Personal Data as necessary to respond to your request. We will address all valid requests in a timely manner and in accordance with applicable laws, and we may reach out to you if additional information is needed to fulfill your request or verify your identity.

11. How We Secure Your Personal Data

We implement a range of security measures designed to protect your personal information when you access, submit, or interact with our services. Where feasible, we use encryption protocols to secure data during transfer and storage. We also restrict access to personal data through role-based access controls and confidentiality obligations.

Please note, however, that no website, platform, or method of transmission over the internet is fully secure. While we follow what we believe to be appropriate procedures to safeguard the confidentiality, integrity, and availability of personal data collected through the Services, we cannot guarantee or warrant the security of any information you transmit to MemberUp.

12. Changes to This Privacy Policy

We may update this Privacy Policy at any time. If we make material revisions, we may notify you by either posting a prominent notice on our platform or by sending you a direct communication. We encourage you to review this Privacy Policy regularly to stay informed about how we collect, use, and protect your Personal Data.

13. Contact Us

If you wish to contact us or have any questions or concerns regarding this Privacy Policy, please reach out to us at: support@memberup.com

Chat