Privacy Policy
Effective Date: January 1, 2026
Last Updated: January 2026 | CCPA/CPRA & GDPR Compliant
Our Commitment to Privacy
GIFT Connect ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and services, including our AI-powered parenting tools.
2026 Compliance Notice
This Privacy Policy complies with the California Consumer Privacy Act (CCPA) as amended effective January 1, 2026, the California Privacy Rights Act (CPRA), the General Data Protection Regulation (GDPR), the Children's Online Privacy Protection Act (COPPA) including 2025 FTC amendments, and other applicable state privacy laws including those in Indiana, Kentucky, and Rhode Island effective in 2026.
Information We Collect
Information You Provide Directly
- Contact Information: Name, email address when you contact us
- AI Tool Inputs: Questions, prompts, and content you submit to our AI tools (Sammie, Geno, Stacy)
- Communications: Messages you send us through our contact forms
Information Collected Automatically
- Device Information: Browser type, operating system, device identifiers
- Usage Data: Pages visited, time spent, click patterns
- IP Address: For security, analytics, and approximate location
- Cookies & Similar Technologies: See "Cookie Policy" section below
Sensitive Personal Information
In accordance with 2026 CCPA regulations, we identify the following as sensitive personal information that receives enhanced protections:
- Personal information of consumers under 16 years of age
- Precise geolocation data (if collected)
- Any information you voluntarily share about children in AI tool queries
How We Use Your Information
We use the information we collect to:
- Provide, maintain, and improve our Services
- Process your AI tool requests and generate responses
- Respond to your inquiries and provide customer support
- Send you updates about our Services (with your consent)
- Analyze usage patterns to improve user experience
- Detect, prevent, and address technical issues or security threats
- Comply with legal obligations
Automated Decision-Making Disclosure
Our AI tools use automated processing to generate personalized content based on your inputs. This processing:
- Does not produce legal or similarly significant effects
- Is designed for informational and educational purposes only
- Can be opted out of by discontinuing use of AI tools
How We Share Your Information
We do NOT sell your personal information.
We may share your information with the following categories of third parties:
| Category | Purpose |
|---|---|
| Service Providers | Hosting, analytics, AI processing |
| AI Technology Partners | Processing AI tool requests |
| Analytics Providers | Understanding usage patterns |
| Legal Authorities | When required by law |
Per 2025 COPPA amendments and Minnesota/Oregon privacy laws, we disclose that AI technology partners may receive query data to process your requests. These partners are contractually bound to protect your data.
Your Privacy Rights
Depending on your location, you may have the following rights regarding your personal information:
CCPA/CPRA Rights (California)
- Right to Know
- Right to Delete
- Right to Correct
- Right to Opt-Out of Sale/Sharing
- Right to Limit Sensitive Data Use
- Right to Non-Discrimination
GDPR Rights (EU/UK)
- Right of Access
- Right to Rectification
- Right to Erasure
- Right to Restrict Processing
- Right to Data Portability
- Right to Object
Global Privacy Control (GPC)
In accordance with 2026 CCPA regulations, we honor Global Privacy Control (GPC) signals. If your browser sends a GPC signal, we will treat it as a valid opt-out request for the sale or sharing of your personal information.
To exercise any of these rights, please contact us using the information provided below. We will respond within the timeframes required by applicable law (typically 45 days for CCPA, 30 days for GDPR).
Children's Privacy (COPPA Compliance)
Protecting children's privacy is especially important to us. Our commitment includes:
- Our Services are not directed to children under 13
- We do not knowingly collect personal information from children under 13 without verifiable parental consent
- Parents may review, delete, or refuse further collection of their child's information
- We comply with 2025 FTC amendments requiring enhanced transparency and data-sharing limitations
Virginia Social Media Compliance
For users in Virginia, we comply with social media restrictions for minors effective January 1, 2026, including age-screening requirements for users under 16.
If you believe we have collected information from a child under 13, please contact us immediately at privacy@gift-connect.org.
Cookie Policy
We use cookies and similar tracking technologies to improve your experience. Types of cookies we use:
| Type | Purpose | Duration |
|---|---|---|
| Essential | Site functionality | Session |
| Analytics | Usage statistics | 1 year |
| Preferences | Remember settings | 1 year |
You can control cookies through your browser settings. Note that disabling certain cookies may affect site functionality.
Data Security
We implement appropriate technical and organizational measures to protect your personal information, including:
- Encryption of data in transit (TLS/SSL) and at rest
- Regular security assessments and updates
- Access controls and authentication requirements
- Employee training on data protection
- Incident response procedures
While we strive to protect your information, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.
Data Retention
We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required by law.
- AI Tool Queries: 30 days for service improvement, then anonymized or deleted
- Contact Information: Until you request deletion or 3 years of inactivity
- Analytics Data: 26 months (industry standard)
- Legal Records: As required by applicable law
Changes to This Policy
We review and update this Privacy Policy at least annually, or more frequently when required by changes in law or our practices. Per CCPA requirements, we will:
- Update the "Effective Date" and "Last Updated" dates
- Notify you of material changes via email or prominent website notice
- Provide prior notice before changes take effect
We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.
Contact Us
For privacy-related inquiries, to exercise your rights, or to file a complaint:
GIFT Connect Privacy Team
Email: privacy@gift-connect.org
General Inquiries: legal@gift-connect.org
Website: gift-connect.org/contact-us
California residents may also contact the California Privacy Protection Agency at cppa.ca.gov. EU residents may contact their local data protection authority.
See our Terms & Conditions for additional legal information.