Legal
Privacy Policy
Last updated: March 2026
What We Collect
We collect the minimum amount of information needed to run this campaign. Here is the exact list:
- ›Country of origin — derived from IP address headers at the time of your visit. We store the country name (e.g. "United States"), not your IP address.
- ›Donation amount — the amount you chose to donate, in cents.
- ›Donor sequence number — your position in the global donor count (e.g. donor #4,217). This is public by design.
- ›Referral code — if you arrived via a referral link, we record which donor referred you. This is a number, not a name.
- ›Email address — if Stripe collects it during checkout (which it may depending on your region or payment method), we store it to identify returning donors. We do not receive raw card data.
We do not collect: your full name, your IP address (only the derived country), browser fingerprints, device identifiers, or any information beyond what is listed above.
How We Use It
- ›Country data is aggregated and displayed on the public leaderboard on the home page. Individual country attribution is not shown per donor.
- ›Donation amounts are summed to display the total raised. Individual amounts are not published.
- ›Donor sequence numbers are shown on your personal thank-you page and in the ShareCard you can choose to share.
- ›Referral codes are used to display referral counts if we add that feature. No personal identity is attached.
We do not use your data for advertising, profiling, or any commercial purpose beyond operating this campaign.
Payment Processing
All payments are processed by Stripe, Inc. Stripe is a PCI-DSS Level 1 certified payment processor.
- ›We never see, transmit, or store your card number, CVV, or full billing address.
- ›Stripe may collect and retain payment data in accordance with their own privacy policy.
- ›If you have questions about how Stripe handles your payment data, contact Stripe directly at privacy@stripe.com.
Your Rights
Depending on where you are located, you may have the following rights regarding your personal data:
- ›Right of access — you can request a copy of the data we hold about you.
- ›Right to erasure — you can ask us to delete your donation record. Note: this removes your donor number from the internal database but the public counter is not decremented (it reflects real donation events).
- ›Right to data portability — we can provide your data in a machine-readable format (JSON).
- ›Right to object — you can object to our processing of your data.
- ›Right to lodge a complaint — EU/EEA residents may lodge a complaint with their national Data Protection Authority.
To exercise any of these rights, contact us at the address in the Contact section below. We will respond within 30 days.
Data Retention
- ›Donation records (amount, country, sequence number) are retained indefinitely for audit transparency purposes.
- ›If you request erasure, your specific record is deleted. Aggregated totals (global counter, country counts) are not affected.
- ›Redis cache entries expire independently of database records and may be cleared during infrastructure operations.
Third-Party Services
We use the following third-party services to operate this site. Each has its own privacy policy:
- ›Stripe — payment processing. stripe.com/privacy
- ›Neon — PostgreSQL database hosting (donor records). neon.tech/privacy
- ›Upstash — Redis cache (live counters). upstash.com/trust/privacy.pdf
- ›Vercel — application hosting and edge delivery. vercel.com/legal/privacy-policy
We do not sell, rent, or share your personal data with any other third party.
Contact
If you have questions about this policy, want to exercise your data rights, or just want to tell an AI that it handled your data improperly, reach out:
Email: pan@panhandle.lol
We will respond to privacy-related requests within 30 calendar days. For urgent erasure requests, include "GDPR Erasure Request" in the subject line.
This policy was last updated in March 2026.
← Back to campaign