Round Funded Privacy Policy

This Privacy Policy explains what data Round Funded ("we", "us") collects, how we use it, and the choices you have. By using the Service at https://www.roundfunded.com, you consent to the practices described here.

1. Data We Collect

We collect the following categories of personal data:

Account data — name, email address, password (hashed), authentication tokens, account preferences.

Payment data — handled entirely by our payment processor Polar (https://polar.sh). We do not store credit card numbers. We receive a limited record of your purchase (plan, amount, status, customer ID).

Connected email accounts — if you connect Gmail, Outlook, or another email provider, we store OAuth tokens to send mail and read replies on your behalf. We do not access your inbox beyond what is required to detect replies to outreach you sent through Round Funded.

Outreach data — emails you send through the Service, recipient interactions (opens, clicks, replies), notes you add to your pipeline.

Usage data — pages visited, features used, IP address, browser, device type, language, country (derived from IP).

Cookies — see our Cookie Policy.

2. Why We Collect It

Provide and operate the Service (search, outreach, CRM).
Authenticate you and secure your account.
Process payments through Polar.
Improve the product (analytics on what users do).
Communicate with you about your account, billing, and product updates.
Comply with legal obligations.

We do not sell your personal data to third parties.

3. Third Parties That Process Your Data

We use the following processors to operate the Service:

Supabase — authentication, account database, application data storage.
Polar — payment processing and merchant-of-record (handles VAT and sales tax).
Resend — transactional email delivery (welcome emails, password resets, receipts).
PostHog — product analytics, session replay (input masking for passwords enabled).
Vercel — hosting, web analytics, and edge functions.
Google / Microsoft — if you connect your Gmail or Outlook account, OAuth tokens flow through these providers per their terms.

Each processor has its own privacy practices. We use them under data processing agreements where required.

4. International Transfers

Round Funded is operated globally. Your data may be processed in the United States, the European Union, or other regions where our processors operate. We rely on standard contractual clauses and equivalent legal mechanisms where applicable.

5. Your Rights

Depending on where you live, you may have the right to:

Access the personal data we hold about you.
Correct inaccurate or incomplete data.
Delete your data (subject to legal retention requirements).
Export your data in a portable format.
Object to or restrict certain processing.
Withdraw consent for processing based on consent.

To exercise any of these rights, email support@roundfunded.com from the address associated with your account.

6. Data Retention

Active accounts — we retain your data while your account is active.
Deleted accounts — personal data is removed within 30 days of account deletion. Backups are purged on the standard backup rotation (typically within 90 days).
Payment records — retained for the period required by applicable tax and accounting law (typically 7 years).
Aggregated analytics — retained indefinitely in non-identifiable form.

7. Security

We protect your data with industry-standard measures:

Encryption in transit (HTTPS/TLS) for all data.
Encryption at rest for sensitive fields including OAuth tokens.
Role-based access controls and audit logging.
Regular security reviews and dependency updates.

No system is 100% secure. If we become aware of a breach affecting your data, we will notify you and the relevant authorities as required by law.

8. Children

Round Funded is not directed at children under 16. We do not knowingly collect personal data from anyone under 16. If you believe a child has provided data to us, please email support@roundfunded.com and we will delete it.

9. Cookies and Tracking

See our Cookie Policy for details on cookies, analytics, and tracking.

10. Changes to This Policy

We may update this Privacy Policy from time to time. The current version is always at https://www.roundfunded.com/legal/privacy-policy. Material changes will be communicated by email or in-product notice.

11. Contact

Questions about this Privacy Policy or your data? Email support@roundfunded.com.