Legal

Privacy Policy

Last updated: April 16, 2026

The short version: we don't see your donor list.

GiveTone is built so that donor names, donor email addresses, donor contact information, and giving history never reach our servers. Your mail-merge happens on your own computer, in your own tools. If the rest of this policy confuses you, remember that one sentence — the rest is about the small amount of data we do need from you, the account holder, to run the product.

1. Who this policy covers

This policy describes how GiveTone handles information about you — the person or nonprofit organization that signs up for a GiveTone account. It does not cover your donors, because GiveTone does not collect, store, or transmit donor-level data.

2. What we collect

To run the product, we collect the following information from account holders:

  • Account information: your email address, your password (stored as a hash — we never see the plain-text value), and your organization name.
  • Brand kit content: the logos, colors, mission statement, tone descriptors, and sample content you upload so we can generate on-brand communications.
  • Generated content: the letters, appeals, and other communications you create using GiveTone, stored so you can revisit and edit them later.
  • Billing information: handled by our payment processor, Stripe. We receive a subscription status and the last four digits of your card for reference. We do not see or store your full card number.
  • Usage metadata: which features you use and when, so we can detect bugs and improve the product. This is aggregate behavior data, not content.

3. What we explicitly do not collect

GiveTone's architecture prevents us from seeing the following, even if we wanted to:

  • Donor names, donor email addresses, donor mailing addresses, or donor phone numbers
  • Individual gift amounts, gift dates, or giving history
  • Your donor CRM records, lists, or exports
  • Merged, personalized copies of letters addressed to specific donors

When you use our mail-merge feature, GiveTone inserts placeholder tokens (for example, {{first_name}}) into your template. The actual substitution — where {{first_name}} becomes "Dear Jane," — happens entirely on your computer, in your email platform or word processor. The resulting personalized file is never transmitted to GiveTone.

4. How we use your information

  • To provide, operate, and improve GiveTone
  • To generate on-brand content from your brand kit and inputs
  • To authenticate you and protect your account
  • To process payments and manage your subscription
  • To contact you about product updates, billing, or support requests
  • To detect and prevent abuse, fraud, or security incidents

5. Sub-processors

GiveTone relies on a small number of trusted services to operate. Each processes specific data for specific purposes:

  • Supabase — authentication and database hosting. Stores your account and brand kit content.
  • Anthropic (Claude) — the AI model that generates communications from your brand kit and inputs. Your brand kit and prompt content are transmitted to Anthropic for inference. No donor data is ever sent to Anthropic, because we don't have any.
  • Stripe — payment processing. Handles your card details directly; we never see them.
  • Vercel — application hosting and delivery.

6. How long we keep your data

We retain your account data for as long as your account is active. If you delete your account, we remove your brand kits, generated content, and account information within 30 days, except where we are required by law to retain specific records (for example, billing records for tax purposes).

7. Your rights

You have the right to access, correct, or delete your account information at any time. You can do this directly in your dashboard or by emailing us at [email protected].

Because GiveTone does not hold donor-level data, we cannot fulfill data subject requests (access, deletion, correction) on behalf of individual donors. Those requests should be directed to the nonprofit organization that holds the donor relationship, which manages donor records in its own CRM or email platform.

8. Cookies

GiveTone uses a small number of strictly necessary cookies to keep you signed in and to run the application. We do not use advertising, marketing, or cross-site tracking cookies.

9. Security

Account data is encrypted in transit (TLS) and at rest. We use row-level security policies in our database so that one customer cannot access another customer's data. For more detail, see our Security page.

10. Changes to this policy

If we make material changes to this policy, we will notify account holders by email and update the "Last updated" date at the top of this page. Because GiveTone's zero-knowledge posture is a core product promise, we will flag any change that expands the data we collect as a material change.

11. Contact us

Questions about this policy or our practices? Email [email protected] or visit our Contact page.