Privacy Policy

Last updated: April 18, 2026

What We Do Not Collect

This is just as important as what we do collect:

• No payment information. We never ask for credit card numbers, bank accounts, or any financial credentials. Givingfolio does not process donations.
• No tracking pixels or ad networks. We do not sell, share, or monetize your data.
• No third-party analytics. We do not use Google Analytics or similar services.

What We Collect

• Account information: Your email address and a hashed password (bcrypt). We never store plaintext passwords.
• Donation records you enter: Charity name, amount, date, and frequency — voluntarily provided by you.
• Cause preferences: Categories you select to receive personalized recommendations.
• Session data: A session cookie to keep you logged in. It is HTTP-only, secure, and strictly first-party.

How We Use Your Data

• Display your donation history, charts, and impact metrics to you.
• Generate personalized charity recommendations based on your selected causes.
• Send password reset emails if you request one (via Mailgun).

Data Storage & Security

Your data is stored in a PostgreSQL database. Passwords are hashed with bcrypt. Sessions are signed and stored server-side. All traffic is encrypted via HTTPS.

Data Deletion

You can delete your account and all associated data at any time from your profile page. If you need help, contact us.

Changes to This Policy

If we make material changes, we will update this page and the "last updated" date above.

Contact

Questions? Reach out via our contact form.