Privacy Policy

1. Introduction

GrovLink (“GrovLink,” “we,” “us”) is a configurable mobile app platform for nonprofit organizations. GrovLink is operated by UpStart Productions. This Privacy Policy describes how we collect, use, disclose, and safeguard information when you use our marketing website (grovlink.com), the GrovLink admin experience, and mobile applications powered by GrovLink (collectively, the “Services”).

By using the Services, you agree to this Privacy Policy. If you do not agree, please do not use the Services.

2. Who is responsible for your information?

GrovLink operates the platform and infrastructure that stores data for our nonprofit customers. We are responsible for the security of data hosted on our systems and for processing it in accordance with this policy and our agreements with customers.

Nonprofit organizations that use GrovLink may collect and manage information about their own clients, volunteers, donors, and staff through the platform. Those organizations decide what to collect and how to use it for their programs. GrovLink processes that information to provide the Services, as directed by the customer.

3. Information we collect

We may collect:

• Account and contact data: name, email, organization name, role, and similar details when you create an account, book a demo, contact us, or subscribe to communications.
• Customer content: information nonprofit customers upload or configure in the admin (e.g., program descriptions, events, resources, forms, and related media).
• End-user app data: information entered or generated when individuals use a customer’s branded app (e.g., form submissions, preferences, or activity needed to operate features the customer enables).
• Technical and usage data: IP address, device type, browser or app version, diagnostic logs, and usage patterns to operate, secure, and improve the Services.

4. How we use information

We use information to:

• Provide, maintain, and improve the Services
• Authenticate users and prevent fraud or abuse
• Communicate about the Services, support requests, and important notices
• Analyze usage in aggregate to improve reliability and product experience
• Comply with law and enforce our terms

5. Data export

Customer organizations may request export of their organization’s data consistent with the features and support available on their plan. For export requests or questions, contact us at hello@grovlink.com.

6. Sharing and subprocessors

We do not sell your personal information. We may share information with vendors who help us run the Services (for example, hosting, authentication, email, analytics, or calendar scheduling), subject to confidentiality and data-processing obligations. We may also disclose information if required by law or to protect rights, safety, and security.

7. Security

We implement technical and organizational measures designed to protect information against unauthorized access, loss, or misuse. No method of transmission or storage is completely secure; we cannot guarantee absolute security.

8. Retention

We retain information for as long as needed to provide the Services, meet legal obligations, resolve disputes, and enforce agreements. Retention may vary by data type and customer relationship.

9. Your rights

Depending on where you live, you may have rights to access, correct, delete, or restrict certain processing of your personal information, or to object or port data. To exercise these rights, contact hello@grovlink.com. We may need to verify your request. If you interact with a nonprofit’s app, that organization may also hold information about you; you may contact them directly for program-specific requests.

10. Children’s privacy

GrovLink is not designed as a platform for collecting information from children. Our Services are intended for nonprofit organizations and their adult staff and supporters. If you believe we have collected information from a child inappropriately, please contact hello@grovlink.com and we will take appropriate steps.

11. International transfers

We may process information in the United States and other countries where we or our vendors operate. Where required, we use appropriate safeguards for cross-border transfers.

12. Cookies and similar technologies

Our website and Services may use cookies and similar technologies for essential operation, preferences, and analytics. You can control cookies through your browser settings; disabling them may limit some functionality.

13. Changes

We may update this Privacy Policy from time to time. We will post the revised policy on this page and update the “Last updated” date. Material changes may be communicated through the Services or by email where appropriate.

14. Contact

Questions about this Privacy Policy: hello@grovlink.com