Privacy Policy

Last updated: April 14, 2026

FundFinder ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and protect information when you use the FundFinder mobile application and website (collectively, the "Service").

1. Information We Collect

We collect the following information when you create an account and use the Service:

• Account information: your full name, email address, and a securely hashed password.
• Profile information: your professional type (e.g. small business, nonprofit, student), country, and state or province. This information is used to match you with relevant funding opportunities.
• Usage data: grants you save, searches you perform, and filters you apply.
• Push notification token: a device identifier issued by Apple or Google that allows us to send you grant deadline reminders and new opportunity alerts. This is only collected if you grant notification permission.
• Subscription status: your active subscription tier, managed through Apple In-App Purchases and RevenueCat. We do not store payment card details.

We do not collect precise location data, contacts, photos, or any other sensitive device information.

2. How We Use Your Information

• To create and manage your account.
• To surface funding opportunities that match your profile.
• To save your grant bookmarks and search preferences across devices.
• To send push notifications about deadlines and new grants, if you have opted in.
• To process and verify your subscription through Apple and RevenueCat.
• To improve the accuracy and relevance of grant data and AI-generated summaries.

3. Third-Party Services

We use the following third-party services to operate the Service:

• Apple In-App Purchases / App Store: subscription billing. Apple's privacy policy governs payment processing.
• RevenueCat: subscription management and entitlement verification. See revenuecat.com/privacy.
• OpenAI: we send anonymized grant text to OpenAI's API to generate concise, plain-language summaries of funding opportunities. No personal account data is sent. See openai.com/policies/privacy-policy.
• Grants.gov: we fetch publicly available US federal grant data from the Grants.gov API. This is read-only and does not involve any personal data.
• Replit: our infrastructure and database host. See replit.com/privacy.

4. Data Storage and Security

Your data is stored in a PostgreSQL database hosted on Replit's infrastructure. Passwords are stored as one-way bcrypt hashes and are never readable. We use HTTPS for all data in transit. We take reasonable technical and organizational measures to protect your information, but no system is completely secure.

5. Data Retention and Deletion

We retain your account data for as long as your account is active. If you wish to delete your account and all associated data, please contact us at the address below. We will delete your data within 30 days of your request, except where retention is required by law.

6. Your Rights

Depending on your jurisdiction, you may have the right to:

• Access the personal data we hold about you.
• Correct inaccurate data.
• Request deletion of your data.
• Withdraw consent for push notifications at any time through your device settings.

To exercise any of these rights, contact us at support@fundfinder.fund.

7. Children's Privacy

The Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have inadvertently collected such information, please contact us and we will delete it promptly.

8. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of this page. Continued use of the Service after changes are posted constitutes your acceptance of the revised policy.

9. Contact Us

If you have any questions about this Privacy Policy, please contact us at:
support@fundfinder.fund