Privacy Policy

1. Introduction

Fora ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform for creating and managing community events (the "Service"). By using our Service, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Information You Provide

• Account Information: Name, email address, profile photo, and authentication credentials via Clerk
• Profile Information: Organization details, sponsor information, contact details, social media handles
• Event Information: Event titles, descriptions, dates, locations, images, and attendee limits
• RSVP Information: Name and email when responding to events
• Communications: Messages, feedback, and support requests

2.2 Information Collected Automatically

• Usage Data: Pages visited, features used, time spent on pages, click patterns
• Device Information: IP address, browser type, operating system, device identifiers
• Location Data: Approximate location based on IP address, event locations you interact with
• Cookies and Tracking: Session cookies, authentication tokens, preferences

2.3 Third-Party Services

• Clerk Authentication: OAuth data from social login providers (Google, Apple, etc.)
• Mapbox: Location data for event mapping features
• Uploadthing: Images and files you upload

Note: Analytics integration to be added in future updates

3. How We Use Your Information

We use the collected information for the following purposes:

• Provide, maintain, and improve our Service
• Create and manage your account
• Enable event creation, discovery, and RSVP functionality
• Connect event organizers with potential sponsors
• Send event reminders and updates (with your consent)
• Respond to support requests and communicate with you
• Analyze usage patterns to improve user experience
• Detect and prevent fraud, abuse, or security issues
• Comply with legal obligations

4. Information Sharing and Disclosure

We share your information only in the following situations:

• Public Information: Event details marked as public are visible to all users
• Event Organizers: Your RSVP information is shared with event organizers
• Sponsor Connections: Contact information shared when you express sponsorship interest
• Service Providers: Third-party services that help us operate (under strict confidentiality)
• Legal Requirements: When required by law or to protect rights and safety
• Business Transfers: In connection with mergers, acquisitions, or asset sales
• With Consent: When you explicitly agree to sharing

We never sell your personal information to third parties.

5. Data Retention

We retain your information for as long as necessary to provide our Service and fulfill the purposes outlined in this policy:

• Account Information: Retained while your account is active
• Event Data: Retained for historical reference and analytics
• Communications: Retained for customer service purposes
• Legal Compliance: Retained as required by applicable laws

You may request deletion of your account and associated data at any time.

6. Your Rights and Choices

You have the following rights regarding your data:

• Access: Request a copy of your personal information
• Correction: Update or correct inaccurate information
• Deletion: Request deletion of your account and data
• Portability: Receive your data in a machine-readable format
• Opt-out: Unsubscribe from marketing communications
• Restriction: Request limited processing of your data
• Objection: Object to certain uses of your information

To exercise these rights, contact us at privacy@fora.social

7. Data Security

We implement appropriate technical and organizational measures to protect your information:

• Encryption in transit (HTTPS/TLS)
• Encryption at rest for sensitive data
• Regular security audits and updates
• Access controls and authentication
• Secure third-party services (SOC 2 compliant where applicable)

However, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for international transfers in compliance with applicable laws.

9. Children's Privacy

Our Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you become aware that a child has provided us with personal information, please contact us.

10. California Privacy Rights (CCPA)

California residents have additional rights under the California Consumer Privacy Act (CCPA):

• Right to know what personal information we collect, use, and share
• Right to delete personal information (with exceptions)
• Right to opt-out of the sale of personal information (we do not sell data)
• Right to non-discrimination for exercising privacy rights

11. European Privacy Rights (GDPR)

If you are in the European Economic Area (EEA), you have rights under the General Data Protection Regulation (GDPR):

• Legal basis for processing (legitimate interests, consent, contractual necessity)
• Right to lodge a complaint with supervisory authorities
• Right to withdraw consent at any time
• Enhanced data portability rights

12. Cookie Policy

We use cookies and similar technologies to:

• Keep you signed in
• Remember your preferences
• Analyze site traffic and usage
• Personalize content and features

You can control cookies through your browser settings, though some features may not function properly without them.

13. Third-Party Links

Our Service may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies.

14. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last Updated" date. For material changes, we will provide additional notice via email or through the Service.

15. Contact Information

For questions about this Privacy Policy or our privacy practices, please contact us: