Legal Center

Privacy Policy

Last updated April 28, 2026

UGIG LLC. DOING BUSINESS AS CAMPAID

Privacy Policy

Last Updated: April 23, 2026 · Applies to campaid.net and all Campaid services

Non-Affiliation Notice: Campaid and Ugig LLC are independent, privately operated platforms. We are not affiliated with, endorsed by, or officially partnered with the University of Alabama at Birmingham or any other educational institution.

1. Information We Collect

Information you provide directly

We collect information you provide directly to us, including: name, email address, phone number, institutional (.edu) email address, date of birth (required for age verification and COPPA compliance), password (stored as a bcrypt hash — never in plain text), profile photo, and any content you post or submit through the Services.

Information collected automatically

We automatically collect certain information when you use our Services: IP address, browser type, device identifiers, pages viewed, timestamps, and referring URLs. We use cookies and similar tracking technologies (see Section 7 and the Cookie Policy).

Information from third-party services

We receive information from third-party services including Stripe (payment processing status, Connect account status), Google Analytics GA4 (aggregate usage statistics), and Google Maps (location data you enter on listings and task posts). We do not receive raw payment card numbers from Stripe — Stripe processes card data directly.

2. How We Use Your Information

  • To provide, operate, and improve Campaid services.
  • To process payments and facilitate transactions between Hirers and Taskers via Stripe Connect.
  • To verify your identity, age, and student status.
  • To enforce age-based product gates: all platform features require age 18+. Date of birth is used to enforce this gate and to demonstrate COPPA compliance.
  • To send transactional emails via Resend and SMS notifications via Twilio (once enabled) related to your account, transactions, and platform activity.
  • To detect and prevent fraud, abuse, and security threats.
  • Automated message scanning: All in-platform messages (listing messages, offer-thread messages, and direct conversations) are scanned in real time for off-platform payment patterns (Venmo, CashApp, Zelle, PayPal handles; phone-number formats; fraud-adjacent keywords). Detection triggers an inline warning to both parties, an administrative alert with a deep-link to the conversation, and a flag on the account(s) involved. We do not scan messages for advertising purposes and do not share message content with advertising networks.
  • Automated listing risk scoring: Every new ticket and marketplace listing is automatically assigned a risk score at creation based on account age, prior listing and dispute history, and price relative to category norms. Listings exceeding the high-risk threshold may be suppressed or removed pending review; appeals are available via support@campaid.net.
  • To comply with legal obligations, including IRS 1099-K reporting via Stripe.
  • For aggregate, anonymized analytics and platform improvement via Google Analytics GA4.

3. How We Share Your Information

  • With other users: Your public profile, name, and task/listing details are visible to other Campaid users. Your date of birth and contact information are not shared with other users.
  • With service providers (subprocessors): Stripe (payments and 1099-K reporting), Supabase (database, auth, storage, realtime), Vercel (hosting), Resend (email delivery), Google Analytics GA4 (analytics), Google Maps (location), Sentry (error monitoring — receives error telemetry and entity identifiers), Twilio (SMS, once enabled), Checkr (background checks, once contracted), Microsoft 365 / OneDrive / SharePoint / Teams (internal workspace — limited exposure to customer personal data). A full, current list of subprocessors is available on request. Introduction of a new subprocessor handling personal data will be reflected in a Privacy Policy update with advance notice for material additions.
  • For legal compliance: We may disclose information if required by law, court order, governmental authority, or to protect the rights, property, or safety of Campaid, its users, or the public.
  • Business transfers: In connection with a merger, acquisition, or sale of assets, your data may be transferred. We will notify you before your data is transferred and becomes subject to a different privacy policy.
  • We do not sell your personal information to third parties.

4. Data Storage and Infrastructure

Your data is stored and processed using the following infrastructure providers, all hosted in the United States:

  • Supabase (PostgreSQL): All account data, user profiles, task records, transaction history, and platform state. Row-level security is enforced on all tables containing user data.
  • Supabase Auth: User authentication, session management, and credential storage. Passwords stored as bcrypt hashes; never in plain text.
  • Supabase Storage: User-uploaded files (profile photos, listing images). Access controls and signed URLs limit access to authorized parties.
  • Supabase Realtime: Real-time messaging and notifications on authenticated subscriptions.
  • Vercel: Application hosted on Vercel's edge network. Processes HTTP requests including IP addresses and request metadata.
  • Resend: Transactional and notification emails. Processes recipient addresses, email content, and delivery status.
  • Stripe Connect: Payment card data collected and processed directly by Stripe (PCI-DSS Level 1); Campaid does not store card numbers.

5. Data Retention

  • We retain your account information for as long as your account is active or as needed to provide services.
  • Transaction records are retained for a minimum of seven (7) years for tax and legal compliance.
  • When an account is deleted or banned, a point-in-time user archive is produced for legal and audit purposes. For archived accounts with no financial history (no Stripe transactions, no completed tasks, no payouts), personally identifiable information is purged no later than thirty (30) days after deletion, except where retention is required by law or to preserve evidence of an open dispute, chargeback, fraud investigation, or legal hold.
  • You may request deletion of your account by contacting support@campaid.net. Certain data may be retained where legally required, as described above.

6. Your Rights and Choices

Regardless of your jurisdiction, Campaid honors reasonable user requests to:

  • Access and correction: Update your account information at any time through your profile settings, or request a machine-readable export of your personal information by emailing support@campaid.net.
  • Deletion: Request deletion of your account and associated data. Requests are fulfilled within thirty (30) days except where retention is legally required; we will disclose the reason and duration for any retained data.
  • Email communications: Unsubscribe from marketing and cadence emails at any time via the unsubscribe link. Transactional emails (account activity, payment notifications, dispute updates) cannot be disabled while your account is active.
  • California residents (CCPA): Right to know, request deletion, and opt out of sale (we do not sell data).
  • EU/EEA residents (GDPR): Rights of access, rectification, erasure, restriction, portability, and objection. Contact support@campaid.net.

7. Cookies and Tracking

  • We use cookies and similar tracking technologies including: session cookies (required for login via Supabase Auth), Stripe payment widgets, Google Analytics GA4 tracking, and Google Maps embeds.
  • Control cookie preferences through our Cookie Consent banner or your browser settings. Disabling essential cookies (Supabase Auth session, Stripe) will prevent core platform functionality.
  • Sentry session replay may capture a redacted recording of your browser session for debugging purposes. This data is not used for advertising and is retained only for the duration of the active Sentry issue.
  • See the Cookie Policy at campaid.net/legal-center for the full enumeration of cookies and tracking technologies.

8. Security

  • Industry-standard security measures: HTTPS/TLS 1.2+ encryption (Vercel), bcrypt password hashing (Supabase Auth), row-level security on all user data tables, rate limiting on authentication and money-movement endpoints, hardened single-use email confirmation tokens, passkey-based two-factor authentication for administrator accounts.
  • Centralized error monitoring through Sentry with alerting to administrative email and internal Microsoft Teams. Sentry receives error telemetry and entity identifiers but does not receive full request bodies or credentials.
  • Kill-switch capabilities: maintenance mode, payment freeze, and listing freeze — activated by administrators in response to incidents.
  • No method of transmission over the internet is 100% secure. We cannot guarantee absolute security but are committed to industry best practices.

9. Children's Privacy

  • Campaid requires all users to be at least eighteen (18) years of age. No person under eighteen (18) may create, own, or use a Campaid account. We do not knowingly collect personal information from minors.
  • For COPPA purposes, Campaid is not directed to children under the age of thirteen (13). If we become aware that we have collected personal information from a child under thirteen (13), we will delete that information as promptly as possible. If you believe a child under thirteen has provided information to Campaid, contact support@campaid.net.

10. International Transfers and Jurisdiction

Campaid is a United States platform. We process and store personal information in the United States on behalf of Ugig LLC, an Alabama limited liability company. If you access Campaid from outside the United States, you consent to the transfer and processing of your personal information in the United States, which may have different data protection laws than your home jurisdiction.

11. Changes to This Policy

  • We may update this Privacy Policy periodically. Material changes will be notified via email (through Resend) or a prominent notice on the platform, no fewer than thirty (30) days before the change takes effect.
  • Your continued use of Campaid after changes take effect constitutes acceptance of the updated policy.

12. Contact Us

Ugig LLC. d/b/a Campaid

1502 12th St S, Birmingham, AL 35205

Email: support@campaid.net · Phone: (470) 899-8989

Questions? Email support@campaid.net

Privacy Policy — Campaid