Privacy Policy
Noble Trinity Media Group ("Noble Trinity Media," "we," "us," or "our") operates the You2Funds platform, accessible at you2funds.com and related subdomains (the "Platform"). This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you use the Platform.
By creating an account or using the Platform, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with these practices, please do not use the Platform.
1. Information We Collect
1.1 Information You Provide Directly
When you register for and use You2Funds, you may provide us with the following categories of personal information:
1.2 Information Collected Automatically
When you use the Platform, we automatically collect certain technical information, including usage data (pages visited, features used, search queries), device and browser information (IP address, browser type, operating system), session data (login timestamps, session duration), and session cookies to maintain your authenticated state. We do not use third-party advertising cookies or cross-site tracking technologies.
1.3 Information from Third-Party Sources
We import publicly available federal grant opportunity data from Grants.gov on a weekly basis. This data is not personal information. We receive subscription and payment status information from Stripe when you subscribe to a paid plan or update your payment method.
2. How We Use Your Information
We use the information we collect for the following purposes: providing and personalizing the Platform; sending deadline reminders, application status updates, and account notifications; detecting and preventing unauthorized access and fraudulent activity; analyzing usage patterns to improve the Platform (using aggregated, de-identified data wherever possible); complying with applicable laws; and processing payments and managing subscriptions through Stripe.
3. How We Share Your Information
We do not sell your personal information. We do not share your personal information with third parties for their own marketing purposes. We share information only with trusted service providers who assist us in operating the Platform:
| Provider | Purpose | Data Shared |
|---|---|---|
| Railway | Cloud infrastructure and database hosting | All Platform data stored in Railway-managed MySQL |
| Manus | Authentication, AI services, file storage | Account identifiers, AI prompts, uploaded documents |
| Stripe, Inc. | Payment processing | Name, email, subscription details |
| Amazon Web Services | Document file storage (via Manus S3) | Uploaded document files |
We may also disclose information if required by law, in connection with a business transfer (with prior notice to you), or with your explicit consent.
4. Data Retention
We retain your personal information for as long as your account is active or as needed to provide the Platform's services. Account and profile data is retained for 90 days following account deletion. Application content and documents are retained until you delete them or close your account. AI chat history is automatically purged after 12 months. Payment records are retained for 7 years in accordance with financial recordkeeping requirements. Usage and log data is retained for 90 days.
5. Data Security
We implement industry-standard technical and organizational measures to protect your personal information. All data in transit is encrypted using TLS 1.2 or higher. Database connections enforce SSL. Database storage is encrypted at rest. Document files are stored in encrypted S3 buckets with access controlled by pre-signed URLs that expire after one hour. Session tokens are cryptographically signed and transmitted only over HTTPS via HttpOnly, Secure, SameSite-protected cookies. Payment data is handled exclusively by Stripe, which maintains PCI DSS Level 1 compliance.
While we take these measures seriously, no method of transmission over the internet is 100% secure. We will promptly notify affected users in the event of a data breach that poses a risk to your rights and freedoms, as required by applicable law.
6. Your Rights and Choices
You have the right to access, correct, or delete your personal information; request data portability; and opt out of non-essential email communications via your account Settings. California residents have additional rights under the CCPA, including the right to know what personal information is collected and the right to opt out of the sale of personal information. We do not sell personal information.
To exercise any of these rights, please submit a request through the in-app Help & Feedback system or contact us at [email protected].
7. Children's Privacy
The Platform is not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a child, please contact us immediately.
8. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. When we make material changes, we will notify you by email and by posting a prominent notice on the Platform at least 14 days before the changes take effect. Your continued use of the Platform after the effective date constitutes your acceptance of the updated terms.
9. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy, please contact us:
Noble Trinity Media Group
Attn: Privacy
Email: [email protected]
In-app: Help & Feedback → Privacy Request