GNOSIS CLUB

Privacy Policy

Last updated: March 27, 2026

1. Introduction

Gnosis Club ("we," "us," or "our") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website at gnosisclub.com and use our services.

2. Information We Collect

We may collect the following types of personal information:

  • Identity Data: First name, last name, date of birth, and headshot photograph.
  • Contact Data: Email address, phone number, and mailing address.
  • Professional Data: Company name, job title, industry, and LinkedIn profile.
  • Payment Data: Payment information processed securely through Stripe or PayPal. We do not store your full credit card details on our servers.
  • Application Data: Membership tier selection, referral source, and personal interests.
  • Technical Data: IP address, browser type, device information, and cookies used for authentication and site functionality.
  • Social Login Data: When you sign in using a third-party provider such as Facebook or Google, we receive your name, email address, profile picture, and a unique user identifier from that provider. We do not receive or store your social media password.

3. How We Use Your Information

We use your personal data to:

  • Process and evaluate your membership application.
  • Process payments for membership initiation fees and dues.
  • Communicate with you about your application status and membership.
  • Provide and maintain our services, including the member portal.
  • Send administrative notifications related to your account.
  • Comply with legal obligations and enforce our terms.

4. Third-Party Services

We use the following third-party services to operate our platform:

  • Clerk — Authentication and user account management.
  • Stripe — Secure payment processing for credit/debit card transactions.
  • PayPal — Alternative payment processing.
  • Resend — Transactional email delivery.

Each third-party provider has their own privacy policy governing how they handle your data. We encourage you to review their policies.

These service providers act as data processors on our behalf and are contractually obligated to process your data only for the purposes we specify, to maintain appropriate security measures, and to not use your data for their own independent purposes. All data processing by these providers occurs within the United States.

5. Data Storage & Security

Your data is stored on secure servers and encrypted in transit using TLS/SSL. Payment information is handled entirely by our payment processors (Stripe and PayPal) and is never stored on our servers. We implement industry-standard security measures to protect your personal data from unauthorized access, alteration, or destruction.

6. Data Retention

We retain your personal data for as long as your membership is active or as needed to provide you with our services. If your application is rejected or you cancel your membership, we may retain certain data for a reasonable period to comply with legal obligations, resolve disputes, and enforce our agreements.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate data.
  • Request deletion of your data (see our Data Deletion page).
  • Object to or restrict the processing of your data.
  • Request data portability.
  • Withdraw consent at any time where processing is based on consent.

8. Cookies

We use essential cookies for authentication and session management through Clerk. These cookies are necessary for the site to function and cannot be disabled. We do not use tracking or advertising cookies.

9. Children's Privacy

Our services are not intended for individuals under the age of 18. We do not knowingly collect personal data from children. If we become aware that we have collected data from a child, we will take steps to delete it promptly.

10. Law Enforcement & Government Requests

We are committed to protecting your privacy while complying with applicable laws. If we receive a request from a public authority or law enforcement agency for your personal data, we follow these principles:

  • Legal Review: Every request is reviewed for legality and validity before any data is disclosed. We verify that the request has a proper legal basis and comes from an authorized entity.
  • Right to Challenge: We will challenge requests that we believe are unlawful, overbroad, or otherwise inappropriate, including through legal proceedings where warranted.
  • Data Minimization: When we are legally required to disclose data, we limit disclosure to the minimum information necessary to satisfy the request.
  • Documentation: We maintain records of all government and law enforcement data requests, our responses, and the legal reasoning involved.
  • User Notification: Where legally permitted, we will notify affected users of any request for their personal data before disclosure.

11. International Data Transfers

Your personal data is stored and processed in the United States. By using our services, you consent to the transfer of your data to the United States. We ensure that any international transfers of personal data are conducted in compliance with applicable data protection laws and that appropriate safeguards are in place.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy on this page with a revised "Last updated" date. Your continued use of our services after changes are posted constitutes your acceptance of the updated policy.

13. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data rights, please contact us at press@gnosisclub.com.