Privacy Policy

This Privacy Policy was updated on November 6th, 2023.


Xip, Inc. (“Xip,” “we,” “our,” or “us”) values the privacy of individuals who use the Xip website, services, and mobile applications (collectively, the “Service”). This Privacy Policy (the “Policy”) describes the information that we gather from visitors, users, and others who access or use the Service (“Users,” “you,” or “your”), how we use and disclose such information, and the steps we take to protect such information. By using the Service, you consent to the privacy practices described in this Policy. Capitalized terms not defined herein are defined in the Xip Terms of Service.

1. Information We Collect

Personal Information 

When you create an account with our Service or use the Service to make Requests or provide Responses, we will ask you to provide us with certain personally identifiable information that can be used to contact or identify you (“Personal Information”). Personal Information may include:

Information We Receive from Your Use of the Service

We collect information about how you use the Service, such as when you open one of our emails or view and interact with our ads and content (collectively, “Usage Information”). Usage Information includes:

Information Third Parties Provide About You

We may, from time to time, supplement the information we collect about you online with outside records from third parties in order to enhance our ability to serve you, to tailor the Service to you, and to offer you opportunities to purchase products or services that we believe may be of interest to you. These third party sources include:

Payment Information

We use Stripe as our payments processor to process payments from Users and Creators related to the Interactions concluded on our Service. By sending a Request or Response on our Service, submitting payment information, and/or otherwise agreeing to this Privacy Policy you authorize: (a) Xip to access and use this information in order to facilitate the project through the Service and (b) Stripe to collect, use, retain, and disclose your personal data in accordance with Stripe’s privacy policy, located at https://stripe.com/privacy.

Anonymous or Aggregated Information. We de-identify or aggregate data we receive and may use and disclose it for any business purpose.

2. How We Use Your Information 

Provide, Maintain, and Improve the Service

We may use your information to:

Sharing Your Information

‍If you use the Service, you are authorizing us to share information:

Nothing herein restricts the sharing of aggregated or anonymized information, which may be shared with third parties without your consent. This Policy in no way restricts or limits our collection and use of aggregate or de-identified information.

3. How We Protect Your Information

We take measures designed to protect Personal Information in an effort to prevent loss, misuse, unauthorized access, disclosure, alteration, and destruction, such as the use of firewalls, password protection, encryption, and other security measures. We will only keep your Personal Information for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. We may also retain and use your Personal Information for as long as necessary to resolve disputes and/or enforce our rights. Where we rely on your consent to process your Personal Information, you have the right to decline consent and/or if provided, to withdraw consent at any time. This will not affect the lawfulness of processing prior to the withdrawal of your consent. Additionally, in some circumstances you can ask us to delete your Personal Information by emailing us at the email address below.

We limit access to Personal Information to our employees, agents, contractors, and other third parties who have a business need to know. They will only process Personal Information on our instructions and they are subject to a duty of confidentiality. We have implemented procedures to handle any suspected Personal Information breach and will notify you and any applicable regulator of a breach as legally required. 

Please be aware, however, that despite our efforts, no security measures are perfect or impenetrable and no method of data transmission can be guaranteed against any interception or other type of misuse. To protect the confidentiality of information maintained in your account, you must keep your password confidential and not disclose it to any other person. You are responsible for all uses of the Service by any person using your password. Please notify us immediately by contacting us as set forth in the “Contact” section below if you believe your password has been misused or if you suspect a security breach.

4. Cookies and Tracking Technologies

Cookies and Tracking

When you visit our Service, we and third-party advertising and analytics companies and other third party business partners may use a variety of tracking and other technologies that automatically or passively collect certain information whenever you access or use the Service or otherwise interact with us or our content (“Usage Information”).

We use these technologies for a number of reasons, including to save your preferences for future visits to our Service, keep you logged in between visits, and to provide you with improved services as well as to re-target advertisements related to our Service to you. The information we collect may include (but is not limited to):

- date and time of your visit to our Service;
- areas you visit within our Service;
- links that you click on within our Service;
- may collect websites or advertisements you visit before or after visiting our Service;
- may collect terms you entered into a search engine that lead you to our Service;
- IP address, mobile device identifier, or other unique identifier and usage information for the device used to access our Service;
- device and connection information, such as browser type and version, operating system, and platform; and
- whether an email message we sent was opened and whether a link in the email message was clicked.

The methods that may be used to collect Usage Information include the following:

A cookie is a data file placed on a device when it is used to visit the Service or otherwise access our content. Certain web browsers and certain browser add-ons, such as Adobe Flash, may provide additional local data storage mechanisms that are used in a manner similar to cookies, and some of the content included on our Site may make use of this local storage. To get information about Flash and Adobe’s privacy choices from Adobe, click here. To get information about cookies from All About Cookies.org, click here. Cookies, Flash cookies, and other local storage devices may be used for a variety of purposes (for example, to identify your device when you revisit our Site, to recall your authentication information, to store information related to your navigation throughout our Site, or to enable certain features on our Site). Some cookies are essential to the functioning of the Site, and, without them, some features and services you have requested cannot be provided. If you disable cookies, adjust privacy settings on your device, restrict local storage, or otherwise limit these technologies, you may not be able to use some of our Site features.

Web Beacons. Small graphic images or other web programming code called web beacons (also known as “pixels”, “1x1 GIFs” or “clear GIFs”) may be included in our web pages and email messages. Web beacons may not be visible to you. Web beacons or similar technologies may be used for a number of purposes, including to count visitors to the Site, to monitor how users navigate the Site, to count how many email messages we sent were opened, and to count whether a link in an email message we sent was clicked.

Embedded Scripts. An embedded script is a programming code that is designed to collect information about your interactions with the Site, such as the links you click on. The code is temporarily downloaded onto your device from our server or a third party service provider, is active only while you are connected to the Service, and is deactivated or deleted after you are no longer connected.

Other Technologies. We may also use other technologies that collect similar information for security and fraud detection purposes.

5. Online Communication

When you communicate with us online, through on-site chat, email, or other services, third party vendors receive and store these communications on our behalf.

6. International Transfers

European Users

If you choose to use the Service from the EU, the UK, Switzerland, or other regions of the world with laws governing data collection and use that may differ from U.S. law, please note that you are transferring your Personal Information outside of those regions to the U.S. for storage and processing. By providing any information, including Personal Information, on or to the Service, you consent to such transfer, storage, and processing.

As described in this Policy, we may share Personal Information with third parties and may be required to disclose information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements. 

The legal grounds for our processing your Personal Information for the purposes in this Policy are as follows:

Other International Transfers

If you are located outside the U.S., the EU, the UK, or Switzerland, and you choose to provide Personal Information to us, we may transfer your Personal Information to the U.S. and process it there (or any other country where we operate or may have co-locations). When you provide Personal Information, it may be sent to servers located in the U.S. and other countries around the world. If you reside or are located within the EU, the UK, or Switzerland and such transfers occur, we take appropriate steps in an effort to provide the same level of protection for the processing carried out in any such countries as you would have within the EU, the UK, or Switzerland to the extent feasible under applicable law.

7. California Privacy Rights

California law permits California residents to request and obtain from us once a year, free of charge, a list of the third parties to whom we have disclosed their personal information (if any) for their direct marketing purposes in the prior calendar year, as well as the type of personal information disclosed to those third parties. See the “Contact” section for where to send such requests. We do not share your Personal Information with third parties for their own direct marketing purposes without your prior consent, which you may withhold or withdraw. 

Effective January 1, 2020, the California Consumer Privacy Act of 2018 (the “CCPA”) allows California residents, upon a verifiable consumer request, to request that a business that collects consumers’ personal information (as defined in the CCPA) to give consumers access, in a portable and (if technically feasible) readily usable form, to the specific pieces and categories of personal information that the business has collected about the consumer, the categories of sources for that information, the business or commercial purposes for collecting the information, and the categories of third parties with which the information was shared. California residents also have the right to submit a request for deletion of information under certain circumstances. See the “Contact” section for where to send such requests. Consistent with California law, if you choose to exercise your rights, we will not charge you different prices or provide different quality of services unless those differences are related to your information. Please note that you must verify your identity and request before further action is taken. As a part of this process, government identification may be required. Consistent with California law, you may designate an authorized agent to make a request on your behalf. In order to designate an authorized agent to make a request on your behalf, you must provide a valid power of attorney, the requester’s valid government issued identification, and the authorized agent’s valid government issued identification.

We do not sell personal information to third parties. We do allow certain third parties to collect and share Personal Information for the business purposes described in this Policy.

8. Children’s Privacy

The Service is not directed to children under 18 and we do not knowingly collect Personal Information from children under 18. If we learn that we have collected Personal Information of a child under 18, we will take steps to delete such information from our files as soon as possible.

9. Accessing and Modifying Your Information

If you have an account on the Service, you can access and modify your Personal Information through your account or by emailing us at the email address below. We will take steps to delete or de-identify your Personal Information as soon as is practicable, but we may not be able to modify or delete your Personal Information in all circumstances, and some information may remain in archived/backup copies for our records and as otherwise required by law.

10. Opt-out of Personalized Advertising

We do not sell your personal information to third parties, but if you do not wish for our third-party partners to provide you with personalized advertising based on your browsing activity and interest, you may opt-out of receiving such advertisements on our websites by contacting us at support@xip.co.

Upon request, we will provide you with information about whether we hold any of your Personal Information. You may also exercise your preferences in the following manner:

Please note that even if you choose to remove your information or “opt out,” you may continue to see advertisements while you are browsing online; however, those advertisements will no longer be tailored to your interests. Additionally, information regarding your usage may still be collected for research, analytics or internal operations purposes.

We do not honor “Do Not Track” signals from your browser.

You may “opt out” of receiving marketing or promotional emails from us by following the instructions in those emails or by emailing us at the email address below. If you opt out, we may still send you non-promotional emails, such as emails about your account or our ongoing business relations (i.e. account verification, transactional communications, changes/updates to features of the Service, and technical and security notices).

11. Changes and Updates to the Policy

We reserve the right to change the provisions of this Policy at any time. Please revisit this page periodically to stay aware of any changes. If we modify this Policy, we will make it available through the Service and indicate the date of the latest revision. Your continued use of the Service after the revised Policy has become effective indicates that you have read, understood, and agreed to the current version of this Policy. 

12. Contact

Please contact us with any questions regarding this Policy at support@xip.co.