What we collect, and what we don't.

By accessing the Site or using the Platform, you agree to the handling of personal information described here. This Policy is part of, and should be read with, our Terms of Service and Cookie Policy, together with the Data Processing Addendum attached to each customer subscription.

Who we are

Unplanned Club is an Employee Connection Platform — a private social network that your employer deploys for the people who work there. Two relationships shape how data is handled:

• On the Site (unplannedclub.com): Unplanned Club is the data "controller." We decide what to collect and why.
• On the Platform (app.unplannedclub.com): your employer is the controller of the workspace data; Unplanned Club acts as the "processor" under a Data Processing Addendum. In plain terms: your employer decides who joins the workspace and what the workspace looks like; we run the service for them.

What we collect

When you read this website

Browsing pages on unplannedclub.com is anonymous. We do not place advertising cookies, do not load third-party analytics that fingerprint you, and do not collect your name, email, or phone number from the act of visiting. Like every web server, we keep short-lived request logs (timestamp, IP address, user agent, requested URL, response status) for security, abuse prevention, and debugging. Those logs are not joined to an identity unless one is provided through a form below.

When you send us a message

The Site has a small number of forms — request a demo, contact sales, contact support, apply to a role, ask about partnership. When you submit one, we receive only what you typed: name, work email, company, role, message, and (for demos) company size and a mobile number. We also record the submission time and the IP that sent it, which we use to rate-limit abuse. We never silently collect a form field you did not fill in.

When you use the Platform

To run the workspace product, we process:

• Account and profile information — your name, work email, photo, role or title, the things you choose to share in your profile (interests, pronouns, bio, location).
• Content you create — posts, photos, videos, voice notes, comments, reactions, messages, club descriptions, meetup RSVPs, poll answers, Riff responses, two-truths-and-a-lie entries.
• Connections and activity — who you follow, which clubs you join, which meetups you RSVP to, which Riff activities you've engaged with, and how you've interacted with content (reactions, opens, replies).
• Communications — direct messages and group chats. We store these so they can be delivered and re-read. We do not read them.
• Device and technical data — IP address, device type, operating system, browser, app version, language, time zone, push-notification tokens.
• Authentication data — credentials, session cookies, SSO claims if your employer uses single sign-on (Okta, Google Workspace, Microsoft Entra, etc.).

From your employer

When your company joins Unplanned Club, your employer or its identity provider sends us the directory information needed to make you a member of the workspace: name, work email, employee ID, department or office (where shared), and start date. Your employer is the source of that data and is responsible for keeping it accurate.

Automatically, for safety and reliability

We generate operational logs (error traces, performance traces, security events, abuse signals). These are retained on short windows and used for incident response, fraud prevention, and keeping the service healthy.

How we use what we collect

• To run the service — show you your feed, deliver your messages, surface relevant clubs and meetups, send notifications you've asked for, keep you signed in.
• To make the feed feel like yours — rank posts, recommend clubs, suggest meetups, and surface Riff prompts using signals from your own stated interests and activity inside your workspace. Recommendations never cross workspaces.
• To keep the space safe — detect spam, harassment, abuse, impersonation, and platform misuse, and enforce our Acceptable Use Policy.
• To support and respond to you — answer support tickets, investigate bugs, send service-related email about your account.
• To improve the product — using aggregated or de-identified usage data (for example, "how many workspaces use Meetups in a typical week"). We do not use the content of your posts, comments, or messages to train shared models that benefit other customers.
• To meet legal obligations — tax, accounting, regulatory, fraud response, and lawful requests.

Who can see what — inside your workspace

Unplanned Club is private to your company. The visibility model is the trust contract between you, your employer, and us — so we spell it out.

Other people in your workspace can see

• Your profile and the interests you choose to share.
• Posts and comments you publish to the Feed or to a Club they're a member of.
• Your RSVP to a Meetup (other attendees see who is coming).
• Reactions are visible in aggregate (counts); individual reactors are visible per Unplanned Club's standard feed model.
• Your participation in Games when you choose to play.

Your employer's admins can see

• The member directory and which clubs and meetups exist.
• Content published to workspace-visible surfaces (Feed, Clubs, Meetups, Riff) and reports flagged through our safety tools.
• Aggregate analytics — total active members, club participation rates, meetup attendance trends. Not individual reaction histories, not individual feed scrolling behavior.
• Billing and account-level information.

Your employer's admins cannot see

• The contents of your one-to-one or group Chats. DMs are private between participants. Admins do not have a "read messages" button, and we do not provide one to them as a matter of policy. Lawful-process exceptions are described under "Who we share data with" below.
• What you typed and deleted before posting.
• Private notes you keep on your own profile.

Nobody outside your workspace can see

• The Platform has no public web profile, no public feed, and no public posts.
• Another customer's workspace cannot see your workspace's members or content.
• We do not sell or share workspace content with advertisers, data brokers, or third-party recommendation networks.

What we never do

The Site and Platform are deliberately narrow in what they're willing to do with your data. We will not:

• Show advertising. The Platform has no ad units. We don't operate an ad business and we don't integrate third-party ad networks.
• Sell, rent, or trade personal information. Not to data brokers, not to lead vendors, not to marketers, not to LLM dataset aggregators.
• Expose your workspace publicly. Posts you make in Unplanned Club are not searchable on Google, not visible to other companies, and not visible to anonymous web visitors.
• Read your direct messages. DMs are not reviewed by Unplanned Club staff, not used for ranking other people's feeds, and not used as training data for shared models.
• Train shared models on your content. When we use machine learning — for example, to rank a club recommendation — that model uses your workspace's own data to serve your workspace. It is not aggregated into a model that another customer benefits from.
• Track you across the open web. No advertising pixels, no cross-site identity graphs, no behavioral profiles for marketing.

Who we share data with

We share personal data in four narrow circumstances:

• Service providers (subprocessors). Companies that help us run the product — cloud hosting, email delivery, customer-support tooling, payment processing, error monitoring. Each is bound by a written processing agreement and may only use the data to perform the service we engaged them for. The current list is maintained in our Data Processing Addendum, available to customers.
• Your employer, under the workspace agreement. Your employer is the controller of workspace data and may receive admin reports, exports, and aggregate analytics as part of operating the workspace. The bounds of what an admin can see are described above and bounded by our DPA.
• Legal process and safety. When we receive a lawful, binding legal request — a court order, valid subpoena, or law-enforcement demand we are obliged to honor — we comply with it. We will give you notice unless the law forbids it. In genuine emergencies involving risk to life, we may also disclose limited information without prior notice.
• Corporate transactions. If Unplanned Club is part of a merger, acquisition, financing, or sale of assets, personal data may transfer to the new entity. We will notify you and any successor will be bound by terms at least as protective as this Policy.

How long we keep your data

• Site form submissions are kept for the time it takes to respond to you, plus a short retention window for sales and audit purposes. You can ask us to delete a record at any time.
• Workspace content is kept for as long as your workspace is active, or until you or your employer delete it. When your employer ends its subscription, we delete or de-identify workspace content within a defined wind-down window described in the DPA.
• Operational logs are kept on short windows (typically 30–90 days) and then deleted or aggregated.
• Backups roll off on their own retention cycle; deletion requests propagate to backups within that cycle.
• Records we must keep for legal reasons (tax, billing, dispute resolution) are kept for the period the law requires.

Your rights and controls

Wherever the law gives you these rights, you have them with us:

• Access — get a copy of the personal data we hold about you.
• Correction — fix anything inaccurate or out of date.
• Deletion — ask us to delete it, subject to legal obligations to retain.
• Restriction or objection — limit how we process your data.
• Portability — receive a structured copy you can move elsewhere.
• Withdrawal of consent — where processing depends on consent.
• Complaint — lodge a complaint with your local data protection authority.

If you're a Platform user, you can do most of this yourself in your account settings. For everything else, email support@unplannedclub.com and we'll respond within the time the relevant law requires (and faster when we can).

If your employer is the controller of the data — for example, the workspace membership record — we'll route your request to them when that's the right thing to do, and tell you we've done so.

Region-specific rights

European Economic Area, United Kingdom, and Switzerland

We rely on the following lawful bases under GDPR / UK GDPR: contract (to provide the Service you or your employer signed up for), legitimate interests (to run, secure, and improve the Service in ways you reasonably expect), legal obligation (where we have to), and consent (where we ask for it — for example, certain cookies). You have the right to object to processing based on legitimate interests, and the right to lodge a complaint with your supervisory authority.

California

California residents have specific rights under the CCPA/CPRA, including the right to know, the right to delete, the right to correct, the right to opt out of "sale" or "sharing," and the right to limit use of sensitive personal information. We do not sell or share personal information for cross-context behavioral advertising. To exercise California rights, email support@unplannedclub.com.

Other regions

Other jurisdictions (Brazil's LGPD, Canada's PIPEDA, Australia's Privacy Act, and others) grant similar rights. We honor them where they apply.

How we keep your data secure

We use industry-standard technical and organisational safeguards: encryption in transit (TLS) and at rest, role-based access controls, audit logging, principle of least privilege for staff, and routine security review. Payment data is handled by certified payment processors and never stored on our servers. No system is impenetrable; if a breach affects you, we will notify you and the relevant authority as the law requires.

International data transfers

We are based in Bengaluru, India and use cloud infrastructure in the United States and (for some workloads) the European Union. When personal data moves across borders — for example, from the EEA to the US — we rely on transfer mechanisms recognised under the relevant law, such as the European Commission's Standard Contractual Clauses and the UK Addendum. Customers with data-residency requirements can discuss region-specific deployments with sales.

Children

Unplanned Club is built for adults at work. The Site and Platform are not intended for anyone under 18, and we do not knowingly collect personal information from minors. If we learn we've received data from a minor, we'll delete it.

Changes to this Policy

We update this Policy when the law, our practices, or the Service change. The "Effective" date at the top reflects the latest version. For material changes, we will notify Platform users in-product or by email before they take effect, and continued use of the Service after that constitutes acceptance.

Contact

Questions, requests, or concerns about this Policy or your personal data:

Leadbxd Technologies Pvt Ltd, doing business as Unplanned Club
Email: support@unplannedclub.com
Web: unplannedclub.com