Privacy Policy
Summary of Key Points
- What we collect: Email (if you subscribe or register), name and last bet date (if you create an account), and standard server/traffic logs via Cloudflare.
- Sensitive data: Your last bet date and clean time are health-adjacent data. We store them securely and delete them permanently when you delete your account.
- No third-party tracking: No Google Analytics, no Facebook Pixel, no ad networks.
- Data sharing: We do not currently sell, rent, or trade your personal information. If this ever changes, we will update this policy and notify you in advance.
- Your rights: You can access, correct, or delete your data at any time — see Section 7.
- Contact: [email protected]
Table of Contents
- Who We Are
- Information We Collect
- Sensitive Personal Information
- How We Use Your Information
- Legal Bases for Processing (GDPR)
- How We Share Your Information
- Your Rights
- Cookies and Local Storage
- Do-Not-Track
- US State-Specific Privacy Rights
- International Visitors
- Data Retention
- Security
- Children's Privacy
- Third-Party Services
- Changes to This Policy
- Contact
1. Who We Are
GAMeetingFinder.com is owned and operated by GAMF Inc., a Nebraska S-corporation ("GAMF," "we," "us," or "our"), based in Kearney, Nebraska. We provide a free directory of Gamblers Anonymous Virtual Meetings and are not affiliated with Gamblers Anonymous International Service Office. Questions about this Privacy Policy may be directed to [email protected].
2. Information We Collect
A. Information You Provide
| Data | When Collected | Why |
|---|---|---|
| Email address | Newsletter signup or account registration | To send you newsletter emails and account communications |
| First and last name | Account registration | To personalize your account experience |
| Phone number | Optional, account settings | Optional contact preference — never required |
| Last bet date | Optional, account settings | To calculate and display your clean time — stored securely on our servers |
| Saved meetings | When you favorite a meeting | To power your My Meetings dashboard |
| Password (hashed) | Account registration | Stored as a one-way hash (bcrypt) — we cannot read your password |
B. Information Collected Automatically
| Data | Source | Why |
|---|---|---|
| IP address, country, browser type | CDN and security provider | Security, abuse protection, and aggregate traffic analytics |
| Pages visited, request logs | Server logs | Performance monitoring and abuse prevention |
| Theme preference (Dark/Light) | Browser localStorage | Stored locally on your device only — never sent to our servers |
| Session cookie | Issued on login | To keep you signed in; expires when you sign out or after 30 days |
We do not use Google Analytics, Facebook Pixel, or any third-party behavioral tracking or advertising technology.
3. Sensitive Personal Information
Your last bet date and clean time are considered health-adjacent sensitive data. We treat this information with the highest level of care:
- It is stored encrypted at rest on secure, managed infrastructure
- It is not shared with third parties for marketing purposes
- It is visible only to you in your account dashboard
- It is permanently and irreversibly deleted when you delete your account
- We do not use it for any purpose other than displaying your clean time to you
4. How We Use Your Information
- To deliver the service — displaying meetings, your saved meetings, and your clean time
- To send newsletters — if you subscribed, we send periodic emails about recovery resources, new meetings, and site updates
- To communicate with you — account-related emails such as password resets
- To keep the site secure — monitoring for abuse, spam, and malicious activity
- To improve the site — understanding aggregate usage patterns (e.g., which countries visitors come from)
We do not use your information for advertising, profiling, or any purpose not described in this policy.
5. Legal Bases for Processing (GDPR — EU/UK/Switzerland)
If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, we rely on the following legal bases under GDPR to process your personal information:
- Consent — For newsletter subscriptions and optional account features (e.g., clean time tracking). You may withdraw consent at any time.
- Contract — For account registration and delivering the services you requested.
- Legitimate interests — For site security, fraud prevention, and aggregate analytics that do not override your fundamental rights.
- Legal obligation — Where required by applicable law.
To withdraw consent or exercise your GDPR rights, email [email protected]. We will respond within 30 days. If you are in the EEA or UK and believe we are processing your data unlawfully, you have the right to lodge a complaint with your local data protection authority.
6. How We Share Your Information
We do not currently sell, rent, or trade your personal information. We share data only in the following limited circumstances:
- Service providers: We use trusted third-party providers for hosting, content delivery, security, and email delivery. These providers process data on our behalf and are not permitted to use your data for their own purposes.
- Google (OAuth): If you sign in with Google, Google shares your name and email with us. We do not share data back to Google beyond what is required for authentication.
- Legal requirements: We may disclose information if required by law, court order, or to protect the rights, property, or safety of our users or the public.
- Business transfers: If GAMeetingFinder.com is acquired or merged, your information may be transferred. We will notify you before your data is subject to a different privacy policy.
7. Your Rights
Depending on where you live, you may have the right to:
- Access the personal data we hold about you
- Correct inaccurate data via your account Settings
- Delete your account and all associated data via Settings → Delete Account
- Unsubscribe from our newsletter at any time via the link in any email
- Opt out of any future data processing by contacting us directly
- Data portability — request a copy of your personal data in a machine-readable format
- Restrict processing — ask us to limit how we use your data while a dispute is resolved
To exercise any of these rights, contact us at [email protected]. We will respond within 30 days. If you are unsatisfied with our response, you may appeal by emailing us with the subject line "Privacy Rights Appeal" and we will conduct a second review within an additional 30 days. EU/UK residents may also contact their national data protection authority.
8. Cookies and Local Storage
We use minimal cookies:
- Session cookie: Set when you log in; used to keep you authenticated. Expires on logout or after 30 days.
- Theme preference: Stored in your browser's localStorage (not a cookie). Stays on your device only.
We do not use advertising cookies, tracking pixels, or third-party analytics cookies. No cookie consent banner is required because we use only strictly necessary functional cookies.
9. Do-Not-Track
Some browsers offer a Do-Not-Track ("DNT") setting. We do not currently respond to DNT signals because no uniform technical standard exists for doing so. However, we do not engage in cross-site behavioral tracking regardless of DNT status. If a DNT standard is adopted that we are required to follow, we will update this policy accordingly.
10. US State-Specific Privacy Rights
If you are a resident of California, Colorado, Connecticut, Virginia, Oregon, Nevada, or another US state with privacy legislation, you may have additional rights including:
- Right to know what personal data we collect and how we use it
- Right to access a copy of your personal data
- Right to correct inaccuracies in your personal data
- Right to delete your personal data
- Right to opt out of the sale of personal data (we do not sell personal data)
- Right to non-discrimination for exercising your rights
Sensitive data note: Your last bet date / clean time may constitute sensitive personal information under certain state laws (e.g., California's CPRA). We do not use this data for any purpose other than displaying your clean time to you, and we do not share or sell it.
California residents: Under the "Shine the Light" law (Civil Code §1798.83), you may request information about personal data we shared with third parties for direct marketing purposes in the past year. We do not share personal data for direct marketing purposes.
To submit a privacy rights request, email [email protected] with the subject line "Privacy Rights Request." We will verify your identity and respond within 45 days.
11. International Visitors
This Site is operated in the United States. If you are accessing the Site from outside the US — including from Sweden, the UK, Australia, or Canada — please be aware that your information may be transferred to and processed in the United States, where data protection laws may differ from those in your country. By using the Site, you consent to this transfer. EU/UK/EEA users may refer to Section 5 for the legal bases under which we process your data.
12. Data Retention
- Accounts: We retain your account data for as long as your account is active. You may delete your account at any time from Settings, which permanently removes your personal data from our database.
- Newsletter subscribers: We retain your email until you unsubscribe. To unsubscribe, click the link in any newsletter email or email [email protected].
- Server logs: Cloudflare retains access logs per their standard data retention policies (typically 30 days for free-tier accounts).
- Backups: Deleted data may persist in encrypted database backups for up to 30 days before being purged.
13. Security
We take reasonable measures to protect your information, including:
- HTTPS encryption on all pages
- Industry-standard password hashing (we cannot read your password)
- DDoS protection and web application firewall
- Encrypted-at-rest database storage
- Rate limiting on authentication endpoints
However, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security and encourage you to use a strong, unique password for your account.
14. Children's Privacy
This Site is not directed to children under 18 years of age. We do not knowingly collect personal information from anyone under 18. If you believe we have inadvertently collected such information, please contact us immediately at [email protected] and we will delete it promptly.
15. Third-Party Services
The following third-party services may process your data as part of delivering this Site:
- Cloudflare — Content delivery and security. Privacy policy
- Railway — Application hosting. Privacy policy
- Zoho — Email services. Privacy policy
- Google — Optional sign-in. Privacy policy
- Zoom — Meeting links (we link to Zoom but do not control their platform). Privacy policy
We are not responsible for the privacy practices of these third-party services. We encourage you to review their policies.
16. Changes to This Policy
We may update this Privacy Policy from time to time. We will post any changes on this page with an updated effective date. For significant changes, we may also notify newsletter subscribers by email. Your continued use of the Site after any changes constitutes your acceptance of the updated policy.
17. Contact
If you have questions, concerns, or requests related to this Privacy Policy, please contact us at:
GAMF Inc.
d/b/a GAMeetingFinder.com
[email protected]
415 46th Ave.
Kearney, NE 68845
United States
GAMF Inc. · Kearney, Nebraska · Terms of Service