Data Principles

We’re dedicated to safeguarding your privacy and giving you control over your personal data. Here’s our approach:

  • Security: We leverage best-in-class security practices to protect your data from unauthorized access or disclosure.
  • Transparency: We are clear and consistent in how we handle data. We inform you about the data we collect, its use, and who has access to it. Our policies are straightforward, clear, and simple.
  • Control: You control your data. We provide tools and offer choices that allow you to manage your data easily in compliance with all applicable laws. You can control your data, whether you’re updating, viewing, or deleting it.

Data Use 

GoFundMe is building a future where everyone has the ability to make a meaningful difference for the people, causes, and communities they care about most. We offer innovative products and services that leverage insights and analytics of our company to provide better fundraising experiences for individuals and nonprofits alike.

To further this goal, we use machine learning to help supporters and nonprofits. For example, we can recommend a donation amount for a donor or a specific segment of donors with an appeal. In every case, the prescribed action is a suggestion—supporters and nonprofits are then empowered to make their own choices.

Our tools analyze donor activities (of primarily US donors) across the GoFundMe platforms. This means that donor behavior across all GoFundMe Pro nonprofits and GoFundMe fundraisers inform our insights. We do not share data from a supporter’s activities at one nonprofit with another nonprofit. We offer an opt-out for any donor that does not want their information to be used for any automated decision making technologies. To submit an opt-out request, click here.

Data Security and Incident Response

Protecting your information is our priority. We implement a range of security measures to safeguard your personal data against unauthorized access, alteration, disclosure, or destruction.

To ensure your personal data remains secure, we strictly enforce privacy safeguards within the company. We assign strict access management and controls based on data risk and business needs, such as providing customer support. If we learn of a data security incident that might affect users’ personal data, we promptly and thoroughly investigate, determine the appropriate next steps, and try our best to quickly remediate any issues identified. We are committed to complying with all applicable laws and regulations involving the appropriate management of data security incidents, and provide timely notification whenever necessary.

Privacy Training and Complaints

All GoFundMe employees are required to take annual privacy training which covers obligations under the EU General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). Additional tailored privacy and security training is provided to employees with access to high volumes of data, sensitive personal data, or as additionally required by local law.

We investigate any privacy complaints promptly and thoroughly and take steps to remediate all material issues. If you’d like to send us a privacy complaint, please email dpo@gofundme.com. A dedicated team manages all inquiries until they’re resolved.

Transparency in Action

Data Requests: We believe in your right to understand how your data is used and shared. Our platform provides tools that allow you to access, rectify, or erase your personal data by clicking the form here. We also offer details on how to request information on data-processing or file a complaint with data-protection authorities.

Law Enforcement Requests: GoFundMe does not provide user information to any third parties where such information is requested without a clear legal basis that allows or requires GoFundMe to do so. For more information on how we handle requests for user information, visit our Law Enforcement and Government Demands Policy.

Our Privacy Promise

We continuously work to enhance our privacy practices and develop features that empower our users. Your trust is vital, and we’re committed to being transparent about our privacy practices and listening to our community’s feedback.

When there is a material change to our Privacy Notice, we’ll post a notice on our Privacy Notice web page at least a week in advance and contact users directly about any material changes, if we have the data on file to contact them.

For further details on our privacy practices, please visit our Privacy Notice.