Terms of ServicePrivacy PolicyRefund PolicyData Processing AddendumSubprocessorsAcceptable Use

Privacy Policy · v1.1 · 2412e00c87d9

24/7 PROFITS — Privacy Policy

Effective: April 29, 2026 · Version 1.2

This Privacy Policy describes how AllDayFBA LLC dba 24/7 Profits ("we," "us," or "Company") collects, uses, discloses, and protects personal information from individuals who interact with our website, software, coaching programs, and Discord community (collectively, the "Services").

This Policy is incorporated by reference into our Terms of Service. Capitalized terms used but not defined here have the meaning given in the Terms.

1. Information We Collect

We collect three categories of personal information.

a) Information you give us directly:

  • Name, email address, phone number, and billing address at sign-up or checkout
  • Payment metadata returned by our processors (Whop, FanBasis): card last four digits, AVS result, billing zip, billing country, cardholder name, 3-D Secure result where applicable
  • Profile information you choose to provide (Amazon experience, capital, goals, profile photo)
  • Content you submit: messages, support tickets, community posts, refund requests, survey answers, and uploaded documents

b) Information collected automatically when you use the Services:

  • IP address, user agent, device fingerprint, browser language, referrer URL
  • Pages visited, features used, software events, search queries, and session duration
  • Recordings, transcripts, and AI-generated summaries of: sales calls, coaching calls, AEI sessions, and Discord voice channels you join (recording disclosure is shown at the time of each session — see Section 4 of the Terms of Service)
  • Cookies and similar technologies (see Section 6)

c) Information from third parties:

  • OAuth identity claims when you sign in with Google, Whop, or Discord (email, name, provider user ID)
  • Entitlement events from Whop and FanBasis (purchases, refunds, cancellations)
  • Public Amazon catalog and price-history data via Keepa, used to enrich the Software
  • Social handles you choose to link to your profile

2. How We Use Your Information

We use personal information for the following purposes:

  1. To deliver the Services you purchased — coaching, software access, content, community
  2. To process payments, issue receipts, manage subscriptions and entitlements
  3. To communicate with you about your account, the Program, scheduled sessions, and policy changes
  4. To send marketing emails about our products (you may opt out at any time — see Section 7)
  5. To verify identity and prevent fraud, including matching IP, AVS, billing zip, and OAuth claims at the time of purchase
  6. To investigate and defend against payment disputes, chargebacks, and refund inquiries
  7. To improve the Services, including aggregate analytics, A/B testing, and AI feature quality
  8. To comply with legal, tax, accounting, and recordkeeping obligations

We do not sell personal information for monetary consideration. We do not train third-party AI models on customer content; our AI subprocessors are configured for zero-retention API access.

3. Legal Bases (GDPR / UK GDPR Customers)

If you are in the EEA, UK, or another GDPR-equivalent jurisdiction, our legal bases are:

  • Contract performance: delivering the Services you purchased (Articles 6(1)(b))
  • Legitimate interest: fraud prevention, dispute defense, product improvement, security (Articles 6(1)(f))
  • Consent: marketing email opt-in, recording of sales calls, cookies that aren't strictly necessary (Articles 6(1)(a))
  • Legal obligation: tax, accounting, regulatory recordkeeping (Articles 6(1)(c))

You may withdraw consent at any time by emailing privacy@247profits.org.

4. How We Share Your Information

We share personal information with the following recipients:

a) Subprocessors who provide the infrastructure of the Services. A current list is published at /subprocessors and is incorporated here by reference. Each subprocessor is bound by a written contract requiring confidentiality and security of customer data.

b) Payment processors and their issuing banks to process transactions and respond to chargebacks. The full evidence packet — including session recordings and transcripts where applicable — is shared with the processor and the cardholder's issuing bank for any dispute we receive.

c) Professional advisors — accountants, attorneys, auditors — under confidentiality.

d) Government authorities when required by valid legal process, or to protect our rights or the safety of others.

e) An acquirer or successor entity if we are involved in a merger, acquisition, financing, or sale of assets — subject to the receiving entity honoring this Policy.

We do not share personal information with advertisers, data brokers, or third-party marketers without your consent.

5. International Transfers

Our services are operated from the United States. If you are located outside the US, the personal information you provide will be transferred to and processed in the US. Where required, we rely on Standard Contractual Clauses (SCCs) and additional safeguards as published by the European Commission.

6. Cookies and Tracking

We use a small number of cookies and similar technologies:

  • Strictly necessary: session cookies for login state, CSRF tokens, and load balancing. These cannot be disabled.
  • Functional: preferences (theme, dismissed banners) — set only after first interaction.
  • Analytics: PostHog (anonymized device-level event tracking). You can opt out by toggling Settings → Privacy → Analytics.

We honor the Global Privacy Control (GPC) signal in supported browsers as a Do-Not-Sell / Do-Not-Share request.

7. Marketing Communications

You may opt out of marketing email at any time by:

  • Clicking the unsubscribe link at the bottom of any marketing email
  • Emailing privacy@247profits.org with subject line "Unsubscribe"
  • Toggling Settings → Notifications → Marketing email inside the Software

Opting out does not stop transactional email (receipts, password resets, dispute notices, security alerts) — those are sent under a contractual basis.

8. Data Retention

We retain personal information for as long as your account is active and for the periods listed below thereafter:

CategoryRetention
Account profile, course progress, software eventsAccount lifetime + 12 months
Payment records, AVS / CVV / 3-DS results, dispute evidence7 years
Recordings and transcripts of sales / coaching / AEI calls7 years
Tax and accounting records7 years (or longer if required by law)
Marketing email engagement24 months from last engagement
Web logs (IP, user agent, security events)13 months

Records currently or previously subject to a payment dispute are retained for the longer of seven (7) years from the date of dispute resolution or the regulatory minimum.

9. Your Rights

Depending on your jurisdiction, you have some or all of the following rights:

  • Access — request a copy of the personal information we hold about you
  • Correction — ask us to fix inaccurate information
  • Deletion — ask us to delete your information, subject to the retention obligations in Section 8
  • Portability — receive your data in a structured, machine-readable format
  • Objection / Restriction — object to or restrict certain processing (e.g., direct marketing)
  • Withdraw consent — for processing based on consent
  • Non-discrimination — we will not deny you Services or charge a different price for exercising your rights
  • GPC honoring — Global Privacy Control signal treated as Do-Not-Sell / Do-Not-Share

Submit any request to privacy@247profits.org with the subject "Privacy Request" and include enough information for us to verify your identity. We respond within 30 days (or the period required by your local law).

10. California Privacy Rights (CCPA / CPRA)

California residents may exercise the rights in Section 9. We do not "sell" personal information for monetary consideration. We may "share" deidentified analytics with subprocessors for our own analytics purposes (PostHog) — you may opt out via the GPC signal or by emailing privacy@247profits.org. We retain personal information for the periods in Section 8.

11. Children's Privacy

The Services are not directed to children under 18, and we do not knowingly collect personal information from anyone under 18. If you believe we have collected information from a minor, contact privacy@247profits.org and we will delete it.

12. Security

We use industry-standard administrative, technical, and physical safeguards to protect personal information, including TLS encryption in transit, encryption at rest for sensitive fields, role-based access controls, audit logs, and least-privilege policies. No system is 100% secure — if we become aware of a breach affecting your information, we will notify you in accordance with applicable law.

13. Changes to This Policy

We may update this Policy from time to time. Material changes will be announced by email (at the address on file) and by an in-Software banner at least 14 days before they take effect. The version of this Policy in effect at the time of your most recent acceptance — captured by hash, IP, user-agent, and timestamp — governs the rights between us with respect to that purchase.

14. Wins, Testimonials, and Public Showcases

We celebrate student wins on the public wall at 247profits.org/wins and on our marketing pages. Here is exactly how that works.

a) What we capture. When you post a result in our Discord community — for example, a sales screenshot, a first-sale announcement, or a milestone post — we capture the message text, attachments, your Discord display name, and a link back to the original post. We also capture peer reactions (🏆, 💰, 🚀, 🔥) which signal that the post was a win. This capture is automatic and limited to channels in our explicit allowlist (today: #wins and similar celebration channels). We do not silently scan general chat or DMs.

b) Automated classification. Captured messages pass through an AI classifier (Claude Haiku) which estimates whether the post represents a real customer win, what type (first sale / milestone / monthly / breakthrough), and an approximate dollar amount. This classification is never published unedited. It surfaces in our internal admin queue at /admin/wins and waits for human review.

c) Consent before public use. No win moves to a public surface without one of the following:

  • Blanket-TOS consent — for content that was already public when you posted it (Discord channels visible to all members, your own social posts you tagged us in, screenshots you previously consented to use). These showed up on our existing landing page when you joined the community and are reflected on the wall today.
  • Direct DM consent — for new captured wins, we DM you with the proposed quote and a one-click withdrawal link. We treat any explicit "yes," ✅ reaction, or "use it" response as approval. We do NOT publish on silence.
  • Manual admin approval — Sabbo personally reviews each candidate before it reaches /wins.

d) What goes public. Your display name, win type, dollar amount, and an approved quote drawn from your post. Your Discord avatar URL is shown unless you ask us to remove it. We do not publish your phone number, email, billing address, or anything else from your account profile.

e) How to withdraw. You can remove your win from the public wall at any time:

  1. Click the withdrawal link in your consent DM (this hits a secure RPC, flips the row private within seconds, and notifies our operations team).
  2. Email privacy@247profits.org with "remove my win from the wall" — we'll action within 24 hours.
  3. Reply ❌ or "remove this" to the consent DM at any time.

We commit to a <1-second technical SLA for self-service withdrawal (the row is flagged private the moment the link fires) and a <24-hour human SLA for manual takedowns via email. The data row itself is retained internally so we can audit the consent history and so you can ask us to restore it later — it is just no longer surfaced publicly.

f) AI-classification spend ledger. We log every classification call (token counts, cost in cents, the JSON verdict) so we can audit the system and stay within our daily AI-budget cap. This ledger contains no personal data beyond a Discord message ID and channel ID — both of which you already know about.

g) Imported testimonials. Cards already shown on our existing landing page (Brandon, Jeff, Diaz, Winston, Xavier, Raf, etc.) are stored under consent_method = 'tos_blanket'. They are on this wall because they were on the public funnel before this policy version took effect; the same withdrawal mechanism applies — email us and we'll remove.

This Section 14 is part of how we use information described in Section 2 (purposes 1, 4, 6) and how we share information described in Section 4 (we do not sell win data; the only "sharing" is publishing it on our own marketing pages with your consent).

14A. Community Map (Opt-In Student Globe)

We provide an interactive globe at /community/map that shows other students as dots so the community can see roughly where each other are. Participation is opt-in only — by default your dot does not appear.

a) What we collect when you opt in. Either (i) your country code and an optional self-typed city label, or (ii) your browser-precise coordinates if you grant the geolocation prompt. In every case, before we store anything, we add ±0.05° random jitter (≈3.5 miles at the equator) to the latitude and longitude. The fuzzed coordinates are what we save; the original precise coordinates are not retained.

b) What goes public. The fuzzed latitude/longitude, country code, your typed city label (if provided), your display name, your avatar URL, and your student tier label. We do not publish your address, exact location, IP, email, or phone.

c) How to withdraw. Toggle "Hide me" on your profile at /academy/profile (it calls a secure RPC that NULLs every map field within ~1 second), or email privacy@247profits.org. We action manual requests within 24 hours.

d) What we do not do. We do not store your precise coordinates, sell or share community-map location data with third parties, or use it for advertising. The data exists only to power the public dot rendering.

This section is part of Section 2 (purpose: community engagement) and Section 4 (we do not sell community-map data).

15. Contact

Privacy questions: privacy@247profits.org Data deletion / data subject rights: privacy@247profits.org General contact: support@247profits.org

AllDayFBA LLC dba 24/7 Profits (Postal address as listed in the footer of every legal page.)