Ummah Unite Privacy & Data Policy
Ummah Unite LLC ("we," "our," or "us") is committed to maintaining transparent data collection and monetization boundaries. This Privacy Policy details how we handle personal identity data, protect transactional security, and aggregate platform-wide consumer market intelligence for all users of our ecosystem.
Section 1: Scope & Compliance
This policy applies to all Users, including General Users (individuals browsing the platform without an account), Attendees, Organizers, and Vendors. It is engineered to meet the multi-state regulatory compliance requirements of the United States (including the California Consumer Privacy Act/CPRA and subsequent 2026 state-level comprehensive data privacy protections) as well as the United Kingdom and European Union General Data Protection Regulation (GDPR).
Section 2: Information We Collect and Process
We segregate data into two distinct classifications: Personally Identifiable Information (PII) and Anonymous Aggregate Commerce Data.
Personally Identifiable Information (PII):
We collect baseline metrics required to authenticate identity and execute platform security:
- General User Data: Technical usage data (IP address, browser type, cookies) collected upon site access.
- Account Identity Data: Full legal name, email address, and billing zip code for registered users.
- Security Data: Mobile phone number (strictly utilized and verified via One-Time Password [OTP] infrastructure to prevent bot fraud and deliver time-sensitive waitlist notifications).
- Custom Data: Answers to registration questions required by Organizers at checkout.
Financial Data Isolation:
Ummah Unite does not store, ingest, or view raw credit card numbers, CVV codes, or bank account routing digits. All financial ingestion is handled via secure, tokenized API endpoints managed exclusively by Stripe.
Section 3: Data Handoff and Independent Data Controllers
Because Ummah Unite operates a multi-sided marketplace ecosystem, personal transaction data must be transmitted to third parties to fulfill event entries and commercial purchases:
- Handoff to Organizers: When you purchase a ticket or reserve a session, your name, email, phone number, and custom registration answers are securely transmitted to the designated Organizer.
- Handoff to Vendors: When you purchase an item from a digital vendor catalog, your identity and fulfillment details are routed directly to the merchant.
- Independent Controller Status: The moment your personal data is transmitted to an Organizer or Vendor for event operation or retail fulfillment, that third party becomes an Independent Data Controller under global data laws. Ummah Unite is not responsible or legally liable for how third-party organizers or vendors store, utilize, or abuse data once it leaves our ecosystem. Any data privacy violations, unprompted spamming, or text message marketing by an organizer or vendor must be handled directly between the user and that independent controller.
Section 4: Market Research, Anonymization, and Ethical Data Licensing
Ummah Unite generates highly valuable, proprietary consumer business intelligence. This section dictates how we monetize that data asset while protecting user privacy.
- Anonymized Aggregation Protocol: Ummah Unite tracks individual product performance, category purchase velocities, geographical spending densities, and session topic demand curves. Prior to any external processing, this raw commerce stream is stripped entirely of PII. The resulting dataset contains strictly macro-level quantitative metrics.
- B2B Syndicated Data Licensing: We reserve the right to package, publish, and lease this anonymized, aggregated industry market intelligence to corporate sponsors, brands, institutions, and marketing agencies.
- The Ethical Vetting Firewall: Ummah Unite maintains strict moral, ethical, and community boundaries. Ummah Unite is legally forbidden from selling, licensing, or leasing any platform analytics, aggregate market research, or consumer intelligence to any corporation, organization, state actor, or entity that does not share fundamental Muslim values or explicitly opposes the sovereignty, humanity, and safety of the Palestinian people. All B2B data licensing contracts require a signed compliance clause enforcing this restriction.
Section 5: Consumer Rights and Automated Ingestion Signals
- United States Universal Opt-Out: Residents of California and other compliant states have the right to restrict the sharing of data. Ummah Unite natively recognizes and automatically processes Universal Opt-Out Mechanisms (UOOMs), including the Global Privacy Control (GPC) browser signal. If your browser transmits a GPC signal, our system automatically treats it as a legally binding instruction to exclude your data points from any aggregate market research rollups.
- UK & European Union (GDPR) Ingestion Rules: For users inside the UK and European Economic Area, data processing for secondary market research relies entirely on a strict opt-in framework. We will never include European transaction data points in our aggregate datasets unless the user explicitly checks an un-pre-ticked consent block. European users maintain the absolute "Right to be Forgotten," and can request total PII deletion via our support pipeline.