The Thrive Clan logoThe Thrive Clan
Open main menu
HomeLLMOAboutContactBlog

Privacy Policy

Introduction

The Thrive Clan ("we," "us," or "our") operates thethriveclan.com (the "Site"), providing downloadable business and marketing resources, online calculators, and user account access. We are committed to protecting your privacy and handling your personal data responsibly. This Privacy Policy explains how we collect, use, disclose, and safeguard your information in compliance with the General Data Protection Regulation (GDPR) for EU residents, the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA) for California residents, and other applicable privacy laws for users in the United States and elsewhere.

By using the Site, you consent to the practices described herein. If you do not agree, please do not use the Site.

Information We Collect

We collect only the minimal personal data necessary to provide our services. This includes:

  • Account and Contact Data: Your email address, which is required for user registration, login via email authentication, order fulfillment, and access to downloads and calculators.
  • Activity Data: Logs of your interactions with the Site, such as login times, accessed features, and usage patterns, to ensure functionality, security, and service improvement.
  • Payment Data: We do not collect or store payment card details. Transactions are processed securely by our third-party payment provider, Stripe, which may share limited transaction confirmation data (e.g., purchase status) with us for order fulfillment.
  • Device and Usage Data: Automatically collected information like IP address, browser type, and device identifiers through cookies and similar technologies for analytics purposes.

We do not collect any sensitive personal data, such as health information, financial details beyond transaction confirmations, or biometric data.

How We Use Your Information

Your personal data is used solely for the following purposes:

  • To create and manage your account, authenticate logins, and provide access to purchased resources, including downloads and online tools.
  • To process orders, deliver digital products, and handle any related support inquiries.
  • To monitor and improve Site performance through aggregated, anonymized analytics.
  • To ensure security, detect fraud, and comply with legal obligations, such as tax reporting.

We do not use your data for marketing, advertising, or any unsolicited communications beyond essential order updates.

Lawful Basis for Processing (EU Users)

Under GDPR, we process your personal data on the following legal bases:

  • Contractual Necessity: For providing account access, order fulfillment, and service features (e.g., email login and downloads).
  • Legitimate Interests: For security monitoring, analytics (balanced against your rights), and Site improvements, where these do not override your privacy.
  • Legal Obligations: For retaining transaction data as required by tax laws.

You have the right to object to processing based on legitimate interests; see the "Your Rights" section below.

Sharing and Disclosure of Information

We do not sell, rent, or share your personal data with third parties for their own marketing purposes. Disclosures are limited to:

  • Service Providers: Trusted third parties that assist in operating the Site, such as:
    • Google Cloud Platform (GCP) for secure storage and hosting of emails and activity logs.
    • Google Analytics for website usage analytics (anonymized where possible).
    • Stripe for payment processing (they handle all card data independently).
    These providers are contractually obligated to protect your data and use it only for specified services.
  • Legal Requirements: If required by law, such as in response to a court order or regulatory request.
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred as part of that transaction, with notice provided where required.

No data is shared with advertising networks or for profiling.

Data Storage and Security

Your data is stored on secure servers provided by Google Cloud Platform (GCP), with primary data centers located in the European Union to prioritize EU data residency. Backups or processing may occur in other compliant regions (e.g., the US) under appropriate safeguards. We implement reasonable technical and organizational measures, including encryption for emails and logs, access controls, and regular security audits, to protect against unauthorized access, loss, or misuse. However, no online transmission is completely secure, so we cannot guarantee absolute security.

Data Retention

We retain your personal data only as long as necessary to fulfill the purposes outlined above or to comply with legal requirements:

  • Account data (e.g., email) and activity logs are kept for the duration of your active account and up to 3 years after your last interaction (e.g., login or purchase) to support potential support needs and analytics.
  • Transaction-related data (e.g., purchase confirmations) is retained for up to 7 years to meet tax, accounting, and regulatory obligations in the EU and US.

After these periods, data is securely deleted or anonymized. You can request earlier deletion at any time, subject to legal retention needs.

Cookies and Tracking Technologies

The Site uses cookies and similar technologies for essential functionality (e.g., session management) and analytics. Specifically:

  • Essential Cookies: Necessary for login and access to protected features; these cannot be disabled.
  • Analytics Cookies: Provided by Google Analytics to understand Site usage patterns in aggregate form. You can opt out by:
    • Adjusting your browser settings to reject cookies (note: this may limit Site functionality).
    • Using the Google Analytics Opt-out Browser Add-on (available at tools.google.com/dlpage/gaoptout).
    For EU users, a cookie consent banner appears on first visit, allowing you to manage preferences.

We do not use cookies for targeted advertising.

Children's Privacy

Our Site and services are not intended for children under the age of 16. The content focuses on business and marketing resources suitable for general audiences, including potentially affluent minors, but we do not knowingly collect personal data from anyone under 16. If we learn that we have collected such data, we will delete it promptly. Parents or guardians who believe their child has provided data should contact us at support@thethriveclan.com.

International Data Transfers

As an EU-based business (located in France), we primarily store data within the EU. However, for users in the US or when using global services like GCP or Stripe (US-based), data may be transferred outside the EU/EEA. We ensure such transfers comply with GDPR through:

  • Standard Contractual Clauses (SCCs) approved by the European Commission.
  • Adequacy decisions for transfers to the US under the EU-US Data Privacy Framework (where applicable).

US users' data is handled in line with CCPA protections, with no "sales" of data occurring.

Your Privacy Rights

Depending on your location, you have specific rights regarding your personal data. To exercise any right, email support@thethriveclan.com with your request, including verification of your identity. We respond within 30-45 days (or one month under GDPR).

For EU/EEA Residents (GDPR):

  • Access: Request a copy of your data.
  • Rectification: Correct inaccurate data.
  • Erasure ("Right to be Forgotten"): Delete your data, subject to legal exceptions.
  • Restriction: Limit processing in certain cases.
  • Portability: Receive your data in a structured format.
  • Objection: Oppose processing based on legitimate interests.
  • Withdraw Consent: Where processing relies on consent (e.g., non-essential cookies).

For California Residents (CCPA/CPRA):

  • Right to Know: Request details on data collected, used, and shared in the past 12 months.
  • Right to Delete: Request deletion of your data.
  • Right to Opt-Out of Sale/Sharing: We do not sell or share data for cross-context behavioral advertising, but you can confirm this.
  • Right to Correct: Update inaccurate personal information.
  • Non-Discrimination: No penalties for exercising rights.
  • Sensitive Personal Information: We do not collect or process sensitive data, so additional limits do not apply.

For Other US Residents:

Similar rights may apply under state laws (e.g., Virginia, Colorado); contact us for details.

All Users: Right to complain to your local data protection authority (e.g., CNIL in France or the California Attorney General).

Changes to This Privacy Policy

We may update this policy to reflect changes in our practices or legal requirements. Significant updates will be notified via email (for registered users) or a prominent notice on the Site. Continued use of the Site after changes constitutes acceptance. Check this page periodically for the latest version.

Last updated: November 2025.

Contact Us

For questions, concerns, or to exercise your rights:

The Thrive Clan

Email: support@thethriveclan.com

Address: 4 rue Edmond Valentin, 11100 Narbonne, France

If you are in the EU, you may also contact the French data protection authority (CNIL) at cnil.fr. For California residents, additional information is available at oag.ca.gov/privacy/ccpa.