Privacy Policy

Last updated: February 3, 2026

Redline Percussion ("we," "us," or "our") is a 501(c)(3) nonprofit organization dedicated to supporting young performers. This privacy policy describes how we collect, use, and share personal information when you visit or make a donation through our fundraising platform.

Information We Collect

We collect the following types of information:

  • Contact and identity information. Your name and email address, provided when you create an account or make a donation. A phone number may also be collected when a contact record is created on your behalf by a Raise Redline member.
  • Donation details. The amount you donate, an optional personal message, whether you have chosen to cover payment processing fees, and whether your donation should be displayed anonymously.
  • Payment transaction identifiers. Reference IDs issued by our payment processors (such as Stripe session IDs, charge IDs, and PayPal order IDs) for record-keeping and reconciliation. We do not collect or store payment card numbers, expiration dates, or security codes — see "Payment Processing" below.
  • Account credentials. If you have a member or staff account on this platform, we store your email address, name, and a hashed password. Passwords are never stored in plain text.

How We Use Your Information

We use the information we collect solely for the following purposes:

  • Processing your donation. To complete the payment and associate it with the appropriate pledge or fundraising goal.
  • Sending confirmation emails. To provide you with a donation receipt and thank-you message.
  • Organizational record-keeping. To track pledge progress and financial totals for our nonprofit.
  • Account management. To handle password resets, email verification, and member invitations where applicable.

We do not use your information for marketing, advertising, or any purpose unrelated to the operation of this fundraising platform.

Payment Processing

Payments are processed through Stripe and PayPal. When you choose to donate, you are redirected to the secure checkout page hosted by the selected payment processor. Your card details — including card number, expiration date, and security code — are entered and handled entirely by that processor and are never transmitted to or stored on our servers.

We store only the transaction identifiers returned by these processors (for example, a Stripe charge ID or PayPal order ID) so that we can verify and reconcile your donation.

Disclosure of Information

We do not sell, trade, or rent your personal information to third parties. We may share your information only as necessary to operate this platform, with the following services:

  • Stripe and PayPal — to process your payment. Their respective privacy policies govern how they handle your information during and after the transaction.
  • Amazon Web Services (AWS Simple Email Service) — to deliver confirmation, thank-you, and notification emails on our behalf.
  • Sentry (if enabled) — to help us identify and fix technical issues. We have configured Sentry to exclude personally identifiable information from error reports.

We may also disclose information when required to do so by law or in response to a legal process, court order, or governmental request.

Security Practices

We take the protection of your information seriously and employ the following measures:

  • Encrypted communications. All data exchanged between your browser and our servers is encrypted via SSL/TLS (HTTPS).
  • HTTP Strict Transport Security (HSTS). Our production environment enforces HTTPS on all connections and includes HSTS headers to prevent protocol downgrade attacks.
  • Secure session management. Session cookies are flagged as secure and are not accessible to client-side scripts. Sessions are stored server-side.
  • Password hashing. Account passwords are hashed using industry-standard algorithms before storage.
  • PCI compliance. We do not collect or store payment card data. Card details are handled exclusively by PCI-compliant payment processors (Stripe and PayPal).
  • Cross-site request forgery (CSRF) protection. All forms on this platform include CSRF tokens to prevent unauthorized requests.

Data Retention

We retain your information for as long as necessary to fulfill the purposes described in this policy, including maintaining accurate donation and pledge records required for our nonprofit operations. If you wish to request deletion of your personal data, please contact us using the information below.

Changes to This Policy

We may update this privacy policy from time to time. Any changes will be reflected in the "Last updated" date shown at the top of this page.

Contact Us

If you have questions or concerns about this privacy policy or how we handle your information, please reach out to us at:

Redline Percussion
donate@performredline.org