top of page

Privacy Policy

Privacy Policy

Effective Date: June 28, 2025

Elpis Alliance for Veterans ("Elpis Alliance," "we," "our," or "us") is a 501(c)(19) nonprofit veterans service organization dedicated to improving the well‑being of U.S. military veterans, service members, and their families. Protecting the privacy and security of the personal information entrusted to us—whether by donors, program participants, volunteers, or website visitors—is central to our mission and values.

​

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you interact with us online or offline, including through our websites (e.g., elpisalliance.org, Sleep Savant, MyN1X.life, MyN1X.store), mobile experiences, events, and fundraising activities (collectively, the "Services"). It also describes your rights and choices under applicable privacy laws such as the U.S. Privacy Act of 1974, the California Consumer Privacy Act as amended by the California Privacy Rights Act (together, "CCPA/CPRA"), the EU/UK General Data Protection Regulation ("GDPR"), and other state or federal laws that may apply.

​

**Legal Disclaimer ** This document is provided for general informational purposes and does not constitute legal advice. Privacy laws evolve and vary by jurisdiction. You should consult qualified counsel to ensure this policy meets all legal obligations specific to your organization.

​

1. Scope

This Policy applies to all personal information we process about identifiable individuals, except where a separate privacy statement is supplied (for example, in a research consent form or mobile application EULA). This Policy does not cover aggregated or anonymized data that cannot reasonably be used to identify you.

​

2. Information We Collect

We collect information in three primary ways:

Category

Examples

How Collected

Contact & Identity Data

Name, postal address, email, phone number, service branch, rank, date of birth

• Web forms • Event registrations • Donations • Program intake

Donor & Financial Data

Donation amount, payment card last 4 digits, billing address, transaction IDs

• Secure payment processors (e.g., Stripe, PayPal, DonorBox)

Health & Program Data

Sleep metrics, mental‑health self‑assessments, survey responses, device IDs (e.g., Garmin, Labfront)

• Voluntary questionnaires • Wearables you connect to our platforms

Technical & Usage Data

IP address, device type, browser, referral URL, pages viewed, cookies, log files

• Automatic collection via cookies & similar technologies

Communication Data

Emails, chat transcripts, support tickets, social‑media messages

• Direct correspondence

We do not knowingly solicit or collect information from children under 13. See Section 11 for details.

​

3. Why We Collect and How We Use Information

We use your information only for purposes that are lawful, proportionate, and relevant to our mission, including to:

  1. Provide Services – enroll you in sleep or wellness programs, ship equipment, or schedule consultations.

  2. Process Donations & Acknowledge Gifts – issue receipts, track giving history, send thank‑you notes.

  3. Improve & Personalize Experiences – analyze usage to refine content, tailor nudges, and measure outcomes.

  4. Communicate – send program updates, newsletters, fundraising appeals, or service‑related notices.

  5. Comply with Legal Duties – satisfy tax‑reporting, financial‑audit, and veterans‑support grant requirements.

  6. Protect Rights & Safety – detect and prevent fraud, cyberattacks, or harm to veterans in crisis.

Under GDPR, our legal bases include consent, performance of a contract or grant agreement, legitimate interests (e.g., program evaluation, donor stewardship), and legal obligations.

​

4. Sharing & Disclosure

We never sell or rent your personal information. We disclose data only:

  • To Trusted Service Providers – IT hosting, payment processors, email platforms, analytics or research partners who are bound by confidentiality agreements and may use data only on our instructions.

  • With Partner Organizations – select veteran‑support collaborators (e.g., Mission 22, Wounded Warrior Project) only when you enroll in a joint initiative and with your prior consent.

  • For Legal or Safety Reasons – to comply with subpoenas, IRS audits, or to protect someone’s vital interests (e.g., imminent self‑harm).

  • During Organizational Transactions – in rare cases such as a merger or spin‑off of a specific program, with appropriate safeguards.

​

5. International Data Transfers

Elpis Alliance is headquartered in the United States. If you access our Services from outside the U.S., your information may be transferred to, stored, or processed in the U.S. or other jurisdictions that may not provide equivalent data‑protection laws. We rely on appropriate safeguards such as standard contractual clauses where required.

​

6. Cookies & Similar Technologies

We use functional and analytics cookies, web beacons, and device identifiers to:

  • remember preferences;

  • measure site traffic; and

  • secure user sessions.

You can manage cookies through your browser settings or opt‑out of certain analytics via tools like Google Analytics Opt‑out. Disabling cookies may affect site functionality.

​

7. Data Retention

We retain personal information only as long as necessary for the purposes described in this Policy, including:

  • Donor records – 7 years (IRS compliance)

  • Program health data – duration of participation + 3 years for outcome analysis

  • Web logs – up to 14 months (security & analytics)

When retention periods expire, data are securely deleted or anonymized.

​

8. Security Measures

We employ administrative, technical, and physical safeguards such as:

  • TLS/SSL encryption for data in transit

  • AES‑256 encryption at rest for sensitive fields

  • Multi‑factor authentication for staff

  • Annual penetration testing and staff privacy training

While no system is 100 % secure, we continually assess and improve our defenses.

​

9. Your Privacy Rights

Depending on your jurisdiction, you may have rights to:

Request a copy of your personal information.

Correction

Ask us to rectify inaccurate or incomplete data.

Deletion

Request erasure where legally permissible.

Opt‑out / Object

Opt‑out of marketing or object to processing based on legitimate interests.

Data Portability

Receive data in a structured, machine‑readable format (GDPR).

To exercise any right, email privacy@elpisalliance.org or write to the address in Section 12. We will verify your identity and respond within the timeframe required by law (30 days for GDPR, 45 days for CCPA/CPRA).

​

10. Children’s Privacy

Our Services are not directed to children under 13. We do not knowingly collect information from children. If we learn we have inadvertently obtained such data without verifiable parental consent, we will delete it promptly.

​

11. Changes to This Policy

We may update this Policy from time to time to reflect changes in laws or our practices. We will post the revised version with a new "Effective Date" and, where material changes are made, we will notify you via email or a prominent site banner.

​

12. Contact Us

If you have questions about this Policy or our privacy practices, please contact:

​

Elpis Alliance for Veterans
Attn: C/O Privacy Officer
2927 Middlesex Road
Fayetteville, NC 28306
Email: askchief@elpisalliance.org
Phone: +1 (357) ELPS-4-U

​

Thank you for supporting our mission to end veteran suicide while honoring the confidentiality and dignity of every individual who engages with Elpis Alliance.

 

Contact Us

If you have any questions or concerns about this Privacy Policy, your personal information, or our information practices, please contact:

​

ATTN: Care of Privacy Officer
Elpis Alliance for Veterans
2927 Middlesex Road
Fayetteville, NC 28306
United States

Email: askchief@elpisalliance.org
Phone: +1 (571) 357‑4748

bottom of page