Privacy Policy

This Privacy Policy describes how Node collects, uses, shares, and protects personal information.

1. Information We Collect

We may collect:

Account information (name, email, phone, login credentials)
Profile information and preferences
Family account information provided by a parent or guardian
Transaction information (purchases, refunds, wallet usage, gift card usage)
Device and usage data (IP address, browser, logs, analytics)
Communications with support and messages sent through the Services
Content you submit (reviews, listings, uploads)

2. How We Use Information

We use information to:

Provide and operate the Services
Process payments, refunds, chargebacks, and Wallet/Gift Card functionality
Prevent fraud and secure Accounts
Provide customer support
Personalize and improve the Services
Comply with law and enforce Terms and Policies

3. How We Share Information

We may share information with:

Vendors to fulfill purchases and provide Vendor Offerings
Payment processors (such as Stripe) for payment processing and compliance
Service providers (hosting, analytics, customer support) under contractual restrictions
Legal authorities when required by law or to protect safety
Successors in a corporate transaction (financing, merger, acquisition) subject to appropriate safeguards

Node does not sell personal information for monetary consideration. Node does not share personal information with third parties for their independent direct marketing purposes without your consent.

We do not sell children's personal information. We do not share personal information with data brokers or third parties for the purpose of advertising products or services to children based on their personal information.
If you later use targeted advertising, retargeting pixels, or interest-based advertising, update these statements and implement required consent and opt-out mechanisms.

4. Children and Family Accounts

Parents or legal guardians control family Accounts. If a parent provides information about a child, the parent represents they have authority to do so.

Node does not knowingly collect personal information from children under 13 without verifiable parental consent where required by law.

Parents may request access, correction, or deletion of a child's information, subject to verification and legal retention obligations.
If Node will allow child accounts to independently message, post, or interact socially, implement COPPA verifiable consent workflows and enhanced moderation and update this section and the Acceptable Use Policy accordingly.

5. International Users

If you access the Services from outside the United States, your information may be processed in the United States and other jurisdictions. You consent to such processing where permitted by law.
If you later target the EU/UK or other jurisdictions with comprehensive privacy laws, you will need region-specific disclosures and lawful transfer mechanisms. Add a region addendum when you expand.

6. Cookies and Analytics

We use cookies and similar technologies for authentication, security, analytics, and functionality. You may be able to control cookies via browser settings.

7. Data Security and Retention

We use reasonable safeguards but cannot guarantee absolute security. We retain information as necessary for operations, compliance, dispute resolution, and fraud prevention.

8. Your Privacy Rights

Depending on your jurisdiction, you may have rights to access, delete, correct, or opt out of certain processing. We provide a process for verified requests.

9. Contact

Privacy: help@inthenode.co Legal: help@inthenode.co

DMCA POLICY

1. Notice of Claimed Infringement

If you believe content infringes your copyright, send a notice to [Insert DMCA Email] including:

Identification of the copyrighted work
Identification of the allegedly infringing material and its location
Your contact information
A statement of good faith belief
A statement under penalty of perjury that the information is accurate and you are authorized
Your physical or electronic signature

2. Counter-Notification

If you believe content was removed in error, you may submit a counter-notification including required statements and consent to jurisdiction as required by law.

3. Repeat Infringers

Node may terminate Accounts of repeat infringers in appropriate circumstances.

SAFETY AND EVENT WAIVER TEMPLATE

This template may be used by Vendors or organizers for in-person activities. Node is not the organizer unless explicitly stated in writing.

1. Assumption of Risk

I understand that participation in in-person activities involves risks, including injury, illness, property damage, and other harms. I voluntarily assume all risks, known and unknown.

2. Release

To the fullest extent permitted by law, I release Node from claims arising out of participation in the activity, except to the extent caused by Node's gross negligence or willful misconduct where such limitation is not permitted by law.

3. Minor Participants

If signing for a minor, I am the parent or legal guardian and I consent to the minor's participation. I understand I am responsible for supervision and safety decisions.

4. Medical Authorization (Optional)

In the event of injury or illness, I authorize emergency medical care and accept responsibility for related costs.
Use this section only if an organizer requests it and local law permits. Some jurisdictions require additional language for minors. Consider event-specific waivers by state for higher-risk activities.

TRAVEL DISCLOSURES

1. Travel Links and Referrals

Node may display travel content, links, or referrals to third-party travel providers. Node may receive referral fees or commissions.

2. Not a Travel Agency

Node is not a travel agency and does not provide travel services. Travel services are provided by third parties under their own terms, including refund and cancellation rules.

3. Wallet and Gift Cards Not Redeemable for Travel

Wallet balances and Gift Cards are not redeemable for third-party travel services unless explicitly stated.
If you later allow Wallet or Gift Cards to be used for travel, update this page and reevaluate seller-of-travel obligations and third-party liability allocation.

DISPUTE RESOLUTION AND ARBITRATION AGREEMENT

Please read this section carefully. It affects your legal rights.

1. Governing Law for Arbitration

This arbitration agreement is governed by the Federal Arbitration Act.

2. Informal Resolution

Before initiating arbitration, you agree to contact us at [Insert Legal Email] and provide a brief description of the dispute and your requested relief. The parties will attempt to resolve the dispute informally for at least 30 days.

3. Binding Individual Arbitration

Except for eligible small claims matters, any dispute arising out of or relating to the Services or these Terms will be resolved by binding individual arbitration administered by the American Arbitration Association under its consumer arbitration rules.

4. Class Action Waiver

You and Node agree that disputes will be brought only in an individual capacity and not as a plaintiff or class member in any class, collective, representative, or private attorney general action.

5. Mass Arbitration Procedures

If 25 or more similar arbitration demands are filed, the parties agree to use batching and bellwether procedures designed to promote efficient resolution, consistent with applicable rules.
If you want a specific mass arbitration provider clause or bespoke batching rules, add them here based on your preferred arbitration administrator and current case law trends.

6. Arbitration Location and Fees

Arbitration may be conducted by telephone, video, or in person. Fee allocation will follow applicable AAA rules and consumer protections.

7. Opt-Out

You may opt out of arbitration within 30 days of first accepting these Terms by emailing [Insert Legal Email] with your name, Account email, and a clear request to opt out.

8. Severability

If the class action waiver is found unenforceable, then this arbitration agreement is void. If any other portion is unenforceable, the remainder will remain in effect.

COOKIE NOTICE BANNER (COPY)

We use cookies and similar technologies to operate our site, provide essential functionality, analyze performance, and improve your experience. You can accept, reject non-essential cookies, or manage your preferences. See our Privacy Policy for details.

Buttons: Accept All | Reject Non-Essential | Manage Preferences
If you serve EU/UK users, you will need opt-in consent for non-essential cookies. If you later implement that, update the banner and cookie settings accordingly.

ACCESSIBILITY STATEMENT

Node is committed to providing a website and digital experience that is accessible to the widest possible audience, including individuals with disabilities.

Our Commitment

We strive to ensure our Services are usable by people with diverse abilities and to improve accessibility on an ongoing basis.

Accessibility Features

Accessibility features may include support for keyboard navigation, readable text, and compatibility with common assistive technologies, where reasonably practicable.

Ongoing Improvements

Accessibility is an ongoing effort. We regularly evaluate and improve our Services to enhance accessibility and usability.

Feedback and Support

If you experience difficulty accessing any part of our Services, please contact us so we can assist you and work to improve accessibility.

Email: help@inthenode.co Subject line: Accessibility Support

VENDOR DATA PROCESSING ADDENDUM

This Vendor Data Processing Addendum ("DPA") forms part of the Vendor Terms and applies to the extent Vendor receives or processes Personal Information from or through Node in connection with Vendor Offerings.

1. Definitions

"Personal Information" means information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with an identified or identifiable individual, including as defined under applicable U.S. privacy laws.

"Process" or "Processing" means any operation performed on Personal Information, including collecting, using, disclosing, storing, transmitting, or deleting.

2. Scope and Permitted Processing

Vendor will Process Personal Information only to fulfill Vendor Offerings purchased through Node, provide customer support related to those offerings, and comply with applicable law.

Vendor may not Process Personal Information for unrelated purposes, including building profiles, selling data, sharing with data brokers, or marketing outside what is necessary to fulfill the offering, unless the user provides consent where required by law.
If you later allow Vendors to market to users through an opt-in feature, add a specific permitted-use exception with consent requirements.

3. Prohibited Uses

Vendor will not:

Sell Personal Information
Share Personal Information with third parties for their independent direct marketing purposes
Use Personal Information to target advertising to children based on their personal information
Collect more Personal Information than necessary for fulfillment and support
Attempt to re-identify de-identified information (if any)
Combine Personal Information received from Node with other data sources to build user profiles for unrelated purposes

4. Security

Vendor will implement and maintain commercially reasonable administrative, technical, and physical safeguards designed to protect Personal Information.

At minimum, Vendor will restrict access to personnel who need it, use strong authentication practices (and multi-factor authentication where available) for systems accessing Personal Information, and secure files containing Personal Information.

5. Subprocessors

Vendor may not provide access to Personal Information to any third party except as necessary to fulfill Vendor Offerings, and only if such third party is bound by written obligations at least as protective as this DPA. Vendor remains responsible for subprocessors.

6. Retention and Deletion

Vendor will retain Personal Information only as long as necessary for fulfillment, support, legal compliance, or dispute resolution, and will securely delete or dispose of it when no longer needed.

Upon Node's written request, Vendor will delete Personal Information received from Node unless retention is required by law.

7. Security Incident Notification

Vendor will notify Node without undue delay (and in any event within 72 hours) after becoming aware of a Security Incident involving Personal Information received from Node and will cooperate with mitigation efforts.
If you later adopt a specific incident response policy, align timing while remaining conservative.

8. Compliance and Assistance

Vendor will comply with applicable privacy laws and reasonably assist Node with responding to verified privacy requests and legal obligations relating to Personal Information that Vendor Processes.

9. Verification

Upon reasonable notice, Node may request written certification of Vendor's compliance with this DPA, and Vendor will provide reasonable information to confirm compliance.

10. Indemnification

Vendor will defend, indemnify, and hold harmless Node from claims, damages, penalties, and expenses (including reasonable attorneys' fees) arising out of Vendor's breach of this DPA or Vendor's privacy or security violations.

11. Conflict

If this DPA conflicts with the Vendor Terms, this DPA controls with respect to Processing of Personal Information.