Last updated: March 20, 2026
ElevateCSX is operated by the entity shown below on this page. That entity acts as the controller for the account, marketplace, support, trust & safety, and operational data described in this policy, except where a third-party provider acts under its own separate privacy notice (for example, Stripe for payment method handling).
We collect account information (such as email), profile details you provide, marketplace workflow data (campaigns, applications, agreements, disputes, and payment statuses), device/request metadata needed for security, and support or moderation information you submit to us.
We use data to operate the marketplace, prevent fraud/abuse, provide customer support, and improve product reliability and safety.
Where GDPR applies, we process personal data under one or more legal bases depending on context: performance of a contract (to provide marketplace features), legitimate interests (fraud prevention, security, and product improvement), consent (optional cookies/analytics), and legal obligations (tax, accounting, and dispute/audit requirements).
We share data with service providers that help us operate the platform (for example, Stripe for payments).
We may disclose information if required by law or to protect the rights, safety, and integrity of the platform and its users.
Some processors may handle data outside your home jurisdiction. Where required, we rely on appropriate safeguards such as vendor contractual commitments, applicable adequacy decisions, or Standard Contractual Clauses made available by those providers.
We retain data only for as long as needed for the purposes above. In practice this usually means: account and profile data while the account is active, agreement/payment/audit records for longer legal and fraud-prevention retention periods, and support/moderation records for as long as necessary to investigate, document, and defend decisions.
Depending on your location, you may have rights to access, correct, delete, restrict, or export your data, and to object to some processing. For MVP, you can export or delete data in-app via Account → Privacy & Data. Where a request cannot be handled self-serve, contact us through the channels listed below.
If you have unresolved privacy concerns, contact the privacy email listed below first. If GDPR applies and you believe our handling of your data violates data protection law, you may also lodge a complaint with your local supervisory authority.
For privacy questions, DSAR follow-up, or correction requests that are not available self-serve, use the privacy contact shown in the operator details card on this page.