Split Rewards Privacy Policy

Effective Date: August 30th, 2025

This Privacy Policy explains how Split (“we,” “us,” or “our”) collects, uses, discloses, and safeguards your information when you use our services. By using Split, you consent to the practices described herein.

1. Information We Collect

• Personal Information: Name, email address, verified phone number, and business addresses.
• Financial Information: Bank account information is collected and stored by Stripe. Split does not store bank account details.
• Device and Security Information: Device UUIDs, biometric authorization data, IP address, browser type, and operating system.
• Usage and Transaction Data: Purchase amounts, dates, times, involved businesses, token redemptions, and related logs. Transaction records are retained indefinitely.
• Cookies and JWTs: We use cookies containing JWTs to maintain login sessions and authorize requests. These cookies are not used for tracking outside of Split.

2. How We Use Your Information

• Provide, maintain, and improve our services.
• Process payments and maintain transaction guarantees.
• Verify identity and secure access to accounts and devices.
• Communicate with you, including notices and service updates.
• Ensure compliance with applicable laws and contractual obligations.

3. How We Share Your Information

• Payment Processing: With Stripe for ACH payment processing.
• Verification Services: With Twilio for phone verification and carrier/type validation.
• Address Services: With Google Maps API for address formatting and validation.
• Legal Compliance: To comply with legal obligations and enforce our terms.
• Business Transfers: As part of any merger, acquisition, or sale of assets.

4. Security

We implement industry-standard safeguards, including encryption, biometric authentication, and UUID-based device authorization. Payments are processed through Stripe using secure protocols. In the event of a data breach, we will notify affected users as required by law.

5. Children’s Privacy

Split is not directed to children under 13 years of age. We do not knowingly collect information from children under 13.

6. Compliance with Financial Regulations

We comply with applicable U.S. laws, including the Electronic Fund Transfer Act (EFTA), Regulation E, and the Gramm-Leach-Bliley Act (GLBA). We do not sell financial information to third parties.

7. Changes to this Policy

We may amend this Privacy Policy from time to time. Changes will be posted on our website and effective as of the posted date.

8. Contact Us

Email: taylor@split-loyalty.com

Address: 2438 18th Street NW, Washington DC 20009