This policy describes how SapphireConnect handles information for political CRM, actions, forms, petitions, events, and email activation services operated by Sapphire Strategies. It is designed for platform users, clients, and recipients who interact with SapphireConnect pages, forms, and messages.
Information We Process
SapphireConnect may process contact information, email addresses, message metadata, recipient engagement events, suppression records, bounce and complaint events, sender identity details, campaign metadata, and operational logs. Imported audiences may originate from Data Central, CSV uploads, pasted lists, or approved third-party sources.
How Information Is Used
Information is used to provide CRM, actions, forms, petitions, events, email activation, list building, reporting, suppression, unsubscribe, deliverability, provider-abuse prevention, platform security, billing, and support functions. Information may also be used to normalize and validate records, resolve identity within a client workspace, deduplicate client-scoped records, append permitted contact points, improve Data Central where connected and permitted, and improve Sapphire Strategies products and services.
Data Central Relationship
SapphireConnect keeps CRM contacts scoped to the client workspace. It does not use one client's workspace to merge another client's contacts inside SapphireConnect. When a client connects Data Central, SapphireConnect may send engagement, submission, donation, delivery, unsubscribe, suppression, bounce, complaint, and contact-quality signals to help Data Central learn under stricter canonical matching rules.
Enrichment and Platform Improvement
Sapphire Strategies may use submitted, imported, appended, observed, and generated data to improve identity resolution, contact normalization, deliverability safety, suppression handling, CRM features, scoring, recommendations, data hygiene, and operational reporting. This may include using aggregated, de-identified, modeled, scored, enriched, appended, inferred, or transformed data and operational signals across clients to improve shared systems, while maintaining client-scoped access controls for non-public client workspaces and audience records.
Product and Commercial Use
Sapphire Strategies may use platform data, derived signals, metadata, models, scores, aggregated data, de-identified data, and transformed outputs to develop, improve, market, license, commercialize, or sell current or future products, analytics, enrichment services, Data Central improvements, data products, and related offerings. Sapphire Strategies does not intentionally sell a client's raw non-public audience list as another client's list unless expressly authorized.
Unsubscribe and Suppression Data
When a recipient opts out, SapphireConnect records suppression information needed to honor the request for the applicable sender, domain, campaign, client, or global scope. Suppression data may be retained to prevent future unwanted outreach.
Sharing
SapphireConnect may share limited data with email service providers, hosting providers, security vendors, analytics systems, client-authorized campaign teams, and Data Central workflows as needed to operate the platform. Commercial product use may include derived, aggregated, de-identified, modeled, scored, enriched, appended, inferred, or transformed outputs as described above.
Security and Isolation
The platform uses role-based access, client scoping, provider abstraction, suppression isolation, domain isolation, and operational logging to reduce unauthorized access and reputation spillover. No system can guarantee absolute security.
Retention
Audience snapshots, send logs, engagement events, suppressions, and infrastructure records may be retained for compliance, deliverability, dispute resolution, analytics, and operational integrity. Retention periods may vary by client, contract, law, and platform safety need.
Choices
Recipients can use unsubscribe links in messages to opt out of future sends from the applicable sender. Users and clients may contact Sapphire Strategies to ask about access, correction, suppression, or deletion workflows where applicable.
Policy Updates
This policy may be updated as SapphireConnect, Data Central integrations, provider requirements, or legal obligations change. The updated date reflects the latest published version.
Contact
Privacy questions and suppression requests can be sent to privacy@sapphirestrategies.org.