Skip to Content

Privacy Policy

Last updated: February 9, 2026

This Privacy Policy explains how the Paddlesports Trade Coalition  (“PTC,” “we,” “us”) collects, uses, discloses, and protects personal information when you visit paddlesportstradecoalition.org (the “Site”), create an account, purchase memberships, register for events, buy booth/tent space, make donations, or participate in webinars/meetings (collectively, the “Services”).

1. Who we are (Controller)

For purposes of the EU General Data Protection Regulation (“GDPR”) and similar laws, the Paddlesports Trade Coalition is the data controller for personal information processed through the Services.

Mailing address:

424 Gendron Road
Jay, VT 05859
United States

Contact (privacy and support): info@paddlesportstradecoalition.org

We have not appointed a Data Protection Officer (DPO). Please use the contact email above for privacy requests.

2. Information we collect

We collect the following categories of personal information:

A) Information you provide

  • Account and profile information: name, email, password, organization/company, role/title, and other account details you choose to provide.

  • Membership and transactions: membership tier, subscription status, renewal and cancellation info, purchase history, invoices/receipts.

  • Event registration and purchases: attendee name and contact details, ticket type, booth/tent space details, and other registration selections.

  • Donations: donation amount and related transaction details.

  • Communications: messages you send to us, customer support requests, survey responses.

  • Webinars/meetings: registration and participation details necessary to provide the session (see Section 6).

We do not intentionally collect date of birth, gender, medical information, dietary restrictions, or accessibility needs as part of registration based on your current setup.

B) Information collected automatically

  • Device and usage data: IP address, browser type, device identifiers, pages viewed, referring URLs, timestamps, approximate location inferred from IP.

  • Cookies and similar technologies: see Section 7.

C) Payment information

Payments are processed by Stripe, including Apple Pay and Google Pay where available. We do not store full payment card numbers. Stripe receives and processes payment details directly.

3. How we use personal information

  • Create and manage accounts.

  • Provide memberships, subscriptions, ecommerce purchases, event registration, booth/tent purchases, and donations.

  • Process payments, send confirmations, invoices, and receipts.

  • Administer subscription renewals, cancellations, and account access.

  • Deliver webinars/meetings and communicate about them.

  • Send administrative and service-related messages (e.g., membership status, event updates, policy changes).

  • Send marketing messages by email and SMS where permitted (see Section 8).

  • Analyze performance and improve the Site and Services.

  • Protect the security and integrity of the Services, prevent fraud, and enforce our policies.

  • Comply with legal obligations (including accounting and tax).

4. Legal bases for processing (GDPR)

If you are in the EEA/UK, we process personal data under these legal bases:

  • Contract: to provide memberships, purchases, event registrations, and account services.

  • Legitimate interests: to operate, secure, improve the Services; prevent fraud; and communicate with members about operational matters.

  • Consent: for non-essential cookies and certain marketing (especially SMS) where required.

  • Legal obligation: to comply with accounting, tax, and other legal requirements.

5. How we share personal information

We share personal information only as needed to run the Services, including with:

Service providers (processors)

  • Odoo (website, ecommerce, subscriptions, event registration, and related operations).

  • Stripe (payment processing, including Apple Pay/Google Pay).

  • Mailchimp and Odoo Email Marketing (email communications).

  • Zoom and Google Meet (webinars/meetings).

  • Google Workspace (email, files, and collaboration tools).

  • Analytics providers (GA4, Plausible, and Odoo analytics).

  • Hosting, IT, and security providers supporting the Site.

Advertising/marketing partners

If you use advertising pixels and interest-based advertising/retargeting, some information (such as cookie identifiers and browsing activity) may be shared with advertising partners to measure and improve campaigns (see Sections 7 and 12).

Legal, safety, and business transfers

We may disclose information if required to comply with law, protect rights/safety/security, enforce our agreements, or as part of a merger, reorganization, or asset sale.

6. Webinars and meetings (Zoom / Google Meet)

When you register for or attend a webinar/meeting, the platform provider may process participant information such as name, email, device/connection data, and meeting engagement information depending on settings. We use this information to provide the session, manage attendance, and follow up with registrants.

7. Cookies, analytics, and targeted advertising

We use cookies and similar technologies for:

  • Strictly necessary site functions (login, shopping cart, security).

  • Preferences (remembering settings).

  • Analytics (GA4, Plausible, Odoo analytics).

  • Advertising/retargeting (where enabled).

If you are in the EEA/UK (and in some other regions), non-essential cookies are opt-in. You can manage cookie choices using our cookie banner and/or cookie settings on the Site.

8. Email and SMS marketing

Email: We send newsletters and promotions via Mailchimp and/or Odoo Email Marketing. You can opt out using the unsubscribe link in emails.

SMS: If you sign up for SMS marketing, you consent to receive marketing texts. Message frequency varies. Message and data rates may apply. You can opt out at any time by following the instructions in the message (commonly replying STOP) or by contacting us at info@paddlesportstradecoalition.org.

9. Data retention

We retain personal information for 7 years (including inactive accounts, event records, and payment-related records) unless a longer period is required by law or a shorter period is appropriate for the purpose.

We may retain limited information longer as needed for fraud prevention, security, dispute resolution, and enforcing our agreements.

10. Security

We use reasonable administrative, technical, and organizational safeguards designed to protect personal information. However, no online service is completely secure.

11. International transfers

Your information may be processed in countries outside where you live (including the United States) because our vendors may operate there. Where GDPR applies, we rely on appropriate safeguards such as Standard Contractual Clauses or other lawful mechanisms when required.

12. Your privacy rights

A) GDPR (EEA/UK) rights

  • Access, correct, or delete your personal data.

  • Restrict or object to certain processing.

  • Data portability.

  • Withdraw consent (where processing is based on consent).

  • Lodge a complaint with your data protection authority.

B) California (CCPA/CPRA) rights

  • Know what personal information we collect, use, and disclose.

  • Delete personal information (subject to exceptions).

  • Correct inaccurate personal information.

  • Opt out of “sale” or “sharing” of personal information (as defined by CPRA).

  • Limit use/disclosure of sensitive personal information (if applicable).

  • Non-discrimination for exercising rights.

Important note about “sale”/“sharing”: Even if we do not exchange personal information for money, some advertising/retargeting practices may be considered “sharing” under CPRA. If we use such tools, you can opt out as described below.

How to submit a request: Email info@paddlesportstradecoalition.org with subject “Privacy Request.” We will verify your request (e.g., by confirming access to the email on the account).

Opt-out of sale/sharing (California): You may opt out by (1) using our cookie settings to disable advertising/retargeting cookies (if available), and/or (2) contacting us at info@paddlesportstradecoalition.org with subject “Do Not Sell or Share.”

13. Children’s privacy

The Services are not directed to children, and we do not knowingly allow minors to register or purchase. If you believe a minor has provided personal information, contact us and we will take appropriate steps to delete it.

14. Historical membership platform (MemberSpace)

We previously used MemberSpace for membership management. We may retain historical records as necessary for continuity, accounting, and legal compliance.

15. Changes to this Policy

We may update this Policy from time to time. The “Last updated” date reflects the latest revision. Material changes will be posted on the Site.