Privacy Policy

Effective June 9, 2026

This policy describes what Task Force ("we", "the studio") actually collects on this website and what happens to it. We collect as little as the work allows.

What we collect

• Field-manual signup: your email address, stored in our database (Supabase) so we can send you the resource you asked for.
• Strategy-call booking: name, email, and any notes you enter are processed by our scheduling provider (Cal.com). If a booking carries a deposit, payment is processed by Stripe. Card details never touch our servers.
• Client portal: if you are a client, your sign-in email and engagement records (project names, status, notes) are stored in Supabase, protected by row-level security so each client can only read their own records.
• Hosting logs: our host (Vercel) keeps standard server logs (IP address, request time) for security and operations.

What we don't do

• No advertising or analytics trackers, and no marketing cookies. The only cookies set are essential ones used for client sign-in sessions.
• We never sell or rent your information.
• We never store card numbers — payments are handled end-to-end by PCI-DSS-validated processors (Stripe).

Processors we rely on

Supabase (database & authentication), Cal.com (scheduling), Stripe (payments), Vercel (hosting). Each processes data under its own data-processing agreement.

Your choices

• Unsubscribe from the field-manual list any time via the link in the email, or by writing to us.
• Ask what we hold about you, ask for a copy, or ask for deletion: email dchasemaginnis@gmail.com. We respond within 30 days. EU/UK residents have GDPR rights (access, rectification, erasure, portability); California residents have equivalent CCPA rights.

Data incidents

If a breach affects your personal data we will notify you, and regulators where required, within 72 hours of confirming it.

Contact

Privacy questions: dchasemaginnis@gmail.com