Privacy Policy
We value your privacy. Please read this Privacy Policy carefully before using the www.savesmarter.org Website (the "Website") operated by Smarter Savings Association, LLC, a(n) Limited Liability Company formed in the District of Columbia, United States ("us," "we," "our") as this Privacy Policy contains important information regarding your privacy and how we may use the information we collect about you.
Your access to and use of the Website is conditional upon your acceptance of and compliance with this Privacy Policy. This Privacy Policy applies to everyone, including, but not limited to: visitors, users, and others, who wish to access or use the Website.
By accessing or using the Website, you agree to be bound by this Privacy Policy. If you disagree with any part of the Privacy Policy, then you do not have our permission to access or use the Website.
-
This website is hosted by Squarespace. Squarespace collects personal data when you visit this website, including:
Information about your browser, network and device
Web pages you visited prior to coming to this website
Web pages you view while on this website
Your IP address
Squarespace needs the data to run this website, and to protect and improve its platform and services. Squarespace analyzes the data in a de-personalized form.
-
This website uses cookies and similar technologies, which are small files or pieces of text that download to a device when a visitor accesses a website or app. For information about viewing the cookies dropped on your device, visit The cookies Squarespace uses.
These necessary and required cookies are always used, which allow Squarespace, our hosting platform, to securely serve this website to you.
These analytics and performance cookies are used on this website to view site traffic, activity, and other data.
Data Security FAQ
-
Member directory information (name, email, organization, role), engagement history, and limited billing/contact data. We do not store payment card numbers or government IDs.
-
In a Microsoft 365 tenant controlled by Smarter Savings Association. Member records are maintained in a protected Excel workbook stored in OneDrive for Business (cloud).
-
Files are encrypted in transit (TLS) and at rest by Microsoft 365. We also apply access controls and auditing within our tenant.
-
Access is limited to the Executive Director only. No other staff or contractors have default access. If temporary access is ever required, it must be explicitly approved in writing by the Executive Director, is time-limited, scoped to least privilege, and logged.
-
Yes. MFA is enforced for all accounts with access to member data.
-
External sharing is disabled by default. Any temporary sharing links are time-limited, restricted to named recipients, and prevent resharing. Local copies are discouraged and must follow device-security rules.
-
Yes. We retain Microsoft 365 access and file activity logs for administrative review and incident investigation.
-
We rely on Microsoft 365 resilience features (version history) and keep a secondary periodic export stored in a separate, access-controlled location. We test restores on a scheduled cadence.
-
Contain, investigate, remediate/harden, notify affected parties as required, and conduct a post-incident review with tracked corrective actions.
-
We follow applicable U.S. privacy laws. We honor reasonable data subject requests (access, correction, deletion).
-
Operational member data is retained while a member relationship exists and for up to 3 years afterward for legitimate business, audit, or legal purposes. Data no longer needed is securely deleted.