Legal & Trust
What we collect, why we collect it, and how we protect it. Written plainly, because you deserve to understand it.
Your goals, your progress, and your story belong to you. Momentum52 exists to help you build momentum toward transformation — not to monetize your personal data. We collect what we need to make the platform work, we protect it carefully, and we never sell it.
— The Momentum52 Privacy CovenantMomentum52 is a transformation platform that helps individuals and groups pursue 52-week journeys of intentional growth. The platform is operated by Momentum52 and is currently in private beta. Our contact address is privacy@momentum52.com.
We collect only what is necessary to provide you with a working, personalized experience.
| What | Why | When |
|---|---|---|
| Email address | Account creation, identity verification, platform notifications | Registration |
| Name (first & last) | Personalization within the platform | Registration |
| Username | Public identity within journeys | Registration |
| Dreams & goals | Powering your journey setup and narrative arc | Onboarding & profile |
| Journey & activity data | Tracking your progress; showing it to you | Active use |
| IP address & device info | Security, fraud prevention, session management | Every login |
| Login timestamps | Security monitoring and rate limiting | Every login |
We do not collect payment information (we have no paid tier at this time), biometric data, location data beyond IP address, or any data from third-party advertising networks.
Your data is used for one purpose: operating Momentum52 for you.
Specifically, we use it to:
Authenticate your account and keep your session secure. Personalize your dashboard, journey experience, and progress tracking. Send you transactional emails — verification links, password resets, and journey notifications you have opted into. Display your progress to you (and, where applicable, to collaborators in journeys you have joined). Improve platform stability and diagnose technical issues.
We do not use your data for advertising. We do not build behavioral profiles for sale. We do not share your goals, progress, or story with third parties for commercial purposes.
We share data only with service providers that make the platform function. These providers operate under their own privacy policies and are contractually bound to use your data only to provide their services to us.
Brevo (email delivery) — receives your email address to deliver transactional messages you have requested (verification, notifications, password resets).
Hosting infrastructure — your data is stored on servers we operate or control. We do not use third-party cloud databases where your data is processed outside our control.
We will disclose data if required by law, to protect the safety of users, or to enforce our terms of service. We will notify you of legal demands where permitted to do so.
Momentum52 supports three journey formats, each with different visibility defaults:
Solo journeys are private by default. Only you can see them. They do not appear on the Discover page or to other users.
Collaborative journeys are visible to enrolled participants. The journey title, description, and participant list are shared among members.
Guided journeys are visible to the facilitator and enrolled participants. The facilitator may see participant progress as part of their facilitation role.
Your individual activity completions and personal notes within any journey are not shared with other participants unless you explicitly share them.
We retain your account data for as long as your account is active. If you delete your account, we will delete your personal data within 30 days, except where we are required to retain it for legal purposes.
Session logs and login attempt records are retained for 90 days for security purposes and then deleted.
Passwords are hashed using bcrypt — we never store them in plain text and cannot read them. Sessions use secure, HttpOnly cookies. We enforce rate limiting on login attempts to prevent brute-force attacks. Access to production data is restricted to authorized personnel only.
No system is perfectly secure. If we become aware of a breach that affects your data, we will notify you promptly and take immediate steps to contain it.
You have the following rights regarding your data:
To exercise any of these rights, email us at privacy@momentum52.com. We will respond within 30 days.
We use a single session cookie to keep you logged in. We use
localStorage
to remember your theme preference (light/dark mode). We do not use
advertising cookies, analytics cookies, or third-party tracking pixels.
Momentum52 is not directed at children under 13. We do not knowingly collect personal data from anyone under 13. If we become aware that a child under 13 has provided us with personal data, we will delete it promptly.
If we make material changes to this policy, we will notify you by email or by a prominent notice on the platform before the changes take effect. The effective date at the top of this document reflects the most recent revision.
If you have questions about this policy or want to exercise your data rights, we want to hear from you.
privacy@momentum52.com