Privacy Policy

The app is not intended for children and is not a public voter lookup directory. Access is controlled by campaign invite code, and each campaign workspace is separated from other campaign workspaces.

Account and campaign access data, including name, email address, invite code, campaign membership, role, session state, and device push notification token.

Campaign outreach data provided by a campaign or authorized operator, including donor or prospect names, phone numbers, email addresses, physical addresses, contribution history, notes, tags, assigned caller, call outcomes, follow-up status, approved message templates, and contribution link activity.

Content entered in the app, including dictated or typed post-call notes, candidate message input, volunteer invite email addresses, and operational comments entered by campaign users.

To authenticate campaign users, enforce invite-only campaign workspaces, assign donor call queues, record outreach outcomes, prepare follow-up SMS content, show campaign progress, and operate secure contribution-link redirects.

To send verification emails, register push notification tokens, prevent unauthorized access, investigate reliability issues, and maintain the service.

We do not sell personal information and we do not use app data for third-party advertising or cross-app tracking.

The iOS app asks for microphone and speech recognition permission only when a user chooses to dictate post-call notes. BallotRadar stores the resulting note text, not the raw microphone recording.

Phone calls and SMS follow-ups are initiated through iOS phone and Messages interfaces. BallotRadar records the outreach outcome selected in the app; it does not read a user's personal contacts or SMS inbox.

Campaign data is available only to authorized users in the same campaign workspace and to BallotRadar personnel or service providers who need access to operate, secure, or support the service.

We use infrastructure providers such as AWS for hosting, database storage, email delivery, and push-notification support. These providers process data for BallotRadar and are not authorized to sell it or use it for their own advertising.

We may disclose information when required by law, to protect the service, or with the campaign's direction.

We retain campaign account, donor, outreach, and operational data while needed to provide the service, satisfy legal or contractual obligations, secure the platform, and maintain campaign records.

Campaigns or users can request access, correction, export, or deletion by emailing privacy@ballotradar.com. Some records may be retained where required for security, legal compliance, or audit purposes.

BallotRadar uses invite-controlled access, email verification, device authentication, server-side session checks, and encrypted transport. The iOS app stores the session token in the device Keychain and protects local sign-in with Face ID or device authentication when available.

No system is perfectly secure. If we learn of a security issue affecting personal information, we will investigate and respond according to applicable obligations.