Privacy Policy
Last updated: April 23, 2026
The Upgrade Society ("TUS", "we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and protect your personal information when you visit our website or apply for membership.
1. Information We Collect
We collect the following categories of personal information:
- Contact information: Name, email address, phone number, and country.
- Application information: How you heard about us, referral codes, and your responses to qualification questions.
- Payment information: Payment is processed securely through Stripe. We do not store card details on our servers.
- Usage data: IP address, browser type, pages visited, and time spent on our website, collected through cookies and analytics tools.
- Communications: Records of SMS opt-in consent and any correspondence with our team.
2. How We Use Your Information
We use your personal information to:
- Process and review your membership application.
- Communicate with you about your application status and membership.
- Send SMS messages if you have opted in (see Section 4 below).
- Provide concierge services and facilitate access to our partner network.
- Improve our website and services through analytics.
- Comply with legal obligations.
3. Legal Basis for Processing
We process your personal information on the following legal bases: your consent (where given), the performance of a contract with you, our legitimate business interests, and compliance with legal obligations.
4. SMS Communications
Opt-in: We only send SMS messages to individuals who have explicitly opted in by checking the SMS consent box on our application form.
What we send: Application updates, membership confirmations, and time-sensitive member opportunities. We do not send unsolicited marketing messages.
Message frequency: Message frequency varies based on your application status and membership activity.
Message and data rates: Standard carrier message and data rates may apply.
Opt-out: Reply STOP to any SMS message to unsubscribe immediately. You will receive a single confirmation and no further messages will be sent.
Help: Reply HELP or contact support@upgsociety.com for assistance.
No sharing: We do not share your phone number or SMS consent data with third parties for their own marketing purposes.
5. Sharing Your Information
We do not sell your personal information. We may share your information with:
- Service providers: GoHighLevel (CRM), Stripe (payments), Google Analytics, Meta (advertising analytics), and other tools used to operate our business. These providers are contractually bound to protect your data.
- Partner network: Where necessary to fulfil concierge services you have requested, we may share relevant details with vetted partners. We will inform you before doing so.
- Legal requirements: Where required by law or to protect our legal rights.
6. Cookies and Tracking
We use cookies and similar technologies to analyse website traffic, measure advertising performance, and personalise your experience. These include:
- Google Analytics (GA4): Traffic and behaviour analysis.
- Google Tag Manager: Tag management for analytics and marketing tools.
- Meta Pixel: Advertising performance measurement and audience building.
You can manage cookie preferences through your browser settings. Declining cookies may affect certain website functionality.
7. Data Retention
We retain your personal information for as long as necessary to fulfil the purposes described in this policy, or as required by law. Application data for unsuccessful applicants is retained for up to 12 months. Member data is retained for the duration of membership and up to 3 years thereafter.
8. Data Security Practices
We implement appropriate technical and organisational measures to protect your personal information against unauthorised access, loss, disclosure, or destruction. Our security practices include:
- Encrypted transmission: All data submitted through our website is transmitted over HTTPS using TLS encryption.
- Access controls: Access to personal data is restricted to authorised personnel only, on a need-to-know basis.
- No storage of payment data: We do not store credit card or payment information on our servers. All payment processing is handled directly by Stripe, which is PCI-DSS compliant.
- Third-party security standards: Our service providers, including GoHighLevel and Stripe, maintain their own security programmes and are contractually required to protect your data.
- Regular review: We periodically review our data handling practices and update our security measures as needed.
While we take all reasonable steps to protect your information, no method of transmission over the internet is 100% secure. If you believe your data has been compromised, contact us immediately at support@upgsociety.com.
9. Your Rights
Depending on your location, you may have the right to access, correct, delete, or restrict the processing of your personal information. To exercise any of these rights, contact us at support@upgsociety.com. We will respond within 30 days.
10. Children's Privacy
Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from anyone under 18. If you believe we have inadvertently collected such information, please contact us immediately.
11. Changes to This Policy
We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated date. Continued use of our services after changes are posted constitutes your acceptance of the revised policy.
12. Contact
For privacy-related questions or requests, contact us at:
The Upgrade Society
Email: support@upgsociety.com
Website: upgsociety.com
See also our Terms of Service.
Your Rights Under California Law (CCPA/CPRA)
If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), including:
- Right to Know: You may request disclosure of the categories and specific pieces of personal information we have collected about you.
- Right to Delete: You may request deletion of personal information we have collected, subject to certain exceptions.
- Right to Correct: You may request correction of inaccurate personal information.
- Right to Opt-Out of Sale/Sharing: We do not sell your personal information. We do not share your personal information for cross-context behavioral advertising.
- Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA/CPRA rights.
To exercise any of these rights, contact us at support@upgsociety.com. We will respond within 45 days as required by law.
Your Rights Under EU/UK Law (GDPR)
If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have rights under the General Data Protection Regulation (GDPR), including:
- Right of Access: You may request a copy of the personal data we hold about you.
- Right to Rectification: You may request correction of inaccurate or incomplete data.
- Right to Erasure: You may request deletion of your personal data where there is no compelling reason for continued processing.
- Right to Restrict Processing: You may request restriction of processing in certain circumstances.
- Right to Data Portability: You may request transfer of your data in a structured, machine-readable format.
- Right to Object: You may object to processing based on legitimate interests or direct marketing.
- Right to Withdraw Consent: Where processing is based on consent, you may withdraw it at any time.
Legal Basis for Processing: We process your personal data based on: (a) your consent (e.g., when you submit an application), (b) performance of a contract (e.g., membership services), and (c) legitimate interests (e.g., improving our services and fraud prevention).
International Transfers: Your data may be transferred to and processed in the United States. We implement appropriate safeguards including standard contractual clauses approved by the European Commission.
To exercise any GDPR rights, contact our Data Protection contact at support@upgsociety.com. You also have the right to lodge a complaint with your local supervisory authority.