Skip to content
Central Uplift

// LEGAL

Privacy Policy

Effective: April 25, 2026 · Last updated: April 25, 2026

Privacy Policy

Effective: April 25, 2026 Last updated: April 25, 2026 Entity: Central Uplift LLC, a Pennsylvania limited liability company Address: 37 Forsythe Rd, Pittsburgh, PA 15220 Contact for privacy matters: privacy@centraluplift.com

This Privacy Policy explains what information Central Uplift LLC (“Central Uplift”, “we”, “us”, “our”) collects when you visit centraluplift.com or use CU Command (our software platform), how we use that information, and the choices you have. It applies to visitors to our website, customers who use CU Command, and prospects who interact with us through forms, email, SMS, or phone.

If you don’t want to read the whole thing, the short version is: we collect what we need to sell and run the platform, we don’t sell your data, we don’t share your phone number with third parties for marketing, we follow the laws that apply to us (CCPA, CPRA, GDPR where relevant, and the federal frameworks that govern email and SMS in the US), and you can ask us to delete what we have at any time.

1. What we collect

We collect three categories of information.

Information you give us directly. This includes your name, business name, business address, email address, phone number, job title, and any details you submit through forms on centraluplift.com (demo requests, contact forms, support tickets, pricing inquiries). When you become a customer, we additionally collect billing information through Stripe (we never store full card numbers ourselves — Stripe does, in a PCI-compliant environment).

Information collected automatically when you visit centraluplift.com. This includes your IP address (truncated for privacy where the law requires), browser type and version, operating system, the pages you visit, the actions you take on those pages (clicks, scroll depth, time on page), the website that referred you to us, and approximate location derived from your IP address (city level, not precise GPS). We collect this through PostHog, our product analytics provider, and Cloudflare, our content delivery network.

Information generated by your use of CU Command (customers only). This includes your CU Command login activity, the records you create and modify in the platform (contacts, leads, deals, automations), the messages your team sends through the platform, call recordings where your team has consent to record, and the configuration choices you make.

We do not collect biometric data, race or ethnicity, religious beliefs, political opinions, sexual orientation, or other special-category personal information. We do not knowingly collect information from anyone under 18 years of age.

2. How we use it

We use information to:

  • Provide and operate centraluplift.com and CU Command.
  • Authenticate you and protect your account.
  • Bill you and process payments.
  • Send you transactional messages (account notifications, billing receipts, security alerts, support replies, product updates that affect your account). You can’t opt out of these — they’re required for the service to work.
  • Send you marketing messages about Central Uplift if you’ve opted in. You can opt out of marketing at any time using the unsubscribe link in any marketing email or by replying STOP to any marketing SMS.
  • Improve our product. We look at aggregated, anonymized usage patterns to understand which features are working and which aren’t.
  • Comply with our legal obligations.
  • Investigate and prevent fraud, abuse, and security incidents.

We do not use information to train artificial intelligence models on your customer data without your explicit, written authorization.

3. Who we share it with

We share information with the following categories of recipients, only as needed to operate the service:

Subprocessors and service providers that run pieces of our infrastructure on our behalf. The current list:

  • Stripe, Inc. — payment processing
  • Twilio, Inc. — voice and SMS infrastructure
  • Resend, Inc. — transactional and lifecycle email delivery
  • Cloudflare, Inc. — content delivery, edge compute, DDoS protection
  • PostHog, Inc. — product analytics, session replay, error tracking
  • Anthropic PBC — AI model inference (only when you use AI features within CU Command, and only the data needed to fulfill your request)
  • Google LLC (Workspace) — internal email and document storage for Central Uplift staff

This list is current as of the effective date above. We update it when we add or remove subprocessors. If you’re a customer, we’ll notify you of material changes to this list with reasonable advance notice.

Authorities and law enforcement when required by law (subpoena, court order, valid legal process), or when we have a good-faith belief that disclosure is necessary to prevent imminent harm.

Acquirers, in the event Central Uplift is involved in a merger, acquisition, or sale of assets. We’ll notify you before your information transfers in that scenario.

We do not sell your personal information. We never have, and we don’t plan to. This applies to every category of information we collect, including the categories that are sold by some other companies (browsing history, location, etc.).

Specifically regarding mobile phone numbers and SMS opt-ins: No mobile information collected through SMS opt-in on centraluplift.com or within CU Command is shared with third parties or affiliates for marketing or promotional purposes. Phone numbers collected for one-time-password authentication, account verification, or transactional messaging are used only for those purposes.

4. Cookies and similar technologies

We use a small number of first-party and third-party cookies on centraluplift.com:

  • Essential cookies for things like keeping you logged in and remembering your cookie preferences. These can’t be turned off; without them the site doesn’t work.
  • Analytics cookies set by PostHog to understand how visitors use the site. You can opt out of these in our cookie banner or by enabling Do Not Track in your browser, which we honor.
  • Advertising cookies. We don’t currently run retargeting or advertising cookies on centraluplift.com. If we do in the future, we’ll update this section and update the cookie banner accordingly.

Full details, including the specific cookies and their purposes, are in our Cookie Policy.

5. Your rights and choices

Depending on where you live, you may have specific rights regarding your personal information. We honor these rights for everyone, regardless of jurisdiction:

  • Access: Ask for a copy of the information we have about you.
  • Correction: Ask us to fix information that’s wrong.
  • Deletion: Ask us to delete information we have about you. We’ll delete it unless we’re legally required to keep it (for example, billing records we need for tax purposes).
  • Portability: Ask for your CU Command data in a machine-readable format.
  • Opt-out of marketing: Use unsubscribe links in marketing emails, reply STOP to marketing SMS, or email privacy@centraluplift.com.
  • Opt-out of “sale” or “sharing”: We don’t sell or share for cross-context behavioral advertising — but if you want to formally exercise this right, email privacy@centraluplift.com.
  • Limit use of sensitive personal information: As above — we don’t collect categories of sensitive personal information that would trigger this right, but the option to formally exercise it exists.

To make any of these requests, email privacy@centraluplift.com. We respond within the timeframes the relevant law requires (45 days under CCPA/CPRA; 30 days under GDPR; sooner where possible). We’ll need to verify your identity before acting on requests so we don’t accidentally disclose your information to someone else.

If you’re in California, you also have the right to designate an authorized agent to make requests on your behalf, and the right to non-discrimination — exercising any of these rights doesn’t change the price you pay or the service you receive.

If you’re in the European Economic Area, the United Kingdom, or Switzerland, your legal basis for our processing is one of: (a) performance of our contract with you, (b) compliance with our legal obligations, (c) our legitimate interests in operating and improving the service (balanced against your rights), or (d) your consent. You have the right to lodge a complaint with your local data protection authority.

6. Data retention

We keep information only as long as we need it for the purposes listed in this policy.

  • Account information: for as long as you have an active account, plus a reasonable post-termination window for legal and operational reasons (typically 1 year for general account data, 7 years for billing records as required by US tax law).
  • Marketing prospect data: until you ask us to delete it or opt out, then 30 days for our suppression list, after which it’s purged.
  • Website analytics: PostHog retains event data for 1 year (per our PostHog plan); aggregate analytics indefinitely.
  • TCPA / opt-in records: 4 years from the date of the most recent communication, as required to defend against TCPA claims.
  • Backups: routinely overwritten on a 90-day cycle. If you ask us to delete your data, deletion takes effect immediately in our production systems and within 90 days in our backup systems.

7. Security

We follow industry-standard practices to protect information: encryption in transit (TLS 1.3), encryption at rest (AES-256), least-privilege access controls for our team, audit logging on production systems, automated vulnerability scanning, and regular security review. We require subprocessors to maintain comparable security practices.

No system is perfectly secure. If we ever experience a security incident that affects your information, we’ll notify you and the relevant authorities as required by law.

8. International data transfers

Central Uplift is based in the United States. If you access our service from outside the US, your information will be transferred to and processed in the US. Where required by law (for example, transfers from the EU/UK/Switzerland), we rely on Standard Contractual Clauses or other lawful transfer mechanisms with our subprocessors.

9. Children

centraluplift.com and CU Command are intended for businesses and the people who run them — not for children. We don’t knowingly collect personal information from anyone under 18. If you’re a parent or guardian and you believe a child has submitted information to us, email privacy@centraluplift.com and we’ll delete it.

10. Changes to this policy

We update this policy from time to time. The “Last updated” date at the top reflects the most recent change. For material changes — for example, new categories of information collected or new ways we use information — we’ll notify customers by email at least 30 days before the change takes effect, and update the version note here.

11. How to reach us

For any privacy-related question or request:

  • Email: privacy@centraluplift.com
  • Mail: Central Uplift LLC, Attn: Privacy, 37 Forsythe Rd, Pittsburgh, PA 15220
  • Phone: +1 (412) 775-2751

We aim to respond within 5 business days for general inquiries and within the legally required timeframe for formal rights requests.