How we handle your information

Our website runs on a managed hosting and backend platform. The platform provides transport encryption (HTTPS), managed database access and infrastructure patching. 4R Legacy Inc. is responsible for the application code, the data we choose to collect, access controls inside the database, and how we communicate with you.

Nothing on this page should be read as a certification, audit attestation, regulatory compliance claim, or guarantee against incidents.

When you record a gift on our donation page, we collect:

• Your name and email address
• The amount, method and date of your gift
• An optional note (tribute, sponsorship, instructions)

Payments themselves are processed by third-party providers (Zeffy, PayPal, Cash App). We do not see or store card numbers, bank credentials, or payment provider login information.

Donor records are stored in a managed Postgres database. Reads and writes from the website go through server-side code that uses scoped credentials. Public visitors cannot list, browse, or query donor records — receipts are looked up only by the opaque receipt number that we display to the donor.

Submissions to the receipt form are protected by a server-issued form token and anti-bot honeypot to discourage automated abuse of the receipt and email pipeline.

We use your email address to send your tax receipt and, if you opt in elsewhere on the site, occasional organizational updates. We do not sell donor email addresses. You can ask us to stop emailing you at any time by writing to info@4rlegacy.org.

The site uses only the cookies and local storage required to keep the site working (for example, remembering preferences). We do not deploy third-party advertising trackers on this page today. If we add analytics in the future, this page will be updated to describe what is collected.

We rely on the following third parties to operate the site and donor experience:

• Managed web hosting and serverless runtime
• Managed Postgres database and authentication
• Payment processors you choose: Zeffy, PayPal, Cash App

Each provider operates under its own privacy policy. We share with them only the data needed to deliver the service you requested (for example, the email address required to send your receipt).

Donation records are retained as long as needed to support tax substantiation, financial reporting and IRS recordkeeping requirements applicable to a 501(c)(3) organization. You can request deletion of personal information that is not required for those records by writing to info@4rlegacy.org.

If you believe you have found a vulnerability in our website, or you received an email that looks suspicious and claims to be from 4R Legacy Inc., please contact info@4rlegacy.org with details. Please do not test against live donor data.

Questions about this page or about how we handle your information? Contact us or email info@4rlegacy.org. 4R Legacy Inc. is a registered 501(c)(3) organization.

Last updated June 2026.