Last updated: April 2026 Effective date: April 2026
This is a working draft for legal review before public publication. LE-1: Updated to reflect two-entity structure. CEO/legal sign-off required before merge.
The FutureProof platform is operated jointly by Future Proof Products Inc. (a Canadian corporation, "FP Canada") and Future Proof Products USA (a Delaware C corporation, "FP USA") (together, "FutureProof," "we," "our," "us"). Both entities are joint controllers of your personal information under this policy. FP Canada is the lead controller for Canadian users; FP USA is the lead controller for US users. The controller for your data is determined by which entity processes your transactions.
For privacy inquiries: [privacy@futureproofproducts.com]
fp_cid) used for referral attribution and fraud prevention| Purpose | Legal basis |
|---|---|
| Process your order and deliver products | Contract performance |
| Calculate and collect sales tax | Legal obligation (marketplace facilitator laws) |
| Attribute referral purchases and calculate creator earnings | Legitimate interest / Contract |
| Detect and prevent fraud and self-referral abuse | Legitimate interest |
| Communicate order status and account information | Contract performance |
| Comply with tax reporting and remittance obligations | Legal obligation |
| Improve platform performance and reliability | Legitimate interest |
Future Proof Products operates a creator referral program. When you click a referral link shared by another user:
fp_ref is set in your browser containing the referral code. This cookie expires after 30 days.fp_cid is set containing a randomly generated identifier for your browser session. This is used for fraud detection only.Your IP address is never stored in its raw form. It is immediately converted to a keyed one-way cryptographic hash (HMAC-SHA-256) before any database write. This hash cannot be reversed to recover your IP address. [draft for counsel review — do not publish as final]
If you complete a purchase within 30 days of clicking a referral link, the purchase is attributed to the referring user and a commission is calculated. The referral attribution is product-specific.
If you are logged in when you click a referral link, the attribution is also bound to your account, which means it persists even if you clear cookies before purchasing.
We use the following cookies:
| Cookie | Purpose | Duration | Type |
|---|---|---|---|
fp_session |
Authentication — keeps you logged in | Session / 30 days | Essential |
fp_ref |
Referral attribution — tracks which referral link you clicked | 30 days | Tracking |
fp_cid |
Browser fingerprint for fraud detection | 30 days | Functional |
Essential cookies are required for the platform to function. They cannot be disabled without breaking core functionality including login and checkout.
Tracking and functional cookies are used for referral attribution and fraud prevention. Depending on your location, you may be asked to consent to these cookies before they are set.
If you are located in the European Union or European Economic Area, tracking and functional cookies will not be set until you provide explicit consent.
If you are located in Canada or the United States, a cookie notice will be displayed. By continuing to use the platform, you acknowledge our use of cookies as described in this policy.
Draft for counsel review — do not publish as final. Updated by AUDIT-PRIV-3: IP geolocation row removed; jurisdiction is now derived from Vercel/CDN edge headers without transmitting visitor IPs to any third party.
We share data with the following third parties to operate the platform:
| Provider | Purpose | Their privacy policy |
|---|---|---|
| Stripe | Payment processing, tax calculation, vendor payouts | stripe.com/privacy |
| [Email provider] | Transactional emails (order confirmations, magic links) | [Link] |
We do not sell your personal information to third parties. We do not use your data for advertising.
If you participate in the referral program as a creator:
| Data type | Retention period | Enforced by |
|---|---|---|
| Account information | Duration of account + 2 years after deletion request | processDeletion() in apps/web/src/lib/deletion.ts |
| Order records | 7 years (tax and legal compliance) | Legal hold — no destruction job |
| Creator earning records | 7 years (tax reporting) | Legal hold — no destruction job |
| Payment records | 7 years (financial compliance) | Legal hold — no destruction job |
| Referral click records | 90 days after click, or 7 years if converted to an order | runRetentionDestruction() daily cron /api/cron/data-retention [draft for counsel review — do not publish as final] |
| Audit log entries | 7 years (conflict — see note below) | Permanent — no destruction job |
| Cookie consent records | 3 years | runRetentionDestruction() daily cron /api/cron/data-retention [draft for counsel review — do not publish as final] |
| IP hashes (fraud detection) | 90 days (vendor login hash: 12 months) | runRetentionDestruction() daily cron /api/cron/data-retention [draft for counsel review — do not publish as final] |
| Export download links | 48 hours (token and IP hash nulled; row retained as PIPEDA evidence) | runRetentionDestruction() daily cron /api/cron/data-retention [draft for counsel review — do not publish as final] |
| Buyer identity verification documents (government ID) | Destroyed immediately when a verification decision (approve or reject) is recorded, or when your account is deleted — whichever comes first. Only the document type (e.g. "passport"), verification status, timestamps, and reviewer metadata are retained as an audit trail. Document files are stored encrypted at rest in a private storage store not accessible via public URLs. [draft for counsel review — do not publish as final] | processDeletion() + admin verification decision route |
Unreconciled retention figures — pending counsel/CPA decision (do not publish as final): the financial-record rows above (Order/Creator earning/Payment) state 7 years here but 6 years in
docs/DELETION-POLICY.md(CRA basis), and Audit log entries read 7 years here while the enforcement is Permanent (immutable audit trail, no destruction job). These figures are intentionally left divergent — AUDIT-PRIV-4 implements only the destruction jobs, not the policy numbers. The exact retention periods are a legal/CPA decision (the newer PRIVACY-POLICY draft is unreviewed, so CLAUDE.md's "follow the newer doc" rule does not apply). Reconcile before this policy is published.
Depending on your location, you may have the following rights regarding your personal information:
To exercise these rights, contact us at [privacy@futureproofproducts.com]. We will respond within 30 days.
Note: Certain data cannot be deleted due to legal obligations (order records, tax records, audit logs for financial transactions).
You can request deletion of your account from Account → Settings on the platform. When you request deletion:
What is retained: Order records, payment records, tax records, payout records, and audit logs are retained for a minimum of 6 years as required by Canadian tax law (CRA) and financial compliance obligations. These records are associated with your anonymized account and cannot be linked back to your identity.
Staff accounts (Admin, Super Admin) cannot self-delete. Contact the platform owner for staff account management.
Blocking conditions: You cannot delete your account while you have open orders, pending withdrawals, open return requests, active vendor listings, or active collaboration agreements. Resolve these first, then request deletion.
If you are unable to use the self-service deletion feature, contact [privacy@futureproofproducts.com] and we will process your request within 30 days.
You have the right to receive a copy of your personal data in a structured, machine-readable format. To request a data export:
What the export includes:
What the export does NOT include:
The export is delivered as a ZIP file containing JSON and CSV files with a README explaining all fields. Only one export request can be active at a time.
We implement the following safeguards:
This platform is not directed at children under 13 (or under 16 in the EU). We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, contact us at [privacy@futureproofproducts.com].
We may update this policy as the platform evolves. Material changes will be communicated to registered users by email or prominent notice on the platform. The "last updated" date at the top of this page reflects the most recent revision.
Continued use of the platform after notice of changes constitutes acceptance of the updated policy.
Future Proof Products Inc. (FP Canada) Future Proof Products USA (FP USA) [privacy@futureproofproducts.com]
For users in Canada: You have the right to file a complaint with the Office of the Privacy Commissioner of Canada (priv.gc.ca).
For users in the EU/EEA: You have the right to lodge a complaint with your local data protection authority.
FutureProof — Privacy Policy Draft v1.1 — April 2026 (LE-1 update) This document requires legal review before publication.
v1.0 - March 2026 - Initial draft