Privacy Policy
Last updated: June 19, 2026 · CUNinjas is operated by Futureville, LLC.
Terms of Service · DMCA Policy
Who We Are
CUNinjas is an online community and information service for credit-union professionals, located at cuninjas.com (the "Service"). The Service is operated by Futureville, LLC ("Company", "we", "us", or "our"), a limited liability company organized under the laws of the State of Wyoming.
This Privacy Policy explains what personal information we collect through the Service, how we use and share it, and the choices you have. By using the Service, you acknowledge the practices described here. This Policy is part of, and should be read together with, our Terms of Service.
Scope
This Policy applies to personal information we collect through the Service from our members and visitors. The Service is intended for credit-union and industry professionals located in the United States who use it for business and professional purposes.
This Policy does not apply to information about credit unions or other institutions that we obtain from public sources (such as public NCUA Call Report data), which is information about organizations rather than about you as an individual. It also does not apply to third-party websites that we link to (including the publisher articles surfaced in our newsfeed), which have their own privacy practices.
Information We Collect
(a) Information you provide to us.
- Registration and account information: your first and last name, your work email address (which also serves as your login), and a password. Your password is never stored in readable form — we keep only a one-way cryptographic hash of it.
- Employer / credit-union affiliation: the credit union or vendor organization you are associated with. We suggest this from your work-email domain at registration, and it can be corrected.
- Professional profile details: your job title, your primary department or functional area, an optional profile photo, a discussion signature, an optional LinkedIn profile URL, and optional "spotlight" write-ups (such as a short bio, your proudest accomplishments, biggest challenges, and best advice).
- Content you post: discussion topics and posts (and any file attachments), vendor reviews (numeric ratings and free-text comments), job postings, articles or bylines you author, and reactions you add to posts.
- Preferences: your email and notification preferences (including marketing opt-in and per-forum digest settings), topic mutes, and your contact-visibility choice (whether your email is shown to other members next to your posts).
- Multi-factor authentication setup: if you choose to enable multi-factor authentication, we store the configuration needed to verify your authenticator codes. This is generated when you enroll in multi-factor authentication, not collected passively.
- Communications: messages you send us (for example, support or moderation requests) and information you provide when you participate in surveys.
(b) Information we collect automatically.
- Server and web logs: like most websites, our servers automatically record standard request metadata when you use the Service, which may include your IP address, your browser type and user-agent, timestamps, and the pages or resources requested. We use these logs to operate, secure, and troubleshoot the Service.
- Search activity: when you use site search, we log the search query, the number of results, whether you were signed in, your IP address, and the time of the search.
- Apply-click activity: when you click the "Apply" link on a job posting, we log that click, whether you were signed in, your IP address, the referring page, and the time. This is used as internal analytics and is not shown to the employer.
- Account and security data: sign-in timestamps, account-creation date, and your registration/approval status.
- Subscription data: your membership tier and any related expiry dates.
- Cookies and similar technologies: a session cookie to keep you signed in, a security (CSRF) cookie to protect form submissions, and — if you choose — a "trusted device" cookie so you are not re-prompted for multi-factor authentication. See Cookies & Tracking below.
We do not use third-party analytics, advertising, or tracking software on the Service. The usage data described above is collected first-party, by us, for operating and improving the Service.
(c) Information from third-party and public sources.
- Public NCUA data: the benchmarking and credit-union profile features (CU411) are built on public NCUA Call Report data. That data is about credit unions as institutions, not about you as an individual.
- Employer suggestion: we match your work-email domain against organization records to suggest your employer at registration.
(d) Payment information.
Certain paid membership tiers are or may become available. When online payment is enabled, payments are expected to be handled by a third-party payment processor (such as Stripe). In that case, you would provide your card or payment details directly to the processor, subject to the processor's own terms and privacy policy. We do not store full payment card numbers. We may retain limited records such as which tier you hold, billing status, and renewal dates.
(e) Members migrated from the prior platform.
Approximately 12,200 members were migrated to CUNinjas from a predecessor community (formerly known as EverythingCU / CUMarketingDept). For those accounts we carried over profile and content information, but we did not carry over any usable password — migrated members must set a new password through the password-reset ("claim your account") flow before signing in.
How We Use Your Information
- To create and operate your account, authenticate you, and provide the Service's features.
- To display your profile and the content you post according to your visibility settings.
- To send transactional messages (account confirmation, approval, password reset) and, where you have not opted out, discussion digests and occasional updates.
- To personalize and improve the Service, including understanding which features and searches are used.
- To maintain security, prevent abuse and fraud, enforce our Terms, and review registrations and posted content.
- To administer paid memberships and process payments through our payment processor.
- To comply with legal obligations and respond to lawful requests.
How We Share Your Information
- With other members, per your visibility settings. Your profile and the content you post may be visible to other members or to the public depending on the settings you choose. For vendor reviews, the review text is shown, but whether your name and credit union are revealed depends on the review's visibility setting: shown to all signed-in members (including the reviewed vendor), shown only to fellow credit-union members, or shown to no one but site administrators. The logged-out public never sees a reviewer's name or credit union — only an anonymized asset-size band (for example, "A $250M–$1B credit union"). Your email is shown next to your posts only if you opt in.
- With vendors. A vendor that has claimed its directory listing can reply to reviews and, under the default review visibility, may see the reviewing member's name and credit union.
- With service providers. We share information with vendors who perform services for us, such as our email delivery provider, hosting/infrastructure provider, and (for paid tiers) our payment processor. They are permitted to use the information only to provide services to us.
- For legal and safety reasons. We may disclose information where we believe it is reasonably necessary to comply with law, enforce our Terms, or protect the rights, safety, or property of the Company, our members, or others.
- In a business transfer. If the Company is involved in a merger, acquisition, financing, or sale of assets, information may be transferred as part of that transaction.
- Aggregated or de-identified information. We may share information that does not identify you.
We do not sell your personal information, and we do not share it for cross-context behavioral advertising.
Cookies & Tracking
We use a small number of strictly functional cookies:
- A session cookie to keep you signed in.
- A security (CSRF) cookie to protect against cross-site request forgery.
- An optional "trusted device" cookie so multi-factor authentication is not requested again on a device you have approved.
We do not use advertising cookies or third-party analytics or tracking pixels. Because these cookies are needed for the Service to function, disabling them in your browser may prevent you from signing in or using parts of the Service.
Your Choices & Rights
- Access and update. You can review and update most of your profile and account information directly in your profile settings.
- Email preferences. You can manage notification and marketing preferences in your settings, and you can unsubscribe from non-transactional emails using the link in those messages. We may still send you transactional messages (such as password resets) that are necessary to operate your account.
- Account deletion. You may request that we close your account by contacting us at privacy@cuninjas.com. Please note that, as described in Data Retention below, some content you have posted may remain on the Service after your account is closed, in de-identified form.
California residents (CCPA/CPRA). If you are a California resident, you may have the right to request access to the categories and specific pieces of personal information we have collected about you, including the categories of sources from which it was collected and the business or commercial purposes for collecting it (each of which is described above); to request deletion or correction of that information; to opt out of the "sale" or "sharing" of personal information and to limit the use of sensitive personal information (rights that, as noted, are not triggered here because we do not sell or share your personal information or use it for cross-context behavioral advertising); and to be free from retaliation or discrimination for exercising your rights. You may submit a request yourself or, where permitted, through an authorized agent acting on your behalf. To exercise these rights, contact us at privacy@cuninjas.com; we will verify your request (and an authorized agent's authority) before responding, consistent with applicable law. If we decline a request, you may appeal that decision by replying to our response or contacting us at the same address.
Do Not Track. Some browsers offer a "Do Not Track" signal. There is no common industry standard for how to respond to these signals, and because we do not track you across third-party websites, the Service does not currently respond to them.
Data Retention
We keep personal information for as long as your account is active and as needed to provide the Service, and afterward as needed to meet legal, security, dispute-resolution, and recordkeeping needs.
Because the Service is a shared community, some information is designed to persist after an account is closed. In particular, content you posted (such as discussion posts, vendor reviews, job postings, and authored articles) and certain log records may be retained after deletion, but are de-linked from your account so they no longer identify you by name. Job postings and certain other items are deactivated or marked with a status rather than permanently erased.
Security
We use reasonable administrative and technical safeguards to protect your information. Passwords are stored only as one-way hashes and are checked against strength requirements at sign-up. Multi-factor authentication is available. In production, the Service uses encrypted (HTTPS) connections and secure, HTTP-only session and security cookies.
No method of transmission or storage is completely secure, however, and we cannot guarantee absolute security. Please use a strong, unique password, enable multi-factor authentication, and keep your credentials confidential.
Children's Privacy
The Service is intended for credit-union and industry professionals and is not intended for or directed to minors. We do not knowingly collect personal information from children under 16, and we do not knowingly collect personal information from children under 13. If you believe a child has provided us personal information, please contact us at privacy@cuninjas.com and we will take appropriate steps to remove it.
Public & Community Nature of the Service
CUNinjas is a community platform. Depending on your visibility settings, your profile and the content you post may be visible to other members and, in some cases, to the public. Posts marked "anonymous" are hidden from other members' view, but your authorship is still recorded internally. The "anonymous" option and the vendor-review visibility settings control only how your content is displayed to other users; they do not make your content anonymous to us. The Company and its moderators and administrators can always associate content with the authoring account internally, including for moderation, security, and legal purposes. Please use discretion: do not post confidential information, material non-public information, or other people's personal information, and assume that anything you share in the community may be seen by others.
Changes to this Policy
We may update this Privacy Policy from time to time. When we do, we will revise the "Last updated" date above and, where appropriate, provide additional notice. Your continued use of the Service after an update means you acknowledge the revised Policy.
How to Contact Us
If you have questions about this Policy or your information, contact us at:
- Email: privacy@cuninjas.com
- Futureville, LLC, 26992 Cox Drive, Mechanicsville, MD 20659