Privacy Policy

This Privacy Policy explains how Sorcore ("we", "us") collects, uses, and protects information when you use sorcore.com and our services.

Information We Collect

• Account data: name, email, password (hashed), invite codes.
• Transaction data: plan purchases, payment method (tokenized), transaction IDs.
• Usage data: IP, device, pages viewed, referral codes.

How We Use Information

• Provide and operate services (signup, login, purchases, rewards, withdrawals).
• Prevent fraud, secure accounts, and comply with legal obligations.
• Send service and marketing communications (you can unsubscribe anytime).

Sharing

We share necessary data with trusted processors (e.g., Stripe for payments) under appropriate safeguards. We do not sell personal data.

Security

We use technical and organizational measures to protect your data. No method is 100% secure; please keep your credentials private.

Your Rights

You may request access, correction, or deletion of your data where applicable. Contact support@sorcore.com.

Data Retention

We retain data for as long as needed to provide services and meet legal requirements.

International Transfers

Data may be processed in locations where our providers operate, subject to safeguards.

Changes

We may update this policy and will post the latest version on this page.

Contact

Questions? Email support@sorcore.com.

Additional Privacy Details

Account Identification

We collect your name and email to create and secure your Sorcore account and to communicate essential service notices.

Password Protection

Passwords are stored using strong one‑way hashing and never in plain text. We recommend unique credentials.

Security Logging

We log sign‑in attempts, IP addresses, device identifiers, and timestamps to protect your account from fraud and abuse.

Payment Processing (Stripe)

Card details are handled by Stripe. We receive tokens and transaction references only for reconciliation and support.

Crypto Transactions

When paying with crypto, we process wallet addresses and transaction IDs strictly to verify payment and activate services.

Referral Metadata

Invite codes and referral ties are stored to apply discounts and rewards, and to prevent program abuse.

Session Cookies

Session cookies maintain authentication and checkout state. See our Cookie Policy for details.

Analytics

We use analytics to measure product performance and reliability. Data is aggregated where possible.

Marketing Communications

We may send product updates and offers with a lawful basis. You can unsubscribe via email links anytime.

Support Records

Support messages may be retained to improve service quality and resolve future issues faster.

Data Minimization

We collect only what we need to deliver services and comply with obligations, nothing more.

Retention

We keep data while your account is active and thereafter only as long as required by law or legitimate interests.

Backups

Encrypted backups are performed on a schedule and retained for a limited window for disaster recovery.

Access Controls

Production access is restricted to authorized personnel and is logged and periodically reviewed.

Transport Encryption

All traffic to sorcore.com uses TLS/HTTPS to protect data in transit from interception or tampering.

Pseudonymization & Aggregation

Where possible, we pseudonymize or aggregate data to reduce privacy risk while enabling insights.

No Children’s Data

Sorcore is for adults (18+). We do not knowingly collect data from children and remove it if discovered.

Data Subject Rights

Subject to law, you may request access, correction, deletion, and portability of your personal data.

Identity Verification

For security, we may verify your identity before actioning sensitive privacy requests.

Change Notifications

Material changes to this policy will be announced on the Site and/or via email where practical.

Law Enforcement

We respond to lawful requests where legally required, after verifying scope and authority.

International Transfers

Where data moves internationally, we use safeguards like Standard Contractual Clauses as applicable.

Subprocessors

We vet third‑party providers for security and privacy and bind them by contract to appropriate protections.

No Sale of Personal Data

We do not sell personal information. Limited sharing occurs only to deliver the service.

Advertising Signals

If ads are used, we send only minimal signals and honor applicable choices and consents.

Rate Limiting

We rate‑limit authentication and critical endpoints to protect against brute force and abuse.

Behavior Monitoring

Automated systems monitor unusual activity to detect fraud and account compromise.

Log Management

Security logs with IPs and user agents are access‑controlled and rotated on a retention schedule.

Security Reviews

We conduct periodic security reviews and apply vendor patches promptly.

Incident Response

We maintain procedures for detection, containment, and notification of security incidents.

Consent Management

Where consent applies, you may withdraw it at any time without affecting prior lawful processing.

Automated Decisions

Automated checks are limited to operations like fraud prevention and do not profile for unrelated purposes.

Data Inventory

We maintain a data inventory mapping systems, purposes, and retention to support compliance.

Role‑Based Access

Only staff with a need‑to‑know can access personal data; access is reviewed regularly.

Staff Authentication

Internal tools require strong authentication and adhere to least‑privilege principles.

Data Portability

Where feasible, exports are provided in a commonly used, machine‑readable format.

Backup Deletion Windows

Deleted data may persist temporarily in encrypted backups until routine rotation.

Referral Anti‑Abuse

We validate referral eligibility using purchase status and audit signals to deter abuse.

Service Announcements

Operational announcements (e.g., outages) may be sent even if marketing is disabled.

Privacy Contact

For privacy questions, contact support@sorcore.com.