About FAQ Contact
Sign In

Privacy Policy

CS Action Group, Inc. (“CSAG,” “Actionable,” “we,” “our,” or “us”) operates the Actionable platform (“Platform”). This notice outlines the information we collect, how it is used, and the commitments we share with our Customer Partners to keep your data private and secure.

Effective Date
November 1, 2025
Operator
CS Action Group, Inc.
Address
3871 Piedmont Ave, #364, Oakland, CA 94611

Overview

Actionable is a hosted engagement and communications platform licensed to third-party organizations (“Customer Partners”). CSAG provides secure infrastructure, safeguards, and compliance oversight while Customer Partners use the Platform to manage campaigns, petitions, advocacy efforts, and other digital experiences.

CSAG (Data Processor)

  • Hosts and secures the Platform
  • Manages infrastructure-level safeguards
  • Oversees compliance support

Customer Partner (Data Controller)

  • Manages its audience and communications
  • Determines lawful use of personal data collected
  • Honors its own posted privacy notices

Both CSAG and each Customer Partner are committed to protecting your personally identifiable information (“PII”) and to handling it in accordance with this Policy, applicable laws, and any additional notices they publish.

Information We Collect

We collect and process data in three ways: directly from you, automatically through the Platform, and via integrated third-party services.

a. Personal Information (PII)

Depending on the features you use, we and our Customer Partners may collect:

  • Name, email address, telephone number, and mailing address
  • Account credentials (username, password, or single-sign-on ID)
  • Profile photo or avatar (if uploaded)
  • Social media IDs (if connected)
  • Device and browser information, including IP address

Certain features may not function without basic identifiers.

b. User-Generated Content

Content you post or submit—such as messages, petitions, testimonials, or comments—will be visible according to the settings chosen by the Customer Partner operating that experience.

c. Automatically Collected Information

We may collect:

  • Device, browser, and operating-system data
  • Usage activity (pages visited, actions taken, session duration)
  • Approximate location information derived from IP address
  • Cookies, pixels, beacons, and similar analytics tags

How We and Our Customer Partners Use Information

How CSAG Uses Your Data

  • Host, operate, and secure the Platform
  • Maintain account functionality, sessions, and authentication
  • Provide analytics, reliability monitoring, and fraud prevention
  • Fulfill legal, regulatory, and contractual obligations
  • Support Customer Partners with user support or compliance requests

How Customer Partners Use Your Data

  • Communicate about petitions, campaigns, and related activities
  • Process your actions, such as messages to lawmakers
  • Manage membership lists, outreach, or event registrations
  • Meet their own legal obligations and privacy commitments

All Customer Partners must comply with our Terms of Service and Data Processing Addendum, which require appropriate security, lawful use, and limited retention of user data.

How We Share Information

a. With Customer Partners

Information provided during a campaign or action—including contact details and participation activity—is shared with the Customer Partner operating that experience.

b. With Service Providers

We rely on vetted vendors for hosting, analytics, messaging, and similar functions under binding confidentiality and data-protection agreements.

c. With Lawmakers or Officials

Messages or petitions to public officials may include your name, address, and message content, which can become part of the public record.

d. With Analytics or Measurement Partners

We may share aggregated or anonymized metrics to evaluate performance. We do not sell or rent your personal information.

e. Legal and Corporate Disclosures

Information may be disclosed when required by law, to protect rights or safety, or in connection with mergers, acquisitions, or asset transfers.

Joint Protection Commitments

  • Encryption in Transit and at Rest — All PII is transmitted via TLS and stored on encrypted servers.
  • Access Controls — Data is accessible only to authorized personnel at CSAG and the relevant Customer Partner.
  • Minimum Data Collection — Only data necessary for the defined purpose is collected.
  • Purpose Limitation — Data is used solely for operating the Platform and lawful communications.
  • Incident Response — Affected users and partners will be notified of breaches in accordance with law.
  • Training and Compliance — Teams handling data receive privacy and security training.

Cookies and Tracking Technologies

Cookies, pixels, and similar tools help us:

  • Maintain user sessions and preferences
  • Analyze traffic and usage patterns
  • Deliver relevant, limited-frequency messaging

You may adjust your browser settings to manage or reject cookies, though some features may not function properly without them.

Data Retention

CSAG retains data only for as long as needed to operate the Platform and meet legal requirements. Each Customer Partner manages its own retention schedules for the information it controls. Aggregated or anonymized data may be stored indefinitely for analytics and reporting.

Data Security

CSAG maintains technical and organizational safeguards aligned with industry standards (ISO 27001 / SOC 2 equivalent), including network firewalls, encryption, continuous monitoring, access logging, and regular third-party assessments. No system is completely secure—please protect your own credentials and devices.

Your Privacy Rights

a. California Residents (CCPA / CPRA)

You may request to:

  • Know the categories and specific pieces of personal information collected
  • Request deletion of your information
  • Request correction of inaccuracies
  • Opt out of any “sale” or “sharing” of your information (we do not sell PII for monetary value)
  • Receive equal service without discrimination

Submit requests to privacy@myactionable.com. If the data is primarily held by a Customer Partner, we will forward your request to that partner and support their compliance process.

b. European Union / EEA (GDPR)

You have the right to access, rectify, erase, restrict processing, and port your data. By using the Platform, you consent to the transfer of your data to the United States and its processing under this Policy.

c. Email Preferences

You may opt out of marketing emails by clicking “unsubscribe.” Essential service communications will still be sent when necessary.

Children’s Privacy

The Platform is not intended for children under 16. We do not knowingly collect personal information from minors, and any such data will be deleted promptly upon discovery.

External Links and Social Media

The Platform may contain links to third-party sites or social features. These entities operate independently of CSAG and maintain their own privacy policies. We are not responsible for their content or practices.

Data Storage and International Transfers

Your data is stored on secure servers in the United States and may be processed by our vendors in other jurisdictions. Customer Partners with international operations are responsible for ensuring local law compliance for their users.

Changes to This Policy

We may update this Policy periodically to reflect changes in law or business practices. The updated version will be posted with a revised Effective Date. If changes are material, users will be notified via email or an in-platform message when required.

Contact Us

CS Action Group, Inc.
3871 Piedmont Ave, #364
Oakland, CA 94611
Email: privacy@myactionable.com

actionable is made with ❤️ by CSAG.
About FAQ Contact Legal
© CSAG