marshal Privacy Policy

Operated by emefa LLC

Last updated: June 6, 2026

Working draft — pending legal review. This document describes emefa LLC's privacy practices for the marshal application. It has not yet been reviewed by privacy counsel and should be confirmed by a qualified attorney before being relied upon for legal representations.

1. Introduction

marshal is a group communication and coordination application operated by emefa LLC ("marshal," "we," "us," or "our"). This Privacy Policy explains what personal information we collect, how we use and share it, and the choices and rights you have. It applies to the marshal mobile and web applications and to the website at marshalapp.us.

marshal is designed for community groups — such as homeowners associations, fraternities and sororities, religious organizations, and civic clubs. When you use marshal as a member of a group, the group itself (its administrators) generally acts as the controller of member data, and marshal acts as a processor providing the service on the group's behalf. For your own account information, emefa LLC acts as the controller.

2. Information We Collect

Information you provide:

• Account and identity: email address, password (stored by our authentication provider, never in plain text), display name, and — if you choose to provide them — profile photo, phone number, and city.
• Group activity: the groups you belong to, your role in each group (member, admin, or owner), messages and announcements you post, event RSVPs, attendance records, poll responses, and images you upload.
• Payments: if your group uses dues or payment collection, transaction records and amounts. Card details are handled directly by our payment processor (Stripe) and are not stored by marshal.
• Consent records: your analytics and marketing preferences, age attestation, and the date and policy version at the time you consented.

Information collected automatically:

• Device and technical data: device push-notification tokens, app version, and basic usage metadata needed to operate the service.

Communications and meetings:

• Audio/video: if you join a marshal call, real-time audio and video are routed through our calling provider (LiveKit). If meeting transcription or AI minutes features are enabled in the future, meeting audio would be processed to produce transcripts and summaries; you would be notified before such processing occurs.

Biometric authentication: if you enable Face ID or Touch ID to sign in, this uses your device's built-in authentication. No biometric identifier is collected by or transmitted to marshal.

3. Sensitive Information

Some information marshal holds can imply sensitive characteristics even though we do not ask for them directly. For example, membership in a religious group can imply religious belief, and membership in some clubs can imply other affiliations. We treat membership and group data with heightened care and restrict access to a group's data to that group's members through our access controls.

4. How We Use Information

We use personal information to:

• provide, operate, and maintain the marshal service;
• create and manage your account and group memberships;
• deliver messages, announcements, events, polls, calls, and notifications;
• process dues and payments where a group uses that feature;
• provide optional AI-assisted features (such as announcement drafting) when you choose to use them;
• maintain security, prevent abuse, and keep audit logs of sensitive actions;
• comply with legal obligations.

5. Legal Bases (EU/EEA and UK users)

Where the GDPR or UK GDPR applies, we rely on:

• Contract — processing necessary to provide the service you signed up for;
• Consent — for analytics, marketing communications, and AI processing of your content;
• Legitimate interests — for security, abuse prevention, and basic service operation, balanced against your rights.

6. How We Share Information

We share information only as described here:

• With your group: content you post and your profile within a group are visible to other members and administrators of that group.
• Service providers (sub-processors): we use trusted third parties to operate marshal. Each processes data only as needed to provide its service:

- Google Firebase — core infrastructure (database, storage, authentication, hosting, functions).

- Stripe — payment processing where a group collects dues or fees.

- LiveKit — real-time voice and video calling.

- Anthropic — AI assistance for features you explicitly invoke (e.g., announcement drafting).

- Expo — push-notification delivery.

- Deepgram (planned) — meeting transcription, if and when AI-minutes features launch.

• Legal and safety: we may disclose information if required by law or to protect the rights, safety, or property of users, the public, or emefa LLC.

We do not sell your personal information, and we do not share it for cross-context behavioral advertising.

7. Data Retention

We keep personal information only as long as needed for the purposes described above:

• Account data: until you delete your account, plus a short grace period.
• Chat messages: retained per your group's plan (up to two years).
• Notifications: approximately 90 days.
• Meeting recordings (when available): per your group's plan tier.
• Financial records: as required by applicable tax and accounting law.

8. Your Rights

Depending on where you live, you may have the right to access, correct, delete, or export your personal information, to object to or restrict certain processing, and to withdraw consent. marshal provides built-in tools to export your data (a machine-readable copy) and to delete your account from your profile settings. To exercise other rights, contact us at privacy@emefa.us.

California (CCPA/CPRA): you have the right to know, delete, and correct your personal information, and to opt out of "sale" or "sharing." marshal does not sell or share personal information for cross-context behavioral advertising. We honor recognized opt-out preference signals on our web application where applicable.

9. Children

marshal is not directed to children under 13, and we do not knowingly collect personal information from children under 13. We require an age attestation at sign-up. If you believe a child under 13 has provided us personal information, contact privacy@emefa.us and we will delete it.

10. International Transfers

marshal's infrastructure is hosted in the United States. If you access marshal from outside the U.S., your information will be transferred to and processed in the U.S. Where required, we rely on appropriate safeguards (such as Standard Contractual Clauses) for these transfers.

11. Security

We use industry-standard measures to protect your information, including access controls that restrict group data to group members, encrypted transport, append-only audit logging of sensitive actions, and secrets management for credentials. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

12. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will revise the "Last updated" date and, where appropriate, notify you in the app. Continued use of marshal after changes take effect constitutes acceptance of the revised policy.

13. Contact Us

For privacy questions or to exercise your rights:

emefa LLC — privacy@emefa.us