Identity-first means privacy-first. Here is exactly what we collect, why, who we share it with, how long we keep it, and what you can do about all of it. Write to privacy@gishme.com if anything is unclear.
Gish ("we," "us") is operated by Gloconomy, Inc., a Delaware corporation headquartered in Atlanta, Georgia. This Privacy Policy describes the personal information we collect, use, share, and protect when you interact with the Service at gishme.com or via our extensions, mobile apps, and APIs.
Because Gish hosts five distinct relationships, the data we collect varies by your role:
We are the data controller for User, Creator, and Payee data. For Business and Enterprise customers, we act as a data processor on behalf of the customer organisation under a signed Data Processing Addendum (DPA).
For each User, we collect and process the following categories of personal information:
| Category | What it includes | Why |
|---|---|---|
| Account | @handle, email, password hash, phone (optional), profile photo | Operate the account |
| Wishes | Wish title, URL, price, photos, notes, tags, type (gift/group-buy/etc.) | The core service |
| Occasions | Event title, date, recurrence, visibility, recipient relationship | Reminders, matching |
| Friends & circles | Connections, mutual visibility, circle membership | Sharing, reminders |
| Contributions & gifts | Sender, recipient, amount, item, timestamp, message | Receipts, history |
| Calendar imports | Imported events from gcal/iCloud/Outlook (read-only, with consent) | Auto-suggest occasions |
| Contact imports | Names, emails, phones, birthdays from your address book (with consent) | Friend matching |
| Payment methods | Tokenised card details (via Stripe), bank account fingerprints | Process contributions |
| Location | Approximate location (city-level) from IP; precise location only with explicit consent | Local retailer matching |
| Device & usage | Browser, OS, IP, page views, event timestamps | Security, analytics |
We do not collect biometric data, precise GPS without consent, browsing history outside Gish (the browser extension only sees the page where you click "save to Gish"), or any data covered by HIPAA.
Creators (paid tier) have additional data flows:
Creator earnings data is shared only with our payment processor (Stripe Connect) and applicable tax authorities.
Verified brands provide: legal entity name, EIN, contact details, brand ownership/authorisation proof, storefront content (product images, descriptions, narrative), and analytics receipts.
Business customers ($99/mo + $5/employee) import employee data via HRIS (Workday, BambooHR, Gusto, Rippling, ADP) or CSV. Read scope is strictly limited to:
We do not request or accept: compensation, performance review data, race, gender (beyond what's already in the directory display name), religion, disability status, or any other protected-class field.
Enterprise customers (custom MSA) get regional data residency (US, EU, APAC), per-region encryption keys held by them, audit log export to their SIEM, and the right to bring-your-own data processor terms. Enterprise data is processed under their DPA, not this policy.
Verified Payees (non-profits, community funds, individual beneficiaries) provide:
Payee data is held for 7 years after final disbursement, in accordance with U.S. financial recordkeeping requirements.
When you click a wish link that resolves to a retailer in our affiliate network, we generate a tracking parameter that allows us to attribute the resulting purchase. We log:
We do not see your shopping cart, the items you ultimately buy beyond the originating wish, or your retailer account credentials. For full details on how outbound product links work, see the Affiliate disclosure.
The hemisphere consists of:
When you opt in to a sister brand, we share the following with that brand:
Portable identity — your @handle and trust score travel with you across all hemisphere brands as a single identity. Per-brand opt-out is one-click; revocation propagates within 24 hours. Global opt-out ("share nothing") is a single master toggle in Settings.
The following processors handle data on our behalf under DPAs that include the EU Standard Contractual Clauses where applicable:
| Processor | Purpose | Data shared |
|---|---|---|
| Stripe | Card processing, ACH, Connect (Payee accounts) | Tokenised payment data, KYB |
| Plaid | Bank account verification, BNPL eligibility | Bank fingerprints, account names |
| Twilio | SMS notifications, 2FA codes, SMS-to-wish capture | Phone, message content |
| Affirm | Buy-now-pay-later checkout | Email, transaction value |
| Klarna | Buy-now-pay-later checkout | Email, transaction value |
| SendGrid | Transactional email (receipts, reminders) | Email, message content |
| AWS | Cloud hosting (US-East primary, EU-West secondary) | Encrypted at rest |
| Cloudflare | CDN, DDoS protection, edge caching | IP, request metadata |
| Crate & Barrel, Williams Sonoma, Babylist, etc. | Retailer fulfillment partners (see retailer table) | Order data, shipping address |
| Datadog | Application monitoring | Anonymised request logs |
| Workday, BambooHR, Gusto, Rippling, ADP | HR integration (Business tier only) | Per §4.2 limited scope |
The Plus and Family tiers include an AI gift advisor — "what would Lena actually want for $80?" — that draws on your wishlist, your gift history, and your friends' wishlists (where they've made them visible to you). Here is exactly how it works:
| Category | Retention | Reason |
|---|---|---|
| Account & profile | Life of account + 30 days | Operate, then export window |
| Wishes & occasions | Life of account + 30 days | Same |
| Gifts & contributions | 7 years | U.S. financial recordkeeping |
| Receipts (PDF) | 10 years | Tax, audit |
| KYB documents (Payee) | 7 years post-disbursement | BSA/AML compliance |
| Calendar & contact imports | 30 days from import | Used once, then forgotten |
| Server access logs | 90 days | Security investigations |
| AI advisor prompts | 30 days (server-side); zero (on-device) | Service improvement |
| Affiliate tracking | 2 years | Commission reconciliation |
| Marketing emails | Until you unsubscribe + 30 days | Preference recordkeeping |
Regardless of where you live, you have the right to:
To exercise any right, write to privacy@gishme.com. We respond within 30 days. EU/UK residents have an additional right to lodge a complaint with their supervisory authority. California residents have additional rights under CCPA/CPRA.
"Do Not Sell or Share My Personal Information" — we honour the Global Privacy Control (GPC) signal automatically. We also do not sell or share data for cross-context behavioural advertising under any circumstance.
Gish supports conspiracy threads — private group chats where friends coordinate a gift behind the recipient's back. The recipient cannot see the thread, the contributors, or the discussion until the gift is delivered (or never, if the conspirators choose).
Privacy of conspiracy threads is enforced as follows:
Gish uses cookies and similar technologies, varying by surface:
List-Unsubscribe and Apple Mail Privacy ProtectionYou can manage cookie preferences at gishme.com/cookies. We respect Global Privacy Control, Do Not Track, and Apple Mail Privacy Protection signals.
We may update this Privacy Policy. Material changes (anything that expands the categories of data we collect, the parties we share with, or the retention periods) are communicated by:
Continued use of the Service after the effective date constitutes acceptance. If you do not accept, you may export your data and terminate your account at no cost.
Gloconomy, Inc. · Attn: Privacy Office
Atlanta · London · Singapore
privacy@gishme.com
Effective date: 25 April 2026. Supersedes all prior versions. Changelog at gishme.com/privacy/changelog.