Effective July 11, 2026

Privacy Policy

This page is maintained by The I'm Too Much Club, LLC to answer common questions about our site and services. It is not a certification, legal opinion, or guarantee. If you need legal advice, please consult a qualified attorney.

Summary

Short version: we collect only what we need to run the club, we do not sell or share your personal information, and you can email us anytime to access, correct, or delete your data. The sections below cover the details.

  • Who we are and how to contact us
  • Information we collect and how we use it
  • Legal bases (GDPR/UK) and California residents' rights
  • Cookies, tracking, and Global Privacy Control
  • Who we share information with and international transfers
  • Data retention, security, and breach notification
  • Children's privacy and automated decision-making
  • Your rights, response times, and how to contact us

Who we are

The I'm Too Much Club, LLC ("we," "us," or "our") runs the I'm Too Much Club website and related services, and is the data controller for personal information processed through the site. Our contact address for privacy matters is hello@imtoomuchclub.com. Our mailing address is 428 E. Thunderbird Rd. #734, Phoenix, AZ 85022.

Information we collect

We collect information you give us directly, and a small amount of technical data automatically.

  • Account and membership details: name, email address, optional social handle, and your muchness statement (the short personal statement you submit at signup) when you join as a Founding Member.
  • Waitlist signups: email address and the page or campaign you signed up from, if you join our merch or campaign waitlists.
  • Communications: replies, support requests, and anything you email or message us.
  • Automatic data: IP address, browser type, device information, approximate location (derived from your IP address, not GPS), and site usage logs. Our bot-protection widget may also process your interaction data to verify you are human.

We do not collect phone numbers or send SMS messages. If that ever changes, we will update this policy and obtain any consents required by law before doing so.

How we use your information

  • Deliver the service you asked for: creating your certificate, adding you to a waitlist, or featuring your muchness with your consent.
  • Send club updates, drops, and loud-love notes you signed up for. You can unsubscribe from marketing emails at any time.
  • Keep the site secure and functioning, including fraud prevention and bot detection.
  • Understand how people use the site so we can improve it.
  • Comply with legal obligations and enforce our terms.

Legal bases for processing

We process personal data based on one or more of the following: your consent (for example, the checkboxes you tick when joining), our need to perform a contract with you (delivering membership benefits), our legitimate interests (security, fraud prevention, and improving the site), or compliance with legal obligations.

Cookies and tracking

We use essential cookies and similar technologies to operate the site and protect it from abuse. Our bot-protection provider may use scripts or cookies to validate that you are human. We do not use third-party advertising or analytics cookies at this time. If that changes, we will update this policy.

Global Privacy Control (GPC). We honor the Global Privacy Control signal as a valid opt-out of sale or sharing of personal information for browsers that send it. Because we do not sell or share personal information as those terms are defined under California law, there is nothing additional to opt out of today, but we will continue to honor GPC if that ever changes.

Who we share information with

We do not sell or rent your personal information. We share data only with service providers who help us run the site and only when necessary:

  • Our cloud infrastructure provider, which stores site data and handles authentication.
  • Our bot-protection provider, for verifying that visitors are human.
  • Third-party email delivery services, to send you club updates and confirmations.
  • Social platform integrations, when you choose to share or when we feature your public content with your consent.
  • Law enforcement or other parties, when required by law or to protect rights and safety.

Data retention

We keep your information for as long as your account is active or as needed to provide the service. Waitlist emails stay on the list until you unsubscribe or ask us to remove them. When you ask us to delete your data, we remove it from our active systems within 30 days, and residual copies in encrypted backups are purged within 90 days of that request. We may retain limited records longer where required by law (for example, to resolve disputes or comply with tax and accounting obligations).

Security

We use technical and organizational measures to protect your data, including encrypted connections and access controls. No online service is 100% secure, so we cannot guarantee absolute security.

Data breach notification

If we discover a security incident that affects your personal information, we will notify you and any applicable regulators without undue delay and, where required by law (such as GDPR/UK GDPR), within 72 hours of becoming aware of the breach. Notifications will describe the nature of the incident, the information involved, and the steps you can take to protect yourself.

Children's privacy

The I'm Too Much Club is not directed at children under 13 (or the minimum age in your jurisdiction, which may be as high as 16 in parts of the EEA and UK), and we do not knowingly collect personal information from children below that age. If you believe a child has provided us with personal data, please contact us and we will delete it.

Automated decision-making and profiling

We do not use your personal information to make automated decisions that produce legal or similarly significant effects about you, and we do not engage in profiling of that kind.

Your rights and choices

Depending on where you live, you may have the right to access, correct, delete, port, or restrict processing of your personal data, or to object to our use of it. To exercise these rights, or to revoke consent for featuring your muchness, email us at hello@imtoomuchclub.com. We will respond to verifiable requests within 45 days, and may extend that window by an additional 45 days where permitted by law (we'll let you know if we need the extension). To verify your request, we may ask you to confirm information already associated with your account, such as the email address used to sign up. You will not be discriminated against for exercising any of these rights.

California residents (CCPA/CPRA)

If you are a California resident, you have the following rights under the California Consumer Privacy Act, as amended by the CPRA:

  • Right to know what personal information we collect, use, disclose, and (if applicable) sell or share about you.
  • Right to delete personal information we have collected from you, subject to certain exceptions.
  • Right to correct inaccurate personal information we maintain about you.
  • Right to opt out of the sale or sharing of your personal information.
  • Right to limit the use and disclosure of sensitive personal information.
  • Right to non-discrimination for exercising any of your CCPA rights.

We do not sell or share your personal information as those terms are defined under the CCPA/CPRA, and we do not use or disclose sensitive personal information for purposes that would require offering a "Limit the Use of My Sensitive Personal Information" link. To exercise any of these rights, email hello@imtoomuchclub.com. We will respond within 45 days as described above.

EEA / UK residents (GDPR)

If you are in the European Economic Area, the United Kingdom, or Switzerland, The I'm Too Much Club, LLC is the data controller for your personal information. In addition to the rights described above, you have the right to lodge a complaint with your local data protection supervisory authority if you believe our processing of your personal data infringes applicable law. We would appreciate the chance to address your concerns first, so please consider contacting us at hello@imtoomuchclub.com before filing a complaint.

International transfers. Because we operate from the United States, personal data of EEA/UK/Swiss visitors is transferred to and processed in the U.S. Where required, we rely on appropriate safeguards for these transfers, including the European Commission's Standard Contractual Clauses (and the UK Addendum where applicable) with our service providers.

International visitors

The site is operated from the United States. If you visit from another country, your data may be transferred to and processed in the U.S. or wherever our service providers operate. By using the site, you consent to that transfer.

Changes to this policy

We may update this Privacy Policy from time to time. When we do, we will post the revised version and update the effective date. Continued use of the site after changes means you accept the updated policy.

Contact us

Questions about this policy? Reach us at hello@imtoomuchclub.com, or by mail at:

The I'm Too Much Club, LLC
428 E. Thunderbird Rd. #734, Phoenix, AZ 85022