Last updated: July 12, 2026 · Effective immediately · NorthAnchor LLC
This Data Retention Policy governs the collection, storage, and management of data by NorthAnchor LLC in connection with Project Blackbook. This Policy is incorporated by reference into our Privacy Policy and Terms of Service. By using our Service, you acknowledge and agree to the data practices described herein.
All congressional financial disclosure data presented on Project Blackbook is derived exclusively from public records filed pursuant to the Stop Trading on Congressional Knowledge Act of 2012 (STOCK Act), 5 U.S.C. App. 4 § 101 et seq. Such data constitutes public record under federal law and is retained by Project Blackbook indefinitely. This data is not subject to deletion requests, as it is a matter of public record independently verifiable through official government sources.
User account data — including email address, username, display name, hashed credentials, subscription status, and account preferences — is retained for the duration of the account active status. Users who wish to close their account may submit a written request to [email protected]. Project Blackbook will process such requests within thirty (30) days of receipt, subject to any legal obligations requiring retention of certain records.
Project Blackbook utilizes third-party analytics services for product analytics, including session recordings, page view data, and user interaction events. Analytics data is retained for a rolling period of twelve (12) months. Aggregate and anonymized analytics data may be retained indefinitely for internal reporting purposes.
Payment transaction records, billing history, and subscription data are retained for a minimum of seven (7) years in accordance with applicable federal and state tax laws and IRS recordkeeping requirements. This retention period supersedes any account deletion request with respect to financial records.
Bug reports and support tickets are purged upon resolution at the discretion of Project Blackbook. Contact form submissions and email communications are retained for a minimum of thirty (30) days and purged thereafter, unless retention is reasonably necessary to protect the legal interests of Project Blackbook or to resolve an open matter.
Server access logs, authentication logs, IP address records, and security event data are retained for a minimum of ninety (90) days and may be retained for up to three (3) years for security investigation and fraud prevention. Such records may be disclosed to law enforcement upon valid legal process.
Project Blackbook does not currently meet the thresholds triggering mandatory compliance with the California Consumer Privacy Act (CCPA), as Project Blackbook does not exceed $25 million in annual gross revenue, does not buy or sell personal information of 100,000 or more consumers annually, and does not derive 50% or more of its revenue from selling personal information. Project Blackbook will honor reasonable data deletion requests at its discretion, subject to the limitations set forth herein.
Project Blackbook does not collect, process, store, or transmit payment card data or cardholder information of any kind. All payment processing is handled exclusively by third-party payment processors, including PayPal, which maintain their own PCI DSS compliance programs and security standards. Project Blackbook never has access to your full card number, CVV, or banking credentials. By using our payment services, you are subject to the applicable third-party payment processor terms and privacy policies.
Project Blackbook implements industry-standard security measures including bcrypt password hashing, HTTPS/TLS encryption in transit, httpOnly cookie flags, and role-based access controls. No data system can be guaranteed 100% secure.
Project Blackbook reserves the right to modify this Policy at any time. Changes will be posted to this page with an updated effective date. Continued use of the Service constitutes acceptance of the revised Policy.
For questions regarding this Policy or to submit a data request, contact us at [email protected] or by mail at NorthAnchor LLC, London, Kentucky, United States.
This policy constitutes a legally binding agreement between you and NorthAnchor LLC. Contact: [email protected]