Privacy Policy

1. Introduction

Channel Valve LLC (“Channel Valve,” “we,” “us,” or “our”) operates the Channel Valve platform at channelvalve.com. Channel Valve is a B2B SaaS platform that orchestrates co-branded, multi-channel marketing campaigns between technology vendors and their channel partners (such as managed service providers, value-added resellers, and channel agents).

This Privacy Policy describes how we collect, use, disclose, and protect information in connection with our platform, website, and related services (collectively, the “Services”). It applies to all users of our Services, including technology vendors, channel partners, and visitors to our website.

By accessing or using our Services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with our practices, please do not use our Services.

2. Information We Collect

2.1 Information You Provide Directly

Account Registration and Onboarding. When you create a Channel Valve account, we collect information such as your name, email address, company name, job title, phone number, and billing information. During onboarding, our AI-powered discovery process may collect additional business details including your company positioning, service offerings, target industries, geographic focus, and ideal customer profile criteria.

Brand Assets. Channel partners may provide logos, brand colors, taglines, and other brand materials for use in co-branded campaign assets.

CRM Data. If you choose to connect a CRM system (such as HubSpot, Salesforce, or ConnectWise), we access contact records, company data, and related fields as authorized by you. This data is used solely to segment campaigns and prevent outreach to existing customers or excluded contacts.

Communications. We collect information you provide when you contact our support team, respond to surveys, or otherwise communicate with us.

2.2 Information We Collect Through Platform Usage

Campaign Data. When campaigns are executed through Channel Valve, we process data related to campaign configuration, targeting criteria, email content, outreach sequences, and campaign performance metrics.

Prospect Data. To build prospect lists for campaign execution, we use third-party data enrichment services (such as Apollo, Hunter.io, and Prospeo) to source publicly available business contact information including names, work email addresses, job titles, company names, and LinkedIn profile URLs. All prospect email addresses are verified through our email verification service before any outreach occurs.

Engagement Data. We collect data about how prospects interact with campaign outreach, including email delivery status, replies, LinkedIn connection responses, and meeting bookings.

Calendar Data. If you authorize calendar access (Google Calendar or Microsoft Outlook), we query availability in real time to facilitate meeting scheduling. Calendar data is never stored permanently on our systems.

Usage Data. We automatically collect information about how you interact with the platform, including pages visited, features used, timestamps, and session duration.

2.3 Information We Collect Automatically

Device and Browser Information. We may collect your IP address, browser type and version, operating system, device identifiers, and general location data derived from your IP address.

Cookies and Similar Technologies. We use cookies, web beacons, and similar technologies to operate our website, remember your preferences, and understand how our Services are used. See Section 9 for more detail.

3. How We Use Information

We use the information we collect for the following purposes:

• Providing and operating the Services, including executing campaigns, co-branding assets, managing outreach sequences, and delivering leads and performance reports.
• Onboarding and account setup, including AI-assisted profile building, brand asset processing, and sending infrastructure provisioning.
• Data enrichment and prospect discovery, including sourcing, verifying, and scoring business contacts that match campaign targeting criteria.
• Campaign optimization, including analyzing anonymized, aggregate performance patterns across campaigns to improve targeting, messaging, and timing recommendations.
• CRM synchronization, including writing leads, engagement data, and campaign outcomes back to your connected CRM as authorized by you.
• Communications, including sending transactional emails, campaign notifications, lead alerts, and platform updates.
• Security and fraud prevention, including monitoring for anomalous access patterns and enforcing data access controls.
• Legal compliance, including meeting our obligations under applicable laws and responding to legal requests.

4. The Privacy Wall — How We Separate Vendor and Partner Data

A core architectural principle of Channel Valve is strict data separation between vendors and their channel partners.

Partners own their data. A partner's CRM data, prospect lists, individual engagement details, reply content, lead contact information, and customer lists are never visible to the vendor. This separation is enforced at the database level using PostgreSQL Row-Level Security, at the API level through separate endpoint domains, and at the application level through role-based access controls.

Vendors see aggregate outcomes only. Vendors can see campaign-level metrics such as total emails sent, average open rates, total leads generated, and meetings booked — but never the names, companies, or contact details of individual prospects or leads. This ensures that partners can participate in vendor-funded campaigns without exposing their customer relationships or business pipeline.

Partner-controlled sharing. A partner may choose to share specific opportunity details with a vendor (for example, when registering a deal). This sharing requires an explicit, affirmative action by the partner and is never automatic.

5. How We Share Information

We do not sell your personal information. We share information only in the following circumstances:

5.1 With Service Providers

We use third-party service providers to operate our platform. These providers process data on our behalf and are contractually obligated to use it only for the purposes we specify. Key categories of service providers include:

• Email sending and infrastructure (for campaign delivery and reply handling)
• LinkedIn outreach tools (for social selling campaign execution)
• Data enrichment providers (for prospect discovery and contact verification)
• Email verification services (for validating email deliverability before outreach)
• Cloud hosting and database services (for platform infrastructure)
• Domain registration and DNS services (for partner sending domain provisioning)
• CRM platforms (for data synchronization as authorized by users)
• AI and language model providers (for content generation, onboarding conversations, and campaign optimization)
• Payment processors (for billing and subscription management)

5.2 With Vendors and Partners (Subject to the Privacy Wall)

Campaign performance data is shared between vendors and partners in accordance with the privacy wall described in Section 4. Vendors receive only aggregate metrics. Partners receive full detail on their own campaigns. Cross-partner data is never shared between partners.

5.3 For Legal Reasons

We may disclose information if we believe in good faith that disclosure is necessary to comply with applicable law, regulation, or legal process; protect the rights, property, or safety of Channel Valve, our users, or others; enforce our terms of service; or detect and prevent fraud or security incidents.

5.4 In Connection with a Business Transfer

If Channel Valve is involved in a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change and any choices you may have regarding your information.

6. Data Retention

We retain your information for as long as your account is active or as needed to provide our Services. Specific retention practices include:

• Partner account deletion. When a partner deletes their account, all prospect-level data, engagement records, leads, CRM data, sending infrastructure, and brand assets associated with that partner are deleted within 30 days. Aggregate, anonymized campaign metrics already computed are retained (they contain no personally identifiable information). The partner's name may remain in vendor relationship records for the vendor's administrative purposes, but all activity data is removed.
• Vendor account deletion. When a vendor closes their account, all campaign definitions and assets are deleted within 30 days. Partner-side data from campaigns run by that vendor is retained because it belongs to the partners.
• Prospect data. Prospect data sourced through enrichment services is re-verified and refreshed on an ongoing basis. Prospect records associated with completed or expired campaigns are retained only as long as necessary for reporting and suppression list management.
• Suppression lists. Records of unsubscribe requests and suppression entries are retained indefinitely to ensure we honor opt-out preferences permanently.

We may also retain information as required by law or for legitimate business purposes such as resolving disputes and enforcing our agreements.

7. Data Security

We implement technical and organizational measures designed to protect information from unauthorized access, alteration, disclosure, or destruction. These measures include:

• Encryption at rest using AES-256 for all database-stored data.
• Encryption in transit using TLS 1.3 for all API communications.
• Application-level encryption for sensitive content such as email reply content.
• OAuth token security, with tokens encrypted at rest and stored in a dedicated secrets manager separate from the primary database.
• Row-Level Security at the database layer, ensuring that even in the event of an application-level vulnerability, cross-partner or cross-role data access is prevented.
• Audit logging of all data access, with automated alerting on anomalous access patterns.
• Role-based access controls that restrict what data each user role (vendor admin, channel account manager, partner, or Channel Valve administrator) can access.
• Quarterly access reviews for internal administrative access.

No method of transmission or storage is completely secure. While we strive to protect your information, we cannot guarantee absolute security.

8. Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal information:

8.1 Access and Portability

You may request a copy of the personal information we hold about you. Partners can export their prospect data, lead data, and campaign performance data through the platform at any time.

8.2 Correction

You may request that we correct inaccurate or incomplete personal information.

8.3 Deletion

You may request deletion of your personal information, subject to certain exceptions (such as data we are required to retain for legal or compliance purposes). See Section 6 for details on account deletion.

8.4 Opt-Out of Marketing Communications

You may opt out of promotional communications from Channel Valve by following the unsubscribe instructions in those communications or by contacting us directly.

8.5 Prospect Rights

If you have received an outreach email as part of a Channel Valve-executed campaign and wish to unsubscribe, you may do so by clicking the unsubscribe link in any campaign email. Unsubscribe requests are processed immediately, and your email address is added to a global suppression list that prevents future outreach across all Channel Valve campaigns, partners, and vendors.

8.6 California Residents (CCPA/CPRA)

If you are a California resident, you have the right to know what personal information we collect, the right to request deletion, and the right to opt out of the sale of personal information. We do not sell personal information. To exercise your rights, contact us using the information in Section 12.

8.7 European Economic Area, United Kingdom, and Switzerland (GDPR)

If you are located in the EEA, UK, or Switzerland, our legal basis for processing your personal information depends on the context: we process data based on contractual necessity (to provide the Services), legitimate interest (for B2B outreach and platform improvement), or your consent (where required). You have rights to access, rectification, erasure, data portability, restriction of processing, and objection to processing. To exercise your rights, contact us using the information in Section 12.

8.8 Canadian Residents (CASL)

For Canadian recipients of campaign outreach, we rely on implied consent for B2B communications within the applicable statutory window. You may withdraw consent at any time by unsubscribing from campaign emails.

9. Cookies and Tracking Technologies

Our website uses cookies and similar technologies for the following purposes:

• Essential cookies that are necessary for the website and platform to function properly, such as authentication and session management.
• Analytics cookies that help us understand how visitors interact with our website so we can improve our Services.
• Preference cookies that remember your settings and choices.

You can manage your cookie preferences through your browser settings. Disabling certain cookies may affect the functionality of our website.

Campaign email tracking. Channel Valve defaults to not using open-tracking pixels in outbound campaign emails. Campaign engagement is measured primarily through replies and meeting bookings rather than pixel-based open tracking.

10. Third-Party Links and Services

Our Services may contain links to third-party websites or integrate with third-party services. This Privacy Policy does not apply to those third-party services, and we encourage you to review their respective privacy policies.

11. Children's Privacy

Our Services are designed for business use and are not directed at individuals under the age of 18. We do not knowingly collect personal information from children. If we learn that we have collected personal information from a child under 18, we will take steps to delete that information promptly.

12. Contact Us

If you have questions about this Privacy Policy or wish to exercise any of your rights, please contact us at:

Channel Valve LLC
Email: privacy@channelvalve.com
Website: https://channelvalve.com

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by posting the updated policy on our website and updating the “Last Updated” date above. We encourage you to review this Privacy Policy periodically.