Ante
Ante
AboutPartnersContact
Sign inTry the demoJoin waitlist
AboutPartnersContactTry the demoSign in
Join waitlist
Contents
  1. The short version
  2. What we collect
  3. Store integrations
  4. Why we collect it
  5. Who we share with
  6. Law enforcement & legal process
  7. Where we store it
  8. How long we keep it
  9. Your responsibility for accuracy
  10. Security
  11. International transfers
  12. Your rights
  13. Cookies
  14. Children
  15. Our discretion
  16. Changes
  17. Contact
Legal

Privacy policy.

Effective: June 23, 2026Version: 1.1Replaces: 1.0 (May 19, 2026)
The really short version

We collect only the minimum personal information necessary to facilitate group payments and operate the service: names, emails, transaction metadata, and payment details (processed exclusively by our PCI-DSS Level 1 certified payment service provider). We do not sell personal information. We do not engage in cross-site tracking. Full card numbers never touch our servers.

This Privacy Policy is effective as of the date above and constitutes our current practices. It is not legal advice.

The short version

Ante exists to make group checkout work. To do that we need to collect some data, but only the minimum. We are not in the data-resale business. Our revenue comes from a disclosed participant service fee on completed group payments, not from advertising or selling your information.

What we collect

We collect:

  • Account info from merchants: business name, email, billing address, EIN where applicable.
  • Participant info from customers: name (display), email (for the invite link), and IP at time of payment.
  • Payment info: card details, processed by our PCI-DSS Level 1 PSP. We never see or store full card numbers ourselves.
  • Session metadata: amount, split mode, participants, status. This is what makes the dashboard work.
  • Product analytics: page views, button events, error logs. Aggregated where possible.

Store integrations

When a merchant installs Ante on an ecommerce platform (including Shopify), we receive and process data needed to run group checkout at that store:

  • Merchant install data: shop domain, staff contact email, OAuth tokens, app configuration, and webhook delivery metadata.
  • Checkout extension data: cart identifiers, line items, totals, currency, shipping and tax context, and session flags that indicate an active or pending Ante group.
  • Buyer and participant data: display names, emails used for invites and receipts, payment status per share, and order references needed to settle the merchant's store order.

We use this data only to provide Ante at that store, prevent fraud, support merchants, and meet legal obligations. We do not use it for unrelated advertising or resale.

If a merchant uninstalls the app, we deactivate the integration promptly. Platform partners may also send mandatory privacy webhooks (for example customers/data_request, customers/redact, and shop/redact). We honor those requests by exporting available records to the merchant contact on file, redacting buyer and payer personal data tied to the request, and erasing merchant-linked credentials and identifiable shop records when a shop erasure request applies. Some transactional aggregates may be retained where required for tax, accounting, fraud prevention, or payment-network rules. See § 08.

Participants and merchants can exercise privacy rights as described in § 12. For platform-specific data requests routed through a store admin, the merchant may also need to coordinate with their platform. Our Terms of Service describe fees and payment flows.

Why we collect it

  • To process group payments correctly and route the right amounts to the right parties.
  • To fight fraud and meet our legal obligations (KYC/AML for merchants).
  • To improve the product: find bugs, debug stuck sessions, prioritize roadmap items.
  • To send transactional notifications (your friend paid, your session settled, your refund landed).

Who we share with

We share data with:

  • Our payment processor (a PCI-DSS Level 1 PSP) to actually move money.
  • Our infrastructure providers (cloud hosting, error tracking, analytics) under signed DPAs.
  • Successors in interest, in connection with a merger, acquisition, financing, or sale of assets, subject to confidentiality obligations.

We do not share data with ad networks. We do not sell data. We never will.

Law enforcement & legal process

We may access, preserve, and disclose information about you when we believe in good faith that doing so is necessary to comply with applicable law, a subpoena, court order, or other legal process; to respond to a verified governmental, regulatory, or law-enforcement request; to enforce these policies or our Terms; to detect, prevent, or address fraud, security, or technical issues; or to protect the rights, property, or safety of Ante, our users, our partners, or the public. We publish aggregate counts of compelled requests in an annual transparency report where we are permitted to do so.

Where we store it

Primary data is in US-East AWS regions. EU customer data is mirrored to EU regions where required. Card data is held by our processor and never traverses Ante servers.

How long we keep it

We retain personal information for as long as we have an ongoing legitimate business purpose, as long as required to provide the service to you, and for as long as we are legally permitted or required to do so. Where the periods below conflict with a specific legal, regulatory, tax, accounting, or fraud-prevention obligation, the longer applicable retention period controls.

  • Transactional records: at least 7 years (regulatory).
  • Account data: until you delete your account, plus a retention tail of at least 90 days for backup, audit, and fraud-prevention purposes.
  • Analytics events: up to 13 months, then deleted or aggregated.
  • Email logs: up to 90 days, longer where needed to investigate a security or abuse signal.

Your responsibility for accuracy

You are responsible for the accuracy, completeness, and lawfulness of any information you provide to Ante, whether about yourself, your business, your customers, or other participants in a group session. If information becomes outdated or incorrect, you agree to update it promptly. We are not liable for losses, account actions, or regulatory consequences arising from information you provided that turned out to be inaccurate, incomplete, or unlawful.

Security

We use industry-standard technical and organizational measures to protect your data, including encryption in transit (TLS 1.3), encryption at rest (AES-256), access controls, and regular security audits. Our payment processor is PCI-DSS Level 1 certified. We maintain a written information security policy and conduct annual penetration testing.

International transfers

If you are located outside the United States, your information may be transferred to and processed in the United States. We rely on appropriate safeguards such as Standard Contractual Clauses (SCCs) approved by the European Commission and the UK ICO, or equivalent mechanisms, for any international transfers of personal data.

Your rights

Depending on where you live (including under the CCPA/CPRA if you are a California resident), you have the right to:

  • Access the personal data we have about you.
  • Correct or update anything that is inaccurate.
  • Request deletion of your data (subject to legal and regulatory retention obligations).
  • Receive a portable copy of your data in a structured, commonly used format.
  • Opt out of any sale or sharing of personal information (we do not sell or share data for cross-context behavioral advertising).
  • Object to or restrict certain processing.
  • Receive information about the categories and specific pieces of personal information collected.

To exercise any of these rights, email contact@plurelinc.com. We aim to respond within 30 days (or the timeframe required by applicable law).

Cookies

We use a tiny number of first-party cookies for session state and CSRF. We don’t use third-party tracking cookies. We don’t run cross-site tracking pixels.

Children

Ante is not directed at children under 13. We don’t knowingly collect data from anyone under 13. If you believe we have, email us and we’ll delete it.

Our discretion

Ante reserves the right, at our sole discretion and with or without notice, to suspend, disable, restrict, or terminate any account; to remove or refuse to process any group session, transaction, or piece of content; and to refuse service to any person, with or without cause, and without any obligation to provide a reason or a refund. We may also take any action we reasonably deem necessary to protect users, the platform, our partners, our employees, or our legal, regulatory, or commercial interests. Nothing in this Policy creates a guarantee that any specific feature, integration, or processing activity will remain available; we may change, restrict, or discontinue any of them at any time.

Changes

If we materially change this policy, we’ll notify you by email and post a changelog. Continued use after the effective date constitutes acceptance.

Contact

Privacy questions and data requests: contact@plurelinc.com

Ante, Inc.
California · United States

Ante
Built so nobody has to front the bill or chase their friends for it.
Stay in the loop
Product updates. Unsubscribe anytime.
About
Ante is group-payments infrastructure. The button that lets your customers check out together: equal, custom, or by item, with one settled charge.
Product
  • Overview
  • Partner programme
  • Merchants
  • Customers
  • Changelog
Developers
  • Documentation
  • API reference
  • SDKs
  • Webhooks
  • Status
Company
  • About
  • Careers
  • Blog
  • Press
  • Contact
Ante
© 2026 Plurel Inc. All rights reserved.
PrivacyTermsSecurityPCI-DSS L1
X / Twitter•LinkedIn•GitHub
Product screens and demos shown are current mockups — the finished product may look different.