Children Under 18
To be a member of the CRE Income Fund investor community, you must be 18 years of age or older. Children under the age of 18 are not eligible to participate on this website.
We Collect Information About Our Investors
We collect personal and financial information about you that you provide while you use the site. We collect most of this information during the registration process. There is some information that members are required to provide and other information that they provide voluntarily. We will keep this information private.
Additional information may be gathered during your subsequent use of the site, whenever you choose to provide it. We also store information about your investment profile and investment history.
Certain personal information must be supplied during the investor registration processes, as indicated below, in order to (a) enable registered users to login to the site, (b) determine investors’ eligibility as an accredited investor, (c) verify investors’ identities, (d) establish investors’ ability to invest in real estate investments, and (e) guard against potential fraud. This basic personal information includes:
Your name (member registration).
Your email address (member registration).
Your date of birth (investor registration).
Your home address and telephone number (investor registration).
Proof of ID and address.
Credit card details
When you register as an investor, we will request the basic personal information and additional optional information in order to facilitate such activities as:
Generating a public investor profile on the site
Enabling our financial department to implement fund transfers and the receipt of dividend payments.
Contacting you if there is a problem completing a transaction you requested or to discuss a problem with your account. Maintaining regular communications with you as may be necessary to execute transactions you request, such as transferring funds.
In addition, we gather names and email addresses of people who contact us through our website with questions about our company or investing operations. We collect this information for the sole purpose of responding to such inquiries.
Finally, we collect information about your computer and your visits to our website, such as your IP address, geographical location, browser type, referral source, length of visit, and page views through the use of log files.
We use this aggregated information in the administration of our website to improve its usability and to evaluate the success of particular marketing/advertising campaigns, search engine optimization strategies and other marketing activities.
We use non-identifying and aggregated information to help optimize our website based on the needs of our users. No personal or personally identifiable information about any individual user is collected.
We retain this information to satisfy legal requirements such as recordkeeping and tax and credit reporting requirements, as well as for purposes of fraud prevention, audit and data integrity.
Communications From Us
When you register on our site you will receive emails that confirm specific actions you requested. These notifications are typically sent to notify you of a change in status, or for legal or security purposes. For example, you will receive notifications confirming your registration, the successful verification of email addresses and bank accounts, and the successful submission of investment orders; you will receive notifications regarding certain changes to legal agreements and privacy disclosures; and you will receive progress updates on the status of investment orders.
These are transactional notifications that you generally cannot opt out of receiving. We may also send you responses to emails you send us, if appropriate or applicable.
From time to time, we will also send user surveys, requests for user feedback regarding user experience and site operations, newsletters, event notifications, group leader notifications, or marketing offers from us or from us on behalf of our marketing partners.
How and When Your Information Is Shared With Other Parties
Information is shared with other parties in the following ways:
Required and optional information about investors is displayed on public profiles that members can update at any time; certain information is optional and you can choose not to supply it and/or can remove the optional information at any time.
Information is shared directly between users and/or potential users. Information shared directly by users and/or potential users might contain personally identifiable information.
Information may be shared to meet any applicable law, regulation, legal process or enforceable governmental request, for the purposes of limiting fraud or in connection with the sale of CRE Income Fund to a third party.
Information may be shared with a number of trusted partners that perform vital functions as part of our operations.
Investors have public profiles on the site that display personal information that they have opted to include. Finally, members creating blog/forum posts are identified by the names they choose to provide. To protect investors’ privacy, however, the blog/forum posts do not track back to funding decisions, respectively.
But in certain circumstances and owing to the claims of duty or the obligations of business it will frequently occur that pleasures have to be repudiated and annoyances accepted. The wise man therefore always holds in these matters to this principle of selection.
If you use our blog on this site, you should be aware that any personally identifiable information you submit there can be read, collected, or used by other users of this forum, and could be used to send you unsolicited messages. We are not responsible for the personally identifiable information you choose to submit in this forum.
To request removal of your personal information from our blog or community forum, contact us at email@example.com. In some cases, we may not be able to remove your personal information, in which case we will let you know if we are unable to do so and why.
We may share your information with law enforcement or other government agencies as required by law or for the purposes of limiting fraud. We reserve the right to disclose your personally identifiable information when we believe that disclosure is necessary to protect our rights and/or to comply with a judicial proceeding, court order, or legal process served on us.
On the other hand, we denounce with righteous indignation and dislike men who are so beguiled and demoralized by the charms of pleasure of the moment, so blinded by desire, that they cannot foresee the pain and trouble that are bound to ensue; and equal blame belongs to those who fail in their duty through weakness.
Information is shared with these third parties only to the extent necessary for us to process the transactions you initiate or to perform other specific services, like collections. Our partners are legally required to keep your information private and secure.
Where You Can Find and/or Correct Your Information
You can access all of your personal and personally identifiable information that we collect online and maintain by logging in to your account and going to “My Account > Settings”. This section of the site is password-protected to better safeguard your information.
As a registered user, you can update your password, email address, secret question, screen name, physical address, phone numbers, bank account information, and member page at any time on the website, and if you need to change any other information in your profile or request that we delete/remove your information, you can contact us at firstname.lastname@example.org.
To protect your privacy and security, please contact us at email@example.com to make changes to your sensitive account information. We will retain and use your information as needed to provide you services, to comply with our legal obligations, to resolve disputes, to enforce our agreements or as otherwise required by law.
Web-related Information Collection
Cookies are also used to gather statistical data, such as which pages are visited, what is downloaded, the ISP’s domain name and country of origin, and the addresses of sites visited immediately before and after coming to our site, as well as your "click stream" activity (meaning, the paths taken by visitors to our site as they navigate from page to page) and transactional attributes in accordance with information you voluntarily submit in the course of using our site.
We use session ID cookies to make it easier for you to navigate our site. Session ID cookies expire when you close your browser. We use a persistent cookie that remains on your hard drive for an extended period of time, so that we can recognize you when you return to our website.
We also employ a software technology called clear gifs (a.k.a. Web Beacons/Web Bugs), that help us better understand user interaction with our website. Clear gifs are tiny graphics with a unique identifier, similar in function to cookies, and are used to track the online movements of Web users. In contrast to cookies, which are stored on a user’s computer hard drive, clear gifs are embedded invisibly on Web pages and are about the size of the period at the end of this sentence. We do not tie the information gathered by clear gifs to our customers’ personally identifiable information.
Links to Other Sites
Social Media Features
Compliance With State and Federal Laws
Certain regulations issued by state and/or federal government agencies may require us to maintain and report demographic information on the collective activities of our membership. We may also be required to maintain your personal information for at least seven years in order to be in compliance with applicable federal and state laws regarding recordkeeping, reporting and audits.
CRE Income Fund’s Security Policy
Expert fraud prevention and protection
CRE Income Fund takes strong steps to safeguard your personal and personally identifiable information through vigorous physical, electronic and operational policies and practices. All data are considered highly confidential. Data can only be read or written through defined service access points, the use of which is password-protected.
The physical security of the data is achieved through a combination of network firewalls (there is no direct communication allowed between the database server and the Internet) and servers with hardened operating systems are all housed in a secure facility.
Access to the system, both physical and electronic, is tightly controlled and limited to only those employees or third parties who have a need to know. We do not allow visibility to Social Security number, bank account information, or credit card information via the website.
Further, we also equip our servers with Secure Socket Layer (SSL) certificate technology to ensure that when you connect to our website you are actually on our site. SSL also ensures that all data entered into the website are encrypted.
To verify that SSL is being used, look for the key or padlock icon on your browser. For further encryption protection, we use a 128-bit secure browser for logins and transactions.
Although CRE Income Fund has a stringent process in place to prevent fraudulent persons from using stolen identities to acquire loans, there are still limited times when identity theft occurs.
CRE Income Fund will work with law enforcement authorities to track down and prosecute persons who have committed identity theft. If you are an investor who suspects that you’ve invested in a project belonging to a person who has committed identity theft, please email customer support and include the loan number and the reason you suspect identity theft.
Secure Data Center
CRE Income Fund’s physical infrastructure is hosted and managed within Amazon’s secure data centers and utilizes the Amazon Web Service (AWS) technology.
We also employ session time-outs to protect your account. You will be logged out of the site automatically after a specified period of inactivity. This time-out feature reduces the risk of others being able to access your account if you leave your computer unattended.
Protection of account numbers
When we contact you about your account to confirm a funds transfer, we only reference the last four digits of your bank account number; this is done for your protection so that you will recognize the source or destination account as one which you own.
At a minimum, we require the use of both numbers and letters in your password. We have also instituted secure steps by which you can regain access to your account should you forget your password, including the use of a security question.
Your password is not known to any employee or third party with whom we may partner, and we will never ask for your password as a means of identifying yourself. You should never share your password with anyone, and if you ever receive an email purporting to come from CRE Income Fund that asks for your password, you should immediately report this development.
What you can do
In addition to our own substantial efforts, you can take several precautions to protect the security of your computer and personal information. For instance, you can start by using a well-chosen password.
You should avoid using any information that others can easily learn about you, such as a family member’s name or birthday, and you can also use special characters in place of letters. In addition, we recommend that you change your password frequently.
You can install and regularly update antivirus and firewall software to protect your computer from external attacks by malicious users. When you are finished with a session on our site, be sure that you log out and close the browser window.
To protect your account, we send automatic notifications confirming certain actions taken on your account, such as changes to a password or external linked account. We do this for your own protection so that you can be sure no one else is making changes to your account without your knowledge.
However, the security offered through these notifications can be undermined if other people have access to your email account. Therefore, you might consider restricting access to the email account you registered with on this site and/or changing your password on that email account frequently.
If you use a computer that is accessed by other people, such as in a public library or Internet cafe, we recommend that you take special precautions to protect the security of your account and personal data. When you are finished using our site, you should log out completely, then close the browser window and clear the browser’s cache files.
You should also be aware of fraudulent attempts to gain access to your account information known as "phishing." Phishing is a tactic used by scammers in which unsuspecting people are brought to a website by a genuine-looking email purporting to be from a legitimate company.
The phony or "spoof" email takes the person to a website that looks legitimate but in fact is not. Either in the email itself or on this fake site, scammers will ask for login information to gain access to people’s accounts and withdraw their money.
CRE Income Fund will never ask you for your login information in the context of any email. In general, you can protect yourself against phishing by never providing personal or login information via an email—instead, go the website directly.
You might also make it a habit to check the URL of a website to be sure that it begins with the correct domain. In the case of CRE Income Fund, you should always ensure the URL begins with https://creincomefund.com
Changes to This Policy
For additional information, or if you have any questions regarding this policy or the privacy practices at CRE Income Fund, please submit your questions or comments directly to firstname.lastname@example.org via email. Any personal information you submit will be used solely to respond to your requests.