JST Cash Advance

Privacy Policy

Effective Date: 04/14/2026

This Privacy Policy explains how Cash Advance by JST Inc. ("Company," "we," "our," or "us") collects, uses, discloses, and protects information through Loan App: Cash Advance by JST, affiliated websites, web forms, support channels, and related digital services (collectively, the "Services"). This Policy is intended to provide full transparency about data handling practices, legal rights, and available privacy choices.

What This Policy Covers

This Policy applies to U.S. consumer users of our Services and is designed to align with applicable privacy and consumer-protection requirements, including, where applicable, the Gramm-Leach-Bliley Act (GLBA), California Consumer Privacy Act as amended by CPRA (CCPA/CPRA), Fair Credit Reporting Act (FCRA), FTC guidance, and comparable state privacy laws. Certain rights may not apply to GLBA-regulated nonpublic personal information or may vary by state.

1. Company Role and Service Scope

We operate a marketplace and comparison platform for loan-related products offered by independent third-party financial institutions. We are not a lender, do not issue credit, do not underwrite applications, do not make approval decisions, and do not set final loan rates or repayment schedules. When you proceed with a third-party lender, that lender controls its own application process and data handling under its own legal disclosures.

2. Categories of Information We May Collect

  • Identity and contact data: name, email address, phone number, and mailing address.
  • Government identifiers: where required for identity verification and fraud controls, we may process Social Security number fragments, state ID, or similar verification data through secure workflows and service providers.
  • Financial and eligibility data: employment or income-related information, requested amount, requested term, repayment preferences, and bank-account-related information submitted through application flows.
  • Application preference data: requested amount range, preferred term, stated use case, and other questionnaire responses.
  • Technical and device data: IP address, browser type, operating system, language settings, approximate geolocation derived from IP, referring URLs, and interaction timestamps.
  • Communications data: support requests, call records when lawfully recorded, and consent history.
  • Security and anti-fraud data: risk indicators, abuse patterns, and verification signals used to protect users and systems.

3. Sources of Information

We collect information directly from you (forms, support requests, consent interactions), automatically from your device and browser, from analytics and fraud-prevention providers, and from business partners where contractually and legally permitted. We may also receive updates from suppression or compliance systems to honor opt-out or unsubscribe choices.

4. Business and Legal Purposes for Processing

  • Provide and maintain the Services, including routing and display of potential matches.
  • Authenticate requests, support account-related workflows, and provide customer support.
  • Detect, prevent, and investigate spam, abuse, fraud, and unauthorized access.
  • Send transactional messages and operational notices relevant to your use of the Services.
  • Deliver marketing communications where permitted by law and not otherwise opted out.
  • Comply with legal obligations, regulatory requirements, court orders, and lawful process.
  • Audit, monitor, and improve reliability, accessibility, and performance of the Services.

5. Legal Bases for Processing (Where Applicable)

Depending on your location, processing may rely on one or more legal bases, including your consent, our legitimate interests in operating and securing the Services, contractual necessity, and legal compliance obligations.

6. Cookies, SDKs, and Similar Technologies

We use cookies, local storage, pixels, and related technologies for session management, analytics, attribution, fraud mitigation, and user experience optimization. Certain technologies are required for core functionality. You may adjust browser settings to block or delete cookies; however, portions of the Services may not function properly if required cookies are disabled.

7. Disclosure of Information

We may disclose personal information to:

  • Service providers that support hosting, security, analytics, communications, and compliance operations under contractual confidentiality obligations.
  • Third-party lenders or partners when you request routing, matching, or related workflows.
  • Professional advisors and auditors where reasonably necessary for legal or compliance review.
  • Government authorities, regulators, or law enforcement when required by law or legal process.
  • Successors in the context of mergers, financing, corporate restructuring, or asset transfers, subject to applicable confidentiality safeguards.

8. Data Retention and Deletion Standards

Retention periods depend on data category, purpose, legal obligations, and dispute-prevention needs. We retain information only as long as reasonably necessary, then delete, de-identify, or aggregate it where feasible. Some records may be retained longer to satisfy statutory, audit, tax, fraud-prevention, or litigation-hold requirements.

  • Account and servicing records: generally for the relationship period plus an additional retention window (commonly up to 7 years) where required or operationally necessary.
  • Compliance and risk records: commonly 5-7 years, or longer if required by law, regulator guidance, legal hold, or investigation scope.
  • Marketing preference records: maintained as needed to honor suppression and opt-out choices.
  • Security and analytics logs: commonly retained in rolling windows based on security and performance needs.

9. Data Security Practices

We apply administrative, technical, and physical security measures designed to reduce risk of unauthorized access, disclosure, alteration, and destruction. Controls may include encryption in transit, access control, logging, segmentation, and vendor due diligence. No system is completely immune from risk, and users should also protect credentials and device access.

10. Sensitive Data and Minors

Our Services are intended for adults. We do not knowingly collect personal information from children under 13. If we learn that a child has provided personal information, we will take reasonable steps to delete such information. We ask users not to submit highly sensitive personal data unless expressly requested through a secure, authorized process.

11. State Privacy Rights and Consumer Choices

Depending on your jurisdiction, you may have rights to access, correct, delete, and obtain portable copies of personal information, as well as rights to limit certain processing activities. California consumers may submit requests under applicable California privacy law through the contact methods listed below or the dedicated privacy request page.

12. Marketing Preferences and Unsubscribe Controls

You may opt out of promotional email communications by using unsubscribe links in marketing messages. Transactional and service-related notices may still be sent when necessary for account or legal compliance purposes. We maintain suppression records to respect communication preferences.

13. Do Not Track and Global Privacy Signals

Where legally required, we process recognized opt-out preference signals, including browser-based privacy controls, in accordance with applicable law and technical feasibility.

14. Cross-Border Data Transfers

Your information may be processed in jurisdictions other than your place of residence. When required, we apply appropriate transfer mechanisms and safeguards consistent with applicable data protection law.

15. Policy Updates

We may update this Policy from time to time. Material changes are posted with a revised effective date. Continued use of the Services after changes become effective constitutes acceptance to the extent permitted by law.

16. Contact and Privacy Requests

Cash Advance by JST Inc.
310 W Brookside St, Colorado Springs, CO 80905-2156
Website: https://cashadvancebyjst.com
Email: support@cashadvancebyjst.com
Phone: (970) 406-4562

17. GLBA and FCRA Notice

Some information may constitute nonpublic personal information under GLBA and may be governed by GLBA-specific privacy notices and exemptions. Where consumer report data is obtained or used, applicable FCRA rights and limitations apply. We do not initiate hard credit inquiries without required consent and disclosure.