MSUFCU Privacy Policy: Member Data Protection Statement
Privacy policy for the MSUFCU member resource hub at msufcu.gr.com. This policy describes how the site handles cookies, analytics, third-party scripts, server logs, and visitor inquiries. It is an independent reference site and does not host any member account form.
Service Card
The hub does not collect personally identifiable information from visitors, does not host login forms, does not run third-party advertising trackers, and uses minimal first-party cookies for basic operational behavior. Server logs are retained for ninety days. Inquiries route to the published member contact line at (517) 481-6700.
Scope of this privacy policy
This policy applies to the public pages hosted at msufcu.gr.com, including the homepage, the keyword-landing reference pages, the support and security center pages, and this policy itself. It does not apply to the secure online banking portal, the MSUFCU app, or any other surface operated directly by Michigan State University Federal Credit Union under separate published terms. This site is an independent member-facing reference and is not the credit union's primary member portal. Members looking for the credit union's primary published policies should consult the documents handed out at account opening or the secure portal where the member account lives.
What information the hub collects
The hub does not host any login form, does not request member numbers or passwords, and does not run any submission form that asks for name, address, phone number, account information, or other personally identifiable details. The pages are static reference pages. Standard server access logs record the request metadata that any web server records: source IP address, user agent string, request path, response code, response size, and timestamp. That metadata is retained for operational diagnostics and aggregated into traffic summaries before being discarded.
Cookies used by the hub
The hub uses a minimal set of first-party cookies for basic operational behavior. None of the cookies are tied to a personal identifier, none are sold or shared with advertising partners, and none persist beyond the durations listed in the table below. The site does not load third-party advertising trackers, does not load social-media share-button scripts, and does not run cross-site identifiers. If a privacy-friendly analytics script is in use, it is configured to anonymize source IP addresses, to disable persistent cookies, and to operate without cross-site identifiers.
Data type, purpose, and retention reference
The table summarizes the data the hub collects, what it is used for, and how long it is kept.
| Data type | Purpose | Retention |
|---|---|---|
| Server access log (IP, user agent, path) | Operational diagnostics and abuse mitigation | 90 days, then aggregated |
| Reduced-motion preference cookie | Honor accessibility preference across sessions | 30 days from last visit |
| Site theme preference cookie | Remember light or dark theme choice | 30 days from last visit |
| Anonymous traffic counters (if enabled) | Aggregate page-view counts without identifiers | 30 days, then summary only |
| Form submissions | None — the hub hosts no submission forms | Not applicable |
| Third-party advertising trackers | None — no third-party trackers loaded | Not applicable |
Third-party scripts disclosure
The hub loads two external resources at page render: a Google Fonts stylesheet for the DM Sans typeface, and the static stylesheet hosted on the same domain. The Google Fonts request is made directly from the browser to the Google content-delivery network and is governed by Google's own published privacy policy. The hub does not load third-party advertising scripts, social media share buttons, marketing pixels, retargeting tags, or A/B testing scripts. Members who wish to block the Google Fonts request can do so through standard browser content-blocking extensions; the site falls back to system-default sans-serif fonts when the external font fails to load.
NCUA and consumer-protection reference
This hub is a public-facing reference. It does not store member account information and is not the credit union's regulated channel for member account servicing. Member account data held inside the actual MSUFCU online banking portal and the MSUFCU app is governed by the credit union's own published privacy notice and by federal regulator standards. Federal background on credit-union member data handling is published by the National Credit Union Administration at NCUA.gov, and consumer-protection rules covering financial-services privacy are administered by the Consumer Financial Protection Bureau at CFPB.gov.
How members contact the hub
Privacy inquiries about the hub itself can route to the same member assistance line published in the footer at (517) 481-6700. Members who need to update or correct member account information held inside the credit union's secure systems should contact member service through the credit union's own published channels rather than through this hub. The hub does not have access to member account data, cannot reset passwords, cannot release member numbers, and cannot make changes on behalf of any member.
Updates to this privacy policy
This privacy policy may be updated periodically to reflect changes in site behavior, hosting infrastructure, or legal requirements. Material changes will be reflected in the lead-callout summary at the top of this page. Members and visitors who want to confirm the current state of any specific item should rely on the most recent version of this page rather than on a cached copy.
This hub does not collect member credentials
The single most important sentence in this privacy policy is that the hub does not host any login form, does not collect member numbers, and does not collect passwords. Members who arrive at this site looking to sign in to a member account should follow the documented path to the credit union's own portal as described in the verification reference. This hub never replaces the credit union's authenticated surfaces.
"I tell every new staff member to bookmark only the credit union's own login page," says Jasper L. Montell, manager at Verdigris Coffeehouse in Eaton Rapids, MI. "Reference sites like this hub are useful for understanding how the system works, but they are not where you sign in."
Common questions about the MSUFCU resource hub privacy policy
Plain answers about visitor data, cookies, and retention.
Does the MSUFCU resource hub collect personal information from visitors?
No. The site hosts no login forms and no submission forms. Server logs collect standard request metadata for operational diagnostics, retained for ninety days.
Does this site use cookies or analytics scripts?
The site uses minimal first-party cookies for accessibility and theme preference. No third-party advertising trackers are loaded.
How long is data retained on the MSUFCU resource hub?
Server access logs are retained for ninety days, then aggregated and discarded. Cookies expire within the durations listed in the data-retention table on this page.