Ripples of a Click: The Anatomy of Deception

We use the word "fraud" loosely in everyday life. A mechanic charges you for a part they never replaced—'that's fraud.' You donate to what looks like a legitimate charity and find out later the money never reached anyone in need—'that's fraud.' A company advertises 'no fees' and then you discover 15% of your payment went somewhere you never authorized—'that's fraud.'

But in the legal and financial world, fraud isn't a feeling. It's a specific, five-element test:

1. Misrepresentation: Making a false statement of material fact.
2. Knowledge: Knowing that the statement is false.
3. Intent: Making the statement with the intention to deceive or extract value.
4. Reliance: The victim justifiably relying on the statement.
5. Injury: Actual financial or structural loss.

When we hold the modern nonprofit fundraising tech landscape up against this test, the water gets incredibly dark. Platforms are increasingly inserting themselves between donors and missions, extracting value in ways nonprofits never authorized, rarely understand, and struggle to stop.

Let's look at two recent, catastrophic examples of platform failure—and outline exactly how you can protect your organization from becoming the next victim.

Case Study 1: The Aggregator Trap (The Flipcause Collapse)

Flipcause was a popular fundraising platform that marketed itself heavily to small nonprofits, promising: "Your money and your data always belong to you." But Flipcause operated as a payment aggregator. Unlike architectures that deposit funds directly into a nonprofit's own bank account within two to three business days, an aggregator collects everyone's donations into a massive, centralized platform account first.

The Structural Risk of Aggregation: Why aggregate? Because holding millions of dollars in donations before disbursing them creates opportunities to profit from the "float"—earning interest on the charities' money while the nonprofits wait. Whether or not that was Flipcause's specific intent, the structural risk is the same: when a platform holds your money, you are exposed to their financial health.

The Injury: In late 2025, the music stopped. The California Attorney General issued a cease-and-desist order in November 2025, finding that Flipcause had failed to register as a charitable fundraising platform, failed to file required reports, and critically—failed to transfer hundreds of thousands of dollars in donations to the nonprofits that raised them.

In December 2025, Flipcause filed for Chapter 11 bankruptcy. The filings revealed the full scale: the company had $70,000 in the bank but owed $29 million to over 3,200 nonprofits across all 50 states. Because the money was sitting in Flipcause's accounts, those nonprofits became unsecured creditors overnight—last in line.

Court documents revealed that executives and related entities had extracted approximately $3.8 million from the company during the twelve months before the filing—while nonprofits waited for their money. A federal class action filed by 29 nonprofits from 18 states explicitly alleges a "scheme to defraud and systematically deprive" nonprofits of their funds.

In March 2026, Flipcause's assets sold at a bankruptcy auction for $400,000. Against $29 million in liabilities, those nonprofits may recover pennies on the dollar—if anything.

The Human Cost: This wasn't abstract. One organization, 805UndocuFund—which supports immigrant families and disaster-impacted communities on California's Central Coast—is owed $352,500. Their executive director described the impact as "devastating": money raised for food assistance, legal support, and emergency response that they could not access. Across the country, nonprofits were forced to cancel programs, lay off staff, and suspend services—not because of fundraising failure, but because the platform that held their money failed.

Case Study 2: Identity Plagiarism & The Structural Bypass (GoFundMe)

While Flipcause represents a literal extraction of funds, other platforms practice a structural extraction.

In October 2025, reports revealed that crowdfunding giant GoFundMe had quietly created approximately 1.4 million donation pages for registered U.S. nonprofits. The platform scraped public IRS data and PayPal Giving Fund records to build these pages, utilizing the charities' names, EINs, and mission statements—without asking a single organization for permission.

The Misrepresentation (Identity Plagiarism): To a donor, these pages looked like legitimate, authorized fundraising channels. They weren't. The nonprofits never consented to them, and in most cases, didn't even know they existed. In some cases, the pages contained outdated logos, incorrect information, and inaccurate descriptions of the nonprofit's mission.

The term "Identity Plagiarism" isn't ours—it comes directly from a bipartisan coalition of more than 20 state Attorneys General who issued a formal demand letter to GoFundMe on March 3, 2026, calling the unauthorized pages "plagiarized."

The Intent to Extract: These pages were engineered to generate revenue for the platform. Each donation page included a default tip to GoFundMe—reported at up to 16.5% of the donation amount—on top of standard processing fees of 2.9% plus $0.30.

Let's do the math on a $100 donation through one of these unauthorized pages. The processing fee takes $3.20. The default 15% tip takes another $15. The donor pays $118.20. The nonprofit receives $96.80. GoFundMe collects $18.20 from one side or another—over 18% of the donor's generosity extracted by a platform the nonprofit never hired.

If the donor set up a recurring gift? GoFundMe adds a 5% recurring fee on top of the processing. That's $8.20 on every $100—every single month.

The Reallocation Reality: When a donor gave money through these pages, it didn't go to the charity. It went into a third-party holding tank—a Donor-Advised Fund (DAF) administered by PayPal Giving Fund. The state Attorneys General specifically identified the failure to disclose this DAF structure as one of GoFundMe's harms. If the nonprofit didn't discover the page and claim the funds, the money could eventually be reallocated to a completely different organization. The donor's intent was hijacked.

The Structural Bypass (The Shadow Tollbooth): GoFundMe turned on Search Engine Optimization (SEO) for these unauthorized pages by default. The pages were designed to rank in search results when donors searched for a nonprofit by name. A donor typing "Your Nonprofit Name donate" might land on GoFundMe's unauthorized page instead of the organization's actual website.

This built a shadow tollbooth. Donors were diverted away from the nonprofit's real infrastructure. The nonprofits lost donor data, confused their supporters, and had their legitimate technology partners—platforms they had explicitly chosen and paid for—cut out of the transaction entirely.

The Legal Response: This isn't a matter of opinion anymore. It's a matter of law.

On March 3, 2026, a bipartisan coalition of more than 20 state Attorneys General—led by California Attorney General Rob Bonta—issued a formal demand letter identifying potential violations under dozens of state charitable solicitation and consumer protection laws. The coalition gave GoFundMe 14 days to prove removal of all unauthorized pages.

But Alaska decided that wasn't enough. On March 11, 2026, Alaska Attorney General Stephen Cox filed lawsuits against not just GoFundMe, but six crowdfunding platforms—GoFundMe, PayPal Inc., Charity Navigator, JustGiving, Pledgeto, and Network for Good—for creating donation pages for charities without their knowledge or consent. Alaska deliberately did not sign the multistate demand letter, because state officials believed the letter response was too weak. They went straight to litigation.

The lawsuits allege violations of Alaska's Charitable Solicitations Act and Consumer Protection Act, and seek court orders requiring removal of all unauthorized pages along with civil penalties for each violation.

How to Protect Your Nonprofit: The Stack Audit

The platforms failed, but the underlying vulnerability was in the architecture. You can insulate your organization from these deceptive practices by auditing your technology stack today.

Here are the four questions you must ask your platform provider:

1. "Who has custody of the money?"

If a platform aggregates donations into their own corporate bank account before transferring them to you, you are exposed to their financial health. If they go bankrupt, your money goes with them. This is exactly what happened to 3,200 nonprofits when Flipcause collapsed. Never use a platform that takes custody of your funds.

2. "Does the money settle directly into my bank account?"

This is the architecture question. When a donor gives, does the money flow into the platform's accounts first—or does it settle directly into your own bank account? If a platform tells you disbursements take 7, 10, or 15 days, ask why. The answer may reveal an aggregation model where the platform holds your funds and profits from the delay. Demand an architecture where funds deposit directly to you.

3. "Do you use default tipping models?"

Examine the donor checkout experience. Are there pre-selected, default "tips" going to the platform? These dark patterns confuse donors, who often believe that extra 15% is going to your mission. The distance between the 3.2% highway toll (payment processing) and the 18%+ some platforms extract is where the clever plays live. Choose platforms with transparent, separated fee structures over platforms that obscure extraction behind bundled numbers and pre-checked boxes.

4. "Who controls our digital identity?"

Search your nonprofit's name online right now. If you find unauthorized donation pages hosted by third-party platforms, demand they be taken down immediately. Your brand and your donor data are your most valuable assets—do not let a tech company monetize them without your consent. File complaints with your state's Attorney General. Multiple states are actively investigating and litigating these practices.

The Architecture of Trust

At Click & Pledge, we've watched the fundraising industry normalize these extractive behaviors—and we fundamentally reject them.

We've been serving nonprofits since 2000—over a quarter century. We're not a startup that appeared last year with venture capital and a promise. We've been here through recessions, through the dot-com bust, through a global pandemic. But even with that track record, we built our architecture so that you never have to trust our longevity.

When your nonprofit signs up with Click & Pledge, you create your own Stripe account. It is in your name, connected directly to your bank. When a donor gives, our software orchestrates the secure transaction, but Stripe deposits the funds directly into your bank account. We never touch a penny of your donor's money. We have zero custody at any point.

If Click & Pledge disappeared tomorrow, the nonprofit would still have their Stripe account, their money, and their data. That's not a feature we market. That's an architecture decision.

We don't scrape data to build unauthorized pages. We don't insert deceptive default tips into your checkout flow. We don't bundle fees so you can't tell what you're paying for. Our revenue comes from transparent platform subscriptions—SaaS fees, not payment markup, not tips, not float on held funds. Processing rates are passed through at cost: 2.9% plus $0.30 for credit cards, 0.8% capped at $5 for ACH. Both costs are shown separately—always.

We can talk openly about the dangers of the aggregator trap and identity plagiarism because our business model doesn't depend on them.

Your mission is too important to be a tech company's shadow revenue stream. It's time to demand better infrastructure.

Resources & References

• California Attorney General Cease-and-Desist against Flipcause (November 2025) — California DOJ Press Release & Order
• Flipcause Chapter 11 Bankruptcy Filing (December 2025) — Epiq 11 Official Restructuring Case Docket
• Federal Class Action: Latino Medical Student Association-Northeast v. Flipcause, Inc. — Justia Federal Court Docket
• Flipcause Bankruptcy Auction: S4NP Corporation bid of $400,000 approved (March 2026) — KCBX News
• Oakland Voices Investigative Reporting on Flipcause by Rasheed Shabazz (September 2025–present) — Oakland Voices
• Nonprofit Quarterly: "Nonprofits in Limbo as Flipcause Bankruptcy Unfolds" (March 2026) — NPQ
• Bipartisan Coalition of State Attorneys General Demand Letter to GoFundMe (March 3, 2026) — New York AG Press Release
• Full Text of Multistate Demand Letter (PDF) — NY AG Document Library
• Alaska AG Lawsuits Against Six Crowdfunding Platforms (March 11, 2026) — Alaska Department of Law Press Release
• GoFundMe Response to Multistate AG Letter (March 13, 2026) — GoFundMe Public Response (PDF)
• ABC7 News Investigation: GoFundMe Unauthorized Nonprofit Pages (October 2025) — ABC7
• Nonprofit News Feed: AG Demand Coverage & GoFundMe Default Tip Analysis — Nonprofit News Feed
• California AB 488: Charitable Fundraising Platform Registration and Remittance Requirements — Full Bill Text (California Legislature)

Disclaimer: The analysis provided in this article is for informational and educational purposes only. It is based on publicly available court documents, bankruptcy filings, state Attorney General actions, and investigative reporting. It does not constitute formal legal advice or a formal legal verdict.

This article is a companion to the Ripples of a Click podcast series from Click & Pledge's Fundraising Command Center. Listen to Episode 1: "The Anatomy of a Donation" and Episode 2: "Is This Fraud?" wherever you get your podcasts.