2. How We Use Your Information
We process your personal data for the following purposes:
Service Provision (Contractual Necessity)
- Create and manage your account
- Provide access to our platform features
- Process payments and manage subscriptions
- Facilitate connections between creators
- Provide customer support
Legitimate Interests
- Improve and optimize our platform
- Develop new features and services
- Prevent fraud and ensure platform security
- Conduct analytics and research
- Send service updates and important notices
With Your Consent
- Send marketing communications (you can opt-out anytime)
- Display your profile in our public directory
- Use cookies for analytics and advertising
3. Data Sharing and Disclosure
We do not sell your personal data. We share information only in the following circumstances:
Service Providers
- Stripe: Payment processing
- OpenAI: AI content generation
- AWS: Cloud hosting and storage
- Analytics providers: Usage statistics
- Email service providers: Transactional and marketing emails
Public Profile Information
Your profile (name, bio, expertise, portfolio) is visible in our public directory to help other creators discover you.
Legal Requirements
We may disclose information if required by law, court order, or government request, or to protect rights, safety, and security.
4. Your Rights Under GDPR
If you're in the UK or EU, you have the following rights:
- Right to Access: Request a copy of your personal data
- Right to Rectification: Correct inaccurate or incomplete data
- Right to Erasure: Request deletion of your data ("right to be forgotten")
- Right to Restriction: Limit how we process your data
- Right to Data Portability: Receive your data in a structured, machine-readable format
- Right to Object: Object to processing based on legitimate interests or for marketing
- Right to Withdraw Consent: Withdraw consent at any time
- Right to Lodge a Complaint: File a complaint with the UK Information Commissioner's Office (ICO)
To exercise your rights, email hi@corpfluence.com or use the settings in your account dashboard.
5. Data Security
We implement industry-standard security measures:
- Encryption in transit (HTTPS/TLS) and at rest
- Secure password hashing (bcrypt)
- Regular security audits and vulnerability assessments
- Access controls and authentication mechanisms
- Secure data centers and cloud infrastructure
6. Cookies and Tracking
We use cookies and similar technologies to enhance your experience. For detailed information, please see our Cookie Policy.
7. Data Retention
- Active Accounts: Data retained while your account is active
- Deleted Accounts: Most data deleted within 30 days; some retained for legal/security purposes (up to 7 years)
- Financial Records: Kept for 7 years as required by UK tax law
- Backups: May persist in backups for up to 90 days after deletion
8. International Data Transfers
Your data may be transferred to and processed in countries outside the UK/EU. We ensure adequate protection through:
- Standard Contractual Clauses (SCCs)
- EU-US Data Privacy Framework (where applicable)
- Service providers with strong data protection practices
9. Changes to This Policy
We may update this Privacy Policy from time to time. We'll notify you of material changes by email or through a prominent notice on our platform. The "Last Updated" date at the top will reflect the latest revision.