Verification data - Verification status, verification badge information, review history
Usage data and analytics
Campaign and collaboration data
2. How We Use Your Information
We use the information we collect to:
Provide and improve our services
Process payments and transactions securely (including subscription payments)
Manage influencer subscriptions (₹99/month, discounted from ₹199)
Track subscription status, renewals, and expiration dates
Apply and validate coupon codes (e.g., FREE99-XXXXX)
Verify user accounts and issue verification badges
Facilitate brand-influencer collaborations
Communicate with you about your account, campaigns, and subscription status
Send subscription renewal reminders and expiration notifications
Send you marketing communications (you can opt-out anytime)
Comply with legal obligations
3. Data Protection
We implement state-of-the-art security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction.
Encrypted data transmission (SSL/TLS) for all communications
Military-grade AES-256-GCM encryption for all payment information
Secure database storage with encrypted sensitive data
Regular security audits and penetration testing
Access controls and authentication protocols
Payment details stored separately with dedicated encryption keys
Real-time fraud detection and monitoring
4. Payment Information Security
All payment information is encrypted before storage:
UPI IDs are encrypted with AES-256-GCM algorithm
Bank account numbers are encrypted with separate keys
Data is automatically decrypted only when needed for transactions
Encryption keys are stored separately in environment variables
Never shared with third parties without your explicit consent
5. Your Rights
You have the right to:
Access your personal data at any time
Update or correct your information through settings
Delete your account and all associated data
Export your data in a portable format
Opt-out of marketing communications
Request data deletion
File complaints about data handling
6. Cookies and Tracking
We use cookies and similar technologies to improve your experience on our platform. You can control cookie preferences through your browser settings.
Essential cookies for authentication and security
Analytics cookies to improve platform performance
Marketing cookies (with your consent)
Session management for secure access
7. Third-Party Services
We work with trusted third-party service providers to deliver our platform:
Payment processors (Razorpay) - For secure subscription payments (₹99/month) and campaign transactions. All payment data is encrypted and PCI-DSS compliant.
Cloud storage (Cloudinary) - For media files, profile photos, and campaign assets
Database hosting (MongoDB Atlas) - Enterprise-grade security with encrypted data storage for all user data, subscriptions, and transaction records
Email services (SendGrid) - For notifications, subscription reminders, verification emails, and account communications
Session management (NextAuth.js) - For secure authentication and session tracking, including subscription status verification
All partners are GDPR and PCI-DSS compliant
Subscription and payment data is never shared with third parties for marketing purposes
8. Data Retention
We retain your personal information only as long as necessary:
Active accounts: Until you delete your account
Subscription data: Retained for active subscriptions and up to 1 year after cancellation/expiration for billing records
Payment data: As required by financial regulations (minimum 7 years for tax and audit purposes)
Coupon usage data: Retained for 2 years for fraud prevention and audit purposes
Verification data: Retained as long as account is active, deleted upon account deletion
Campaign data: For audit and dispute resolution (minimum 3 years)
Deleted accounts: Hard delete within 30 days - All user data, subscriptions, payments, and associated records are permanently deleted from our database. No data recovery is possible after this period.
Legal compliance: As required by applicable laws (may extend retention for legal proceedings)
9. Subscription and Account Deletion
Account Deletion Process
When you delete your account through Settings or Verification page:
All your personal data is permanently deleted from our database
Subscription data, payment records, and transaction history are removed
Campaign data, messages, and collaborations are deleted
Profile information, social media links, and portfolio content are removed
Verification status and badges are removed
Hard delete is completed within 30 days - No data recovery is possible after this period
Subscription Cancellation: You can cancel your subscription at any time. Your account will remain active until the end of your current billing period. After expiration, if not renewed, your account access will be restricted until renewal.
Data Export: Before deletion, you can request an export of your data in a portable format. Contact support for assistance.
10. Children's Privacy
Our platform is not intended for users under 18 years of age. We do not knowingly collect personal information from children. If you become aware that a child has provided us with personal information, please contact us immediately.
11. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any significant changes by:
Posting the new policy on this page
Updating the "Last updated" date
Sending email notifications for major changes
Displaying in-app notifications
12. Contact Us
If you have questions, concerns, or requests about this Privacy Policy or our data practices, please contact us at:
At Promiphy, we take your privacy seriously. All payment information is encrypted with military-grade security, and we never sell or share your data with third parties for marketing purposes. Your trust is our priority.