Effective Date: July 20, 2025

Last Updated: July 20, 2025

Inflerra (“we,” “us,” “our”) respects your privacy. This Privacy Policy explains what personal data we collect, how we use it, and what rights you have.

1. Scope

This Policy covers personal data processed through our website, application, APIs, and related services worldwide, including during our waitlist/beta phase and after full launch.

2. Information We Collect

Account & Profile Data: Name, email, social handles, bios, profile photos, categories, follower counts, audience demographics (if you connect socials or enter manually), pricing, location (country or IP-based).

Deal & Workflow Data: Campaign details, offers, contracts, messages, deliverable proofs, invoices, payout info.

Financial/Payment Data: Processed by Stripe Connect. We receive limited tokens and transaction metadata, not full card numbers.

Usage & Device Data: IP address, device type, browser, pages viewed, clickstream, in-app events. We track interactions internally (no third-party analytics trackers at this time).

Cookies & Local Storage: Only essential cookies for authentication, session management, and CSRF/security.

Communications: Emails and support tickets you send us.

Automated Scores/Profiles: AI-generated match scores, price suggestions, ranks.

Legal/Compliance Data: Records to prevent fraud, resolve disputes, and meet tax/legal obligations.

3. How We Collect Data

Directly from you (forms, uploads, messages).

Through OAuth/social API connections you authorize (e.g., YouTube, Twitch).

Automatically via cookies and logging when you use the Service.

From our payment and infrastructure providers (Stripe, Supabase, Azure) via webhooks or dashboards.

Public sources (to verify follower counts or brand legitimacy).

4. Why We Use Your Data (Purposes & Legal Bases)

We process data to operate, maintain, and secure the Service (contract performance); match influencers and brands, provide AI-driven suggestions (legitimate interests; consent where required); facilitate payments, escrow, and payouts (contract performance; legal obligations); communicate with you (product updates, access notices) (legitimate interests; consent for marketing emails); analyze usage to improve features and prevent abuse (legitimate interests); comply with legal obligations (tax, accounting, law enforcement requests).

5. Cookies & Tracking

We use only essential cookies (session/authentication, CSRF, load balancing). No advertising cookies or third-party trackers are deployed at this time. You can disable cookies in your browser, but core functionality may break.

6. Sharing Personal Data

We do not sell personal data for money. We share data with service providers such as Stripe, Supabase, Azure/S3, and email sending providers. These vendors only process data on our behalf. When you interact with other users, they see relevant info. We may also share data for legal compliance or if we merge or transfer assets.

7. International Transfers

We are U.S.-based. If you are outside the U.S., your data may be transferred to and processed in the U.S., which may have different data protection laws. Where required, we use safeguards such as Standard Contractual Clauses.

8. Data Retention

Account/profile data: retained while your account is active.

Transaction & tax records: retained for at least 3 years (or longer if required by law).

Logs/usage data: typically retained up to 24 months and then aggregated or deleted. You may request deletion; we will delete or anonymize unless we must retain data for legal or legitimate business reasons (e.g., dispute records, tax).

9. Security

We use industry-standard measures (TLS/HTTPS, encryption at rest via our providers, access controls, RLS in Supabase). No system is 100% secure; you use the Service at your own risk.

10. Your Rights

Depending on your location (e.g., EU/UK under GDPR, California under CPRA), you may have rights to access, correct, or delete your data, object to or restrict processing, receive a copy, opt out of marketing, or opt out of “selling” or “sharing” (CPRA). Automated decision-making is limited to AI scoring to suggest matches/prices. Contact us to request human review of significant decisions.

11. Children’s Privacy

We do not knowingly collect personal data from children under 18. If you believe a minor has provided data, contact us and we will delete it.

12. Third-Party Links

Our Service may link to third-party sites or embed content. Their privacy practices are governed by their own policies.

13. Changes to This Policy

We may update this Privacy Policy. We will post the updated date at the top. Material changes may be emailed or shown in-app. Continued use signifies acceptance.

14. Contact

Questions or requests: Inflerra Privacy Team Email: team@inflerra.com Mail: 8700 164th St NE A103, Redmond, WA 98052, USA.