Privacy Policy

a. Account and Profile Data

When you create an account or subscribe to our Services, we collect:

• Full name, email address, company name, password

• Billing and payment details (processed securely via Stripe)

• Communication preferences and account settings

b. Usage and Analytics Data

When you access or use our platform, we automatically collect:

• IP address, browser type, device information, operating system

• Access times, referring URLs, and pages visited

• Behavioral metrics such as clicks, time on page, and usage frequency

Collected via: Google Analytics, PostHog, and tracking pixels from Meta and Google Ads.

c. Affiliate Discovery and Publicly Available Business Data

AffiliateFinder.ai identifies affiliates, publishers, and influencers by processing publicly available data from websites, social media profiles, and third-party enrichment services (such as Hunter.io or similar providers).
This data may include:

• Public business contact information (e.g., email addresses published on websites)

• Domain and website metadata

• Social profile URLs and engagement statistics

We only process business-related data for legitimate commercial purposes and do not collect sensitive or private personal data.

d. Third-Party API and Integration Data

If you connect AffiliateFinder.ai with third-party services (e.g., CRM or outreach tools), we may receive limited data necessary to facilitate those integrations, always governed by that service’s permissions and policies.

e. Payment Data

Payments are processed securely via Stripe. Affiliate Finder does not store full payment card information. Stripe’s privacy policy applies to all transactions (see https://stripe.com/privacy).

f. Cookies and Tracking Technologies

We use cookies, pixels, and similar technologies for:

• Essential functionality (authentication, session management)

• Performance and analytics (Google Analytics, PostHog)

• Marketing and retargeting (Meta and Google pixels)

You can manage or disable cookies in your browser settings.

We use your data to:

1. Provide and maintain our Services
   – Account setup, authentication, and service delivery

2. Improve performance and functionality
   – Diagnose issues, analyze usage, and optimize product experience

3. Communicate with you
   – Product updates, customer support, and marketing communications (with opt-out options)

4. Process payments and manage subscriptions

5. Ensure platform security and prevent fraud

6. Comply with legal obligations

We do not use your personal or customer data to train AI models.

We process personal data based on the following lawful grounds:

• Contractual necessity: To deliver and manage the Services you request.

• Legitimate interests: To improve, secure, and promote our Services.

• Consent: For analytics and marketing cookies or emails where required.

• Legal obligation: Where necessary to comply with tax, accounting, or regulatory duties.

We only share data with trusted third parties necessary to operate the Services:

We may also disclose data:

• To comply with legal obligations or lawful requests by public authorities

• In connection with a merger, acquisition, or asset sale

• To protect our rights, security, or users’ safety

Your information may be processed in countries outside the UK or EEA. Where transfers occur, we implement appropriate safeguards such as the UK International Data Transfer Addendum or EU Standard Contractual Clauses (SCCs).

We retain data only as long as necessary for the purposes described in this policy:

• Account data: retained for the duration of the customer relationship and up to 24 months after termination.

• Publicly available business data: retained for as long as it remains relevant to affiliate discovery.

• Billing and transaction records: retained for up to 7 years to comply with tax and accounting requirements.

Depending on your location, you have the following rights:

• Access: Obtain a copy of your personal data.

• Correction: Request updates or corrections to your data

• Erasure (“Right to be Forgotten”): Request deletion of your personal data

• Restriction: Limit processing of your data

• Data Portability: Request transfer of your data to another service

• Objection: Opt out of processing for direct marketing or legitimate interests

We implement administrative, technical, and physical safeguards to protect your data, including:

• Encryption in transit (TLS) and at rest where applicable

• Limited employee access to production data

• Regular vulnerability monitoring and access reviews

Our Services are not directed to children under 16. We do not knowingly collect data from minors. If we become aware of such data, we will delete it promptly.

In the event of a data breach affecting personal data, we will notify affected users and relevant supervisory authorities within 72 hours of becoming aware, in accordance with GDPR requirements.

We may update this Privacy Policy from time to time.
All changes will be posted on this page with a revised “Last Updated” date.
If changes are material, we will notify you via email or platform notice before they take effect.

If you have any questions, concerns, or complaints about this Privacy Policy or how your data is handled,
please contact us:

Affiliate Finder Ltd
📍 Ground Floor, Kings House, 101-135 Kings Road, Brentwood, Essex, United Kingdom, CM14 4DR
📧 privacy@affiliatefinder.ai

If you are based in the EU or UK, you also have the right to lodge a complaint with your local Data Protection Authority.

For enterprise customers requiring additional compliance documentation:

• A Data Processing Addendum (DPA) is available upon request.

• A list of subprocessors and relevant security certifications (AWS, Stripe, OpenAI) can be provided for vendor onboarding.

• Affiliate Finder Ltd commits to GDPR, UK GDPR, and CCPA compliance, including lawful cross-border data transfer mechanisms.