Privacy Policy
Learn how Infloria may collect, use, and protect information for creators, businesses, and website visitors.
Overview
This Privacy Policy explains how Infloria collects, uses, discloses, and protects personal data when people visit the website, create accounts, complete creator onboarding, connect platform accounts, submit business inquiries, or otherwise interact with the platform.
Infloria is a creator-commerce platform that supports creator onboarding, multi-platform creator profile management, business discovery workflows, and related operational services.
This Privacy Policy is intended to apply to current public website use, creator and business account activity, and connected platform features that are available inside Infloria at the time of access.
Information We Collect
Infloria may collect account data such as name, email address, password credentials, account type, and authentication-related records.
For creators, Infloria may collect creator profile data such as display name, city, country, niche information, biography, collaboration preferences, audience locations, languages, visibility settings, and onboarding progress.
Infloria may also collect platform account data such as handles, profile URLs, followers, average views, engagement metrics, provider account identifiers, connection status, token metadata, and other social platform statistics made available through manual submission or connected APIs.
For businesses, Infloria may collect company names, contact names, website information, inquiry details, and business onboarding or demo request information.
Infloria may collect device, browser, and usage analytics, including IP address, pages viewed, referral information, and interactions with public marketing pages.
Google Sign-In and Connected YouTube Data
If a user chooses Google Sign-In, Infloria may receive basic Google account information such as name, email address, profile identifier, avatar, and email verification status in order to create or authenticate the user account.
If a creator chooses to connect YouTube, Infloria requests read-only access to the creator’s own YouTube account. Infloria may import channel identifiers, channel title, public channel URL, subscriber count, total view count, video count, recent uploaded video identifiers, recent video performance metrics, average views, and derived engagement metrics.
Infloria uses connected YouTube data only to populate and maintain the creator’s authenticated workspace, platform account records, and creator profile quality signals. Infloria does not use the YouTube connection to upload, edit, publish, delete, or manage YouTube content on the creator’s behalf.
Infloria does not sell Google user data. Infloria does not use Google user data for advertising, unrelated profiling, data brokering, or any purpose other than providing and improving the user-facing functionality requested by the account holder inside the Infloria product.
Infloria does not transfer Google user data to third parties except to service providers or infrastructure components that are reasonably necessary to operate, secure, maintain, or improve the requested Infloria functionality and that are bound by confidentiality and data protection obligations.
Connected TikTok Data
If a creator chooses to connect TikTok, Infloria may receive TikTok account information and performance data permitted by the creator’s granted TikTok scopes and the TikTok API, such as account identifiers, username or handle data, profile metadata, follower-related statistics, engagement-related statistics, public video information, and related creator account metrics.
Infloria uses connected TikTok data only to populate and maintain the creator’s authenticated workspace, connected platform account records, creator profile quality signals, and related creator-facing product functionality.
Infloria does not use a TikTok connection to publish, edit, upload, delete, or otherwise manage TikTok content on the creator’s behalf unless a separate feature and additional authorization are clearly introduced in the future.
Cookies and Similar Technologies
Infloria uses cookies, local storage, and similar technologies to operate the website, remember user preferences, maintain sessions, and understand site usage.
Infloria currently uses analytics technologies, including Google Analytics, to measure website traffic and understand how visitors interact with public pages. Infloria does not state in this policy that marketing or advertising cookies are currently active unless and until those technologies are actually enabled.
A separate Cookie Policy provides more specific information about these technologies. Infloria should maintain an appropriate consent experience wherever non-essential cookies require notice or consent under applicable law.
How We Use Information
- To create and administer user accounts
- To provide creator onboarding, profile management, platform account management, and related product features
- To respond to business inquiries, support requests, and demo submissions
- To improve product functionality, security, and service quality
- To communicate product updates, service notices, and policy changes
- To analyze platform usage and understand audience needs
- To comply with legal obligations and protect rights, users, and the platform
Legal Bases
Where applicable, Infloria may rely on legal bases such as performance of a contract, legitimate interests, consent, compliance with legal obligations, or other lawful grounds permitted in relevant jurisdictions.
The legal basis may vary depending on the feature being used, the jurisdiction involved, and whether the data is required to provide the service, protect the platform, or support user-requested account connections.
How Information May Be Shared
Infloria may share information with service providers that support hosting, authentication, analytics, communications, storage, customer support, and related operations.
Infloria may also share information with integrated third-party social platforms when users connect their accounts and authorize access to their platform data.
Information may be disclosed if required by law, regulation, legal process, or to protect the rights, safety, or integrity of Infloria, its users, or others.
Infloria does not sell creator or business personal data to third parties.
Infloria does not disclose Google user data to third parties for independent advertising, lead generation, resale, or unrelated commercial exploitation.
Third-Party Social Platforms
If a creator connects a social or content platform such as TikTok, Instagram, or YouTube, Infloria may receive information from that provider according to the permissions granted by the user and the provider’s API policies.
Infloria is not responsible for the privacy practices, availability, or terms of third-party platforms. Users should review the relevant provider policies before connecting those services.
Users can usually revoke Infloria access from the relevant provider account settings, including their Google account permissions page for Google and YouTube connections and the connected app permissions or security settings made available within TikTok for TikTok connections.
Token Handling and Connected Account Retention
When a creator connects a supported third-party platform, Infloria may store access tokens, refresh tokens, token expiry details, and sync metadata required to maintain the connection, refresh authorized access where permitted, and keep platform statistics current.
Connected account tokens and synced platform metadata are retained only for as long as reasonably necessary to operate the connection, provide the requested platform features, comply with legal obligations, resolve disputes, and protect the integrity of the service.
If a creator disconnects a connected platform, Infloria will stop using the active connection for ongoing sync activity and will remove or disable active connection credentials in the live service within a reasonable operational period, subject to backup cycles, security logging, and legal retention requirements.
If a user requests account deletion, Infloria may remove or disable active connection credentials while retaining limited records where necessary for security, audit, fraud prevention, legal compliance, or dispute handling purposes. Residual records may remain in secured backups until normal rotation or deletion schedules are completed.
Retention and Security
Infloria may retain personal data for as long as reasonably necessary to provide services, comply with legal obligations, resolve disputes, enforce agreements, and maintain security or audit records.
Infloria uses administrative, technical, and organizational safeguards designed to protect personal data, connected account credentials, and platform records. These measures may include access controls, authentication safeguards, least-privilege internal access, encrypted transport channels, protected storage environments, logging, and operational review controls appropriate to the nature of the data.
Sensitive connected-account data, including OAuth credentials and related sync metadata, is intended to be accessible only to authorized systems, processes, and personnel who need that access to operate or secure the service. No system can guarantee absolute security.
International Transfers
Infloria may store or process information in multiple countries depending on hosting, service providers, team operations, or user location.
If personal data is transferred across borders, Infloria expects to rely on appropriate contractual, technical, or legal safeguards that are relevant to the jurisdiction and transfer context.
Your Rights
Depending on applicable law, users may have rights to access, correct, delete, restrict, object to, or export certain personal data, and may also have the right to withdraw consent where processing relies on consent.
Users may contact Infloria to request privacy-related assistance, including questions about connected account data, account deletion, or data correction.
Children and Minors
Infloria is not intended for children and should not knowingly collect personal data from users below the minimum age required by applicable law without appropriate authorization.
Users must meet the minimum legal age required to create an account or use the platform in their jurisdiction.
Updates and Contact
Infloria may update this Privacy Policy from time to time. Updated versions should be posted with a revised effective or last updated date.
Questions about this Privacy Policy, connected platform data, deletion requests, or other privacy-related matters may be directed to support@infloria.io.