Privacy Policy

Welcome to Tierloom. We are a professional identity network and marketplace designed exclusively for creators and brands — a place where authentic creator careers are built, showcased, and monetized.

We believe in being transparent about how your data works for you on our platform. This Privacy Policy explains what information Tierloom collects, why we collect it, how we use it, and the choices you have.

By creating an account or using the Tierloom platform (website), you agree to the practices described in this policy. Tierloom is operated by Tierloom Technologies Private Limited. If you have questions, reach us at: [email protected]

We collect only what's needed to make Tierloom work for you — nothing more. Here's a plain-language overview of what we gather and why.

A. Account & Sign-in

Basic details to create and secure your account — your name, email, and login credentials. We never store passwords in plain text; they're always encrypted.

B. Creator Profile

Information you choose to share so brands can discover and evaluate you — your bio, content niches, rate expectations, past collaborations, and portfolio. You decide what goes here and what's visible.

C. Brand & Agency Workspace

Details about your company or agency on Tierloom — name, logo, team members, campaign preferences, and any brand content you choose to showcase. For agencies, this also includes managed creator relationships and client portfolios.

D. Platform Activity

Standard usage signals like pages visited, features used, and feed interactions. This powers creator analytics and helps us improve the platform experience. No different from how most digital platforms operate.

E. Messages & Negotiations

Conversations between users on the platform, including campaign negotiation messages and deliverable submissions. These are stored to keep your deal history intact and accessible.

F. Payments & Transactions

Financial information needed to process campaigns — handled securely via Razorpay (India) or Stripe (global). We never store full card numbers; payment providers handle that. Creator bank details are collected only when you request a payout.

We use the data we collect to run the platform and provide you with meaningful features. Here is a summary of how your information is used:

• To operate your account: create and maintain your profile, authenticate your identity, and provide access to platform features
• To power the marketplace: help brands discover relevant creators through search, filtering, and AI-assisted matching; help creators find suitable brand campaigns
• To verify and build trust: API-verified social metrics, calculated career tiers, and completed campaign records maintain the integrity of the marketplace
• To process transactions: manage escrow payments, release funds, and maintain financial records for both creators and brands
• To deliver notifications: inform you of campaign updates, deal changes, new messages, payment statuses, and platform announcements
• To improve the platform: analyse usage patterns, fix bugs, and develop new features based on how users interact with Tierloom
• To maintain safety and compliance: detect and prevent fraud, abuse, fake metrics, and policy violations
• To provide analytics: give creators and brands visibility into profile performance, campaign results, and audience insights

Tierloom includes a profile visibility feature that helps creators understand who is interested in working with them. Here is how it works, and what both sides should know:

When a Brand or Agency user visits a creator's profile, views their media kit, or browses their campaign history, Tierloom records this visit. This is a standard analytics feature, similar to LinkedIn's profile view notifications.

• For Free-tier creators, this data is surfaced in anonymised form — for example, you might see a notification like "A prominent lifestyle brand viewed your profile."
• For Premium-tier creators, this data is deanonymised and provides specific information — for example, "[Brand Name]'s marketing team spent 4 minutes reviewing your media kit."

Tierloom does not sell your personal data to third parties. We share data only in the following circumstances:

• With other users, as intended: Creator profiles are visible to brands and other platform users as per your visibility settings. Brand and agency profiles are similarly visible to creators. This is the core function of the platform.
• With payment processors: We share necessary transaction data with Razorpay and Stripe to process payments. These providers have their own privacy policies and security standards.
• With infrastructure providers: We use trusted cloud service providers (including AWS, GCP) to operate the platform. These providers process data only on our behalf.
• For legal compliance: We may disclose information when required by law, in response to valid legal processes, or to protect the rights, safety, and property of Tierloom and its users.
• In business transfers: If Tierloom is acquired or merges with another company, user data may be transferred as part of that transaction. We will notify users of any such change.

A core principle of Tierloom is trust through verified data. To maintain marketplace integrity:

• Career tiers (Nano, Micro, Mid, Macro, Mega) are calculated by the platform based on objective criteria including verified campaign completions, delivery rates, and client ratings. They are system-generated and cannot be self-assigned.
• Completed campaign records and client reviews become part of a creator's permanent professional history on the platform. These records are maintained to protect the integrity of the ecosystem.

This approach is similar to how LinkedIn verifies employment history or how app stores display verified download counts — it protects everyone in the ecosystem from fraud.

We retain your data for as long as your account is active and for a reasonable period thereafter to comply with legal obligations, resolve disputes, and enforce our agreements.

• Account data is retained for the duration of your active account plus a standard post-closure period (typically 90 days) to allow for account recovery requests
• Transaction and financial records are retained for the period required by applicable financial regulations
• Audit logs for security and compliance purposes are retained for a defined period as required by law

Depending on your location, you may have the following rights regarding your personal data:

• Right to Access: You can request a copy of the personal data we hold about you.
• Right to Correction: You can update most of your personal information directly through your account settings. For data that cannot be self-edited (such as verified metrics), you can contact us to raise a concern.
• Right to Deletion: You can request deletion of your account and associated personal data, subject to our legal retention obligations.
• Right to Portability: You can request your data in a portable format (under certain conditions).
• Right to Withdraw Consent: You can opt out of marketing communications at any time.

Jurisdiction-Specific Rights

• GDPR (EU/UK users): You have additional rights including the right to object to processing and the right to lodge a complaint with your local supervisory authority.
• CCPA/CPRA (California users): You have the right to know what personal data is collected, the right to delete, and the right to opt out of sale (we do not sell personal data).
• DPDP Act (India users): You have rights under the Digital Personal Data Protection Act, 2023, including the right to access, correct, and erase your data, and the right to nominate a representative.

To exercise any of these rights, contact us at [email protected]. We aim to respond within 30 days.

We take the security of your data seriously and use industry-standard safeguards:

• Passwords are hashed — we never store plain-text credentials
• Sensitive communications are transmitted over HTTPS/TLS encryption
• We maintain comprehensive audit logs of critical account and transaction events
• Our platform uses role-based access controls to limit internal data access to authorised personnel only

Tierloom is a professional platform intended for users who are 18 years of age or older. We do not knowingly collect personal information from anyone under 18. If we become aware that a user under 18 has created an account, we will promptly disable their account and delete their information.

If you are a parent or guardian and believe your child has used our platform, please contact us at [email protected].

Tierloom uses cookies and similar technologies to keep you logged in, remember your preferences, and understand how the platform is used. You can manage cookie preferences through your browser settings, though disabling certain cookies may affect platform functionality.

We use analytics tools to understand platform usage patterns. Data collected through these tools is aggregated and used solely to improve the platform.

We may update this Privacy Policy from time to time. When we make material changes, we will notify you via email or a prominent notice on the platform, and update the "Last Updated" date at the top of this page. Continued use of the platform after any changes constitutes your acceptance of the updated policy.

If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your data, our dedicated support team is here to help.