Privacy Policy

Last Updated: January 2025

Look, privacy policies are usually 47 pages of legal gymnastics. This one's different. We collect data. You need to know what, why, and how we protect it. Here's the straight answer.

What Information We Collect

When you sign up for AffiliHub, we collect:

  • Account data: Email, company name, billing address, payment details
  • Usage analytics: Pages visited, features used, session duration
  • Affiliate tracking data: Click IDs, conversion pixels, referral sources (this is literally our core business)
  • Communication records: Support tickets, onboarding calls, feature requests

We don't sell your data. Period. Our business model is software subscriptions, not data brokerage.

How We Use Your Information

Three main purposes:

  1. Service delivery: Running your affiliate program, processing commissions, generating reports
  2. Product improvement: Understanding which features get used (and which don't) so we build better tools
  3. Communication: Important updates, security alerts, billing issues. We're not email spammers.

We use third-party processors for payments (Stripe) and analytics (self-hosted Plausible, not Google). Both are GDPR-compliant.

Data Security Measures

Your affiliate tracking data is sensitive. Here's how we protect it:

  • AES-256 encryption for data at rest
  • TLS 1.3 for data in transit
  • Regular third-party security audits
  • Role-based access controls (your team sees only what they need)
  • Automated backups every 6 hours, retained for 30 days

We're SOC 2 Type II certified. Translation: we passed the audit that proves we actually do what we say here.

Your Rights Under GDPR & CCPA

If you're in the EU or California, you have specific rights:

  • Access: Request a copy of all data we hold about you
  • Correction: Fix inaccurate information in your account
  • Deletion: Erase your account and associated data (takes 30 days for full purge)
  • Portability: Export your data in CSV/JSON format
  • Objection: Opt out of non-essential data processing

Email [email protected] with any requests. We respond within 72 hours.

Cookie Policy

We use exactly three cookies:

  1. Session authentication (required for login)
  2. Dashboard preferences (which reports you view most)
  3. Anti-fraud fingerprinting for affiliate clicks (this is compliance, not tracking you personally)

No advertising cookies. No cross-site tracking. No behavioral profiling for ads.

Data Retention

Active accounts: Data retained as long as you're a customer. Closed accounts: Aggregated analytics kept for 2 years (anonymized), billing records for 7 years (tax law requirement), everything else deleted within 90 days.

Changes to This Policy

When we update this (rare, but happens), we'll email you 30 days before changes take effect. Continued use after that means acceptance.

Questions? Email [email protected] or use the live chat. We're humans who actually respond.