← Back to teaseit

Privacy Policy

This Privacy Policy explains how teaseit (KvK 42055117), based in the Netherlands, collects and uses personal data. We comply with the EU General Data Protection Regulation (GDPR) and Dutch privacy law.

Data we collect

• Creator accounts: name, organization name, email, password (hashed), payout details (bank/wallet).
• Buyer transactions: email address, IP address, payment method (handled by Stripe), purchase history.
• Content: files uploaded by creators (stored encrypted in EU-hosted Supabase Storage).
• Logs: request logs, error logs (retained for 30 days for security and debugging).

Why we collect it

• To provide the service: hosting content, processing payments, delivering purchased files.
• To prevent fraud and abuse.
• To comply with legal obligations (tax, anti-money-laundering, court orders).
• To send transactional email (purchase receipts, payout notifications). We do not send marketing email without opt-in.

Who has access

• Stripe (payment processor) — receives buyer payment data per their privacy policy.
• Supabase (database & storage) — hosts data on our behalf within the EU.
• Vercel (frontend hosting) — serves the site.
• Authorities, when required by law.

We do not sell or share your data with third parties for advertising.

Cookies

We use two first-party cookies (or equivalent local storage entries):

• Session — keeps creators logged in.
• Affiliate referral (teaseit_ref) — set only when you arrive via an affiliate link (?ref=…), so the referring affiliate is credited if you sign up. Expires after 30 days.

We do not use tracking, analytics, or advertising cookies.

Data retention

• Account data: kept while your account is active. Deleted within 90 days of account closure (except where retention is legally required).
• Transaction records: retained for 7 years per Dutch tax law.
• Content files: deleted within 30 days of link archival.

Your rights (GDPR)

You have the right to access, correct, delete, or export your personal data, and to object to or restrict its processing. Contact privacy@teaseit.com. You may also lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens).

Security

Data is transmitted over TLS. Passwords are hashed with bcrypt. Content files are stored encrypted at rest. Access is restricted via row-level security and audit logging.

Contact

teaseit · KvK 42055117 · The Netherlands
Privacy questions: privacy@teaseit.com