Privacy Policy

This Privacy Policy becomes binding at the moment you submit an application to join Daisy. You do not need to have an active account or access to the platform for this policy to apply. By applying, you expressly acknowledge that:

• You have read and understood this Privacy Policy in full
• You consent to the collection and use of your information as described herein, beginning at the point of application
• You agree that information submitted as part of your application — including your name, email address, and any profile details provided — is subject to this policy immediately
• You are at least 18 years of age

If you do not agree to these terms, you must not submit an application.

1.1 Information You Provide

• Application data: name, email address, and any profile or background information submitted at the time of application — collected and processed from the moment you apply
• Account registration: username, password, and profile photo (upon acceptance)
• Profile details: bio, social media handles, portfolio links, content categories, and audience demographics (for creators); brand name, industry, website, and campaign preferences (for brands)
• Communications: messages sent through the platform, collaboration proposals, and content briefs
• Payment information: billing address and payment method details, processed securely by our third-party payment provider (we do not store full card numbers)
• Identity verification: government-issued ID or business registration documents, where required for payouts or brand verification
• User-generated content: posts, images, videos, campaign assets, and any other content you upload or share on Daisy

1.2 Information We Collect Automatically

• Device and browser information: IP address, device type, operating system, browser type, and unique device identifiers
• Usage data: pages visited, features used, search queries, clicks, and session duration
• Log data: error reports, access timestamps, and referring URLs
• Cookies and similar technologies: see Section 6 for details

1.3 Information From Third Parties

• If you connect a social media account (e.g., Instagram, TikTok, YouTube), we may receive profile information, follower counts, and engagement metrics from those platforms, subject to their own privacy policies and your permissions
• Payment processors may confirm transaction status or flag fraudulent activity

We use the information we collect to:

• Evaluate your application and determine eligibility for the Daisy community
• Create and maintain your account and verify your identity
• Match creators with brands based on content category, audience, and campaign fit
• Facilitate collaboration workflows: messaging, briefs, content review, and approvals
• Process payments and pay out earnings to creators
• Send transactional communications: application status updates, account confirmations, collaboration updates, payment receipts, and security alerts
• Send service communications: product updates, new features, and policy changes (you can opt out of non-essential emails at any time)
• Enforce our Terms of Service and community guidelines
• Detect and prevent fraud, abuse, spam, and security incidents
• Analyze platform usage to improve performance, fix bugs, and develop new features
• Comply with applicable legal obligations

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, we process your personal data on the following legal bases:

• Contract performance: processing necessary to fulfill your agreement with us, which begins at the point of application
• Legitimate interests: improving and securing our platform, preventing fraud, and communicating service updates — where these interests are not overridden by your rights
• Consent: where we ask for your explicit consent (e.g., optional marketing emails, connecting third-party social accounts)
• Legal obligation: processing required to comply with applicable laws

We do not sell your personal data or share it with third parties for advertising purposes. We may share your information in the following limited circumstances:

4.1 With Other Users

Certain profile information — such as your name, profile photo, bio, and portfolio — is visible to other verified members of the Daisy community as part of the matching and collaboration experience. You control what you include in your public profile.

4.2 With Service Providers

We work with trusted third-party companies that process data on our behalf, including:

• Cloud hosting and infrastructure providers
• Payment processors (e.g., Stripe)
• Analytics providers (e.g., usage analytics to improve the platform)
• Email and communication delivery services
• Fraud detection and identity verification providers

These providers are contractually required to process data only as directed by us and to maintain appropriate security standards.

4.3 Legal and Safety Disclosures

We may disclose information if we believe in good faith that doing so is necessary to: comply with a legal obligation or valid government request; protect the rights, property, or safety of Daisy, our users, or the public; or enforce our Terms of Service.

4.4 Business Transfers

If Daisy is acquired, merged, or undergoes a change of ownership, your information may be transferred as part of that transaction. We will notify you before your information is subject to a materially different privacy policy.

We retain your personal data for as long as your account is active or as needed to provide our services. Specifically:

• Application data: retained for 12 months regardless of application outcome, to support re-application and fraud prevention
• Account data: retained for the life of your account plus 2 years after closure, to resolve disputes and comply with legal obligations
• Transaction records: retained for 7 years for tax and financial compliance
• Content and messages: retained while your account is active; deleted within 90 days of account closure unless legally required to retain
• Log data: retained for up to 12 months

You may request deletion of your data at any time (see Section 7). Some data may be retained in anonymized, aggregated form for analytics.

We use cookies and similar technologies to operate and improve Daisy. The categories we use are:

• Strictly necessary cookies: required for core platform functionality (authentication, session management). These cannot be disabled.
• Functional cookies: remember your preferences and settings (e.g., language, theme)
• Analytics cookies: help us understand how users navigate the platform so we can improve it. We use privacy-respecting analytics tools and do not share this data for advertising.

You can manage cookie preferences through your browser settings or our cookie preference center (available in your account settings). Note that disabling functional or analytics cookies may affect your experience.

Depending on your location, you may have the following rights regarding your personal data:

• Access: request a copy of the personal data we hold about you
• Correction: request that we correct inaccurate or incomplete data
• Deletion: request that we delete your personal data, subject to legal retention requirements
• Portability: receive your data in a structured, machine-readable format
• Objection: object to processing based on legitimate interests
• Restriction: request that we limit how we process your data in certain circumstances
• Withdraw consent: where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing
• Opt out of marketing: unsubscribe from promotional emails via the link in any email, or through your account notification settings

To exercise any of these rights, contact us at: [email protected]

We will respond to verified requests within 30 days. We may need to verify your identity before processing certain requests. We will not discriminate against you for exercising your privacy rights.

Daisy operates globally. If you are located outside the United States, your data may be transferred to and processed in the United States or other countries where our service providers operate. These countries may have different data protection laws than your own.

Where required by law (e.g., for EEA/UK users), we rely on appropriate transfer mechanisms such as the EU Standard Contractual Clauses (SCCs) or equivalent measures to protect your data during international transfers.

Daisy is not intended for use by anyone under the age of 18. We do not knowingly collect personal data from minors. If we learn that we have collected data from someone under 18, we will delete it promptly. If you believe a minor has created an account, please contact us at [email protected].

We implement industry-standard technical and organizational measures to protect your personal data, including:

• Encryption of data in transit (TLS) and at rest
• Access controls limiting data access to authorized personnel
• Regular security assessments and monitoring
• Incident response procedures

No method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security. In the event of a data breach that affects your rights and freedoms, we will notify you and relevant authorities as required by law.

Daisy may contain links to third-party websites or allow you to connect third-party services (e.g., social media platforms). This Privacy Policy does not apply to those third parties. We encourage you to review the privacy policies of any third-party services you use in connection with Daisy.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make material changes, we will:

• Update the "Last Updated" date at the top of this policy
• Notify you via email or an in-app notice at least 14 days before the changes take effect
• Maintain a version history so you can review prior versions

Your continued use of Daisy after the effective date constitutes acceptance of the updated policy.