Privacy Policy
Last Updated: January 15, 2025
Look, nobody enjoys reading privacy policies. But if you're running casino affiliate operations in regulated US markets, you already know compliance isn't optional. So here's exactly what we do with your data - no legal jargon gymnastics.
What Data We Actually Collect
When you use AffiliHub, we collect three categories of information:
- Account data: Email, company name, payment details (encrypted via Stripe - we never see your full card numbers)
- Usage analytics: Which features you use, API calls, dashboard interactions. Standard SaaS metrics.
- Affiliate tracking data: Click IDs, conversion pixels, postback URLs. The technical stuff that makes attribution work.
We don't collect browsing history outside our platform. We don't sell your data to third parties. Period.
How We Use Your Information
Your data serves exactly three purposes:
- Platform functionality: Tracking affiliate conversions, calculating commissions, generating reports
- Service improvements: Identifying bugs, optimizing load times, building features you actually request
- Compliance requirements: Maintaining audit trails for state gaming regulators (we're required to keep transaction records for 7 years)
We use cookies for session management and analytics (via privacy-focused Plausible, not Google Analytics). You can disable non-essential cookies in your dashboard settings.
Data Security Measures
Here's what nobody tells you about SaaS security: most breaches happen because of lazy password policies, not sophisticated hacks.
Our infrastructure:
- AES-256 encryption for data at rest
- TLS 1.3 for data in transit
- SOC 2 Type II certified hosting (AWS US-East)
- Mandatory 2FA for accounts processing $50K+ monthly volume
- Automated daily backups with 30-day retention
We conduct quarterly penetration tests. Last audit: December 2024 (zero critical vulnerabilities).
Your Data Rights
Under CCPA and state-level privacy laws, you can:
- Request a copy of your data (we'll deliver it within 48 hours)
- Delete your account and associated data (30-day grace period for accidental requests)
- Opt out of non-essential analytics
- Export affiliate performance data in CSV format anytime
Email [email protected] for any of the above. Actual humans respond, usually within 4 business hours.
Third-Party Services
We integrate with payment processors (Stripe), email services (SendGrid), and compliance verification tools. Each has their own privacy policy - links available in your dashboard under Settings > Integrations.
We perform annual vendor security reviews. If a partner fails our standards, we migrate.
Changes to This Policy
When regulations change (looking at you, state legislatures), we update this policy. You'll get 30 days notice via email before any material changes take effect.
Questions? Our compliance team isn't just checking boxes - email [email protected] for straight answers.
Privacy Policy
Last Updated: January 15, 2025
Look, nobody enjoys reading privacy policies. But if you're running casino affiliate operations in regulated US markets, you already know compliance isn't optional. So here's exactly what we do with your data - no legal jargon gymnastics.
What Data We Actually Collect
When you use AffiliHub, we collect three categories of information:
We don't collect browsing history outside our platform. We don't sell your data to third parties. Period.
How We Use Your Information
Your data serves exactly three purposes:
We use cookies for session management and analytics (via privacy-focused Plausible, not Google Analytics). You can disable non-essential cookies in your dashboard settings.
Data Security Measures
Here's what nobody tells you about SaaS security: most breaches happen because of lazy password policies, not sophisticated hacks.
Our infrastructure:
We conduct quarterly penetration tests. Last audit: December 2024 (zero critical vulnerabilities).
Your Data Rights
Under CCPA and state-level privacy laws, you can:
Email [email protected] for any of the above. Actual humans respond, usually within 4 business hours.
Third-Party Services
We integrate with payment processors (Stripe), email services (SendGrid), and compliance verification tools. Each has their own privacy policy - links available in your dashboard under Settings > Integrations.
We perform annual vendor security reviews. If a partner fails our standards, we migrate.
Changes to This Policy
When regulations change (looking at you, state legislatures), we update this policy. You'll get 30 days notice via email before any material changes take effect.
Questions? Our compliance team isn't just checking boxes - email [email protected] for straight answers.