Thank you for choosing to be part of our community at Credorra.ai ("Credorra", "we", "us", or "our"). We are committed to protecting your personal information and your right to privacy. If you have any questions or concerns about this Privacy Policy or our practices, please contact us at hello@credorra.ai.
When you visit our website credorra.ai or use any of our services, we appreciate that you are trusting us with your personal information. This Privacy Policy explains clearly what information we collect, how we use it, and what rights you have. If you do not agree with any term, please discontinue use of our Services immediately.
1. What information do we collect?
Personal information you disclose. Full name and display name, email address and phone number, billing and shipping addresses, marketplace account identifiers (Amazon Seller ID, Walmart Seller ID, Shopify store URL, etc.), social media handles (for creator and tester accounts — Instagram, TikTok, YouTube, etc.), business name and business type, and payment instrument details (processed securely via Stripe; we do not store raw card data).
Information automatically collected.
- Log & usage data — IP address, browser type, device information, pages viewed, date/time stamps, and actions taken within the platform.
- Device data — device type, operating system, hardware model, internet service provider, and mobile carrier.
- Location data — general geographic location derived from your IP address (not precise GPS unless you consent).
- Cookie and tracking data — information collected via cookies, web beacons, and similar technologies.
2. How do we use your information?
We process your personal information based on (a) your consent, (b) our legitimate business interests, (c) performance of a contract with you, or (d) compliance with legal obligations.
- Account creation and management — to register, maintain, and administer your Credorra account.
- Service delivery — to operate the platform, manage campaigns, match products with testers, and deliver results to brand clients.
- Campaign coordination — to share product details with vetted testers and manage gifting workflows.
- Payment processing — to process subscription fees and campaign payments through Stripe.
- Communications — to send transactional emails, campaign updates, and service announcements.
- Marketing — with your opt-in consent, to send promotional emails and product updates (you may opt out at any time).
- Legal compliance — to comply with applicable laws, respond to legal requests, and prevent fraud.
- Platform security — to monitor for fraudulent activity and maintain platform integrity.
- Product improvement — aggregated and anonymised analytics to improve platform features and campaign effectiveness.
- Testimonials — with your explicit prior consent, to publish testimonials that may include your name and feedback on our website.
4. Who will your information be shared with?
We only share with the following carefully selected third-party categories. We do not share, sell, rent, or trade your information for their own promotional purposes.
| Category | Service provider / purpose |
|---|---|
| Payment processing | Stripe, Inc. — secure payment gateway and billing |
| Email delivery | Klaviyo / Mailchimp — transactional and marketing email delivery |
| Cloud hosting | AWS / Vercel — platform infrastructure and data storage |
| Analytics | Google Analytics — aggregated, anonymised website usage data |
| Advertising | Google Ads / Meta Ads — platform marketing to aggregated audiences |
| Customer support | Intercom / Zendesk — support ticket and communication management |
| Document signing | DocuSign / PandaDoc — NDA and agreement delivery and signature |
| Campaign operations | Airtable / Notion — internal campaign and tester management |
6. How long do we keep your information?
| Data type | Retention period |
|---|---|
| Active account data | Duration of your account, plus 2 years |
| Transaction and payment records | 7 years (tax & accounting legal requirements) |
| Campaign data and tester feedback | 3 years from campaign completion date |
| Marketing communication preferences | Until you opt out or withdraw consent |
| Support communications | 3 years from last interaction |
| Idle/inactive account data | 9 months from last activity, then deleted or anonymised |
| Data subject to legal hold | As required by applicable law or court order |
7. How do we keep your information safe?
- SSL/TLS encryption for all data transmitted to and from our website and platform.
- Encryption at rest for sensitive data stored on our servers.
- Role-based access controls — only authorised personnel can access personal data.
- Regular security reviews and vulnerability assessments.
- PCI-DSS compliant payment processing through Stripe — we never store raw card data.
- Multi-factor authentication for all internal system access.
8. What are your privacy rights?
Depending on your location, you may have the following rights regarding your personal information.
| Right | Description |
|---|---|
| Right to access | Request a copy of the personal information we hold about you. |
| Right to correction | Request correction of inaccurate or incomplete personal information. |
| Right to deletion | Request deletion of your data, subject to legal retention obligations. |
| Right to portability | Request your data in a structured, machine-readable format. |
| Right to object | Object to processing based on legitimate interests. |
| Right to restriction | Request restriction of processing in certain circumstances. |
| Withdraw consent | Withdraw consent at any time for any consent-based processing. |
| Non-discrimination | We will not discriminate against you for exercising your privacy rights. |
To exercise any of these rights, please email us at hello@credorra.ai. We will respond within 30 days. Identity verification may be required.
9. Controls for Do-Not-Track features
Most web browsers and some mobile operating systems include a Do-Not-Track (“DNT”) feature you can activate. At this time, no uniform technology standard for recognising and implementing DNT signals has been finalised, and we do not currently respond to DNT signals. We will update this policy if a recognised standard is adopted.
10. Do California residents have specific privacy rights?
- Right to know — Request information about the categories and specific pieces of personal information we have collected.
- Right to delete — Request deletion of personal information, subject to certain legal exceptions.
- Right to opt-out of sale — We do not sell personal information. If this practice ever changes, we will notify you.
- Right to non-discrimination — We will not discriminate against you for exercising any CCPA right.
11. Do we make updates to this notice?
Yes. We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated Privacy Policy with a revised effective date, sending an email notification, and/or displaying a prominent notice on our website or within the Credorra platform.
12. How can you contact us about this notice?
- General enquiries — hello@credorra.ai
- Privacy requests — privacy@credorra.ai
- Website — credorra.ai
This Privacy Policy was last updated on May 2, 2026. Your continued use of our Services constitutes your acceptance of the current Privacy Policy.
Credorra.ai · Version 1.0 · May 2, 2026. Read our Terms of Service.