Privacy Policy

When you use PaidEnough, we collect a small amount of information necessary to provide the service:

• Information you provide. Your email address when you request a benchmark report, and optional fields like name, company, and selected plan when you submit a brand onboarding form.
• Submission inputs. The metrics you enter into our calculators — platform, niche, follower count, average views, engagement rate, and optional monthly goal — and the rate or benchmark output we generate from them.
• Technical information. Standard request metadata such as your IP address, browser user-agent, referring page, and UTM campaign parameters when present.

We use the information above to:

• Deliver the benchmark report or response you requested.
• Send you transactional emails relating to your submission.
• Improve the accuracy of our benchmarks and pricing intelligence.
• Detect abuse, debug issues, and secure the service.
• Send occasional product updates if you opted in. You can unsubscribe at any time via the link in any email.

We do not sell personal data. We do not share your email or submission data with advertisers or data brokers.

PaidEnough uses minimal cookies and analytics. We rely on first-party storage to remember your form state during a session, and on aggregate page analytics to understand how the product is used. We do not run third-party advertising trackers.

You can disable cookies in your browser without losing core functionality, though some interactions (like form state) may not persist between page reloads.

We send two types of email: transactional messages tied to a specific action you took (e.g. your benchmark report), and occasional product updates for users who have opted in.

Every marketing email includes an unsubscribe link. Transactional emails are sent only when required to complete a request you initiated.

Submission data is stored in our database hosted on Supabase, with row-level security enabled and access restricted to our service role key. The PaidEnough application is hosted on Vercel, which provides encryption in transit (TLS) for all requests.

We follow industry-standard practices to protect your data, but no internet transmission or storage system is 100% secure. If we become aware of a security incident affecting your information we will notify affected users as required by law.

We use a small set of trusted service providers to operate PaidEnough:

• Vercel — application hosting and edge delivery.
• Supabase — database, authentication, and storage.
• Resend — transactional email delivery (when enabled).
• Formspree — used historically for form intake; current submissions are handled by our own API. References to Formspree may persist in legacy code or integrations and would only receive the same minimal email/source data.

Each provider receives only the data necessary to perform its function and is bound by its own privacy and security commitments.

Creator submission inputs (such as platform, niche, follower count, average views, and engagement rate) may be aggregated and de-identified to inform our benchmark reports and public market commentary. Aggregated outputs never include personal identifiers and cannot be reverse-engineered to a specific user.

If you are located in the European Economic Area, the United Kingdom, Switzerland, or another region with a comparable data protection framework, you have the following rights regarding your personal data:

• Access — request a copy of the personal data we hold about you.
• Correction — ask us to fix inaccurate or incomplete data.
• Deletion — request that we delete your personal data.
• Portability — receive your data in a machine-readable format.
• Restriction or objection — limit how we use your data, or object to certain processing.
• Withdraw consent — opt out of any processing based on consent.

To exercise any of these rights, email privacy@paidenough.com. We will respond within 30 days.

If you are a California resident, the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) give you the right to know what personal information we collect, to request deletion of your information, to correct inaccurate information, and to opt out of any sale or sharing of your personal information.

PaidEnough does not sell or share personal information for cross-context behavioral advertising. To exercise your California privacy rights, contact privacy@paidenough.com.

We retain submission data for as long as your account or interest is active, and for a reasonable period after to support analytics, fraud prevention, and legal obligations. You may request deletion at any time at privacy@paidenough.com — we will remove your personal identifiers within 30 days, while aggregated and de-identified benchmark data may be retained.

PaidEnough is intended for users aged 18 or older. We do not knowingly collect personal information from anyone under 18. If you believe a minor has submitted information, contact us and we will delete it.

For any privacy questions, data requests, or concerns, email us at privacy@paidenough.com. We read every message and aim to reply within two business days.

PaidEnough may update this policy from time to time. When we do, we'll change the date at the top of the page and, for material changes, notify users by email.