Privacy Policy

This Privacy Policy explains how MeetYourFan collects, uses, shares, and protects personal data when you use the platform, and the rights you have over that data. It should be read together with our Terms & Conditions. "Personal data" means any information relating to an identified or identifiable person.

1. Information We Collect

• Account & authentication — email, username, password (stored hashed), and any social-login identifiers you connect.
• Profile — display name, bio, avatar, and other details you choose to add.
• Payments & on-chain — wallet address, transaction references, and entry/credit balances. Card details are handled by our regulated fiat-to-crypto provider and are not stored by us.
• Mail-in (AMOE) entrants — where you submit a postal free entry, the name, email, and any details printed on the card, processed solely to register the entry.
• Technical & usage — device/browser information, IP address, and logs needed to operate, secure, and improve the service.

2. Legal Bases for Processing

We process personal data on the following GDPR legal bases: performance of a contract(account management, campaigns, and transactions); legitimate interests (platform security, fraud prevention, and service improvement); consent (marketing communications and non-essential cookies); and legal obligation (tax, accounting, and regulatory compliance).

3. How We Use Information

We use your information to provide and secure the service, operate campaigns and sweepstakes, process transactions and refunds, send service communications, prevent fraud and abuse, comply with legal obligations, and improve features and performance.

4. Joint Controllers

For most platform activity — account signup, authentication, payments, platform-wide notifications, analytics, and anti-fraud — MeetYourFan is the data controller. For the entrant list of a specific campaign and how an influencer communicates with their entrants, the influencer who runs the campaign is a controller too. This is a joint-controller relationship under GDPR Article 26: MeetYourFan provides the tooling and safeguards, while the influencer decides how they use their own entrant data. You can exercise your rights against either party.

5. Sharing & Third Parties

We do not sell your personal data. We share limited data only with service providers acting on our instructions to operate the platform — for example a regulated fiat-to-crypto payment provider (which runs its own KYC/AML on card payments), an email-delivery provider, and cloud infrastructure. Where data is transferred outside your region, we rely on appropriate safeguards (such as standard contractual clauses) for international transfers.

6. Cookies & Consent

We use strictly-necessary cookies to run the service (e.g. authentication and security). Non-essential cookies (such as analytics) are used only with your consent, which you can give or withdraw through the cookie banner and your settings.

7. Marketing Emails & Unsubscribe

Marketing and newsletter emails are sent only with consent. Every such email includes a one-click unsubscribe header (RFC 8058) and a visible unsubscribe link, and we honour unsubscribe requests immediately without requiring you to log in. Unsubscribes can be scoped — campaign-specific, broadcast-specific, or platform-wide.

8. Data Retention

We retain personal data only for as long as necessary for the purposes above or as required by law (for example, transaction and tax records). When data is no longer needed, it is deleted or anonymised. Some records tied to a completed campaign or a financial transaction are kept for the legally-required period even after you delete your account.

9. Your Privacy Rights

If you are in the EEA, the United Kingdom, or a jurisdiction with GDPR-equivalent law, you have the rights to:

• Access — request a copy of the personal data we hold about you.
• Rectification — ask us to correct inaccurate or incomplete data.
• Erasure — request deletion where no overriding legal basis applies.
• Portability — receive your data in a structured, machine-readable format.
• Restriction — ask us to limit processing in certain circumstances.
• Object — object to processing based on legitimate interests, or to direct marketing.
• Withdraw consent — where processing is based on consent, withdraw it at any time.

Use "Export My Data" or "Delete My Account" in your account settings, or contact us through Help & Support. You also have the right to lodge a complaint with your local data protection authority.

10. Security

We use reasonable technical and organisational safeguards to protect personal data, but no system can be guaranteed 100% secure.

11. Contact

For privacy questions or to exercise any right above, contact support through Help & Support in the app, or email [email protected].