Privacy Policy.

Information you provide

When you register for ampd you provide your name, email address, password, and the role you have selected — creator, brand, or agency.

Profile information

You provide information to build a profile that other users can discover. This includes profile photos, biographies, content niches, brand descriptions, agency details, links to social accounts, sample work, and rate cards. The specific fields depend on your role.

Connected account data

When you connect a third-party social media account (Instagram, YouTube, TikTok, Facebook, X, or LinkedIn), you authorize us to access certain data through that platform's official API: public profile information, audience metrics (size, engagement, growth), audience demographics (age, location, gender breakdown), and post-level performance.

Communications

When you message other users, send connection requests, submit briefs, approve content, or otherwise interact through the Services, we collect and store the content of those communications.

Payment and tax information

To process payouts and billing we collect bank account details, payment information, and tax identifiers (such as PAN and GST registration numbers) where required by applicable law.

Support communications

When you contact us for support, send feedback, or respond to surveys, we collect the information you share.

Device, connection, and usage information

Automatically: device type, operating system, browser, IP address, language, the pages and features you use, times and frequency of access, and performance data.

Information from third parties

We receive information from payment processors, fraud prevention services, and identity verification partners as necessary to provide the Services.

To provide the Services

Create and maintain your account, display your profile, match creators with brands based on fit and audience data, deliver messages and notifications, run campaigns end-to-end, and process payments.

To personalise your experience

Use your role, profile, and activity to recommend relevant creators, brands, agencies, and campaign opportunities.

To improve the Services

Use aggregated and de-identified information to analyse usage, identify and resolve issues, refine our matching and recommendation systems, and develop new features.

To communicate with you

Send transactional communications about your account, campaigns, and payments. With your consent, send product updates and marketing communications.

To promote safety and integrity

Prevent fraud, abuse, harassment, spam, and other harmful behavior, and protect ampd, our users, and others.

To comply with legal obligations

Comply with applicable laws — including the Digital Personal Data Protection Act, 2023 (DPDP Act), tax and accounting laws, anti-money laundering regulations, and lawful requests from authorities.

Profile visibility

Profiles on ampd are visible only to users logged into the Services. They are not indexed by search engines and are not accessible to anyone without an ampd account.

Creators — what brands and agencies see

Profile photo, biography, niche, connected social handles, audience metrics, audience demographics, past campaign history on ampd, and rate cards (if elected). Personal email addresses, phone numbers, payment details, and tax IDs are not visible to other users.

Brands — what creators and agencies see

Brand name, logo, category, website, brand description, and active campaign briefs. Internal financial information, payment details, team communications, and budget information are not visible to other users.

Agencies — what brands and creators see

Agency name, logo, website, team size, and campaigns being managed. Client rosters, internal communications, financial information, and team data are not visible to other users.

Your controls

Edit your profile at any time, choose which optional information to share, disconnect any social account, and pause your profile from being shown in search results.

Service providers

Vendors that perform services on our behalf and are contractually obligated to protect it — cloud hosting providers, payment processors (PCI DSS compliant and regulated by the Reserve Bank of India where applicable), email delivery services, customer support platforms, analytics providers, and fraud prevention services.

Legal and safety reasons

Where we believe in good faith that disclosure is required by law, court order, or government request, or where necessary to protect the rights, property, or safety of ampd, our users, or the public.

Business transfers

If ampd is involved in a merger, acquisition, financing, or sale of assets, your information may be transferred as part of that transaction. We will notify you in advance and your information will continue to be protected.

Essential

Necessary for the Services to function — sign-in, navigation, security.

Functional

Remember your settings, preferences, and previous choices.

Analytics

Help us understand how the Services are used so we can improve them.

Account closure

When you close your account, your profile is deactivated immediately and is no longer visible on the Services. Your personal information — profile, messages, campaign history, uploaded files — is permanently deleted from our active systems within 30 days of account closure.

Backups

Information may persist in routine system backups for a limited period. All backups containing your information are fully purged within 90 days of account closure.

Legally retained information

Some information must be retained for legal and tax compliance — billing records, GST documentation, and transaction history under Indian law. This is limited to what is required by law and deleted on expiry of the applicable retention period.

Aggregated and anonymised data

Information that has been aggregated and stripped of personally identifiable elements may be retained for service improvement and analytics.

Right to access

Request a copy of the personal information we hold about you.

Right to correction

Request that we correct inaccurate or incomplete information.

Right to deletion

Request deletion of your personal information, subject to legal retention obligations.

Right to data portability

Receive your information in a structured, machine-readable format.

Right to withdraw consent

Withdraw consent at any time without affecting prior lawful processing.

Right to object

Object to specific types of processing, including direct marketing.

Right to lodge a complaint

File a complaint with the Data Protection Board of India under the DPDP Act, 2023.

Response window

We respond to verified requests within 30 days, or sooner where required by law.

Encryption in transit

TLS / SSL across all platform endpoints.

Encryption at rest

AES-256 for stored data, including backups.

Access controls

Strict role-based access with full audit logging.

Vetted infrastructure

Cloud providers reviewed for security posture.

Independent testing

Regular security assessments and penetration tests.

Staff training

Ongoing data-protection training for all employees.