Privacy Policy

Revised: April 1, 2026

Effective date: April 1, 2026

1. Introduction

This Privacy Policy describes how Trendor ("we", "us", or "our") collects, uses, stores, and shares personal data when you use our services, including when you:

  • Visit our website https://trendor.io or any associated subdomains;
  • Create an account and use our platform as a creator or brand;
  • Communicate with us via email, chat, or other channels;
  • Receive marketing communications or participate in events; or
  • Purchase a subscription or otherwise make payments related to Trendor's services.

We are committed to protecting your privacy and processing your data transparently and lawfully in accordance with the EU General Data Protection Regulation (GDPR), the UK GDPR, and other applicable data protection laws.

If you have any questions about this policy or your data, contact us at: privacy@trendor.io

2. Scope and Definitions

This policy applies to all personal data processed by Trendor through its online platform, applications, and related services.

Key terms:

  • "Personal Data" means any information relating to an identified or identifiable natural person.
  • "Processing" means any operation performed on personal data (collection, use, disclosure, etc.).
  • "Services" means Trendor's online marketplace and related features for brands and creators.

3. What Data We Collect

3.1 Data You Provide

Creators

  • Name, email, password;
  • Social media handles and links;
  • Category, audience size, platform metrics (self-provided);
  • Optional address and payment details for collaborations;
  • Uploaded content (media, profile photos, examples of work);
  • Communications and applications to brand campaigns.

Brands

  • Company name, contact person, business email, and billing address;
  • Campaign briefs, attachments, messages, and collaboration history;
  • Payment and invoice details.

3.2 Automatically Collected Data

  • IP address, browser type, device information, operating system, and country;
  • Access times, session duration, pages visited, and interactions;
  • Log and diagnostic data for service integrity and security.

We use cookies and similar technologies to operate the website and improve performance. Non-essential cookies (analytics, advertising) are only used with consent. For details, see our Cookie Policy.

3.3 Payment Data

Subscription payments and related billing transactions may be processed through Stripe. Trendor does not store full card details. We receive only transaction identifiers, payment status, and limited metadata. Stripe's Privacy Policy: https://stripe.com/privacy.

4. How We Use Personal Data

We process personal data only when we have a lawful basis to do so.

  • Account creation & authentication: registering creators and brands, login management (Legal Basis: Contract)
  • Providing and operating the platform: campaign listings, messaging, profile management (Legal Basis: Contract)
  • Payments & invoicing: processing and tracking transactions (Legal Basis: Contract + Legal obligation)
  • Customer support & communication: responding to questions, technical support (Legal Basis: Legitimate interest in operating and supporting the platform)
  • Analytics & service improvement: monitoring usage, debugging, optimizing UI (Legal Basis: Legitimate interest in improving platform performance and usability, or Consent where analytics cookies are used)
  • Security & fraud prevention: IP logging, abuse detection (Legal Basis: Legitimate interest in securing the platform and preventing abuse)
  • Marketing & newsletters: sending optional updates and offers (Legal Basis: Consent)
  • Legal compliance: record-keeping, dispute resolution, tax reporting (Legal Basis: Legal obligation)

We do not process sensitive personal data (e.g. health, political opinions, religion).

We do not use personal data for automated decision-making that produces legal or similarly significant effects on users.

5. How We Share Personal Data

We only share data as necessary for our business operations, contractual performance, or legal compliance.

5.1 Service Providers and Sub-processors

We engage trusted third parties who act under written agreements ensuring data protection and confidentiality. These include:

  • Cloud hosting and database providers;
  • Email and notification platforms;
  • Payment processor (Stripe);
  • CRM, analytics, and customer support tools.

A current list of sub-processors is available upon request at privacy@trendor.io.

5.2 Business Transfers

In the event of a merger, acquisition, reorganization, or sale of assets, personal data may be transferred to the acquiring entity under equivalent privacy safeguards.

5.3 Legal Requirements

We may disclose personal data when required by law or court order, or when necessary to protect our rights, prevent fraud, or ensure user safety.

5.4 No Sale of Personal Data

We do not sell, rent, or trade personal data to third parties for their marketing purposes.

Trendor generally acts as an independent controller for personal data processed in connection with operating the platform. In limited cases, Trendor may process personal data on behalf of business clients under a separate data processing agreement where applicable.

6. International Data Transfers

Our servers are hosted within the European Economic Area (EEA). Where third-party providers are located outside the EEA, we ensure adequate protection via:

  • An adequacy decision (Art. 45 GDPR); or
  • Standard Contractual Clauses (SCCs) (Art. 46 GDPR).

You can request details of these safeguards, including access to Standard Contractual Clauses (SCCs), by contacting us at privacy@trendor.io.

A standard Data Processing Addendum (DPA), including Standard Contractual Clauses, is available upon request for business clients.

7. Data Retention

We retain personal data only as long as necessary for the purposes described above or as required by law:

  • Active account data: Until account deletion
  • Billing & invoices: 7 years (tax law)
  • Campaign & messaging data: While the account is active + up to 3 years after deletion for legal defense
  • Logs and analytics: 90 – 365 days
  • Backups: Rotated periodically, securely deleted when obsolete

When retention expires, data is securely deleted or anonymized.

8. Your Privacy Rights

Under the GDPR and related laws, you have the following rights:

  • Access – obtain a copy of your personal data;
  • Rectification – correct inaccurate or incomplete data;
  • Erasure – request deletion ("right to be forgotten");
  • Restriction – limit processing in specific circumstances;
  • Portability – receive your data in a structured, machine-readable format;
  • Objection – object to processing based on legitimate interests or direct marketing;
  • Withdraw consent – at any time for processing based on consent.

To exercise these rights, contact privacy@trendor.io. We may require verification of your identity before responding.

You also have the right to lodge a complaint with your local supervisory authority, e.g. the Autoriteit Persoonsgegevens (Netherlands): https://autoriteitpersoonsgegevens.nl
UK residents can also contact the Information Commissioner's Office (ICO): https://ico.org.uk

9. Cookies and Tracking

Trendor uses:

  • Essential cookies for login and functionality;
  • Analytics cookies, including Google Analytics cookies, only where required consent has been obtained (see our Cookie Policy).

You can manage or revoke consent via our Cookie Settings or in your browser preferences. Full details are provided in our Cookie Policy.

To opt out of Google Analytics tracking, you can install the official browser add-on: https://tools.google.com/dlpage/gaoptout

10. Security

We implement appropriate technical and organizational measures to safeguard personal data, including:

  • Encryption in transit (TLS);
  • Access control and authentication;
  • Backups and data minimization.

Despite these measures, no online system can be guaranteed 100% secure.

10.1 Data Breach Notification

In the event of a personal data breach likely to result in a risk to your rights and freedoms, we will notify the competent supervisory authority without undue delay and, where feasible, within 72 hours. If the breach poses a high risk, we will also notify affected individuals directly in accordance with Articles 33 and 34 of the GDPR.

11. Minors

Trendor is intended for users aged 18 and above. We do not knowingly collect data from minors. If you believe a minor has provided us with personal data, contact us at privacy@trendor.io and we will delete it.

12. Marketing Communications

We may send you product updates or offers if:

  • You have given explicit consent, or
  • You are an existing business customer (soft opt-in, where permitted).

You can unsubscribe at any time via the link in the email or by contacting us.

13. Social Logins and Integrations

If you register or log in using a third-party account (e.g. Google), we will receive information from that provider such as your name and email address. We use this information only to facilitate authentication. Your use of third-party logins is governed by their own privacy policies.

14. Third-Party Services and Links

Our platform may contain links to external websites or services not operated by Trendor. We are not responsible for the privacy practices or content of third-party sites. We encourage you to review their privacy policies before submitting personal data.

Some features may rely on third-party tools (e.g., authentication providers). Any data shared with or accessed by these tools is governed by their respective privacy terms.

15. Cross-Border User Rights (Non-EU/UK)

If you are located outside the EEA/UK (e.g. California), applicable local privacy laws may grant additional rights, such as the right to know, delete, or opt-out of sale/sharing. Trendor does not sell or share data in the sense defined under the California Consumer Privacy Act (CCPA/CPRA).

16. Changes to This Privacy Policy

We may modify this Privacy Policy from time to time to reflect operational, legal, or regulatory changes. The updated version will be posted on this page with a new "Last Updated" date. If changes are material, we will notify you by email or in-app notice.

17. Contact Us

Trendor
Registered with the Dutch Chamber of Commerce (KVK) under number 42021955
VAT ID: NL005436983B40
Email: privacy@trendor.io
Website: https://trendor.io