Privacy Policy

This Privacy Policy applies to personal information submitted through partnership intake forms hosted on Threshold-controlled web pages, even if accessed via a link on a third-party website.

For purposes of applicable data protection law, Threshold acts as an independent data controller with respect to information submitted through our hosted intake forms.

When you submit a partnership request through our platform, we may collect:

• Full name
• Email address
• Business or company name
• Social media handles
• Website URL
• Country or location
• Any additional information you voluntarily provide
• Publicly available information associated with the social media profiles you provide

We do not intentionally collect sensitive personal data such as health information, biometric data, or government identification numbers.

We use personal information to:

• Evaluate potential partnership opportunities
• Analyze brand fit and suitability
• Conduct research on publicly available social media content
• Communicate regarding your submission
• Maintain internal business records
• Improve our partnership evaluation processes
• Comply with legal obligations

We use automated systems to analyze submitted information and associated publicly available social media profiles to assess potential partnership fit.

This analysis may include evaluation of content themes, audience characteristics, engagement patterns, and brand alignment indicators.

Automated analysis may influence whether a submission progresses to further review. However, final partnership decisions may also involve human review.

If you are located in the EU or UK, you may have the right to request human review of certain automated decisions.

If you are located in the European Economic Area or the United Kingdom, we process your personal data under one or more of the following legal bases:

• Legitimate interest (Article 6(1)(f) GDPR) in evaluating partnership inquiries and assessing brand fit
• Pre-contractual steps (Article 6(1)(b) GDPR) where your submission relates to potential commercial collaboration

Our legitimate interest includes reviewing and evaluating partnership opportunities in a structured and efficient manner.

Personal information submitted through our platform is stored and processed in the United States.

If you are located outside the United States, including in the EU or UK, your personal information will be transferred to the United States, which may have data protection laws that differ from those in your jurisdiction.

Where required under applicable law, we implement appropriate safeguards for international data transfers, including contractual protections designed to ensure that personal information remains protected in accordance with applicable data protection laws.

We retain partnership submission data for as long as necessary to:

• Evaluate and manage partnership opportunities
• Maintain business records
• Improve our evaluation systems

Unless deletion is requested, we may retain submitted information indefinitely for internal recordkeeping and analysis purposes.

You may request deletion of your information at any time. See Section 11.

We use third-party service providers to support our operations, including providers of:

• Cloud hosting and infrastructure (Google Cloud Platform)
• Database services (Supabase)
• Application hosting (Google Cloud Run)
• Authentication services (Clerk)
• Email delivery services (Resend)
• Cloud storage services (Google Cloud Storage)

These service providers process personal information on our behalf and are contractually required to implement appropriate security safeguards.

We implement appropriate technical and organizational measures to protect personal information, including:

• Encryption in transit (TLS)
• Encryption at rest
• Role-based access controls
• Access logging
• Periodic security reviews

While no system can guarantee absolute security, we take reasonable measures to safeguard personal information.

Depending on your location, you may have the right to:

• Access your personal information
• Request correction of inaccurate information
• Request deletion of your personal information
• Object to or restrict certain processing
• Request data portability where applicable
• Lodge a complaint with a supervisory authority

To exercise your rights, please contact us at:

hello@getthreshold.io

EU residents may lodge complaints with their local data protection authority. UK residents may contact the Information Commissioner's Office (ICO).

You may request deletion of your personal information at any time by contacting hello@getthreshold.io.

We will respond to verified requests in accordance with applicable law.

We may update this Privacy Policy periodically. Updates will be posted on this page with a revised "Last Updated" date.