← ProfileMaxxing

Privacy Policy

Last updated: May 6, 2026

This Privacy Policy describes how ProfileMaxxing (“we”, “us”, or “our”) collects, uses, and shares information when you use profilemaxxing.app (the “Service”).

By using the Service, you agree to the collection and use of information in accordance with this policy.

1. Information we collect

1.1 Information you provide

When you create an account or use the Service, we collect:

  • Reviewer account information: name, email address, password (hashed), display name, username (the /yourname link), optional age, optional location.
  • Customer information: name and email address provided at checkout. Customers do not create accounts in v1 — orders are tied to the email address you supply.
  • Reviewer profile content: profile photo, background image, social links, service prices.
  • Customer order content: Instagram profile screenshots, photo-grid screenshots, optional message to the reviewer.
  • Reviewer review content: tick/cross verdicts, audio recordings, optional overall feedback text.
  • Payment information: processed by Stripe. Card numbers never reach our servers; we receive a Stripe payment-intent ID and a charge ID for record-keeping.

1.2 Information collected automatically

When you access the Service, we automatically collect:

  • Usage data: pages visited, features used, actions taken.
  • Device information: browser type, operating system, device type.
  • Log data: IP address, request timestamps, error logs (via Vercel and our database provider).
  • Cookies and similar technologies: for authentication, session role (reviewer vs customer view), and theme/layout preferences.

2. How we use information

We use information to:

  • Operate the Service and fulfil orders
  • Authenticate reviewers and gate access to reviewer-only surfaces
  • Send transactional email (order confirmations, review-ready notifications) via Resend
  • Process payments and reviewer payouts (via Stripe)
  • Prevent fraud and abuse
  • Improve the Service based on aggregated usage patterns
  • Comply with legal obligations

3. How we share information

We do not sell personal information. We share only:

  • With your assigned reviewer:when a customer places an order, the customer's name, email, screenshots, optional message, and Instagram link are made available to that reviewer to fulfil the review.
  • With the customer who paid:the reviewer's tick/cross verdicts, audio recordings, and optional written feedback are delivered to that customer via a signed URL.
  • Service providers: Convex (database + serverless functions), Vercel (hosting), Stripe (payments), Resend (email), Sentry (error tracking, when enabled). Each operates under a data-processing agreement.
  • Legal compliance: when required by law, court order, or valid government request.
  • Business transfers: if we are involved in a merger, acquisition, or sale of assets, your information may be transferred. We will notify you before this happens.

4. Third-party services

  • Hosting: Vercel
  • Database + auth: Convex (with @convex-dev/auth for the password provider)
  • Payments: Stripe
  • Email: Resend (sending domain mail.profilemaxxing.app)
  • Analytics: Vercel Analytics

Each provider has its own privacy policy governing how they handle your information.

5. Review delivery and signed-URL access

Each completed review is delivered to the customer via a signed delivery URL of the form profilemaxxing.app/review/[token]. The token is long, randomly generated, and is the only authentication for that page — anyone who possesses the URL can view the review. Customers should treat the URL like a password.

Customer access to a delivered review URL is retained indefinitely so customers can revisit. We may revoke a specific URL if a credible report indicates the content violates our Terms of Use.

6. Reviewer audio and customer screenshots

Reviewers retain copyright to the audio recordings they produce. By submitting a review, the reviewer grants ProfileMaxxing a non-exclusive, perpetual, royalty-free licence to host, store, and deliver the audio to the customer who paid for that specific review, and to the customer's successor URL viewers in the event the customer shares their link.

Customer screenshots are private to the assigned reviewer and the operations team. Screenshots are not used for marketing, product training, or any third-party purpose. Screenshots are retained for the lifetime of the order to enable re-review and follow-up flows; customers may request earlier deletion by contacting hi@profilemaxxing.app.

7. Data retention

We retain reviewer accounts and associated content while the account is active. Upon reviewer account deletion, we may retain certain information (transaction records, dispute evidence) for legal compliance.

Customer order data (screenshots, audio, verdicts, message) is retained for the lifetime of the order so the customer can revisit their review URL and request follow-ups. You may request earlier deletion by contacting hi@profilemaxxing.app.

8. Your rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal information we hold about you
  • Correct inaccurate information
  • Delete your information (subject to legal retention requirements)
  • Export your data in a portable format
  • Object to certain processing
  • Withdraw consent where processing is based on consent

To exercise these rights, contact us at hi@profilemaxxing.app. We respond within the timeframes required by applicable law.

9. Security

We implement reasonable technical and organisational measures:

  • Encryption of data in transit (HTTPS)
  • Encryption of passwords at rest (hashed via Convex Auth)
  • Access controls limiting which staff can view personal data
  • Regular security reviews

No method of transmission or storage is 100% secure. We cannot guarantee absolute security.

10. Age restriction

The Service is restricted to users 18 years and older. We do not knowingly collect information from anyone under 18. If you become aware that a minor has provided us with information, contact us at hi@profilemaxxing.app and we will delete it promptly.

11. International data transfers

The Service may transfer your information to countries outside your jurisdiction, including the United States. We rely on appropriate safeguards (e.g. standard contractual clauses) for these transfers.

12. Changes to this policy

We may update this policy. We will post the updated policy at profilemaxxing.app/privacy and update the “Last updated” date. Material changes will be communicated via email or in-app notification.

13. Contact

For questions about this Privacy Policy or how we handle your information:

Email: hi@profilemaxxing.app
Website: profilemaxxing.app

This template is a starting point and is not legal advice. We will revisit it with counsel before public launch.