GDPR Compliance
Last updated: February 7, 2026
1. Data Controller
AOVANCY is the data controller responsible for the processing of your personal data as described in this document. For any inquiries related to data processing, you may contact us at hello@aovancy.com. We are committed to ensuring that your personal data is processed in accordance with the General Data Protection Regulation (EU) 2016/679.
2. Lawful Basis for Processing
We process your personal data under the following lawful bases as defined by Article 6 of the GDPR. Where you have given explicit consent, we process data for the specific purposes you have agreed to, such as marketing communications. Processing is necessary for the performance of a contract when you use our platform services, including account creation and payment processing. We may also process data based on legitimate interests, such as improving our services and ensuring platform security, provided these interests do not override your fundamental rights and freedoms.
3. Data Subject Rights
Under the GDPR, you have the right to access the personal data we process about you and the right to rectification of any inaccurate or incomplete data. You have the right to erasure ("right to be forgotten"), allowing you to request deletion of your personal data where there is no compelling reason for continued processing. You also have the right to restriction of processing, the right to data portability in a machine-readable format, and the right to object to processing based on legitimate interests or for direct marketing purposes.
4. Data Processing Activities
We process personal data including your name, email address, payment information, and usage data for the purposes of providing our creator monetization platform. This data is used to manage your account, process transactions, deliver digital products, and improve platform functionality. We retain account data for the duration of your active account plus 30 days after deletion, and financial transaction records for the period required by applicable tax and accounting regulations.
5. International Data Transfers
Your personal data may be transferred to and processed in countries outside the European Economic Area (EEA) where our third-party service providers operate. When such transfers occur, we ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the European Commission or reliance on adequacy decisions. We only engage with service providers who demonstrate compliance with GDPR requirements and maintain appropriate technical and organizational measures to protect your data.
6. Data Protection Officer
For all matters related to data protection and GDPR compliance, you may contact our designated data protection contact at hello@aovancy.com. We are committed to responding to all data protection inquiries promptly and within the timeframes required by the GDPR. Our data protection contact oversees compliance efforts and serves as the point of contact for supervisory authorities.
7. Cookie Policy
We use essential cookies that are strictly necessary for the operation of our platform, including session management and authentication. Analytics cookies may be used to collect aggregated, anonymized data about how users interact with our services, helping us improve the user experience. Preference cookies store your settings and choices to personalize your experience. Non-essential cookies are only placed with your explicit consent, and you may withdraw consent or manage your preferences at any time through your browser settings.
8. Data Breach Notification
In the event of a personal data breach that poses a risk to the rights and freedoms of individuals, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach, as required by Article 33 of the GDPR. Where the breach is likely to result in a high risk to your rights and freedoms, we will also communicate the breach to you directly without undue delay. We maintain documented breach response procedures and conduct regular assessments to minimize the risk and impact of potential data breaches.
9. How to Exercise Your Rights
To exercise any of your data subject rights, please submit a request to hello@aovancy.com. We will verify your identity before processing the request and respond within one month, as required by the GDPR. In certain circumstances, where requests are complex or numerous, this period may be extended by a further two months, and we will inform you of any such extension. Exercising your rights is free of charge, unless requests are manifestly unfounded or excessive.
10. Complaints
If you believe that your data protection rights have been violated, you have the right to lodge a complaint with a supervisory authority in the EU member state of your habitual residence, place of work, or place of the alleged infringement. We encourage you to contact us first at hello@aovancy.com so that we may attempt to resolve your concern directly. We take all complaints seriously and are committed to working with you and any relevant authorities to reach a satisfactory resolution.