Futuristic neon shield with a checkmark on a digital background. Concept of cybersecurity, data protection, digital safety, privacy policy, compliance and secure technology.

Privacy Policy

How we protect data across the Barber Collectives ecosystem.

Enterprise-grade data protection for creators, barbers, sellers, distribution partners, and brands operating within our multi-layer commerce infrastructure.

Last Updated: November 2024

Introduction

Barber Collectives

Operating from 354 NE 156th Street, North Miami, FL 33162, Barber Collectives maintains the highest standards of data protection and privacy across our entire creator-commerce ecosystem.

As a multi-layer infrastructure powering the future of creator commerce, we recognize the critical importance of protecting sensitive business data. Our ecosystem serves creators, barbers, sellers, customers, distribution partners, and enterprise brands—each with unique data protection requirements.

The Barber Collectives ecosystem handles sensitive operational data including:

  • Campaign Performance Metrics – Real-time analytics from creator campaigns and live commerce operations
  • Creator & Seller Business Data – Applications, verification, payout information, and performance records
  • Inventory & Routing Intelligence – Distribution partner networks, warehouse operations, and order fulfillment data
  • Customer Transaction Records – Order history, payment processing, and shipping logistics
  • Platform Integration Data – TikTok Shop, Shopify, and HQ Command routing systems

Our Privacy Commitment: MAT Alignment, Platform Compliance, and Brand Safety

Every data collection, processing, and sharing decision we make is guided by three core principles: maintaining Minimum Advertised Price (MAP) protections, ensuring platform policy compliance, and upholding brand safety standards that protect creators, partners, and customers alike.

Enterprise-Grade Protection

This Privacy Policy outlines how we collect, use, protect, and share data across HQ Command, the Creator Network, the Seller Network, and our national distribution infrastructure. We operate with the transparency and rigor expected of a Fortune 500 organization.

Information We Collect

Creator & Seller Information

  • Application Data: Business information, identification, tax documentation, and verification materials
  • Performance Metrics: Campaign analytics, content engagement, conversion rates, and live commerce statistics
  • Payout Information: Banking details, payment history, commission records, and transaction data
  • Communication Records: Support inquiries, campaign coordination, and partner communications

Customer Information

  • Order Data: Purchase history, product selections, transaction amounts, and order status
  • Payment Details: Billing information, payment method data (processed securely via third-party processors)
  • Shipping Information: Delivery addresses, carrier tracking, fulfillment routing, and delivery confirmation
  • Support History: Customer service interactions, returns, refunds, and issue resolution records

Business Partner & Distribution Data

  • Warehouse Operations: Inventory levels, fulfillment capacity, geographic routing data, and operational metrics
  • Distributor Information: Contact details, service agreements, performance benchmarks, and partnership terms
  • Brand Contacts: Enterprise partner information, campaign requirements, compliance guidelines, and brand assets

Platform & Integration Data

  • TikTok Shop Integration: Creator profiles, shop analytics, product catalog data, and campaign performance
  • Shopify Storefront Data: Product listings, inventory sync, order management, and transaction records
  • HQ Command Analytics: Real-time routing decisions, order flow optimization, system performance metrics
  • Live Commerce Operations: Streaming data, audience engagement, real-time purchase behavior

Device & Usage Data

  • Log Files: IP addresses, browser types, device identifiers, referring URLs, and access timestamps
  • Cookies & Tracking: Session management, user preferences, analytics tracking, and performance optimization
  • Interaction Data: Click behavior, navigation patterns, feature usage, and engagement metrics

Security & Compliance Data

  • MAP Protection Triggers: Pricing violation alerts, unauthorized discount detection, brand safety monitoring
  • Rule Violation Logs: Policy breach records, enforcement actions, account suspension data
  • Content Compliance Checks: Creator content reviews, platform policy adherence, brand guideline validation
  • Fraud Prevention Data: Risk scoring, suspicious activity patterns, authentication attempts

How We Use Information

Data collected across the Barber Collectives ecosystem powers critical operations, protects brand integrity, ensures platform compliance, and delivers transparent performance reporting to all stakeholders.

Operate & Optimize HQ Command Routing

Real-time data processing enables intelligent order routing across our national distribution network. We analyze inventory levels, warehouse capacity, geographic proximity, and fulfillment speed to deliver optimal customer experiences while minimizing operational costs.

Power Creator Campaigns & Live Commerce Operations

Campaign analytics drive performance optimization, content strategy refinement, and commission calculations. Live commerce data enables real-time engagement tracking, conversion monitoring, and audience behavior analysis to maximize creator success and brand ROI.

Maintain Distribution Accuracy & Inventory Sync

Continuous data synchronization across distribution partners ensures inventory accuracy, prevents overselling, coordinates fulfillment logistics, and maintains supply chain visibility. This protects customer satisfaction and partner relationships.

Protect Brands Through MAP & MAT Enforcement

Automated monitoring systems detect pricing violations, unauthorized discounts, and compliance breaches in real-time. This preserves brand integrity, maintains market stability, and protects creator earning potential. All enforcement actions follow documented policies and provide clear paths to resolution.

Critical Infrastructure Protection

Provide Transparent Reporting to All Stakeholders

Creators receive detailed performance dashboards, sellers access sales analytics, brands monitor campaign effectiveness, and distribution partners track fulfillment metrics. Data transparency builds trust and enables informed business decisions across the entire ecosystem.

Comply with Legal Obligations & Platform Requirements

We maintain comprehensive records to meet tax reporting requirements, respond to lawful requests, enforce contractual obligations, resolve disputes, and comply with TikTok Shop, Shopify, and other platform policies. Data retention follows industry standards and regulatory requirements.

Enhance Platform Performance & User Experience

Usage analytics identify system optimization opportunities, feature development priorities, and user experience improvements. Aggregated, anonymized data guides strategic decisions while protecting individual privacy.

Data Sharing

We Do NOT Sell Personal Data

The Barber Collective does not sell, rent, or trade personal information to third parties for marketing purposes. Data sharing is limited to operational necessity, contractual obligations, and legal requirements that enable our ecosystem to function.

With Distribution Partners (Order Fulfillment)

When customers place orders, we share necessary fulfillment data with warehouse and logistics partners to ensure accurate, timely delivery.

Shared Data Includes:

  • Customer name, shipping address, and contact information
  • Product details, quantities, and order specifications
  • Routing instructions and delivery requirements

Distribution partners are contractually bound to use this data solely for fulfillment purposes.

With Brands (Campaign Performance & Compliance)

Brand partners receive aggregated campaign analytics and compliance reports to measure creator effectiveness and ensure policy adherence.

Shared Data Includes:

  • Campaign metrics (views, engagement, conversions) – aggregated and anonymized
  • MAP compliance status and violation alerts
  • Content review results and brand guideline adherence

Individual customer identities are NOT shared with brands.

With Payment Processors

Secure payment processing requires sharing transaction data with trusted third-party processors who maintain PCI DSS compliance and industry-standard security protocols.

With Integrated Platforms (TikTok, Shopify, etc.)

Platform integrations require bidirectional data exchange to synchronize inventory, process orders, track campaigns, and maintain operational continuity.

Platform Data Exchange:

  • TikTok Shop: Creator profiles, campaign performance, product catalog, order data
  • Shopify: Storefront inventory, transaction records, customer orders
  • Analytics Platforms: Anonymized usage data for performance optimization

Each platform's privacy policy governs their handling of shared data.

With Legal Authorities (When Required by Law)

We may disclose information in response to lawful requests from government authorities, court orders, subpoenas, or when necessary to prevent fraud, protect rights, ensure safety, or comply with legal obligations. Any such disclosure follows strict internal review protocols.

Business Transfers & Corporate Transactions

In the event of a merger, acquisition, reorganization, or sale of assets, user data may be transferred as part of the transaction. All parties will be bound by this Privacy Policy or an equivalent standard of protection.

MAP & MAT Compliance

Protecting Brand Integrity Across the Ecosystem

Minimum Advertised Price (MAP) protection and Minimum Advertised Terms (MAT) compliance are foundational to The Barber Collective ecosystem. These policies protect creators, brands, and customers by maintaining market stability, ensuring fair competition, and preserving brand value.

Why MAP Protection Matters

Creator Protection

Prevents race-to-bottom pricing that erodes creator commissions and devalues their promotional efforts.

Brand Value Preservation

Maintains premium positioning and prevents brand dilution through unauthorized discounting.

Market Stability

Creates level playing field for all sellers and prevents destructive price wars.

Customer Trust

Consistent pricing builds confidence and prevents confusion across sales channels.

How We Monitor Compliance

Our automated compliance systems continuously analyze data to detect potential violations:

Price Monitoring

Real-time tracking of advertised prices across creator storefronts, TikTok Shop listings, and live commerce streams.

Unauthorized Discounts

Detection of coupon codes, promotional messaging, or pricing structures that violate MAP agreements.

Content Compliance

Review of creator content to ensure adherence to brand guidelines, platform policies, and advertising standards.

Automated Alerts

Instant notifications to creators, sellers, and brand partners when potential violations are detected, enabling rapid resolution.

Enforcement Process & Creator Rights

All compliance enforcement follows documented procedures that balance brand protection with creator fairness:

1

Automated Detection: System identifies potential violation and generates alert.

2

Creator Notification: Immediate communication explaining the issue with supporting evidence.

3

Resolution Window: Reasonable time provided to correct the violation before escalation.

4

Appeal Process: Creators can dispute violations with supporting documentation and context.

5

Progressive Enforcement: Penalties escalate only for repeated or willful violations.

Platform Policy Alignment

All MAP/MAT enforcement operates within TikTok Shop policies, Shopify terms, and relevant platform guidelines. We protect brands while respecting creator rights and platform requirements.

Security & Data Protection

Enterprise-grade security infrastructure protects data across every layer of The Barber Collective ecosystem—from creator campaigns to distribution logistics.

Encrypted Data Transmissions

All data transmitted between systems, partners, and platforms is protected using industry-standard encryption protocols (TLS 1.3+). This includes:

  • API communications between HQ Command and distribution partners
  • Payment processing and financial data transfers
  • Creator dashboard access and performance data delivery
  • Customer order information and tracking updates

Restricted Internal Access

Data access within our organization follows strict role-based permissions and need-to-know principles:

  • Multi-factor authentication (MFA) required for all internal systems
  • Segregated access controls based on job function and necessity
  • Comprehensive audit logs tracking all data access and modifications
  • Regular access reviews and permission recertification

Secure API Integrations

All platform integrations (TikTok Shop, Shopify, distribution partners) utilize secure authentication methods:

  • OAuth 2.0 and JWT token-based authentication
  • Rate limiting and request throttling to prevent abuse
  • API key rotation and expiration policies
  • Real-time monitoring for suspicious integration activity

Routine Security Audits

Continuous security assessments identify vulnerabilities and ensure compliance:

  • Regular penetration testing by third-party security experts
  • Automated vulnerability scanning and remediation workflows
  • Annual compliance reviews for data protection standards
  • Incident response planning and disaster recovery testing

Fraud Detection Systems

Automated systems monitor ecosystem activity for fraudulent behavior and security threats:

  • Transaction risk scoring and anomaly detection
  • Account takeover prevention and suspicious login monitoring
  • Pattern recognition for coordinated abuse or policy violations
  • Real-time alerts for high-risk activities

Secure Infrastructure & Data Storage

Enterprise cloud infrastructure provides resilience, redundancy, and protection:

  • Data encryption at rest using AES-256 standards
  • Automated backups with geographic redundancy
  • Network segmentation and firewall protection
  • DDoS mitigation and traffic filtering

Important: While we implement comprehensive security measures, no system is completely impervious to threats. We maintain incident response protocols and will notify affected parties promptly in the event of a data breach, in accordance with applicable laws and regulations.

Your Rights

Depending on your location and role within The Barber Collective ecosystem, you may have specific rights regarding your personal data. We are committed to honoring these rights while maintaining operational integrity.

Right to Access

You may request confirmation of whether we process your personal data and receive a copy of that data in a structured, commonly used format.

Includes:

  • Account information and profile data
  • Transaction history and performance records
  • Communication logs and support interactions

Right to Correction

Request correction of inaccurate or incomplete personal data. For creators and sellers, most profile information can be updated directly through your dashboard. For other corrections, contact our support team.

Right to Deletion

Request deletion of your personal data under certain circumstances. This right is subject to legitimate exceptions, including:

  • Legal obligations to retain financial records and tax documentation
  • Ongoing contractual obligations and active business relationships
  • Fraud prevention, security investigations, and compliance enforcement
  • Legal claims, disputes, or pending litigation

Right to Data Portability

Request a machine-readable export of your personal data. This is particularly relevant for creators and sellers who wish to maintain records of their performance metrics, campaign analytics, or transaction history.

Right to Withdraw Consent

Where processing is based on consent, you may withdraw that consent at any time. Note that withdrawal does not affect the lawfulness of processing conducted prior to withdrawal, and certain core operational processing may continue under other legal bases.

Right to Object

Object to processing of your personal data for direct marketing purposes or based on legitimate interests. Marketing communications include an unsubscribe mechanism in every message.

Right to Restriction of Processing

Request temporary suspension of data processing while disputes are resolved, accuracy is verified, or legal claims are pending.

How to Exercise Your Rights

To exercise any of these rights, contact us at:

Email: [email protected]

Subject Line: "Privacy Rights Request – [Your Name]"

We will respond to verified requests within 30 days (or as required by applicable law). Identity verification may be required to protect your data from unauthorized access. Requests that are manifestly unfounded, excessive, or repetitive may be subject to a reasonable fee or declined in accordance with applicable law.

Data Retention

Data retention policies balance operational necessity, legal compliance, and user privacy. Retention timelines vary based on data type, user role, and regulatory requirements.

Creator Data

Active creator accounts maintain full data access. Upon account closure or termination:

Campaign Performance Data

3 Years

Metrics, analytics, and content records retained for historical reporting and dispute resolution.

Financial Records

7 Years

Tax documentation, payout records, and commission history retained per IRS and financial regulations.

Communications & Support

2 Years

Support tickets, campaign coordination, and business correspondence.

Profile & Identification

90 Days

Personal profile information deleted 90 days after account closure (unless retained for legal reasons).

Seller Data

Seller accounts follow similar retention policies with commercial considerations:

Sales & Inventory Records

5 Years

Product listings, sales history, inventory data, and storefront analytics.

Financial & Tax Records

7 Years

Transaction records, payment processing, and tax documentation.

MAP Compliance Records

3 Years

Violation logs, enforcement actions, and compliance history.

Customer Data

Customer transaction data supports order fulfillment, returns, and warranty claims:

Order & Shipping Records

3 Years

Purchase history, delivery information, and order fulfillment data.

Payment Information

PCI Standards

Tokenized payment data handled by processors; we retain transaction IDs only.

Support & Communications

2 Years

Customer service tickets, returns/refunds, and product support inquiries.

Distribution Partner & Brand Data

Business partner relationships maintained throughout active partnerships:

Operational Data

5 Years

Fulfillment records, warehouse operations, inventory sync, and routing performance.

Contractual Records

7 Years After Term

Partnership agreements, performance benchmarks, and commercial terms.

Compliance & Security Logs

Security and compliance data retained per regulatory and operational requirements:

MAP Violation Records

7 Years

Critical for brand protection, dispute resolution, and pattern analysis.

Security & Access Logs

1 Year

Authentication attempts, system access, and security incident records.

Fraud Investigation Data

As Required

Retained as necessary for ongoing investigations, legal proceedings, or law enforcement coordination.

Note: Retention timelines begin at the conclusion of the relevant relationship (account closure, order completion, partnership termination). Data may be retained longer if required by law, ongoing legal proceedings, or legitimate business needs. Anonymized, aggregated data may be retained indefinitely for analytics and business intelligence purposes.

Children's Privacy

Age Requirement: 18 Years or Older

The Barber Collective ecosystem—including the Creator Network, Seller Network, and HQ Command infrastructure—is strictly intended for individuals aged 18 years or older.

We Do Not Knowingly Collect Data from Minors

We do not knowingly collect, process, or retain personal information from individuals under the age of 18. Participation as a creator, seller, distribution partner, or business contact requires legal adulthood.

If We Discover Minor Data:

If we become aware that we have inadvertently collected personal information from a person under 18, we will:

  • Immediately suspend the associated account
  • Delete all personal information associated with that individual
  • Notify relevant parties and take corrective action

Parental Notice:

If you are a parent or guardian and believe your child under 18 has provided personal information to The Barber Collective, please contact us immediately at [email protected]. We will take prompt action to remove such information and terminate any associated accounts.

Legal Compliance: This policy aligns with the Children's Online Privacy Protection Act (COPPA) and similar international regulations protecting minors' privacy rights.

International Data

Primary Operations

The Barber Collective operates from the United States, with primary infrastructure and data processing facilities located in:

Miami, Florida, USA

LATAM Expansion

Our ecosystem includes distribution partners and operations across Latin America, requiring cross-border data transfers to coordinate fulfillment, inventory management, and campaign execution.

Data Transfer Protections

International data transfers are conducted using:

  • Encrypted transmission protocols
  • Contractual data protection clauses
  • Partner compliance requirements
  • Industry-standard security measures

Regional Compliance

We maintain compliance with applicable data protection regulations in jurisdictions where we operate, including U.S. federal and state privacy laws and relevant LATAM regional requirements.

By participating in The Barber Collective ecosystem, you acknowledge and consent to the transfer and processing of your data in the United States and partner countries.

Policy Updates

Evolution of Our Ecosystem

As The Barber Collective ecosystem grows—expanding our Creator Network, adding distribution partners, integrating new platforms, and scaling HQ Command infrastructure—this Privacy Policy may be updated to reflect operational changes, legal requirements, and enhanced protections.

How We Notify You

  • Material Changes: Significant updates will be communicated via email to all active creators, sellers, and partners at least 30 days in advance of implementation.
  • Minor Updates: Administrative clarifications, formatting changes, or non-material updates will be posted on this page with an updated "Last Modified" date.
  • Dashboard Alerts: Creator and seller dashboards will display prominent notices of privacy policy changes.

Your Continued Use Constitutes Acceptance

By continuing to participate in The Barber Collective ecosystem after policy updates take effect, you acknowledge and accept the revised terms. If you disagree with material changes, you may close your account or discontinue services before the effective date.

Recommendation: Review this Privacy Policy periodically to stay informed about how we protect your data and evolve our practices as the ecosystem scales.

Last Updated: November 2024

Contact Us

For questions, concerns, or requests regarding this Privacy Policy or your personal data, contact us through any of the following channels:

The Barber Collective™

Corporate Headquarters

1000 Brickell Avenue
Miami, Florida 33131
United States

Privacy & Data Inquiries

[email protected]

Response time: Within 48 hours for privacy-related requests

When Contacting Us, Please Include:

  • Your full name and role (creator, seller, customer, partner)
  • Account email or identifier (if applicable)
  • Clear description of your request or concern
  • Any supporting documentation or reference numbers

For Privacy Rights Requests: Please use the subject line "Privacy Rights Request – [Your Name]" to ensure priority handling by our data protection team.

Cyber Security Data Protection Business Technology Privacy concept.

Built on Trust, Protected by Design

The Barber Collective operates with the transparency, security, and integrity expected of a Fortune 500 organization. Our multi-layer ecosystem is designed to protect creators, sellers, brands, and customers at every touchpoint.

Creator Protection

Your performance data and earnings are protected with enterprise-grade security

Brand Safety

MAP/MAT enforcement maintains market integrity and protects all stakeholders

Full Transparency

Clear reporting and data access rights ensure you always know how data is used

Legal Compliance

We meet or exceed all regulatory requirements and industry standards

Questions About Your Data?

Our team is here to answer your privacy questions, process data rights requests, and provide clarity on how we protect your information.

Contact Privacy Team Return to Home

Privacy inquiries are typically answered within 48 hours

Enterprise Security
Data Protected
Compliant Operations
Trusted by Thousands