Privacy Policy
1. Introduction
This Privacy Policy describes how Lemyi Inc / Lemyi Corporation. ("Lemyi," "we," "our," or "us") collects, uses, discloses, and protects your personal data when you use our services. Lemyi operates an escrow-secured influencer job marketplace for micro-influencers and brands. We provide access to our services through a mobile app for creators and a web platform for brands. By using Lemyi, you agree to the collection and use of your personal data in accordance with this Privacy Policy.
2. Scope of This Policy
This Privacy Policy applies comprehensively to all individuals and entities who access or use any part of the Lemyi platform. This includes both creators—who engage with our services via the official mobile application—and brands or agencies, who interact with the platform through the web dashboard. Regardless of how users access Lemyi, this policy governs the data we collect, process, and store throughout their engagement with our services.
The scope includes all personal and behavioral data collected directly through the Lemyi mobile app, the brand-facing web dashboard, and any affiliated landing pages or marketing sites. It also extends to any data acquired through linked third-party services that Lemyi uses to enhance functionality, security, payments, analytics, and user experience. This means that any interaction with tools like Xendit, Stripe, Veriff, Firebase, Mixpanel, Google Tag Manager, or Customer.io may involve shared or synchronized data that is governed by this Privacy Policy.
Importantly, this policy does not only apply to active users who are signed into an account. It also includes data gathered from prospective users, visitors who browse our platform, recipients of email campaigns, or individuals who engage with public-facing content and support channels, even without completing the full registration process. In all cases, Lemyi’s data handling practices follow a single set of standards designed to offer transparency, protect your privacy, and comply with both local (Philippine Data Privacy Act of 2012) and global data protection regulations. Whether you're simply browsing or transacting through our escrow system, your information is covered by the rights and obligations described in this policy.
The scope of this Privacy Policy remains in force as long as your data is retained within our systems, including during periods of account suspension, dispute resolution, or post-deactivation retention mandated by law.
3. Information We Collect
To maintain a trustworthy, secure, and fully functional marketplace, Lemyi collects a variety of personal, transactional, and behavioral data from users. This data is necessary not only to create and maintain your account but also to facilitate financial transactions, confirm your identity, support dispute resolution, and improve overall platform performance. When you sign up on Lemyi, whether as a creator using the mobile app or as a brand using the web dashboard, we collect core account details such as your full name, email address, and encrypted password. Optional profile data like profile photos, social media links, and a custom bio help personalize your experience and enable discovery within the community. This information forms your public or semi-public presence on the platform, especially in cases where creators are applying for campaigns or brands are posting job briefs.
For all transactions, including escrow deposits, payments, and creator payouts, we collect and process sensitive financial data. This includes payment method information via our providers (Xendit for the Philippines and Stripe for international transactions), bank or wallet payout details, and transaction logs showing the flow of funds between parties. These records are crucial for managing project milestones, releases, and refund events. To protect the integrity of our platform and meet compliance requirements, Lemyi also gathers identity verification data. This may include government-issued ID scans, biometric verification via selfie images, and other personal information used to confirm that users are over the age of 18 and are who they claim to be. Verification is typically powered by Stripe or Veriff and is required before creators can withdraw funds or participate in sensitive jobs.
Additionally, we track extensive usage and engagement behavior to help us understand how users interact with Lemyi. This includes device and session information, user actions (like viewing jobs, sending applications, or messaging), and navigation flows across the app or site. We collect this data via industry-standard tools such as Google Tag Manager, Mixpanel, Customer.io, and Microsoft Clarity. These insights allow us to optimize features, monitor performance, and deliver relevant job matches, updates, and support communications—all while respecting user privacy and complying with applicable data laws.
4. How We Use Your Information
Lemyi collects and processes your personal data to enable the full functionality of our marketplace platform and to deliver a secure, seamless experience for both creators and brands. Our use of your data is rooted in legitimate business needs and regulatory obligations, ensuring that your information supports critical operational, financial, and user experience functions. We use your personal details—such as your name, email, and profile content—to set up and manage your account. This enables you to log in, update preferences, apply for jobs (creators), or post campaigns (brands). Beyond account creation, we use this information to communicate important updates, such as payment notifications, application responses, account status changes, or dispute outcomes.
Your financial and transactional data is essential to our escrow model. We use this information to initiate payments, manage job-based funds, release payouts upon completion, and trigger refunds when applicable. Lemyi does not directly store your card or bank details but relies on third-party payment processors (Xendit or Stripe) for secure handling. We also use identity verification data to confirm your eligibility to use the platform, especially for creators requesting payouts or applying to high-value gigs. Additionally, we collect behavioral and usage data to improve your experience. This includes your interaction patterns with different features, job preferences, communication logs, and platform engagement history. By analyzing this information, we can recommend relevant opportunities, optimize platform performance, and ensure a tailored interface that supports your specific goals as a creator or brand.
Finally, we use your data to uphold platform integrity. This includes detecting fraud, resolving disputes, complying with financial and legal regulations, and enforcing our Terms of Use. All data usage is governed by strict internal protocols, and access is limited to authorized personnel. Your trust is central to Lemyi's success, and we are committed to using your data responsibly and transparently.
5. Legal Basis for Processing (For International Users)
For users located outside the Philippines, Lemyi ensures that personal data is processed in accordance with internationally recognized legal bases. These legal grounds define the framework under which we are permitted to collect, store, and process your personal data while ensuring transparency and accountability. First and foremost, we rely on your consent in cases where data collection is not strictly necessary for platform functionality. This includes scenarios such as subscribing to newsletters, participating in surveys, or accepting optional marketing communications. You may withdraw your consent at any time, and we provide mechanisms within the platform to manage these preferences.
We also process personal data when it is necessary to perform a contract. This applies to core functions such as executing gig agreements between creators and brands, facilitating payment transactions via escrow, and enabling the proper release of funds. Without processing your data under this basis, the platform would be unable to fulfill its primary purpose as a job marketplace. In some cases, we are required by law to collect and store specific types of data. This constitutes legal obligations, including the need to retain transaction records for tax or regulatory compliance, conduct identity verification, and respond to lawful data access requests from authorities or regulators.
Lastly, we process your data under legitimate interests—a flexible legal basis that supports the safe, efficient, and sustainable operation of our services. These interests may include fraud detection, user safety, internal analytics, product optimization, dispute management, and network security. In every case, we carefully assess that our legitimate interests do not override your fundamental rights and freedoms, especially where sensitive data is concerned.
6. How We Share Your Information
Lemyi values the confidentiality of your data and does not sell your personal information under any circumstances. However, to operate a secure and efficient marketplace, certain types of data sharing are essential. These disclosures are limited in scope and conducted with strict safeguards in place. Below, we explain the contexts in which your information may be shared, with whom, and why.
A. With Service Providers
We collaborate with third-party service providers who perform essential operations on our behalf. These include payment processors like Xendit and Stripe, which manage escrow accounts, transfer payouts, and collect payments. We share only the minimum necessary financial and transactional information with these providers, and all interactions are encrypted and compliant with data security regulations. Verification partners such as Veriff may also receive copies of your government-issued ID, selfie photos, or similar data to validate your identity before you can access certain features like withdrawals or job applications. Firebase helps authenticate your account credentials securely, while analytics and communication tools—like Mixpanel, Google Tag Manager, Microsoft Clarity, and Customer.io—allow us to understand user behavior, improve the app, and communicate with users effectively. These partners are contractually bound to use your data only for the purpose of supporting Lemyi’s infrastructure.
B. With Other Users
Certain aspects of your information are made available to other users within the platform to facilitate transparent collaboration. For example, when a creator applies for a job, their public profile (which may include a display name, social media links, and bio) is shown to the brand. Conversely, when a brand posts a campaign, creators can view relevant details such as budget, scope, and timeline. This data exchange is critical to enabling informed decisions between creators and brands, but we never share private information such as payment details or ID documents with other users.
C. For Legal or Regulatory Reasons
Lemyi may disclose your information when legally compelled to do so or where disclosure is necessary to protect the rights and safety of users, the public, or the platform itself. This includes responding to valid subpoenas, court orders, or regulatory requests; investigating potential violations of our Terms of Use; and preventing fraud, abuse, or threats to user safety. In all such cases, we evaluate the legitimacy of the request and disclose only what is legally required, balancing our legal obligations with the need to protect your privacy.
7. Data Retention
Lemyi retains personal and transactional data for only as long as it is necessary to meet the objectives outlined in this Privacy Policy. This includes maintaining the functionality of the platform, fulfilling contractual obligations between creators and brands, and supporting compliance with legal and regulatory frameworks. The retention timeline is determined by the nature of the data, the purpose of its collection, and relevant legal requirements in the jurisdictions where we operate. If your account is active, we continue to store your data to allow uninterrupted access and use of the platform. This includes your account credentials, profile data, communication logs, payment activity, and job records. Inactive accounts may also be retained for a period of time in line with our operational policies or until users formally request deletion.
If your account is active, we continue to store your data to allow uninterrupted access and use of the platform. This includes your account credentials, profile data, communication logs, payment activity, and job records. Inactive accounts may also be retained for a period of time in line with our operational policies or until users formally request deletion. We are also legally required to retain certain information for tax reporting, financial audits, anti-fraud efforts, identity verification, and to comply with regulations governing financial services. These include transaction histories, payout records, verification logs, and communications related to dispute resolution. Such data is stored securely and only accessible by authorized personnel.
Users have the right to request deletion of their account and personal data at any time. However, we may be required by law to preserve some records even after such a request—especially where financial, contractual, or regulatory obligations still apply. In these cases, we retain only what is strictly necessary and anonymize where possible. Our data retention policies are reviewed periodically to ensure that no personal information is kept longer than needed. We aim to balance operational requirements with user privacy rights, and our commitment to compliance guides every aspect of how long we store your data.
8. Your Rights and Choices
Lemyi is committed to upholding your individual rights regarding personal data, and we recognize the importance of giving you control over how your information is collected, used, and retained. As a data subject, whether you are based in the Philippines or abroad, you have several core rights in relation to your personal information stored or processed by us. You have the right to access the personal data we hold about you at any time. This includes details such as your account information, identity verification records, transaction history, and platform activity logs. You may request a copy of this data to understand what has been collected and why. You also have the right to request correction or deletion of any personal data you believe is inaccurate, outdated, or no longer necessary for our operations. Where appropriate, we will promptly correct any inaccuracies or erase data that is no longer required—unless we are legally obligated to retain certain information, such as financial records.
In cases where we rely on your consent for data processing—such as for email marketing or optional features—you have the right to withdraw that consent at any time. This will not affect the legality of processing done prior to your withdrawal, but it may impact your ability to use certain parts of the platform. Additionally, if you feel that your rights under applicable data protection laws have been violated, you have the right to lodge a complaint with your local data privacy authority. We encourage users to contact us first so we can attempt to resolve the matter directly.
To exercise any of these rights, please contact us at legal@lemyi.com. We may request identity verification before fulfilling your request to protect your data from unauthorized access.
9. Data Security
At Lemyi, the protection of your personal and financial data is a core operational priority. We implement a combination of technical, physical, and administrative safeguards to ensure the confidentiality, integrity, and availability of user data at all times. These protections are continually reviewed and updated in accordance with evolving security standards and threats. Our systems utilize industry-grade encryption protocols for sensitive data storage, including hashed and salted passwords, encrypted payment data exchanges, and secure storage of identification documents. All information transmitted between users and our servers is encrypted using HTTPS (TLS), providing end-to-end protection against interception or tampering.
Internally, we apply strict role-based access controls to restrict data access only to personnel who require it for specific operational purposes, such as customer support or compliance. Access permissions are granted on a need-to-know basis, and all staff undergo training in data protection and security best practices. Systems are monitored for unusual access behavior or anomalies that may indicate attempted breaches. Lemyi is hosted on Google Cloud Platform (GCP), a secure infrastructure provider that offers robust physical and network-layer protections. GCP provides automatic scaling, built-in disaster recovery protocols, and active threat detection to help safeguard user data from loss or unauthorized exposure. We also implement routine security audits, vulnerability scans, and failover testing. However, while we invest heavily in security, no digital system is completely immune from risks. Users also play a role in protecting their data. We strongly advise keeping your password confidential, using strong login credentials, and enabling any available account security features. If you believe your account has been compromised, you should contact us immediately so we can take swift action.
10. Children’s Privacy
Lemyi is not intended for individuals under the age of 18. We do not knowingly collect or process personal data of minors. If we learn that we’ve collected data from someone under 18, we will delete it immediately.
11. International Transfers
Lemyi operates globally, which means your personal data may be accessed, processed, or stored in countries outside of your own, including the United States and other jurisdictions where our parent company, infrastructure providers, or service partners are located. These international transfers are essential for hosting, payments, analytics, identity verification, and customer support functions. To protect your data during cross-border transfers, Lemyi implements appropriate legal and technical safeguards in compliance with applicable data protection laws. These include entering into standard contractual clauses approved by regulators, conducting transfer impact assessments, and ensuring that the receiving parties adhere to strict confidentiality, security, and privacy obligations. When data is transferred to countries that may not have equivalent data protection standards as your jurisdiction (such as from the Philippines to the United States), we take extra precautions to preserve the integrity and security of that data. This includes encryption during transfer, limiting access to only those necessary for operational purposes, and using only reputable service providers with a proven track record of compliance. We also ensure that any third-party vendors receiving your information—such as cloud storage platforms, payment processors, or identity verification services—are contractually obligated to process your data in a manner that is consistent with this Privacy Policy and applicable privacy laws.
By using Lemyi, you acknowledge that your information may be transferred and processed in other jurisdictions as described, and you consent to these transfers where required by law. If you have questions about specific safeguards in place for international transfers, you may contact us at legal@lemyi.com.
12. Updates to This Policy
We may update this Privacy Policy from time to time. Changes will be posted with an updated effective date. Continued use of Lemyi after changes means you accept the updated policy.
13. Contact Us
If you have questions or concerns regarding this Privacy Policy, you may contact us at:
Lemyi Corporation.
legal@lemyi.com