§ Privacy Policy

Effective date: 17th June 2024  |  Last updated: 12th March 2026

This Privacy Policy (“Policy”) governs the collection, use, storage, and disclosure of personal data by CPAHunter (“the Provider”, “the Service”) in connection with the operation of the website and related services. By accessing or using the Service, any individual (“the User”) acknowledges and accepts the terms set forth herein.
1.

Information Collected

The Provider collects the following categories of information:

  • Personal identification information (name, email address, phone number, and similar identifiers);
  • Usage data (pages visited, time spent on pages, and similar behavioral data).
2.

Use of Information

The information collected shall be used by the Provider for the following purposes:

  • Provision and maintenance of the Service;
  • Notification of the User regarding changes to the Service;
  • Provision of customer support;
  • Analysis and improvement of the Service’s functionality and performance.
3.

Disclosure of Information

The Provider shall not disclose the User’s personal information to third parties except in the following circumstances:

  • As required by applicable law or valid legal process;
  • To protect and defend the rights and property of the Provider;
  • With the explicit consent of the User.
4.

Security of Information

The Provider implements reasonable technical and organizational measures to protect the User’s personal information from unauthorized access, use, alteration, or disclosure.
5.

Google API Services — YouTube Data

The Provider utilizes the Google OAuth 2.0 protocol to enable Users to verify ownership of their YouTube channels. The Provider’s use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

5.1 Access

The Provider requests the minimum scope necessary to verify channel ownership:

  • youtube.readonly — read-only access to the User’s YouTube account data.

The Provider does not request permission to modify, upload, or delete any content on the User’s YouTube channel.

5.2 Use

Data obtained through Google APIs is used solely to:

  • Retrieve a list of YouTube channels associated with the User’s Google account;
  • Verify the User’s ownership of the channel being connected to the User’s CPAHunter profile;
  • Display basic public channel information (channel name, subscriber count, view count) within the User’s CPAHunter profile.

The Provider does not use Google user data for advertising, marketing to third parties, or any purpose unrelated to the features described above.

5.3 Storage

  • Access tokens are used exclusively during the one-time verification flow and are not retained after the process completes.
  • Refresh tokens are not requested or stored.
  • Channel metadata (channel ID, channel URL, subscriber count, view count) is stored in the Provider’s database to maintain the association between the User’s CPAHunter account and the verified YouTube channel.

All stored data is protected using industry-standard security measures, including encrypted connections (TLS) and access controls on the Provider’s servers.

5.4 Sharing

The Provider shall not sell, rent, or share Google user data with any third parties. Data received from Google APIs shall not be transferred to third parties except:

  • When necessary to provide the core functionality of the Service (e.g., displaying the verified channel on the User’s profile);
  • As required by applicable law or valid legal process;
  • With the explicit consent of the User.

5.5 Limited Use Disclosure

The Provider’s use and transfer to any other application of information received from Google APIs shall adhere to the Google API Services User Data Policy, including the Limited Use requirements.

5.6 Revoking Access

The User may revoke the Provider’s access to the User’s Google account at any time by visiting Google Account Security Settings. Revocation of access shall not result in the automatic deletion of channel data previously stored in the User’s CPAHunter profile. To request deletion of stored channel data, the User may contact the Provider at secretdiscounter.ru@gmail.com or disconnect the channel through the profile settings.
6.

Twitter (X) Data

The Provider utilizes Twitter OAuth 1.0a to enable Users to verify ownership of their Twitter (X) accounts.

6.1 Access

The Provider requests read-only access to the User’s Twitter account via OAuth 1.0a. The verify_credentials endpoint is used to confirm the User’s identity. The Provider does not request permission to post tweets, follow accounts, or modify the User’s profile.

6.2 Use

Data obtained through the Twitter API is used solely to:

  • Verify the User’s ownership of the Twitter account being connected to the User’s CPAHunter profile;
  • Display basic public profile information (username, follower count) within the User’s CPAHunter profile.

6.3 Storage

  • OAuth tokens are stored securely in the Provider’s database for the duration of the connection to maintain account verification.
  • Profile metadata (user ID, username, profile URL, follower count) is stored to maintain the association between the User’s CPAHunter account and the User’s Twitter profile.

All stored data is protected using encrypted connections (TLS) and access controls on the Provider’s servers.

6.4 Sharing

The Provider shall not sell, rent, or share Twitter user data with any third parties, except as required by applicable law.

6.5 Revoking Access

The User may revoke the Provider’s access to the User’s Twitter account at any time through Twitter Connected Apps settings, or by disconnecting the account through the CPAHunter profile settings.
7.

Facebook Data

The Provider utilizes Facebook OAuth 2.0 to enable Users to verify ownership of their Facebook accounts.

7.1 Access

The Provider requests the minimum permissions necessary:

  • email — to retrieve the User’s email address for identification purposes;
  • public_profile — to retrieve the User’s name and profile link.

The Provider does not request permission to publish content on the User’s behalf, access the User’s friends list, or manage the User’s pages.

7.2 Use

Data obtained through the Facebook Graph API is used solely to:

  • Verify the User’s ownership of the Facebook account being connected to the User’s CPAHunter profile;
  • Display basic public profile information (name, profile link) within the User’s CPAHunter profile.

The Provider does not use Facebook user data for advertising, marketing to third parties, or any purpose unrelated to the features described above.

7.3 Storage

  • Access tokens are stored securely in the Provider’s database for the duration of the connection to maintain account verification.
  • Profile metadata (user ID, name, profile URL, email) is stored to maintain the association between the User’s CPAHunter account and the User’s Facebook profile.

All stored data is protected using encrypted connections (TLS) and access controls on the Provider’s servers.

7.4 Sharing

The Provider shall not sell, rent, or share Facebook user data with any third parties, except as required by applicable law.

7.5 Revoking Access

The User may revoke the Provider’s access to the User’s Facebook account at any time through Facebook Business Integrations settings, or by disconnecting the account through the CPAHunter profile settings.
8.

Twitch Data

The Provider utilizes Twitch OAuth 2.0 to enable Users to verify ownership of their Twitch accounts.

8.1 Access

The Provider requests the minimum scope necessary:

  • user:read:email — to retrieve the User’s email address and basic profile information.

The Provider does not request permission to manage the User’s streams, subscriptions, or channel settings.

8.2 Use

Data obtained through the Twitch API is used solely to:

  • Verify the User’s ownership of the Twitch account being connected to the User’s CPAHunter profile;
  • Display basic public profile information (username, view count) within the User’s CPAHunter profile.

8.3 Storage

  • Access and refresh tokens are stored securely in the Provider’s database for the duration of the connection to maintain account verification.
  • Profile metadata (user ID, username, profile URL, view count, broadcaster type) is stored to maintain the association between the User’s CPAHunter account and the User’s Twitch channel.

All stored data is protected using encrypted connections (TLS) and access controls on the Provider’s servers.

8.4 Sharing

The Provider shall not sell, rent, or share Twitch user data with any third parties, except as required by applicable law.

8.5 Revoking Access

The User may revoke the Provider’s access to the User’s Twitch account at any time through Twitch Connections settings, or by disconnecting the account through the CPAHunter profile settings.
9.

Instagram Data

The Provider utilizes Instagram OAuth 2.0 (via Meta) to enable Users to verify ownership of their Instagram accounts.

9.1 Access

The Provider requests the minimum permissions necessary:

  • instagram_business_basic — read-only access to basic profile information (username, account type, media count).

The Provider does not request permission to publish content, access the User’s direct messages, manage comments, or access the User’s followers list.

9.2 Use

Data obtained through the Instagram API is used solely to:

  • Verify the User’s ownership of the Instagram account being connected to the User’s CPAHunter profile;
  • Display basic public profile information (username, follower count) within the User’s CPAHunter profile.

The Provider does not use Instagram user data for advertising, marketing to third parties, or any purpose unrelated to the features described above.

9.3 Storage

  • Access tokens are stored securely in the Provider’s database for the duration of the connection to maintain account verification.
  • Profile metadata (user ID, username, profile URL, follower count) is stored to maintain the association between the User’s CPAHunter account and the User’s Instagram profile.

All stored data is protected using encrypted connections (TLS) and access controls on the Provider’s servers.

9.4 Sharing

The Provider shall not sell, rent, or share Instagram user data with any third parties, except as required by applicable law.

9.5 Revoking Access

The User may revoke the Provider’s access to the User’s Instagram account at any time through Instagram App and Website settings, or by disconnecting the account through the CPAHunter profile settings.
10.

TikTok Data

The Provider verifies ownership of TikTok accounts without utilizing OAuth or accessing the TikTok API directly.

10.1 Verification Method

The User is required to add a unique verification code to the User’s TikTok bio. The Provider’s system verifies the presence of said code to confirm account ownership.

10.2 Data Collected

The Provider collects and stores only the following:

  • The User’s username and account URL;
  • Verification status.

The Provider does not access the User’s private messages, followers list, content, or any other account data.

10.3 Storage and Sharing

The collected data is stored in the Provider’s database and used solely to maintain the association between the User’s CPAHunter account and the User’s TikTok profile. The Provider shall not disclose this data to third parties, except as required by applicable law.
11.

General Provisions for All Connected Accounts

  • The User may disconnect any social account from the User’s CPAHunter profile at any time through the profile settings.
  • Upon disconnection, the Provider shall mark the account as detached. To request complete deletion of stored data, the User may contact the Provider at secretdiscounter.ru@gmail.com.
  • The Provider shall not use data from connected social accounts for advertising, profiling, or sale to third parties.
  • All data transmissions between the Provider and third-party platforms are encrypted using TLS.
12.

Changes to This Privacy Policy

The Provider may update this Policy from time to time. The User shall be notified of any changes by the posting of the revised Policy on this page. Continued use of the Service following the posting of changes constitutes acceptance of such changes.

For any inquiries regarding this Privacy Policy, the User may contact the Provider at secretdiscounter.ru@gmail.com.