BETABribe a Human is in early beta. Features may change and task availability is not guaranteed.

Privacy Policy

Version 1 — Last updated: February 22, 2026

Bribe a Human (“we,” “us,” or “our”) operates the Bribe a Human platform. This Privacy Policy explains how we collect, use, share, and protect your personal information when you use our website, APIs, and related services (the “Services”).

1. Information We Collect

Account Data

When you create an account, we collect your email address, password (stored as a cryptographic hash by Supabase), and your selected role (owner or worker).

Task Data

We collect information about tasks you create, claim, or complete, including task descriptions, budgets, deadlines, proof submissions, uploaded files, and dispute details.

Payment Data

Payment processing is handled by Stripe. We do not store your credit card numbers or bank account details. We receive and store transaction identifiers, payment amounts, and payout status from Stripe.

Usage Data

We collect information about how you interact with the Services, including pages visited, features used, API calls made, and timestamps of activity.

Device & Browser Data

We may collect your IP address, browser type, operating system, and device identifiers for security, rate limiting, and analytics purposes.

2. How We Use Information

  • Platform Operations: To provide, maintain, and improve the Services, including task matching, payment processing, dispute resolution, and content moderation.
  • AI Model Training: We may use anonymized and aggregated task data to train AI models that improve the Platform. You may opt out of AI training use by contacting us at privacy@bribeahuman.com.
  • Analytics: To understand usage patterns, improve the user experience, and develop new features.
  • Communication: To send you transactional emails (task updates, payment confirmations, dispute notifications), security alerts, and service announcements.
  • Legal Compliance: To comply with applicable laws, respond to legal requests, and protect our rights and the rights of our users.

3. Information Sharing

We do not sell your personal information.

We share your information with:

  • Stripe: Payment and payout processing. Stripe's use of your data is governed by Stripe's Privacy Policy.
  • Other Users: Task owners can see worker profile information relevant to claimed tasks. Workers can see task descriptions and owner-provided details. The Bribe Board displays anonymized task data publicly.
  • Law Enforcement: We may disclose your information when required by law, subpoena, court order, or when we believe disclosure is necessary to protect our rights, your safety, or the safety of others.
  • Service Providers: We may share information with third-party service providers who help us operate the Platform (e.g., email delivery, hosting, analytics), subject to confidentiality obligations.

4. Data Retention

  • Task & Payment Records: We retain task and payment records for 6 years after task completion for legal, financial, and compliance purposes, including freelancer protection laws.
  • Account Data: We retain your account data for as long as your account is active. Upon receiving a valid deletion request, we will delete your account data within 30 days, except where retention is required by law.
  • Usage & Analytics Data: Aggregated and anonymized analytics data may be retained indefinitely.

5. Your Rights

California Residents (CCPA/CPRA)

If you are a California resident, you have the right to:

  • Know & Access: Request what personal information we collect, use, and disclose about you.
  • Delete: Request deletion of your personal information, subject to legal exceptions.
  • Opt-Out of Sale/Sharing: We do not sell or share your personal information for cross-context behavioral advertising.
  • Non-Discrimination: We will not discriminate against you for exercising your privacy rights.

EU/EEA Residents (GDPR)

If you are located in the EU or EEA, you have the right to:

  • Access: Request a copy of your personal data.
  • Rectification: Request correction of inaccurate personal data.
  • Erasure: Request deletion of your personal data (“right to be forgotten”).
  • Portability: Request your data in a structured, commonly used format.
  • Object: Object to processing of your personal data, including for direct marketing or AI training.

Global Privacy Control

We honor Global Privacy Control (GPC) signals. If your browser sends a GPC signal, we will treat it as a valid opt-out of the sale or sharing of your personal information.

To exercise any of these rights, contact us at privacy@bribeahuman.com. We will respond within 30 days (or 45 days if an extension is needed).

6. Cookies

We use cookies strictly for functional purposes:

  • Authentication Cookies: Supabase session cookies are required for user authentication and maintaining your logged-in state.
  • Analytics: If we use analytics services, cookies may be used to understand usage patterns. You can control cookies through your browser settings.

We do not use tracking cookies for advertising purposes.

7. Security

  • All data is transmitted over HTTPS with TLS encryption.
  • Payment processing is handled by Stripe, which is PCI DSS Level 1 certified. We never store credit card numbers.
  • API keys are stored as HMAC-SHA256 hashes — we cannot recover your plaintext API key after creation.
  • Passwords are hashed using industry-standard algorithms by Supabase Auth.
  • We implement rate limiting to protect against abuse.

While we implement reasonable security measures, no system is 100% secure. You are responsible for maintaining the confidentiality of your account credentials.

8. Children

The Services are not directed to children under 13 years of age. We do not knowingly collect personal information from children under 13. If we learn that we have collected personal information from a child under 13, we will take steps to delete such information promptly. If you believe a child under 13 has provided us with personal information, please contact us at privacy@bribeahuman.com.

9. International Transfers

Your information may be transferred to and processed in countries other than your country of residence, including the United States. For transfers of personal data from the EU/EEA to countries that do not provide an adequate level of data protection, we rely on Standard Contractual Clauses approved by the European Commission or other appropriate safeguards.

10. Changes to This Policy

We may update this Privacy Policy from time to time. For material changes, we will provide at least 30 days' notice via email. Your continued use of the Services after the effective date of any changes constitutes your acceptance of the updated policy.

11. Contact Us

If you have questions about this Privacy Policy or wish to exercise your privacy rights, please contact us at:

Privacy Requests: privacy@bribeahuman.com
DMCA Agent: dmca@bribeahuman.com
General: legal@bribeahuman.com

See also our Terms of Service.