Privacy
policy.

Plain-English version of how we handle your data. The legalese is folded in but we wrote it so you can actually read it. If anything's unclear, email privacy@foryoupaid.com and a human responds.

Section 01

Who we are

"FOR YOU, PAID" (the "site", "we", "us") is an independent digital publication operated by Field Guide Media LLC, registered in Delaware, USA. We sell a single digital product: a downloadable field guide for creators earning on TikTok.

We are not affiliated with, endorsed by, or sponsored by TikTok Ltd., ByteDance Ltd., or any other social platform mentioned in the guide.

Section 02

What we collect

We collect only what's needed to deliver the product and run the business. Specifically:

  • Identity: name, email address (required for purchase & delivery)
  • Billing: payment method last 4 digits, billing country, ZIP/postal code — the full card number is handled by Stripe, never by us
  • Order data: what you bought, when, the price you paid, refund history
  • Technical: IP address, browser, device type, referrer URL (basic web analytics)
  • Behavioral: which pages you visited, time on page, scroll depth (Plausible Analytics, cookie-less)
  • Voluntary: anything you tell us in support tickets, the Discord community, or surveys
What we don't collect

We don't run Meta Pixel, Google Ads tracking, or any other third-party advertising trackers on the site. We don't sell, rent, or trade your data.

Section 03

Why we collect it

  • To deliver the product — email and identity are required to ship your access
  • To process payments — billing data goes to Stripe for charge processing
  • To support buyers — order data helps us answer support tickets accurately
  • To improve the site — aggregate analytics show us which sections work
  • To meet legal obligations — tax records, invoices, fraud prevention

We process data on the basis of contract performance (delivering what you paid for), legal obligation (tax law), and legitimate interest (running an honest business and preventing fraud). Where consent is required (e.g. marketing emails), you opt in explicitly.

Section 04

How long we keep it

  • Order & invoice records: 7 years (US tax law requirement)
  • Email & account data: as long as you have an active account, plus 12 months after deletion request
  • Support tickets: 24 months from last activity
  • Analytics data: 30 days raw, then aggregated and anonymized
  • Backups: rolling 90-day window, then permanently destroyed
Section 05

Who we share with

We share data only with vendors that help us run the business, each under a data processing agreement:

  • Stripe — payment processing & fraud screening (US)
  • Resend — transactional email delivery (US)
  • Plausible — privacy-respecting web analytics (EU, cookie-less)
  • Cloudflare — CDN & DDoS protection (US/global)
  • Discord — community platform (US, optional, only if you join)

We don't sell your data. We don't share with advertisers. We only respond to government data requests when legally compelled, and where allowed we notify you first.

Section 06

Cookies & tracking

We use a minimum of cookies: session cookies to keep you logged in, a CSRF token for form security, and (if you accept) a single preference cookie for theme. No advertising cookies. No cross-site tracking. No fingerprinting.

Our analytics tool (Plausible) doesn't use cookies and doesn't collect personal data — it tells us "1,247 people visited the playbook page today" without telling us who you are.

Section 07

Your rights

Under GDPR, CCPA, LGPD, and equivalent laws, you have the right to:

  • Access — ask for a copy of everything we hold about you
  • Rectify — correct anything we have wrong
  • Erase — have your account and data deleted
  • Restrict — tell us to stop processing your data for a specific purpose
  • Port — receive a machine-readable copy you can take elsewhere
  • Object — refuse processing based on legitimate interest
  • Withdraw consent — for anything you previously opted into

Email privacy@foryoupaid.com from the address on file. We respond within 30 days. There's no fee unless requests are repetitive or excessive, in which case we'll tell you upfront.

Section 08

Security

All connections to the site are encrypted with TLS 1.3. Passwords are hashed with bcrypt at cost factor 12. Payment data never touches our servers — Stripe handles it inside their PCI-DSS Level 1 environment. We run regular dependency audits and patch within 48 hours of any disclosed vulnerability.

In the unlikely event of a breach affecting your personal data, we notify affected users within 72 hours as required by law, with clear information on what happened and what steps to take.

Section 09

Changes to this policy

We update this policy when something material changes — new vendor, new feature, new legal requirement. The "Last updated" date at the top of this page changes when we revise. Significant changes get sent to your email at least 14 days before they take effect.

Section 10

Contact

Privacy questions, data requests, complaints, or just curiosity: privacy@foryoupaid.com. General support: support@foryoupaid.com.

Field Guide Media LLC
2261 Market Street, Suite 4422
San Francisco, CA 94114, USA

If you're in the EU and not satisfied with our response, you can lodge a complaint with your local data protection authority. For Brazilian residents, the relevant authority is the ANPD.