The Network Software Ltd Privacy Policy

The Network Software Ltd ("The Network", "we", "us", or "our") is committed to handling personal information in a transparent, lawful, secure, and practical way.

This Privacy Policy explains how we collect, use, disclose, hold, protect, retain, and otherwise handle personal information in connection with our business and our affiliate management platform and related services (together, the "Platform").

The Network is based in New Zealand and complies with the New Zealand Privacy Act 2020. Where other privacy or data protection laws apply to our handling of personal information, we will comply with those laws to the extent required. Such laws may apply depending on factors such as the location of individuals, the nature of the services provided, and how the Platform is used.

By creating an account, accessing or using the Platform, participating in a program, using our websites, using any CRM or related Platform feature, or otherwise interacting with The Network and/or the Platform, this Privacy Policy applies to you. You acknowledge that you have read and understood and accept the terms of this Privacy Policy. If you do not agree with this Privacy Policy, you should not engage with The Network or access or use the Platform.

If you choose not to provide personal information requested by us or required for use of the Platform, we may be unable to provide some or all of the Platform, features, or services to you.

1. Introduction

1.1 Purpose of This Policy

This Privacy Policy explains, among other things:

• what personal information we collect and from whom
• how we use personal information
• how we disclose and share personal information
• how long we retain personal information
• the rights of individuals in relation to their personal information
• how we protect personal information

2. Roles and Relationship Structure

Because The Network is a multi-party platform, personal information may be handled by multiple parties depending on how the Platform is used.

2.1 Organisations' Role

Organisations create and operate programs through the Platform. Organisations are responsible for ensuring that their collection, use, disclosure, and holding of personal information complies with the Privacy Act 2020 and any other applicable law.

2.2 Affiliates' Role

Affiliates are independent participants in The Network affiliate network and may participate in one or more programs. Affiliates may also use CRM, contact management, workflow, communication, and related tools made available through the Platform for their own lawful business or affiliate activities.

Affiliates are responsible for ensuring that their collection, use, disclosure, and holding of personal information complies with the Privacy Act 2020 and any other applicable law.

3. Information We Collect

We collect several categories of personal information in connection with operating the Platform.

3.1 Account and Contact Information

We may collect:

• full name
• display name
• email address
• phone number
• username or profile identifier
• organisation or business name
• registered address or business address
• role or job title
• communication preferences
• profile information
• authentication and account credential information.

3.2 Identity Verification, Due Diligence, and Compliance Information

In some circumstances, we or our service providers may collect personal information for verification, compliance, transfer review, fraud controls, or payout setup, including:

• identity verification records
• proof of identity or authority
• business registration details
• tax status declarations
• payout recipient verification details
• ownership verification records
• due diligence materials
• compliance documentation.

3.3 Affiliate Information

Where you are an affiliate, we may collect or generate:

• affiliate account details
• network membership and program participation records
• profile information and application information
• acceptance of terms and program terms
• tracking link, referral code, and coupon code assignments
• performance metrics
• click, referral, and conversion records
• commission, reserve, reversal, and payout records
• hierarchy placement information
• dispute submissions and evidence
• fraud review data
• communications, CRM, and workflow records created through the Platform.

3.4 Organisation Information

Where you are an organisation or represent one, we may collect:

• organisation legal name and trading name
• registered address or principal business address
• business contact names and details
• billing information
• subscription records
• program settings and program history
• integration settings
• payout-related settings
• website, brand, or marketing asset information
• support and account communications.

3.5 CRM, Contact, Lead, and Workflow Data

The Platform may allow organisations and affiliates to create, upload, collect, store, manage, and use CRM and related data through the Platform. Depending on how the Platform is used, this may include:

• contact names
• email addresses
• phone numbers
• company names
• notes and comments
• deal or pipeline records
• task or reminder records
• activity history
• communication logs
• workflow or automation records
• tags, labels, or custom fields
• lead source information
• customer status information
• internal notes and related business records.

3.6 Referral, Tracking, and Attribution Data

The Platform relies on referral tracking and attribution systems. We therefore collect, use, and generate data such as:

• tracking link identifiers
• referral code and coupon code assignments
• click timestamps
• session and event timestamps
• attribution windows and modes
• referrer URLs
• landing page information
• browser or device information associated with events
• IP address data
• event IDs and sequencing records
• tie-breaker records
• override logs and reason codes
• audit logs relating to attribution.

3.7 Customer and Transaction-Related Information

The Platform may collect, use, disclose, and hold customer-related data provided by or on behalf of an organisation or generated through referral activity, including:

• customer identifiers
• order or transaction references
• payment event identifiers
• purchase values or commissionable amounts
• product or subscription identifiers
• refund, cancellation, chargeback, or dispute events
• affiliate attribution identifiers
• transaction status information.

3.8 Financial, Billing, and Payout Information

We and our service providers may collect, use, disclose, or hold:

• billing contact details
• invoice records
• subscription and fee records
• tax declarations or related information
• payout currency selections
• payout recipient details
• bank or transfer details handled by payout providers
• transaction identifiers
• payment processor references
• fee, withholding, and reconciliation records.

We do not typically store full payment card numbers ourselves where payment processing is handled by third-party processors.

3.9 Business Information

We may also collect personal information relating to suppliers, contractors, visitors, or other business contacts of The Network, including contact details, communications, access records, and other information reasonably necessary for business operations, security, and administration.

3.10 Usage Data and Technical Information

We collect or generate usage and technical data such as:

• device type
• browser type and version
• operating system
• language settings
• IP address
• approximate geolocation inferred from IP
• session data and timestamps
• page and screen views
• clicks, interactions, and navigation events
• performance and crash data
• diagnostics and logs.

3.11 Cookies and Similar Technologies

We may use cookies, local storage, beacons, pixels, SDKs, and similar technologies for authentication, security, session management, preferences, analytics, diagnostics, and, where permitted by law, communications or campaign measurement.

3.12 Communications Data

If you contact us or use communications features, we may collect:

• your name and contact details
• the content of messages or support requests
• attachments and files
• support notes
• complaint or dispute details
• email or in-platform communications records
• other communications history reasonably connected to use of the Platform.

3.13 Data From Integrations and Third Parties

We may receive data from payment processors, payout providers, analytics providers, communications providers, hosting providers, verification providers, fraud providers, and other third-party systems where integrations are enabled or external systems are used.

We rely on those third-party providers and the relevant organisations or affiliates to ensure that any personal information shared with us is collected and disclosed lawfully.

3.14 Hierarchy and Network Visibility Information

Where programs include hierarchy or multi-tier features, the Platform may display and handle:

• affiliate name or display name
• contact details such as email address or phone number
• hierarchy position
• join date or status
• performance metrics
• referral identifiers
• related network or program participation information.

Such information is made available solely for legitimate Program-related purposes and must not be used for independent marketing, data harvesting, or establishing off-platform relationships except as permitted by applicable law and the Platform Terms.

3.15 Sensitive Information

The Platform is not intended to require sensitive personal information such as health information, biometric data, racial or ethnic origin, political opinions, religious beliefs, trade union membership or sexual orientation except where lawful, necessary, and permitted by law. We ask users not to submit unnecessary sensitive personal information through the Platform.

3.16 Children's Information

The Platform is intended for business and commercial use. It is not directed to children, and we do not knowingly collect personal information from children.

4. Sources of Personal Information

We collect personal information from a range of sources. Where reasonably practicable, we collect personal information directly from you. In some cases, we may collect personal information from third parties where permitted by applicable law.

4.1 Directly From You

We collect personal information directly from you when you:

• create an account
• apply to join a program or the affiliate network
• configure or administer a program
• update your profile or settings
• connect integrations
• enter CRM or contact data
• use workflow or communication tools
• request support
• submit a dispute
• respond to compliance or verification requests
• set up billing or payouts
• communicate with us.

4.2 From Organisations, Employers, or Colleagues

We may receive your personal information from an organisation, employer, partner, agency, or colleague if they invite you, register you, submit your details, or otherwise cause your personal information to be handled through the Platform.

4.3 From Organisations Using the Platform

If you are an affiliate, applicant, customer, lead, or contact connected to a program, the relevant organisation may provide personal information to the Platform in connection with program administration, attribution, reporting, CRM activity, commission processing, or payout processing.

4.4 From Affiliates

Affiliates may cause personal information to be handled through the Platform through tracking links, coupon codes, referral codes, hierarchy features, CRM tools, workflows, communications tools, and related activity.

4.5 Automatically Through the Platform

We collect technical, event, and usage data automatically through websites, dashboards, APIs, tracking mechanisms, integrations, cookies, and system logs.

4.6 From Third-Party Providers and Integrations

We may receive data from third-party systems such as payment processors, payout providers, cloud providers, analytics services, support platforms, fraud tools, communications providers, CRM systems, or other integrations enabled by users.

5. How We Use Personal Information

We generally use personal information for the purposes for which it was collected, or for related purposes as permitted by the Privacy Act 2020. We use personal information for the purposes described below.

5.1 To Provide the Platform

We use personal information to provide, operate, and support the Platform, including to:

• create and manage accounts
• authenticate users
• operate The Network affiliate network
• enable dashboard and portal access
• administer programs
• generate and manage tracking links, referral codes, and coupon codes
• record clicks, attribution events, and conversions
• calculate commissions
• manage holds, reserves, reversals, deductions, and payouts
• provide CRM, contact, workflow, communication, and reporting features
• facilitate dispute, support, and review processes
• display relevant metrics and hierarchy information.

5.2 Platform Administration and Business Operations

We use personal information to run our business and administer the Platform, including:

• onboarding users
• managing subscriptions, billing, and fees
• maintaining system records and configuration history
• carrying out audits and reconciliations
• improving onboarding and support
• testing, maintaining, and upgrading systems
• planning capacity, reliability, resilience, and performance.

5.3 Security, Integrity, and Fraud Prevention

We use personal information to protect the Platform and its users, including to:

• monitor suspicious activity
• detect self-referrals, duplicate claims, artificial traffic, fake leads, unusual velocity, related accounts, and unusual hierarchy activity
• investigate fraud, abuse, manipulation, or non-compliance
• validate attribution and payout integrity
• detect unauthorised access or misuse
• maintain audit logs and risk records
• protect against scraping, spam, bot traffic, or security threats.

5.4 Misuse of Data and Platform Protections

We use personal information and related data to detect, investigate, prevent, and respond to misuse of the Platform, including:

• unauthorised access or account misuse
• fraud, manipulation, or artificial activity
• misuse of contact, referral, or hierarchy data
• attempts to circumvent the Platform, tracking systems, or fee mechanisms
• off-platform solicitation or diversion of users or relationships
• any activity that may breach applicable law, these Terms, or applicable Program Terms.

5.5 Communications

We use personal information to communicate with you, including to:

• send verification messages
• respond to support requests
• send service notices and security alerts
• send billing, fee, or payout notices
• notify users of policy or terms changes
• send product and service updates where permitted by law
• request feedback, survey responses, or information relevant to support or compliance.

5.6 Compliance and Legal Purposes

We use personal information where necessary to comply with laws or protect legal rights, including to:

• comply with accounting, tax, and recordkeeping requirements
• respond to lawful requests from regulators, courts, or law enforcement
• handle claims, disputes, complaints, and investigations
• enforce our terms, policies, and network protections
• preserve evidence for disputes or legal proceedings
• conduct due diligence and compliance checks.

5.7 Product Improvement, Analytics, and Research

We use personal information and usage data to understand usage of the Platform and improve it, including by:

• analysing feature usage
• identifying errors and friction points
• evaluating performance and reliability
• improving fraud models, reporting, and workflows
• developing new features and services.

Where appropriate, we use aggregated, anonymised, or de-identified data for these purposes.

5.8 Aggregated, Anonymised, and De-Identified Data

We may create, use, retain, analyse, disclose, and commercialise aggregated, anonymised, de-identified, statistical, operational, security-related, benchmark, and reporting data derived from the Platform and from data handled through it, provided that such data does not identify an individual except as permitted by applicable law.

This may include aggregated or anonymised reporting derived from affiliate-created CRM data where the relevant terms permit The Network to do so.

5.9 Marketing and Service Messages

Where permitted by law, we may use personal information to send service-related updates, product announcements, newsletters, or marketing messages. You can opt out of marketing communications, but we may still send service, billing, security, legal, or operational messages.

5.10 Automated Systems and Decision Support

The Platform may use automated systems to handle clicks, attribution events, event matching, commission calculations, fraud signals, workflow triggers, anomaly detection, and related system logic. These processes support the operation of the Platform. Human review may be used where appropriate, including for disputes, fraud investigations, escalations, and manual overrides.

6. Legal Grounds (Where Required by Applicable Law)

This section applies only where applicable law requires us to identify a legal basis for collecting, using, or disclosing personal information.

Where required by law, we may rely on one or more of the following grounds for collecting, using or disclosing personal information.

6.1 Contractual Necessity

We collect, use and disclose personal information where necessary to perform our contract with you or take steps at your request before entering into a contract, including for account administration, platform access, program participation, CRM functionality, payout processing, support, and billing.

6.2 Legitimate Interests

Where permitted by applicable law, we may collect, use and disclose personal information for our legitimate business purposes including platform security, fraud prevention, service improvement, analytics, audit integrity, enforcement of terms, network protection, and communications necessary for operating the Platform.

6.3 Legal Obligation

We collect, use and disclose personal information where necessary to comply with legal obligations, including tax, accounting, recordkeeping, lawful disclosure, court orders, regulatory enquiries, and compliance requirements.

6.4 Consent

In some circumstances, we rely on consent, such as for certain optional marketing communications, certain cookies or tracking technologies where required, and certain disclosures or transfers where consent is an appropriate mechanism.

7. Disclosure of Personal Information

We disclose personal information only where necessary for operation of the Platform, to comply with law, or as otherwise described in this Policy.

7.1 Disclosure to Organisations

If you are an affiliate or applicant, an organisation whose program you join, apply to join, or participate in may receive information such as:

• your name or display name
• contact details
• profile information
• acceptance status and related records
• performance metrics
• referral activity
• commission and payout-related information
• hierarchy information
• fraud or compliance indicators where reasonably necessary for program administration
• information reasonably required to investigate misuse, fraud, or breaches of Platform rules or applicable law.

7.2 Disclosure Within Hierarchies and Network Structures

Where programs support hierarchy or multi-tier features, certain information may be visible within permitted hierarchy levels to support program administration, collaboration, attribution, support, and performance tracking. Such visibility is a core operational feature of some programs, but is subject to restrictions on use, including prohibitions on misuse, data extraction, or off-platform exploitation of that information.

7.3 Disclosure to Service Providers

We use third-party providers to support hosting, storage, analytics, diagnostics, email delivery, support, payment processing, payout processing, communications, logging, monitoring, verification, fraud prevention, legal, accounting, and other operational functions.

We rely on those providers to handle personal information in accordance with applicable law.

7.4 Disclosure to Payment and Payout Providers

We may share information with providers such as Stripe, Wise, or similar providers to support event ingestion, verification, reconciliation, payout processing, failed transfer handling, fraud controls, and compliance.

7.5 Disclosure for Legal and Regulatory Reasons

We may disclose personal information where necessary to comply with applicable law, lawful requests, court orders, regulatory requirements, or to protect the rights, property, safety, or legal interests of The Network, users, organisations, affiliates, or others.

7.6 Business Transfers

If we are involved in a merger, acquisition, financing, due diligence process, restructuring, insolvency event, or sale of assets, personal information may be disclosed to advisors, counterparties, or successors, subject to appropriate safeguards.

7.7 Aggregated and De-Identified Information

We may disclose aggregated, anonymised, statistical, benchmark, or de-identified information that does not reasonably identify any individual.

7.8 No Sale of Personal Information in the Ordinary Sense

We do not sell personal information in the ordinary sense of that term. We also do not disclose personal information to unrelated third parties for their independent direct marketing use without consent.

8. Cookies and Similar Technologies

We use cookies and similar technologies to operate, secure, analyse, and improve the Platform.

8.1 Types of Technologies We Use

These may include:

• essential cookies
• authentication cookies
• session cookies
• preference cookies
• analytics cookies
• local storage
• server-side identifiers
• web beacons or pixels
• SDKs and similar technologies.

8.2 Purposes

We use these technologies to:

• keep users logged in
• remember preferences
• secure sessions
• detect suspicious activity
• understand platform usage
• improve navigation and performance
• support diagnostics and debugging.

8.3 Your Choices

You can usually manage cookies through browser settings or relevant cookie controls. Disabling some cookies may affect Platform functionality.

9. International Data Transfers

The Platform may store, host, or disclose personal information in or to countries other than the country where you are located.

9.1 New Zealand Base

The Network is based in New Zealand.

9.2 Possible Handling Locations

Depending on our infrastructure and service providers, personal information may be handled in New Zealand, Australia, the United States, the United Kingdom, the European Union, or other jurisdictions where our service providers operate.

9.3 Cross-Border Safeguards

Where personal information is transferred overseas, we may use contractual safeguards, service provider terms, standard contractual clauses, technical and organisational safeguards, encryption, provider assessments, or other lawful mechanisms where appropriate and reasonably available.

9.4 New Zealand Privacy Act Considerations

Where the New Zealand Privacy Act 2020 applies, we seek to ensure we take reasonable steps to ensure cross-border disclosures are handled consistently with applicable requirements, including, where applicable, Information Privacy Principle 12. Organisations and affiliates remain responsible for ensuring that any disclosure of personal information outside New Zealand by them complies with applicable law and that appropriate safeguards are in place.

9.5 International Users

By using the Platform, you understand that your personal information may be transferred to and handled in jurisdictions other than your own, and we take steps intended to protect personal information wherever it is processed.

10. Data Retention

We retain personal information only for as long as reasonably necessary for the purposes for which it was collected, to meet legal or contractual obligations, to resolve disputes, to preserve records, and to protect the integrity of the Platform.

10.1 Account Data

We generally retain account information while an account is active and for a reasonable period afterwards.

10.2 Program, Ledger, and Audit Records

Because the Platform deals with attribution, payouts, disputes, fraud controls, acceptance records, and audit history, we may retain ledger records, attribution logs, override logs, acceptance records, transaction mappings, and related records for extended periods where reasonably necessary for fraud detection, enforcement of Platform rules, investigation of misuse, and protection of the Platform and its users.

10.3 Financial and Tax Records

We retain billing, payout, invoice, and tax-related records for as long as required by applicable law or business recordkeeping standards.

10.4 CRM and Communications Records

We may retain CRM records, communication logs, workflow records, and related data for as long as reasonably necessary to provide the Platform, support users, comply with legal obligations, resolve disputes, maintain security, or support operational continuity, subject to applicable law and any contractual rights retained by users in their own CRM data.

10.5 Logs and Security Data

We may retain system logs, access records, risk indicators, and diagnostics for periods appropriate to security, fraud prevention, support, and integrity purposes.

10.6 Backup Retention

Backups may contain personal information for a limited rolling period after deletion from active systems.

10.7 Deletion, De-Identification, and Anonymisation

Where appropriate and reasonably practicable, we may delete, de-identify, anonymise, or aggregate personal information when it is no longer needed, subject to legal, accounting, support, dispute, fraud prevention, security, and operational requirements.

11. Security Measures

We implement reasonable technical and organisational measures designed to protect personal information.

11.1 Technical Measures

These may include:

• encryption in transit
• encryption at rest where appropriate
• access controls
• credential protections
• logging and monitoring
• backup protections
• patching and maintenance
• anomaly detection and fraud systems
• secure session controls
• monitoring and controls designed to detect misuse of data, unauthorised access, or attempts to extract or misuse Platform data.

11.2 Organisational Measures

These may include:

• role-based access controls
• confidentiality obligations
• internal policies and procedures
• vendor oversight
• incident response processes
• least-privilege access principles
• training and awareness.

11.3 Limits of Security

No system can guarantee absolute security.

12. Data Breach and Incident Response

We maintain processes for identifying, managing, and responding to security incidents and privacy breaches. If we become aware of a breach involving personal information, we will assess the incident and take appropriate action, which may include containment, investigation, mitigation, remediation, and notifications where required by law.

Where an organisation is the party responsible for the relevant personal information, we may notify or work with that organisation in accordance with our contractual role and applicable law.

13. Your Rights and Choices

Under the New Zealand Privacy Act 2020, you have the following rights in relation to personal information we hold about you. If other laws apply in relation to your personal information you may have additional rights.

13.1 Access

You have the right to request access to personal information we hold about you. Access may be refused in some circumstances permitted by the Privacy Act 2020. We may charge a reasonable fee for providing access to personal information where permitted by the Privacy Act 2020.

13.2 Correction

You have the right to request correction of inaccurate, incomplete, misleading or not up to date personal information we hold about you. If we do not agree to a requested correction, you may request that a statement of correction be attached.

13.3 Withdrawal of Consent

Where we rely on consent to collect or use personal information, you may withdraw that consent at any time.

13.4 Complaints

If you are not satisfied with our response to your complaint, you may make a complaint to the Office of the New Zealand Privacy Commissioner.

13.5 How to Exercise Rights

You can contact us using the contact details at the end of this Policy. We may need to verify identity before acting on a request. We may charge a reasonable fee for providing access to personal information where permitted by the Privacy Act 2020.

If your request relates to information provided by or held on behalf of an organisation using the Platform, we may direct you to that organisation.

14. GDPR and UK GDPR Information

This section applies only to the extent that the GDPR or UK GDPR applies to our handling of personal information:

• Our role in relation to personal information will depend on the circumstances and the applicable law.
• lawful grounds are described in Section 6
• individuals may have rights under those laws, which may include rights of access, correction, erasure, restriction, objection, portability, and complaint
• where international transfers occur, we seek to use lawful transfer mechanisms where required.

Nothing in this section is intended to extend the application of the GDPR or UK GDPR beyond what is required by law.

15. U.S. State Privacy Disclosures

For residents of U.S. states with privacy laws, where applicable:

• we may collect identifiers, contact information, commercial information, internet activity information, professional information, financial and payout information, and inferences used for service integrity or improvement
• sources and purposes are described throughout this Policy
• we do not sell personal information in the ordinary sense
• individuals may have rights to know, access, correct, delete, and opt out of certain uses or disclosures depending on applicable state law
• we do not discriminate against individuals for exercising applicable privacy rights, subject to the practical consequences of their request.

16. Platform-Specific Privacy Features

We may maintain records and functionality including:

• acceptance records and version history
• attribution logs and override logs
• dispute records and evidence
• fraud and risk signals
• hierarchy visibility features
• CRM and workflow records
• payout and ledger records
• audit logs and related operational records.

17. Data Minimisation and Proportionality

We aim to collect, use, disclose, and hold only the personal information reasonably necessary for the purposes described in this Policy. The exact data handled will vary depending on how organisations and affiliates use and configure the Platform.

18. Accuracy of Information

We take reasonable steps to ensure personal information we use is accurate, complete, relevant, and up to date for the purposes for which it is used. Users are responsible for keeping their own account, billing, tax, payout, CRM, and related personal information accurate.

19. Third-Party Websites and Services

The Platform may link to or be used with third-party websites, tools, or services. We are not responsible for their privacy practices.

20. Business Contact and B2B Data

Where we collect, use, disclose, and hold information about representatives of organisations, vendors, partners, or other business contacts, we use that information for relationship management, support, contracting, billing, account administration, and compliance.

21. Marketing Communications and Preferences

If you receive marketing communications from us, you can opt out using the unsubscribe mechanism or by contacting us. We may still send transactional or service-related messages.

22. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our services, operations, legal obligations, or privacy practices. If we make material changes, we may notify users by appropriate means, including by updating the "Last Updated" date, posting an updated version on our website or Platform, or sending an email or in-platform notice where appropriate.

23. Contact Us

If you have any questions, requests, or complaints about this Privacy Policy or our handling of personal information, please contact us:

The Network Software Ltd
Email: affiliates@thenetwork.co.nz
Address: 3 Waiata Avenue, Remuera, Auckland, New Zealand

If your request relates to personal information held on behalf of an organisation, you may also need to contact the relevant organisation directly.

27. Additional Detailed Explanations

The following supplemental explanations are intended to provide greater detail for readers who want more context.

27.1 Multi-Party Data Flows

The Platform is not a simple single-user product. It sits between multiple parties, including The Network, organisations, affiliates, customers, leads, contacts, payment providers, payout providers, communications providers, and service providers. A single item of information may be relevant to different parties for different reasons. For example, an affiliate's email address may be visible to an organisation for program administration, while the same affiliate's acceptance records, payout records, and fraud records may also be maintained by The Network for platform integrity.

27.2 Tracking and Attribution Data

Tracking and attribution systems rely on data such as links, timestamps, code usage, event IDs, metadata, device information, browser information, session information, and audit logs. We may retain and use such data to determine attribution outcomes, detect fraud, resolve disputes, and preserve platform integrity.

27.3 CRM Data and Ownership Structure

The Platform may make CRM and related tools available to both organisations and affiliates. In some cases, CRM data may be supplied by an organisation or derived from an organisation's customer relationship. In other cases, affiliates may create or upload their own standalone CRM data for their own lawful business activity.

Where the applicable terms provide that an affiliate retains rights in certain standalone CRM data, that does not prevent The Network from hosting, handling, securing, backing up, retaining, analysing, and using that data as reasonably necessary to provide, operate, support, secure, improve, and enforce the Platform. It also does not prevent The Network from creating aggregated, anonymised, de-identified, statistical, benchmark, operational, security-related, or reporting data derived from such CRM data where permitted by the applicable terms and law.

27.4 Hierarchy and Visibility Features

Where multi-tier or hierarchy features are enabled, information may be visible within configured hierarchy levels to support program operation, attribution, administration, performance tracking, collaboration, and payout processing. The exact information displayed may vary depending on platform design, permissions, and program configuration.

27.5 Record Retention and Network Protection

Because The Network operates a network-wide platform, we may retain information for longer where reasonably necessary to preserve records, detect fraud, resolve disputes, support legal compliance, protect platform integrity, maintain network protections, or enforce our contractual rights.

27.6 No Waiver of Legal Rights

Nothing in this Privacy Policy is intended to waive or limit any privacy right or legal protection that cannot lawfully be waived or limited under applicable law.