tingli.

Privacy Policy

Last updated: 27 May 2026

1. About This Policy

Tingli (ABN 33 142 698 602) is committed to protecting your privacy in accordance with the Privacy Act 1988 (Cth) and the 13 Australian Privacy Principles (APPs). This policy explains how we collect, use, store, and disclose your personal information. By using Tingli, you agree to the terms of this policy.

2. What We Collect (APP 3)

We only collect personal information that is reasonably necessary for our functions. This includes:

  • Account information: email address, username, display name, bio, and profile photo (creators only)
  • Payment data: tip amounts and timestamps. We do not store card numbers or bank details — these are handled exclusively by Stripe
  • Fan messages: messages submitted with tips, stored against a unique token
  • Social links: any social media URLs you voluntarily add to your profile
  • Usage data: pages visited, browser type, and device information collected automatically via server logs

We collect personal information directly from you where practicable, and will not collect information by unlawful or unfair means.

3. How We Use Your Information (APP 6)

We use your personal information only for the primary purpose for which it was collected, or for directly related secondary purposes you would reasonably expect. This includes:

  • Operating and improving the Tingli platform
  • Processing and recording tip transactions
  • Displaying your public creator profile to fans
  • Sending transactional emails (e.g. account confirmation)
  • Complying with legal obligations under Australian law
  • Responding to enquiries and support requests

We will not use your personal information for direct marketing without your consent.

4. Disclosure of Personal Information (APP 6 & APP 8)

We do not sell your personal information to any third party. We may disclose your information to:

  • Stripe — payment processing and creator payouts (operates in the USA; bound by equivalent privacy protections under APP 8)
  • Supabase — database hosting and authentication
  • Law enforcement or government agencies where required by Australian law

Before disclosing information to overseas recipients, we take reasonable steps to ensure they handle it in a manner consistent with the APPs, as required by APP 8.

5. Public Profile Information (APP 6)

Creator profiles — including display name, username, bio, avatar, and social links — are publicly visible to anyone who visits your Tingli page. This is a core function of the platform. Do not include information you wish to keep private in these fields.

6. Data Quality & Security (APP 10 & APP 11)

We take reasonable steps to ensure your personal information is accurate, up-to-date, and protected from misuse, interference, loss, and unauthorised access. Measures include:

  • Encrypted data transmission (HTTPS/TLS)
  • Row-level security on all database tables
  • API rate limiting to prevent abuse
  • No storage of payment card details — handled entirely by Stripe

Despite these measures, no internet transmission is completely secure. We encourage you to use a strong, unique password and notify us immediately if you suspect unauthorised access to your account.

7. Data Retention (APP 11)

We retain your account data for as long as your account is active. Financial records (tip transactions) are retained for a minimum of 7 years in accordance with ATO record-keeping requirements. When information is no longer needed, we will take reasonable steps to destroy or de-identify it.

8. Your Rights — Access & Correction (APP 12 & APP 13)

Under the Privacy Act 1988 (Cth), you have the right to request access to the personal information we hold about you, and to request corrections if it is inaccurate, out of date, or incomplete. To make a request, contact us at contact@tingli.com. We will respond within 30 days. We may decline access in limited circumstances permitted by the APPs, and will provide written reasons if we do so.

9. Cookies (APP 3)

Tingli uses cookies solely for authentication (keeping you logged in between sessions). We do not use advertising, tracking, or analytics cookies. You may disable cookies in your browser settings, but this will prevent you from staying logged in.

10. Complaints (APP 1)

If you believe we have breached the Australian Privacy Principles or the Privacy Act 1988 (Cth), you may lodge a complaint with us at contact@tingli.com. We will acknowledge your complaint within 5 business days and respond within 30 days.

If you are not satisfied with our response, you may escalate your complaint to the Office of the Australian Information Commissioner (OAIC).

11. Changes to This Policy (APP 1)

We may update this policy from time to time to reflect changes in our practices or Australian law. We will notify users of significant changes by updating the date at the top of this page. Continued use of Tingli after changes are posted constitutes acceptance of the revised policy.

12. Contact Us

For any privacy-related questions, requests, or complaints:

Terms of ServiceBack to Tingli