Card CJ
← Back to Home

Privacy Policy

Last updated: November 28, 2025

1. Introduction

This Privacy Policy describes how we collect, use, and protect your personal information when you use our trading card marketplace. We are committed to protecting your privacy and handling your data in an open and transparent manner.

2. Information We Collect

2.1 Information You Provide

When you create an account or use our Service, we collect:

  • Email address
  • Username and display name
  • Password (encrypted)
  • Profile information you choose to provide
  • Payment information (processed through third-party providers)
  • Communication preferences

2.2 Information We Collect Automatically

When you use our Service, we automatically collect:

  • Device information (browser type, operating system)
  • IP address and location data
  • Usage data (pages visited, time spent, features used)
  • Cookies and similar tracking technologies

2.3 Trading Activity Data

We collect information about your marketplace activities:

  • Card listings and sales history
  • Purchase history and preferences
  • Messages between buyers and sellers
  • Ratings and reviews

3. How We Use Your Information

We use your information to:

  • Provide, maintain, and improve our Service
  • Process transactions and send transaction notifications
  • Authenticate your identity and prevent fraud
  • Send important updates about the Service
  • Respond to your requests and provide customer support
  • Personalize your experience and show relevant listings
  • Analyze usage patterns to improve our Service
  • Comply with legal obligations and enforce our Terms of Service

4. Information Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

  • With other users: Your username, profile information, and listings are visible to other users
  • Service providers: We use Supabase for data storage and authentication
  • Payment processors: Payment information is shared with our payment service providers
  • Legal requirements: When required by law or to protect rights and safety
  • Business transfers: In connection with a merger, sale, or acquisition

5. Data Storage and Security

We use Supabase, a secure cloud-based platform, to store your data. We implement appropriate technical and organizational security measures including:

  • Encryption of data in transit and at rest
  • Secure authentication mechanisms
  • Regular security assessments
  • Access controls and monitoring

However, no method of transmission over the Internet is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

6. Cookies and Tracking Technologies

We use cookies and similar technologies to:

  • Keep you logged in
  • Remember your preferences
  • Analyze how you use our Service
  • Improve performance and user experience

You can control cookies through your browser settings, but disabling cookies may limit your ability to use certain features.

7. Your Privacy Rights

Depending on your location, you may have the following rights:

  • Access: Request a copy of your personal data
  • Correction: Update or correct inaccurate information
  • Deletion: Request deletion of your account and data
  • Data portability: Receive your data in a machine-readable format
  • Opt-out: Unsubscribe from marketing communications
  • Restriction: Request limitation of data processing

To exercise these rights, please contact us through your account settings or our support channels.

8. Data Retention

We retain your personal information for as long as your account is active or as needed to provide you services. We may retain certain information after account deletion for legitimate business purposes or legal requirements, such as:

  • Fraud prevention and security
  • Compliance with legal obligations
  • Dispute resolution
  • Enforcing our agreements

9. Children's Privacy

Our Service is not intended for users under 13 years of age. We do not knowingly collect personal information from children under 13. If we become aware that we have collected such information, we will take steps to delete it.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. By using our Service, you consent to the transfer of your information to these countries.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or through a notice on our Service. The "Last updated" date at the top of this page indicates when the policy was last revised.

12. Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact us through:

  • The contact form on our website
  • Your account settings
  • Email (to be provided)

13. GDPR Compliance (EU Users)

If you are located in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR). Our lawful basis for processing your data includes:

  • Contract performance (providing our services)
  • Consent (where you have given explicit consent)
  • Legitimate interests (improving our services, fraud prevention)
  • Legal obligations (compliance with laws)
Terms of ServiceSign In