Privacy Policy
We respect your privacy. This policy explains how we collect, use, disclose, and protect your personal data when you use our marketplace.
1. Scope & Acceptance
These Privacy Policy terms ("Policy") apply to the services provided by YourMarketplace and describe how we collect and process personal information through our website, mobile apps, APIs, and related services (collectively, the "Services"). By using the Services or providing personal data to us, you agree to the terms of this Policy.
2. Information We Collect
We collect information necessary to provide and improve the Services. The types of information we collect include:
- Account information: name, email address, phone number, password, billing and shipping address.
- Transactional data: order details, products purchased, vendor information, payment method metadata (not full card data).
- Communications: messages with support, emails, SMS, and chat transcripts.
- Device & usage data: IP address, browser type, device identifiers, pages visited, timestamps, and analytics data.
- Marketing data: preferences, opt-in status, marketing interactions.
- Third-party data: information from identity verification, payment processors, or social login providers (where used).
3. How We Collect Data
We obtain personal data in several ways, including:
- Directly from you when you create an account, place orders, communicate with us, or update your profile.
- Automatically through cookies, analytics tools, and server logs when you visit the Site.
- From third-party partners such as payment processors, identity verification services, or marketing platforms.
4. Purpose & Legal Basis for Processing
We process personal data for the following purposes:
- To provide Services: process orders, manage accounts, facilitate vendor payouts, and provide customer support.
- Payment processing & fraud prevention: to accept payments and reduce fraudulent activity.
- Communications: transactional messages, order updates, and marketing (with consent where required).
- Legal compliance: tax, accounting, and regulatory obligations.
- Improvement & analytics: product insights, A/B testing, and site performance improvements.
Where required by law (for example, GDPR), we rely on appropriate legal bases to process your data such as contract performance, legitimate interests, consent, or legal obligations.
5. Cookies & Tracking Technologies
We and our partners use cookies, web beacons, and similar technologies to collect usage information and provide features. Cookies help with:
- Session management and authentication.
- Security and fraud prevention.
- Performance analytics and personalization.
- Advertising and marketing (where permitted).
Cookie control: Most browsers let you control cookies via settings. Disabling cookies may affect functionality (e.g., staying signed in, shopping cart).
We use the following cookie categories:
- Essential: required for the site to operate (e.g., session cookies).
- Functional: save preferences and improve experience.
- Performance: analytics and monitoring.
- Advertising: tracking for ads and retargeting.
6. Third-Party Services & Data Sharing
We may share personal data with trusted third parties to provide the Services. Examples include:
Payment processors: Stripe, Razorpay, PayPal — to process payments (they handle secure card data on our behalf).
Shipping partners: courier & fulfillment providers for order delivery and tracking.
Analytics & performance: Google Analytics, Hotjar, or similar for product insights and performance metrics.
Identity & fraud tools: providers used to detect fraud and verify user identities.
Marketing services: email providers, campaign platforms for newsletters and promotional messaging.
We require third parties to protect personal data and use it only for permitted purposes under contract. We may also disclose data if required by law or to protect rights and safety.
7. International Transfers
Our systems, third-party providers, or data processing operations may be located in countries outside your jurisdiction. By using the Services you consent to the transfer of data to countries which may have different data protection laws. Where required, we implement safeguards such as standard contractual clauses to ensure adequate protection.
8. Data Retention
We retain personal data only for as long as necessary to provide Services, comply with legal obligations, resolve disputes, and enforce agreements. Retention periods vary by data type; transactional records and tax-related information may be retained longer as required by law.
9. Security
We implement reasonable technical and organizational measures to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure or access. These measures include encryption, access controls, network security, and regular security assessments. However, no system is completely secure; if a breach occurs we will notify affected individuals and authorities as required by law.
10. Your Rights (Data Subject Rights)
Depending on your jurisdiction, you may have the following rights regarding your personal data:
- Access: request a copy of the personal data we hold about you.
- Rectification: correct inaccurate or incomplete data.
- Deletion (Right to be forgotten): request deletion where permitted by law.
- Restriction: request limited processing in certain circumstances.
- Data portability: receive a machine-readable copy of your personal data.
- Object: object to processing based on legitimate interests or direct marketing.
- Withdraw consent: withdraw consent to processing where consent was the legal basis.
To exercise these rights, contact us using the details in the Contact Us section below. We may need to verify your identity before fulfilling requests.
11. Children's Privacy
Our Services are not intended for children under 13 (or the minimum age in your jurisdiction). We do not knowingly collect personal data from children. If we become aware we have collected such data, we will promptly delete it. If you believe we have collected data from a child, contact us to request removal.
12. California Privacy Rights (CCPA)
If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information is collected, the right to delete personal information (subject to exceptions), and the right to opt-out of the sale of personal information. To submit a request, contact us through the details below. For verification purposes, we may request additional information.
13. Changes to This Policy
We may update this Policy periodically. We will post the updated Policy with a revised "Last updated" date. Continued use of the Services after changes implies acceptance of the updated Policy.
14. Contact Us
If you have questions about this Policy or wish to exercise your rights, contact our data protection team:
Email: privacy@yourmarketplace.com
Address: Your Marketplace Pvt. Ltd., 123 Business Rd., City, Country
Data Protection Officer (DPO): If applicable, contact our DPO at dpo@yourmarketplace.com
Last updated: January 26, 2026
Notes: This Privacy Policy is provided for general informational purposes and should be reviewed by legal counsel to ensure compliance with local laws and regulations, particularly if your business operates in multiple jurisdictions.