Obscure Find – Privacy Policy Privacy

1. Information We Collect

• Account & Profile: email, password (hashed), username, name, phone, country, language, currency, timezone, preferences.
• Transaction: bids, watchlist/reactions, orders, shipping details, payout preferences for Finders.
• Content: messages you send us, Finder uploads (titles, stories, media, tags, provenance notes).
• Usage & Device: pages viewed, session events (e.g., “view lot,” “swipe bid”), timestamps, IP address, user agent, referral URL, approximate location inferred from IP.
• Cookies/Local Storage: session tokens, language choice, and settings to keep the experience smooth.

2. Sources of Information

• You: information you provide during signup, profile edits, bidding, checkout, or Finder submissions.
• Automatically: collected via cookies, logs, and similar technologies when you use the Services.
• Service Providers & Partners: payment processors, shipping carriers, email/SMS providers, and analytics tools.

3. How We Use Information

• Provide, operate, and improve the Services, including auctions, personalization, and support.
• Process transactions, shipping, notifications (e.g., outbid, ending soon, win notices).
• Secure our Services: prevent fraud, abuse, and shill bidding; enforce Terms of Sale.
• Communicate with you: transactional emails/SMS, service announcements, and—if you opt in—marketing updates.
• Research & development: analytics to tune story, timing, and feature decisions (in aggregate or de-identified form where possible).
• Comply with legal obligations and respond to lawful requests.

4. Legal Bases (EEA/UK)

Where applicable law requires a legal basis, we rely on: (a) performance of a contract (providing the Services and transactions), (b) legitimate interests (security, fraud prevention, product improvement), (c) consent (optional cookies/marketing), and (d) compliance with legal obligations.

5. Cookies & Similar Technologies

• Essential: login sessions, security, load balancing, language/locale preferences.
• Functional/Analytics: measure engagement (e.g., swipe depth, drop conversion) to improve experience.

You can control cookies via your browser settings. Disabling essential cookies may break core features like sign-in and bidding.

6. Analytics & Communications

• We use privacy-aware analytics to understand usage patterns and performance. Data may include IP address and user agent with retention limits.
• Transactional messages (e.g., receipts, outbid alerts) are part of the service and cannot be unsubscribed from.
• Marketing: where permitted and if you opt in, we may send updates about drops or programs. You can opt out at any time via the message footer or Account settings.

7. Payments & Shipping

• Payments: processed by third-party providers (e.g., credit card processors and PayPal). We receive limited payment metadata (e.g., status, last 4 digits, timestamps) but do not store full card numbers.
• Shipping: we share necessary details (name, address, phone, email) with carriers/fulfillment partners to deliver your order and provide tracking.

8. How We Share Information

• Service Providers: hosting, storage (e.g., S3/CDN), customer communications, analytics, security, payment, and shipping vendors under contract.
• Finders: when an item is consigned, we may share shipping details necessary to fulfill your order.
• Legal: to comply with law, enforce our terms, protect rights, safety, and prevent fraud/abuse.
• Business Transfers: in connection with a merger, acquisition, or asset sale, subject to this Policy or a successor policy with comparable protections.

We do not sell your personal information. We do not share it for cross-context behavioral advertising.

9. Retention

We keep information only as long as necessary for the purposes described, including legal, accounting, and reporting requirements (e.g., order records). Session and analytics data are retained for limited periods consistent with operational needs.

10. Security

• HTTPS/TLS across our properties; hardened infrastructure; access controls and monitoring.
• Passwords are hashed (e.g., Argon2/bcrypt). Sensitive media EXIF is stripped on upload.
• No system can be 100% secure; we work to protect your data and encourage strong, unique passwords and up-to-date devices.

11. Your Privacy Choices & Rights

• Access/Update: view and edit your profile, addresses, and preferences in My Account.
• Marketing Opt-Out: use unsubscribe links or Account settings.
• Delete Account: request deletion; we’ll delete or de-identify personal data unless retention is required by law or for legitimate business purposes (e.g., order, tax, fraud records).
• EEA/UK/Other Regions: you may have rights to access, correct, delete, restrict, or object to processing, and data portability. You can also withdraw consent where processing relies on consent.

To exercise rights, contact us using the details below. We may need to verify your identity and account ownership.

12. Children’s Privacy

The Services are not directed to children under 13 (or under the age required by your jurisdiction). We do not knowingly collect personal information from children. If you believe a child has provided us personal information, contact us to request deletion.

13. International Transfers

We operate primarily in the United States and may transfer information to the U.S. and other countries where our service providers operate. Where required, we implement appropriate safeguards (e.g., contractual clauses) to protect your information.

14. Changes to this Policy

We may update this Policy to reflect changes to our practices. We will post the updated date at the top of this page. If changes are material, we may provide additional notice (e.g., email or in-app message).

15. Contact Us