DigiAucta Logo
Data Protection

Privacy Policy

Last Updated: 4/7/2026

1. Information We Collect

When you use DigiAucta, we may collect the following types of information:

  • Personal Data: Email address, first name, last name, and contact details provided during registration.
  • Authentication Data: Data from third-party OAuth providers (e.g., Google or GitHub) if you choose to sign in using those services.
  • Transaction Data: Bidding history, auction purchases, fixed-price purchases, and payment status (all sensitive cards are processed strictly via Stripe Checkout).
  • Digital Asset Data: URLs, file checksums, and encrypted text uploaded securely for the purpose of instant product delivery.
  • Community Interactions: Public Q&A questions, direct messages between buyers and sellers, curated Collections, and public seller Reviews.
  • Usage Data: Information on how you interact with the marketplace, IP addresses, and browser types.

2. How We Use Your Data

Your information is used to provide, maintain, and improve the DigiAucta marketplace. Specifically, we use your data to:

  • Facilitate user authentication and account management.
  • Process transactions and provide secure escrow environments.
  • Send critical notifications regarding your auctions and bids (e.g., outbid notifications).
  • Deliver customer support and respond to your queries.

3. Third-Party Services

We partner with trusted third-party services to operate the platform securely. Your data may be shared with:

  • Stripe: For processing payments and managing seller payouts. Stripe handles your sensitive financial data independently.
  • Supabase: For database hosting and secure data storage.
  • Resend: For delivering transactional emails and notifications.

4. Data Security

The security of your data is paramount. We employ industry-standard encryption, secure server architecture, and authorized access controls to prevent unauthorized access or disclosure of your personal information.

5. Your Rights

Depending on your location (e.g., GDPR in Europe, CCPA in California), you may have the right to request access to, correction of, or deletion of your personal data. Please contact us via our Contact Page to exercise these rights.

Disclaimer: This is a boilerplate Privacy Policy. It is recommended to consult a legal professional to ensure full compliance with regional data processing laws like GDPR or CCPA.