Privacy Policy

Last updated: May 14, 2026

1. Information We Collect

Information you provide:

  • Account information (name, email address, password)
  • Profile information (location, bio, profile photo)
  • Listing information (item descriptions, photos, pricing)
  • Messages sent to other users
  • Offers and transaction details
  • Reviews and ratings
  • Feedback and support requests

Information collected automatically:

  • IP address and device information
  • Browser type and operating system
  • Pages visited and features used
  • Date and time of visits
  • Referring website

Information from third parties:

  • If you sign in with Google, Facebook, or Apple, we receive your name, email, and profile picture from those services

2. How We Use Your Information

  • Provide, maintain, and improve the Service
  • Match items using our algorithm
  • Facilitate communication between buyers and sellers
  • Process offers and transactions
  • Send transactional emails (verification, offer notifications)
  • Detect and prevent fraud, abuse, and security threats
  • Analyze usage to improve features
  • Respond to support requests

3. Information Sharing

We do not sell your personal information. We share your information only in the following circumstances:

  • With other users: Your name, profile photo, location, listings, and reviews are visible to other users. Messages are visible only to conversation participants.
  • Service providers: We use third-party services for hosting (Vercel), database (Supabase), email (SendGrid), and image storage. These providers process data on our behalf under contractual obligations.
  • Legal requirements: We may disclose information if required by law, regulation, or legal process.
  • Safety: We may share information to protect the rights, safety, or property of LonelyLeft, our users, or the public.

4. Data Retention

We retain your information for as long as your account is active or as needed to provide the Service. If you delete your account, we will delete your personal information within 30 days, except where retention is required by law or for legitimate business purposes (such as fraud prevention).

5. Data Security

We implement appropriate technical and organizational measures to protect your information, including:

  • Encryption in transit (HTTPS/TLS)
  • Password hashing using bcrypt
  • CSRF protection on all mutation endpoints
  • Rate limiting to prevent abuse
  • Secure session management with JWT tokens

However, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

6. Your Rights

You have the right to:

  • Access your personal information
  • Update your information through account settings
  • Delete your account and associated data
  • Export your data upon request
  • Opt out of marketing communications

To exercise these rights, contact us at privacy@lonelyleft.com.

7. Cookies

We use essential cookies for authentication and session management. These are necessary for the Service to function and cannot be disabled. We do not use advertising or tracking cookies.

8. Children's Privacy

The Service is not intended for users under 18 years of age. We do not knowingly collect information from children. If we learn that we have collected information from a child under 18, we will delete it promptly.

9. Changes to This Policy

We may update this policy from time to time. We will notify users of material changes by posting the updated policy on this page. Your continued use of the Service after changes constitutes acceptance of the updated policy.

10. Contact

For questions about this privacy policy or your data, contact us at privacy@lonelyleft.com.