Privacy Policy

Account info: Your name, email, and password (hashed — we can't read it). This is the minimum needed to run your account.

Listing data: Photos, descriptions, prices, and condition info you provide when listing a fragrance. This is public — other users see it.

Transaction data: Purchase amounts, shipping addresses, tracking numbers, and dispute details. We need this to process payments and protect both buyers and sellers.

Messages: Conversations between buyers and sellers. We don't read them unless there's a dispute or abuse report.

Usage data: Basic analytics like page views and feature usage. No fingerprinting or cross-site tracking.

• Credit card numbers (Stripe handles all payment data)
• Your browsing history outside ScentSwaps
• Location tracking beyond your shipping address
• Data from your contacts, camera, or other apps

To run the marketplace: Processing orders, facilitating payments, enabling messaging, managing disputes.

To keep you safe: Fraud detection, counterfeit prevention, dispute resolution. If someone tries to scam you, your transaction data helps us catch it.

To communicate with you: Order updates, shipping notifications, dispute resolutions. We also send marketing emails (you can unsubscribe anytime).

To improve ScentSwaps: Understanding which features people use helps us build a better product.

Other users: Your name, avatar, rating, and listings are public. Your email and shipping address are only shared with the other party in a transaction (buyer gets seller's name, seller gets buyer's shipping address).

Stripe: Handles all payment processing. They have their own privacy policy. We chose Stripe because they're the gold standard for payment security.

Shippo: If you buy shipping labels through ScentSwaps, Shippo processes the label and tracking. They see the shipping address but nothing about the payment.

Nobody else. We don't sell your data, share it with advertisers, or give it to data brokers. Period.

Active account data: kept while your account is active.

Transaction records: kept for 7 years (legal requirement for financial records).

Deleted accounts: we anonymize your personal info immediately. Transaction history stays (anonymized) for the 7-year legal requirement.

You can:

• Download your data — email us and we'll send you everything we have
• Delete your account — go to Settings, click Delete Account
• Correct your info — update your profile anytime
• Unsubscribe from emails — every email has an unsubscribe link

We use a session cookie to keep you logged in. That's it. No tracking cookies, no third-party cookies, no cookie banners because we don't need them.

Why we're proud of this: Most sites use 20+ cookies. We use one. It expires when you log out.

Passwords are hashed with bcrypt (industry standard). All data is transmitted over HTTPS. Auth tokens are stored in httpOnly cookies (JavaScript can't access them). We use conditional writes and idempotency guards to prevent duplicate charges.

If we ever discover a data breach, we'll notify affected users within 72 hours. We'd rather be transparent and fix the problem than try to hide it.