Privacy Policy
Last updated: January 25, 2025
At NearMint, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website, mobile applications, and services (collectively, the "Service").
1. Introduction
This Privacy Policy applies to all users of NearMint's trading card collection tracking, price monitoring, and selling services. By using our Service, you consent to the data practices described in this policy.
Please also review our Terms of Service, which governs your use of the Service.
2. Information We Collect
Personal Information
When you create an account, we collect information from your Google account:
- Name: Your display name from Google
- Email address: Used for account identification and notifications
- Profile picture: Your Google profile image (optional)
Collection Data
We collect information about your trading card collection:
- Cards you add to your collection (names, sets, conditions, quantities)
- Purchase prices you enter for cost tracking
- Grading information (company, grade, certification numbers)
- Collection organization (folders, custom categories)
Card Scan Images
When you use our AI card scanning feature, images are temporarily processed on our servers for card identification. These images are not permanently stored after processing is complete.
Usage Data
We automatically collect certain information about your device and usage:
- Search profiles and alert preferences
- Stock monitor configurations
- Device type, browser type, and operating system
- IP address and approximate location (country/region)
- Pages visited, features used, and time spent
- Referring website or app
Payment Information
If you subscribe to PRO, payment processing is handled by Stripe. We do not store your credit card numbers or bank account information on our servers. We only receive:
- Last 4 digits of your card (for display purposes)
- Card type (Visa, Mastercard, etc.)
- Billing address (for fraud prevention)
- Subscription status and history
3. How We Use Your Information
We use the information we collect to:
- Provide, maintain, and improve our Service
- Process your transactions and manage your subscription
- Send you price alerts, stock notifications, and other requested communications
- Calculate and display collection values and price trends
- Identify cards from scanned images
- Create and manage your eBay listings (if connected)
- Personalize your experience and provide recommendations
- Analyze usage patterns to improve features
- Detect and prevent fraud, abuse, and security issues
- Comply with legal obligations
- Communicate with you about updates, promotions, and support
4. Third-Party Services
We use the following third-party services to operate NearMint:
| Service | Purpose | Data Shared |
|---|---|---|
| Google OAuth | Authentication | Email, name, profile picture |
| Stripe | Payment processing | Payment details, billing address |
| eBay API | Price data, selling | Seller account info (if connected) |
| SendGrid | Email notifications | Email address, notification content |
| Discord | Webhook notifications | Webhook URL (user-provided) |
| Vercel | Hosting | Access logs, analytics |
Each third-party service has its own privacy policy governing their data practices. We encourage you to review them.
5. Data Sharing
We do not sell your personal information. We may share your information only in the following circumstances:
- With your consent: When you explicitly authorize us to share information
- Service providers: With third-party vendors who assist in operating our Service (as listed above)
- Legal requirements: When required by law, court order, or governmental authority
- Protection of rights: To protect the safety, rights, or property of NearMint, our users, or the public
- Business transfers: In connection with a merger, acquisition, or sale of assets, where user data may be transferred
- Community features: Activity feed data, badges, and leaderboard rankings may be visible to other users (unless you set your collection to private)
6. Data Security
We implement appropriate technical and organizational measures to protect your information:
- Encryption of data in transit (HTTPS/TLS)
- Encryption of sensitive data at rest
- Secure authentication via Google OAuth
- Regular security assessments and monitoring
- Limited access to personal data by authorized personnel
- Payment information handled by PCI-compliant Stripe
However, no method of transmission over the Internet is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.
7. Data Retention
We retain your information for as long as your account is active or as needed to provide you with our Service. After account deletion:
- Personal data is deleted within 30 days
- Collection data is permanently deleted
- Backup copies may persist for up to 90 days
- Anonymized analytics data may be retained indefinitely
- Data required for legal compliance may be retained as required by law
8. Children's Privacy
NearMint is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we discover that a child under 13 has provided us with personal information, we will promptly delete it.
Users between 13 and 18 may use the Service with parental consent. Parents or guardians who believe their child has provided personal information without consent should contact us at support@nearmint.cards.
9. Your Rights
Depending on your location, you may have the following rights regarding your personal data:
- Access: Request a copy of the personal information we hold about you
- Correction: Request correction of inaccurate or incomplete information
- Deletion: Request deletion of your personal information
- Export: Download your collection data in CSV format
- Restriction: Request limits on how we process your data
- Objection: Object to certain processing activities
- Withdrawal of consent: Withdraw consent for processing based on consent
To exercise these rights, contact us at support@nearmint.cards. We will respond to your request within 30 days.
11. California Privacy Rights (CCPA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):
- Right to Know: Request disclosure of personal information collected, used, and shared
- Right to Delete: Request deletion of your personal information
- Right to Opt-Out: Opt out of the sale of personal information (note: we do not sell personal information)
- Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights
To exercise these rights, contact us at support@nearmint.cards or through your account settings. We may verify your identity before processing your request.
12. International Data Transfers
NearMint is operated from the United States. If you access the Service from outside the United States, your information may be transferred to, stored, and processed in the United States or other countries where our service providers operate.
By using the Service, you consent to the transfer of your information to countries that may have different data protection laws than your country of residence.
For users in the European Economic Area (EEA), we rely on Standard Contractual Clauses approved by the European Commission for international data transfers.
13. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by posting the new policy on this page and updating the "Last updated" date.
For significant changes, we may also send you an email notification. We encourage you to review this Privacy Policy periodically for any updates.
14. Contact Information
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
NearMint - Privacy Inquiries
Email: support@nearmint.cards
We will respond to privacy-related inquiries within 30 days.