Privacy Policy

1. Information We Collect

We collect information you provide directly, information collected automatically when you use the Services, and information received from third parties.

1.1 Account information

• Name, email, password (hashed), date of birth, phone number (optional) — to create and manage your account, verify eligibility, and communicate with you

1.2 Profile information

• Username, profile photo, bio, location (city/state), seller plan tier — to display your public profile on the marketplace

1.3 Identity verification

• Government-issued ID (via Stripe Identity), selfie verification, address verification — to comply with KYC/AML regulations, prevent fraud, and enable seller payouts

1.4 Transaction data

• Order history, items purchased/sold, prices, shipping addresses, dispute records — to process transactions, calculate fees, facilitate disputes, and comply with tax laws

1.5 Payment information

• Last 4 digits of payment card, payment method type, bank account info (for sellers via Stripe Connect). Full payment card numbers are processed by Stripe and never stored by ReNew Market

1.6 Listing content

• Photos, descriptions, prices, condition assessments, sustainability badges — to display listings and provide search/discovery

1.7 Communications

• Messages between buyers and sellers, support tickets, reviews, comments — to facilitate transactions, resolve disputes, and improve support

1.8 Device and usage data

• IP address, browser type, device identifiers, pages visited, time on site, click data, crash logs — for security, fraud prevention, analytics, and service improvement

1.9 Location data

• Approximate location based on IP address; precise location only if you opt in for local pickup features

1.10 Cookies & marketing data

• Session/preference/analytics cookies; email open and click rates, marketing preferences, opt-in/opt-out status

1.11 Information from third parties

We receive information from identity verification providers (Stripe Identity), payment processors (Stripe), shipping carriers (USPS, UPS, FedEx, etc.), fraud detection services, analytics providers (Vercel Analytics), social login providers (if you sign in with Google/Apple), and public sources such as social media profiles you have made public.

1.12 Information about minors

Our Services are not directed to children under 18, and we do not knowingly collect personal information from anyone under 18. If we learn we have collected such information, we will delete it promptly. Contact privacy@renewmkt.com if you believe we have collected information from a minor.

2. How We Use Your Information

2.1 To provide and operate the Services

• Create and maintain your account; process transactions and payments through Stripe
• Display listings, profiles, and marketplace content; enable buyer-seller messaging
• Process returns, refunds, and disputes through the Protection Program
• Calculate and remit applicable taxes; provide customer support

2.2 To protect the platform and prevent fraud

• Verify identities through Stripe Identity; detect and prevent fraud, account takeovers, and abuse
• Investigate violations of our Terms; enforce policies including suspension and termination
• Comply with AML and KYC regulations

2.3 To improve and personalize the Services

• Analyze interaction patterns; improve search, recommendations, and features
• Personalize your experience, including recommended listings and sellers

2.4 To communicate with you

• Send transactional emails, service announcements, and (opt-in) marketing communications
• Respond to inquiries and support requests

2.5 For legal and compliance purposes

• Comply with laws, court orders, and government requests; issue tax documents (IRS Form 1099-K) to qualifying sellers
• Resolve disputes, enforce agreements, and protect the rights, property, or safety of ReNew Market, our users, or others

3. How We Share Your Information

We do not sell your personal information in exchange for monetary compensation. We share personal information only as described below:

3.1 With other users of the marketplace

When you make a purchase, we share your name, shipping address, email, and order details with the seller to fulfill the order (and vice versa for sales). Sellers and buyers are bound by Section 12 of our Terms, which restricts use of this information. Public profile information is visible to other users.

3.2 With service providers

Contractually bound to protect your information and use it only as specified: Stripe (payments, identity, payouts), Supabase (database & authentication), Vercel (hosting & CDN), Resend (email), Google Workspace (business email), Cloudflare (security/CDN where applicable), shipping carriers (USPS, UPS, FedEx, DHL), and fraud detection/analytics providers.

3.3 For legal reasons

We may disclose information to comply with laws, court orders, or government requests; enforce our policies; investigate fraud or illegal activity; protect rights, property, or safety; or respond to law enforcement in accordance with applicable law.

3.4 In connection with business transactions

If ReNew Market is involved in a merger, acquisition, reorganization, asset sale, or bankruptcy, your information may be transferred. We will notify you of such transfers and your choices in advance.

3.5 With your consent

We may share your information with other parties when you give us explicit consent.

4. Cookies and Tracking Technologies

• Strictly necessary cookies — required for the Services to function (authentication, security, session). Cannot be disabled.
• Functional cookies — remember your preferences and settings.
• Analytics cookies — help us understand how users interact with the platform (Vercel Analytics).
• Marketing cookies — used to deliver relevant advertising and measure campaigns (only with your consent where required by law).

You can manage cookies through your browser settings. For users in jurisdictions requiring consent for non-essential cookies (such as the EU/UK), we display a cookie banner allowing you to accept, reject, or customize preferences.

5. Your Privacy Rights

5.1 Rights available to all users

Regardless of location, you may access the personal information we hold about you, correct inaccurate information, delete your account and associated information (subject to legal retention), opt out of marketing, and disable cookies through your browser. Contact privacy@renewmkt.com; we respond within 30 days.

5.2 California residents (CCPA/CPRA)

You have the right to know what we collect/use/share and its sources; to delete; to correct; to opt out of "sharing" for cross-context behavioral advertising; to limit use of sensitive personal information; and to non-discrimination for exercising your rights. We do not sell personal information for monetary compensation. Use the "Do Not Sell or Share My Personal Information" link in the footer or email privacy@renewmkt.com.

5.3 Virginia, Colorado, Connecticut, Utah, and other states

Residents of Virginia, Colorado, Connecticut, Utah, Texas, Oregon, Montana, and other states with comprehensive privacy laws have rights to access, correct, delete, and opt out of certain processing. Contact privacy@renewmkt.com.

5.4 Appeals

If we deny your privacy request, email privacy@renewmkt.com with "Privacy Appeal" in the subject line. We respond to appeals within 60 days.

6. Data Retention

We retain personal information for as long as your account is active and as needed to provide the Services. After account closure we retain certain information to:

• Comply with legal obligations (tax records typically retained 7 years)
• Resolve disputes and enforce agreements (typically 4 years)
• Prevent fraud and abuse (typically 7 years for KYC/AML records)
• Maintain transaction records required for accounting and audit

After legal retention periods expire, we delete or anonymize your personal information. Aggregated, de-identified data may be retained indefinitely.

7. Data Security

• Encryption of data in transit using TLS 1.2 or higher; encryption of sensitive data at rest
• Password hashing using industry-standard algorithms; optional multi-factor authentication
• Access controls limiting employee access; regular security audits and vulnerability assessments
• Identity verification through Stripe Identity; payment processing through PCI-DSS compliant Stripe

No security system is impenetrable. While we work to protect your information, we cannot guarantee absolute security. You are responsible for maintaining the confidentiality of your credentials and notifying us of any unauthorized access.

8. International Data Transfers

ReNew Market is based in the United States, and our service providers may process data in the U.S. or other countries. If you access the Services from outside the U.S., your information will be transferred to, stored in, and processed in the United States. By using the Services, you consent to this transfer. For EU/EEA/UK users, see the International Addendum to our Terms of Service for additional protections including Standard Contractual Clauses (SCCs).

9. Children's Privacy

Our Services are not directed to anyone under 18 years of age. We do not knowingly collect personal information from children under 18. If you are a parent or guardian and believe your child has provided personal information, contact privacy@renewmkt.com and we will delete it. We comply with the Children's Online Privacy Protection Act (COPPA) and similar state laws.

10. Marketing Communications

You can opt out of marketing emails at any time by clicking "Unsubscribe" in any marketing email, updating your account settings, or contacting privacy@renewmkt.com. You cannot opt out of transactional emails (order confirmations, shipping notifications, password resets, security alerts) while your account is active, as these are necessary to provide the Services.

11. Third-Party Links and Services

Our Services may contain links to third-party websites, products, or services. We are not responsible for their privacy practices. We encourage you to review the privacy policies of any third party before providing them with your information.

12. Do Not Track Signals

Because there is no industry standard for how to respond to "Do Not Track" (DNT) browser signals, we currently do not respond to DNT signals. We will update this policy if a clear industry standard is established.

13. Changes to This Privacy Policy

When we make material changes, we will update the "Last Updated" date, notify you by email at the address associated with your account, post a notice on our website, provide at least 14 days' notice before changes take effect, and obtain your consent where required by law. If you do not agree to the updated policy, you may close your account.

14. Contact Us

ReNew Market LLC · Attn: Privacy Officer
Email: privacy@renewmkt.com · Legal inquiries: legal@renewmkt.com
Website: renewmkt.com

For EU/EEA/UK users: contact our Data Protection Officer at privacy@renewmkt.com. You also have the right to lodge a complaint with your local data protection authority. For California residents: you may designate an authorized agent (with proof of written authorization) to make privacy requests on your behalf.