Privacy Policy

Pinsdex ("we", "our", "us") is committed to protecting your privacy. This policy explains how we collect, use, retain, and safeguard your information.

We take children's privacy seriously:

• Users under 13 use Explorer Mode, which does not require account creation.
• In guardian-consent regions (including EU/UK, Canada, and Brazil), users aged 13-15 require parent or guardian consent before account access is enabled.
• Website account sign-in and account creation are restricted to users age 13 or older, with additional parent/guardian consent requirements for users aged 13-15 in guardian-consent regions (including EU/UK, Canada, and Brazil).
• We do not knowingly collect personal information from children under 13.
• Explorer Mode stores data locally on the device only and does not send personal data to our servers.
• AI pin scanning is disabled in Explorer Mode.
• No advertising is shown to users in Explorer Mode.
• No analytics or tracking is performed for users in Explorer Mode.

If you believe we have inadvertently collected information from a child under 13, please contact us at tyler@pinsdex.com.

For users with account access (13+ in most regions, and users aged 13-15 in guardian-consent regions with parent/guardian consent), we collect:

• Account information: Email address, display name, profile picture (optional).
• Collection data: Pins you mark as owned, wanted, or traded.
• Usage data: Features used, scan history, and activity within the app.
• Device token: If you enable push notifications, we may store an Apple Push Notification (APNs) device token to deliver notifications to your device.
• User-generated content: Images you upload and contributions to pin data.
• Import data: CSV files you upload for collection tracking. This data is stored privately in your account and is not used for public database features, search indexing, recommendations, AI training, or analytics.
• Website essential storage: we store basic local settings (such as theme and consent choices) required for core website behavior and security.

We use your information to:

• Provide and improve our services.
• Sync your collection across devices.
• Enable social features (following, activity feed).
• Process AI scan requests.
• Moderate content for safety.
• Send push notifications if you enable them.
• Communicate important updates.

We do not sell your personal information. We may share information with:

• Service providers who help operate our app (cloud hosting, AI services, ads).
• Law enforcement when required by law.
• Other users: Your public profile, collection (if public), and activity, based on your privacy settings.

We implement security measures intended to protect your information, including:

• Encrypted data transmission (HTTPS/TLS).
• Secure cloud infrastructure (Supabase).
• Image moderation to help prevent harmful content.
• Row-level security policies on our database.

Pinsdex uses the following third-party services:

• Supabase: database, authentication, and cloud storage.
• Google Gemini: AI pin identification. Pin images you scan are sent to Google's servers for processing and may be retained per Google's API terms.
• AWS Rekognition: content safety moderation for uploaded images.
• Google AdMob: advertising for eligible free-tier users aged 13+.
• Apple StoreKit: subscription and in-app purchase processing.
• eBay Partner Network: price lookups. Only search terms are sent; no personal data is shared with eBay. Some marketplace links may be affiliate links.
• Apple Push Notification service (APNs): delivering push notifications if you enable them.

Each service has its own privacy policy governing data use.

The app shows an in-product AI disclosure before first scan use and recurring scan-specific warnings in scan results.

For users 13 and older on the free tier:

• We display ads through Google AdMob.
• On iOS, we may request App Tracking Transparency (ATT) permission before using data for personalized advertising or measurement.
• If you decline tracking, ads may be less personalized and may be limited or disabled in certain regions.
• For users in the EEA, UK, or Switzerland, ad serving is disabled unless consent is obtained.
• Premium subscribers (Pro/Collector) do not see ads.
• Users in Explorer Mode (under 13) never see ads.

You have the right to:

• Access your personal data.
• Correct inaccurate data.
• Delete your account and associated data.
• Export your collection data (CSV) and request an export of your personal data (JSON).
• Opt out of analytics tracking via Settings.
• Update or withdraw website consent choices at any time via Cookie Preferences in the footer.
• Opt out of marketing communications.
• Object to data processing based on legitimate interest.

To exercise these rights, use the in-app settings or contact tyler@pinsdex.com.

We retain your data as long as your account is active. Upon account deletion, personal data is removed or anonymized per system design and legal requirements.

• Account data is retained while your account is active.
• Upon account deletion, personal data is removed or anonymized.
• Operational logs are retained only as needed for security and reliability purposes.
• Some user-generated content you contributed to the community database may remain, but will no longer be linked to your account.

We use essential local storage on the website for core functionality (for example, authentication, theme preference, and saved consent choices). Optional analytics and ad personalization are disabled by default and remain disabled unless you opt in.

• You can change or withdraw consent any time using Cookie Preferences in the site footer.
• No optional analytics or ad-related tracking is enabled until consent is granted.
• You can disable analytics tracking in app Settings at any time.
• Explorer Mode (under 13) never collects analytics.
• When ads are enabled and you allow tracking (ATT), our advertising partners may use device identifiers (such as IDFA) to personalize ads and measure performance.
• No third-party analytics services (Google Analytics, etc.) are used on our website.

Pinsdex is operated from the United States. If you are located in the European Economic Area (EEA), UK, Switzerland, or Brazil:

• Your data may be transferred to and processed in the United States.
• For EEA/UK/Switzerland transfers, we rely on Standard Contractual Clauses and service provider agreements as the legal basis for these transfers where appropriate.
• You have the right to lodge a complaint with your local data protection supervisory authority.
• Brazil users may exercise rights under LGPD, including confirmation of processing, access, correction, portability, and deletion or anonymization where applicable.
• Brazil users may also file complaints with the ANPD.

• Account data: Performance of contract (providing the service).
• Users aged 13-15 in guardian-consent regions (including EU/UK, Canada, and Brazil): Parent/guardian consent before account access (GDPR Art. 8 where applicable).
• Brazil (LGPD): Processing relies on applicable legal bases including contract performance, legal obligations, legitimate interests, and consent where required.
• Essential website storage: Legitimate interest (security and core functionality).
• Optional website analytics and ad personalization: Consent.
• App analytics: Legitimate interest (improving the app) — you can opt out in Settings.
• Image moderation: Legitimate interest (content safety).
• AI pin identification: Consent (you initiate each scan).
• Advertising: Consent (via ATT prompt).

We may update this policy periodically. We will notify you of significant changes through the app. Continued use after changes constitutes acceptance.

For privacy-related questions or concerns:

tyler@pinsdex.com