Privacy Policy

1. Introduction

Welcome to [COMPANY NAME] ("we," "our," or "us"). We operate the website [WEBSITE URL] (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our Service.

We are committed to protecting your privacy and ensuring you have a positive experience on our Service. This policy complies with the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and other applicable data protection laws.

2. Information We Collect

2.1 Personal Information You Provide

We collect information that you voluntarily provide to us when you:

• Register for an account (name, email address, password)
• Claim a lender profile (additional business information)
• Write reviews (name, email, review content)
• Contact us (name, email, message content)
• Subscribe to our newsletter (email address)

2.2 Information Collected Automatically

When you access our Service, we automatically collect certain information:

• Log data (IP address, browser type, pages visited, time spent)
• Device information (device type, operating system)
• Cookies and similar tracking technologies

2.3 Information from Third Parties

If you choose to sign in using OAuth providers:

• Google: name, email address, profile picture
• LinkedIn: name, email address, profile picture, professional information

3. How We Use Your Information

We use the information we collect for the following purposes:

• Account Management: To create and manage your account
• Service Delivery: To provide and maintain our Service
• Communication: To send you updates, newsletters (with your consent)
• Reviews: To display and manage lender reviews
• Security: To detect and prevent fraud and abuse
• Analytics: To understand how users interact with our Service
• Legal Compliance: To comply with legal obligations

4. Legal Basis for Processing (GDPR)

If you are in the European Economic Area (EEA), our legal basis for processing your personal data includes:

• Consent: You have given clear consent for us to process your data for a specific purpose
• Contract: Processing is necessary for a contract we have with you
• Legal Obligation: Processing is necessary to comply with the law
• Legitimate Interests: Processing is necessary for our legitimate interests (e.g., fraud prevention)

5. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to track activity on our Service. See our Cookie Policy for detailed information.

Types of cookies we use:

• Essential Cookies: Required for authentication and security
• Analytics Cookies: Help us understand how you use our Service (with your consent)
• Marketing Cookies: Used to deliver relevant advertisements (with your consent)

6. How We Share Your Information

We do not sell your personal information. We may share your information in the following circumstances:

• With Your Consent: When you explicitly agree to share information
• Service Providers: With third-party vendors who help us operate our Service (hosting, analytics)
• Legal Requirements: When required by law or to protect our rights
• Business Transfers: In connection with a merger, acquisition, or sale of assets
• Public Information: Reviews and lender profiles are publicly visible

7. Your Data Protection Rights

7.1 GDPR Rights (EEA Residents)

If you are in the EEA, you have the following rights:

• Right to Access: Request copies of your personal data
• Right to Rectification: Request correction of inaccurate data
• Right to Erasure: Request deletion of your data
• Right to Restrict Processing: Request limitation of data processing
• Right to Data Portability: Receive your data in a machine-readable format
• Right to Object: Object to processing of your data
• Right to Withdraw Consent: Withdraw consent at any time

7.2 CCPA Rights (California Residents)

If you are a California resident, you have the following rights:

• Right to Know: What personal information we collect, use, and share
• Right to Delete: Request deletion of your personal information
• Right to Opt-Out: Opt-out of the sale of personal information (we do not sell data)
• Right to Non-Discrimination: Equal service regardless of exercising your rights

7.3 How to Exercise Your Rights

To exercise any of these rights:

• Visit your Privacy Dashboard
• Email us at [PRIVACY EMAIL]
• We will respond within 30 days (GDPR) or 45 days (CCPA)

8. Data Retention

We retain your personal information only as long as necessary for the purposes set out in this Privacy Policy:

• Active Accounts: Data retained while your account is active
• Deleted Accounts: Most data deleted within 30 days; some data retained for legal compliance
• Reviews: May be retained after account deletion (anonymized)
• Legal Requirements: Some data retained to comply with legal obligations

9. Data Security

We implement appropriate technical and organizational measures to protect your data:

• Encryption of data in transit (HTTPS/TLS)
• Password hashing using industry-standard algorithms (bcrypt)
• Regular security assessments
• Access controls and authentication
• However, no method of transmission over the Internet is 100% secure

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place, including:

• Standard Contractual Clauses approved by the European Commission
• Adequacy decisions by the European Commission
• Your explicit consent

11. Children's Privacy

Our Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

12. Third-Party Links

Our Service may contain links to third-party websites. We are not responsible for the privacy practices of these websites. We encourage you to read their privacy policies.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by:

• Posting the new Privacy Policy on this page
• Updating the "Last Updated" date
• Sending you an email notification (for material changes)

14. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data protection rights, please contact us: