Privacy Policy

Last Updated: February 15, 2026

Introduction

SalesTrakkr ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our sales analytics platform and unified dashboard service.

By using SalesTrakkr, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with our policies and practices, please do not use our service.

Information We Collect

Account Information

When you create an account, we collect:

  • Email address
  • Password (encrypted and hashed)
  • Account creation date
  • Subscription and billing information

Platform Connection Data

When you connect e-commerce platforms to SalesTrakkr using OAuth authentication, we collect and store:

Etsy Data

When you connect your Etsy shop, we collect transaction data through Etsy's API, including:

  • Order details (order ID, receipt ID, timestamps)
  • Transaction amounts and currency
  • Product information (listing IDs, product names, quantities)
  • Customer information (email addresses, country/location)
  • Shop information (shop ID, username)

Your Etsy OAuth access tokens and refresh tokens are encrypted using AES-256-GCM encryption and stored securely. We use read-only API scopes (transactions_r shops_r) and cannot modify your Etsy shop, listings, or orders.

Other Platform Data (Stripe, eBay, Gumroad, etc.)

Similar to Etsy, when you connect other e-commerce platforms, we collect:

  • Transaction and sales data
  • Product and order information
  • Customer details (as provided by the platform)
  • Payment and payout information

All OAuth tokens for connected platforms are encrypted and stored securely using industry-standard encryption (AES-256-GCM).

Usage Information

We automatically collect certain information when you use SalesTrakkr:

  • Log data (IP address, browser type, device information)
  • Usage patterns (pages visited, features used, time spent)
  • Sync history and API call logs
  • Error logs and debugging information

How We Use Your Information

We use the information we collect to:

  • Provide our service: Display your sales data in a unified dashboard, sync transaction data, and generate analytics
  • Maintain and improve: Monitor service performance, fix bugs, and develop new features
  • Communicate: Send service updates, respond to support requests, and notify you of important changes
  • Billing: Process subscription payments and manage your account
  • Security: Detect and prevent fraud, abuse, and security incidents
  • Compliance: Comply with legal obligations and enforce our terms

We do NOT use your platform sales data for advertising, marketing to third parties, or any purpose other than providing the SalesTrakkr service to you.

Data Storage and Security

Security Measures

We implement industry-standard security measures to protect your data:

  • Encryption at rest: All OAuth tokens are encrypted using AES-256-GCM encryption before storage
  • Encryption in transit: All data transmission uses HTTPS/TLS encryption
  • Database security: Row-level security (RLS) policies ensure data isolation between users
  • Access controls: Strict authentication and authorization mechanisms
  • Regular security audits: Ongoing monitoring and security assessments

Data Storage

Your data is stored securely using:

  • Database: Supabase (PostgreSQL) with enterprise-grade security
  • Hosting: Vercel with edge network infrastructure
  • Location: Data centers in the United States

Data Retention

We retain your data as follows:

  • Account data: Until you delete your account
  • Transaction data: Until you disconnect a platform or delete your account
  • Backup data: Automatically deleted after 30 days
  • Log data: Retained for 90 days for debugging and security purposes

Data Sharing and Disclosure

We Do NOT Sell Your Data

We do not sell, rent, or trade your personal information or sales data to third parties.

Service Providers

We share data with trusted service providers who help us operate our service:

  • Supabase: Database and authentication services
  • Vercel: Hosting and infrastructure
  • Stripe: Payment processing (for billing only, not your connected Stripe account)

These providers are contractually obligated to protect your data and use it only for providing services to us.

Legal Requirements

We may disclose your information if required by law, such as:

  • To comply with legal process (subpoena, court order)
  • To respond to lawful requests from public authorities
  • To protect our rights, property, or safety
  • To prevent fraud or illegal activity

Your Rights and Choices

You have the following rights regarding your data:

Access and Portability

  • Access your data through the SalesTrakkr dashboard
  • Request a copy of your data by contacting us
  • Export your transaction data (feature coming soon)

Control Your Platform Connections

  • Disconnect any platform at any time from the Connections page
  • Disconnecting removes our access to your platform data
  • Historical synced data remains until you delete your account

Account Deletion

  • Delete your account at any time (contact support)
  • Account deletion permanently removes all your data
  • OAuth tokens are immediately revoked and deleted
  • Transaction data is permanently deleted within 30 days

Communication Preferences

  • Opt out of marketing emails (service emails still sent)
  • Manage notification settings in your account

Third-Party Platform Terms

When you connect third-party platforms (Etsy, eBay, Stripe, Gumroad, etc.), you are also subject to their terms of service and privacy policies:

We are not responsible for the privacy practices of these third-party platforms.

Children's Privacy

SalesTrakkr is not intended for users under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

International Users

SalesTrakkr is operated in the United States. If you are located outside the United States, please be aware that information we collect will be transferred to, processed, and stored in the United States.

By using our service, you consent to the transfer of your information to the United States and processing in accordance with this Privacy Policy.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make changes, we will:

  • Update the "Last Updated" date at the top of this page
  • Notify you via email for material changes
  • Post a notice in the SalesTrakkr dashboard

Your continued use of SalesTrakkr after changes become effective constitutes acceptance of the updated Privacy Policy.

Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: privacy@salestrakkr.com

Support: support@salestrakkr.com

California Privacy Rights

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

  • Right to know what personal information we collect, use, and disclose
  • Right to request deletion of your personal information
  • Right to opt-out of the sale of personal information (we do not sell your data)
  • Right to non-discrimination for exercising your privacy rights

To exercise these rights, contact us at privacy@salestrakkr.com.