Privacy Policy

1. Introduction

This Privacy Policy explains how Cross Matcher ("Cross Matcher", "we", "us", "our") collects, uses, shares, and protects personal information when you use the Cross Matcher website, applications, and services (the "Service"). It should be read together with our Terms of Service.

By creating an account, checking the acceptance box, or otherwise using the Service, you acknowledge that you have read this Policy. Where your consent is required by applicable law, your acceptance constitutes that consent. We record the version you accept and the date of acceptance.

The Service is intended only for adults (18+) and is not directed to children.

2. Information you provide

Account: your email address, password (stored only as a salted hash — we never store it in plain text), language preference, and your acceptance of the Terms and this Policy.

Profile: the display name and avatar you choose, and the who / where / what profile you write to describe your role, location/market, and what you can offer or need. Please do not include sensitive personal data you don't want shared with potential counterparties.

Content: requests you post; messages, ratings, and reviews you exchange with a counterparty in a deal; files you upload to a deal chat or as dispute evidence; and feedback or support tickets you send us.

Security: if you enable an authenticator, we store an encrypted TOTP secret (never the codes themselves).

3. Information collected automatically

Usage & device: limited technical data such as IP address, approximate region, device/browser type, and timestamps of sign-ins and key actions — used to operate the Service, keep it secure, and prevent abuse.

Sessions & local storage: we use first-party session tokens (including an optional 'remember this device' token) and local storage to keep you signed in and remember preferences. We do not use third-party advertising cookies or sell your data to advertisers.

Push tokens (mobile): if you allow notifications, we store a device push token so we can send you alerts (e.g., a new message); you can revoke this in your device settings at any time.

4. How we use your information

To provide the Service: create and secure your account, match complementary needs, run deals, deliver in-app and email/push notifications, and provide support.

Safety & integrity: to moderate content, detect and prevent fraud, abuse, sock-puppets, and policy violations, and to operate the community-jury dispute process.

Improvement: to understand aggregate usage and improve matching quality and reliability.

Legal: to comply with law, enforce our Terms, and protect the rights, safety, and property of users and the public.

5. Automated processing & AI

Matching: your profile and request text are converted into numerical embeddings so the system can suggest complementary counterparties. This is automated and is not a decision producing legal or similarly significant effects about you.

Moderation: text, images, and video keyframes you submit may be screened automatically (including by AI models) to enforce safety policies before content goes live; some items are additionally reviewed by a human moderator.

Translation: to support a bilingual community, some user-visible text may be machine-translated. Automated outputs can be imperfect; you can contact us if a moderation outcome seems wrong.

6. How we share information

With other users: your display name, avatar, level, reputation counts, and the content you choose to post or send are visible to the counterparties and community contexts they're meant for (e.g., a request on the board, a message in your deal, redacted previews to a jury). Your email and password are never shown to other users.

Service providers (processors): we use trusted vendors to run the Service under contract and only on our instructions — including cloud hosting and databases, transactional email delivery, machine translation, and AI moderation (provided via Amazon Web Services and similar processors). They may process your data only to provide these services to us.

Legal & safety: we may disclose information if required by law or to protect rights, safety, and integrity.

Business transfers: if Cross Matcher is involved in a merger, acquisition, or asset sale, information may be transferred subject to this Policy.

We do not sell your personal information.

7. International transfers

We operate cloud infrastructure that may process and store data in regions outside your country. Where required, we rely on appropriate safeguards for cross-border transfers. By using the Service you understand your information may be processed in those regions.

8. Data retention

We keep personal information for as long as your account is active and as needed to provide the Service, then for a reasonable period to meet legal, security, dispute-resolution, and anti-abuse needs, after which it is deleted or anonymized.

Some content tied to a completed deal or dispute (e.g., the record that a deal occurred) may be retained to preserve the integrity of reputation and the points ledger. Uploaded chat and evidence files are removed on a routine schedule after a deal settles.

9. Your rights and choices

Depending on where you live, you may have rights to access, correct, export, or delete your personal information, and to object to or restrict certain processing. You can edit your profile in Settings, and you can request account deletion by contacting us.

You can turn off push notifications in your device settings and unsubscribe from non-essential emails. We may still send essential service messages (e.g., security or transactional notices).

We will not discriminate against you for exercising these rights. To make a request, contact us using the details below; we may need to verify your identity first.

10. Security

We use technical and organizational measures to protect your information — including encryption in transit, hashed passwords, encrypted authenticator secrets, scoped access to private file storage, and access controls. No method of transmission or storage is perfectly secure, so we cannot guarantee absolute security.

11. Children

The Service is for adults (18+). We do not knowingly collect personal information from anyone under 18. If you believe a minor has provided us information, contact us and we will delete it.

12. Changes to this Policy

We may update this Policy from time to time. When we make material changes we will update the version and effective date above and, where appropriate, notify you. Your continued use of the Service after an update means you acknowledge the revised Policy.

13. Contact us

Questions or privacy requests? Contact us at privacy@crossmatcher.com.