Welcome to The Power Auction ("we," "our," or "us"). We operate thepowerauction.com (the "Website") and provide online sports memorabilia auction services (collectively, the "Services"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our Website and use our Services. Please read this Privacy Policy carefully. By accessing or using our Services, you agree to the collection and use of information in accordance with this policy. 2. Information We Collect 2.1 Personal Information You Provide We collect information that you voluntarily provide to us when you: Register for an account: Full name Email address Username and password Phone number Date of birth (to verify age requirements) Participate in auctions: Billing address Shipping address Payment information (credit/debit card details, PayPal account) Bid history and purchase records Contact us: Name, email address, and message content Any other information you choose to provide 2.2 Information Automatically Collected When you access our Services, we automatically collect certain information about your device and usage: Device Information: IP address Browser type and version Operating system Device identifiers Screen resolution Usage Data: Pages visited and time spent on pages Click patterns and navigation paths Auction items viewed and searched Bid activity and timestamps Referring/exit pages Cookies and Tracking Technologies: Session cookies for authentication Persistent cookies for preferences Analytics cookies (Google Analytics, etc.) Advertising cookies (if applicable) 2.3 Information from Third Parties We may receive information about you from: Payment processors (Stripe, PayPal) regarding transaction status Social media platforms if you choose to link your account Identity verification services for fraud prevention Shipping carriers for delivery tracking 3. How We Use Your Information We use the collected information for the following purposes: 3.1 To Provide and Maintain Services Create and manage your account Process auction bids and transactions Facilitate payment processing Arrange shipping and delivery Send transaction confirmations and receipts Provide customer support 3.2 To Improve User Experience Personalize your experience on the Website Recommend relevant auction items Remember your preferences and settings Analyze usage patterns to improve functionality Conduct research and analytics 3.3 Communication Send important account notifications Notify you when you've been outbid Announce auction results and winning notifications Send promotional emails about upcoming auctions (with opt-out option) Respond to your inquiries and support requests Send administrative information and policy updates 3.4 Security and Fraud Prevention Detect and prevent fraudulent transactions Monitor for suspicious bidding patterns Verify user identity Enforce our Terms of Service Protect against unauthorized access 3.5 Legal Compliance Comply with applicable laws and regulations Respond to legal requests and prevent harm Resolve disputes and enforce agreements 4. How We Share Your Information We do not sell your personal information. We may share your information in the following circumstances: 4.1 Service Providers We share information with third-party vendors who perform services on our behalf: Payment processors (Stripe, PayPal, etc.) for transaction processing Shipping companies for order fulfillment Cloud hosting providers (AWS, Google Cloud) for data storage Email service providers for communications Analytics providers (Google Analytics) for usage analysis Customer support platforms for helpdesk services 4.2 Business Transfers If we are involved in a merger, acquisition, asset sale, or bankruptcy, your information may be transferred as part of that transaction. We will notify you via email and/or prominent notice on our Website of any change in ownership. 4.3 Legal Requirements We may disclose your information if required to do so by law or in response to: Court orders or subpoenas Legal processes or government requests Protection of our rights, property, or safety Investigation of fraud or security issues Enforcement of our Terms of Service 4.4 With Your Consent We may share your information with third parties when you have given explicit consent to do so. 4.5 Auction Participants When you win an auction, your username and winning bid amount may be publicly displayed. Shipping information is shared only with relevant parties (shipping carriers, sellers) to fulfill the transaction. 5. Data Security We implement appropriate technical and organizational security measures to protect your personal information: Encryption: All data transmission is encrypted using SSL/TLS protocols (HTTPS) Secure storage: Passwords are hashed and salted using industry-standard algorithms Access controls: Limited access to personal information on a need-to-know basis Regular security audits: Periodic vulnerability assessments and penetration testing Payment security: We do not store complete credit card information; payment details are processed through PCI DSS-compliant payment processors Monitoring: Continuous monitoring for suspicious activity and unauthorized access However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security. 6. Your Privacy Rights Depending on your location, you may have the following rights regarding your personal information: 6.1 Access and Portability Request a copy of the personal information we hold about you Receive your data in a structured, machine-readable format 6.2 Correction Request correction of inaccurate or incomplete information Update your account information at any time through your account settings 6.3 Deletion Request deletion of your personal information (subject to legal retention requirements) Note: We may retain certain information for legitimate business purposes or legal compliance 6.4 Restriction and Objection Object to processing of your personal information Request restriction of processing under certain circumstances 6.5 Withdraw Consent Withdraw consent for marketing communications at any time Unsubscribe from promotional emails using the link provided in each email 6.6 Do Not Track Currently, our Website does not respond to "Do Not Track" signals from browsers. To exercise your rights, please contact us at: privacy@thepowerauction.com We will respond to your request within 30 days. 7. Data Retention We retain your personal information for as long as necessary to: Maintain your account and provide Services Comply with legal obligations (tax records, transaction history) Resolve disputes and enforce agreements Prevent fraud and abuse Retention periods: Account information: Until account deletion + 7 years for financial records Transaction records: 7 years (for tax and legal compliance) Marketing data: Until you opt-out or request deletion Website analytics: 26 months (Google Analytics default) After the retention period expires, we will securely delete or anonymize your information. 8. Children's Privacy Our Services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at privacy@thepowerauction.com, and we will delete such information from our systems. 9. International Data Transfers Our Operations: The Power Auction is operated from India. Our servers and data processing facilities are located in India and/or with our cloud service providers (such as AWS, Google Cloud). Global Service: We provide services to users worldwide. When you use our Services from outside India, your information will be transferred to, stored, and processed in India and potentially other countries where our service providers operate. Data Protection: By using our Services, you consent to the transfer of your information to India and other countries, which may have different data protection rules than your country of residence. For International Users: European Economic Area (EEA) users: We implement Standard Contractual Clauses (SCCs) approved by the European Commission to ensure adequate protection when transferring data outside the EEA. UK users: We comply with the UK GDPR and implement appropriate safeguards for data transfers. Other jurisdictions: We ensure compliance with applicable data protection laws in your region. Data Security Across Borders: Regardless of where your data is processed, we maintain the same high standards of security and protection described in this Privacy Policy. 10. Third-Party Links Our Website may contain links to third-party websites, services, or applications that are not operated by us. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party sites you visit. 11. Cookie Policy 11.1 What Are Cookies? Cookies are small text files stored on your device that help us provide and improve our Services. 11.2 Types of Cookies We Use Essential Cookies: Required for the Website to function properly (authentication, security) Performance Cookies: Help us understand how visitors use our Website (analytics) Functionality Cookies: Remember your preferences and settings Advertising Cookies: Used to deliver relevant advertisements (if applicable) 11.3 Managing Cookies You can control cookies through your browser settings. However, disabling cookies may affect your ability to use certain features of our Services. 12. California Privacy Rights (CCPA) If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA): Right to Know: What personal information we collect, use, disclose, and sell Right to Delete: Request deletion of your personal information Right to Opt-Out: Opt-out of the sale of personal information (we do not sell personal information) Right to Non-Discrimination: Not be discriminated against for exercising your privacy rights To exercise these rights, email us at: privacy@thepowerauction.com or call us at: [Your Phone Number] 13. European Privacy Rights (GDPR) If you are in the European Economic Area (EEA), you have rights under the General Data Protection Regulation (GDPR): Right to access, rectify, erase, restrict, and port your data Right to object to processing and withdraw consent Right to lodge a complaint with your local data protection authority Legal basis for processing: Contract performance (to provide Services) Legitimate interests (fraud prevention, service improvement) Legal compliance Your consent (marketing communications) Data Protection Officer: privacy@thepowerauction.com 14. Indian Privacy Rights (Digital Personal Data Protection Act) If you are in India, you have rights under the Digital Personal Data Protection Act, 2023 (DPDP Act): Your Rights: Right to Access: Obtain information about your personal data we process Right to Correction: Request correction of inaccurate or misleading data Right to Erasure: Request deletion of your personal data (subject to legal retention) Right to Grievance Redressal: File complaints regarding data processing