Privacy Policy
Your trust is the foundation of our business. This policy explains, in plain English, what we collect and why.
1. Information we collect
We collect only what we need to deliver your barcodes and support your account: your email address, an encrypted password, billing details processed by Stripe, and basic order metadata (date, amount, items). We do not store your card number — it never touches our servers.
2. How we use your information
To process payments, deliver UPC/EAN barcodes to your inbox, provide customer support, send transactional receipts and, occasionally, important product updates. We never use your data for advertising profiling.
3. Data sharing
We do not sell, rent, or trade your information. We share data only with the processors that make this service work: Stripe (payments), Resend (email delivery), and our hosting provider — each bound by contract to protect your data.
4. Cookies & analytics
We use first-party cookies for authentication and cart persistence, and a privacy-respecting analytics tool to understand aggregate usage. No third-party advertising trackers run on UPCBuy.
5. Data retention
Order records are retained for 7 years to comply with tax and accounting law. You can request deletion of your account and personal data at any time by emailing hello@upcbuy.com.
6. Your rights
You have the right to access, correct, export, or delete your personal data, and to lodge a complaint with your local data protection authority. Email hello@upcbuy.com and we will respond within 7 days.
7. Security
All data is transmitted over TLS 1.3, passwords are hashed with bcrypt, and our backend enforces row-level security. We undergo regular dependency audits and security reviews.
8. Contact
Questions about privacy? Email hello@upcbuy.com. We reply within hours, every day.