Privacy Policy

Back to Settings

Last updated: March 14, 2026

1. Introduction

Pokemon Deal Finder ("we", "us", "our") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard your information in compliance with the EU General Data Protection Regulation (GDPR) and applicable US privacy laws.

2. Data We Collect

We collect the following categories of personal data:

  • Account data: Email address, hashed password (managed by Supabase Auth)
  • Subscription data: Payment information is processed by Lemon Squeezy; we store only a customer ID and subscription status
  • Integration IDs: Discord User ID and/or Telegram Chat ID, if you choose to link these services
  • Usage data: Watchlist items, price alert configurations, and alert trigger history
  • Technical data: IP address, browser type, and cookies necessary for service operation

3. Legal Basis for Processing (GDPR)

We process your personal data under the following legal bases:

  • Contract performance: To provide the Service, manage your account, and process subscriptions
  • Consent: For optional features like Discord/Telegram integration and non-essential cookies
  • Legitimate interest: For service improvement, security monitoring, and fraud prevention

4. How We Use Your Data

  • Provide and maintain the Service, including deal alerts and price tracking
  • Process subscription payments and manage billing
  • Send price alert notifications via email, Discord, or Telegram (as configured by you)
  • Improve the Service and develop new features
  • Communicate important updates about your account or the Service

5. Third-Party Services

We use the following third-party processors:

  • Supabase: Authentication and database hosting (EU/US data centers)
  • Lemon Squeezy: Payment processing — subject to their own privacy policy
  • Resend: Transactional email delivery
  • Discord: Optional alert delivery via bot messages
  • Telegram: Optional alert delivery via bot messages

We do not sell your personal data to third parties. Data is shared with processors only as necessary to operate the Service.

6. Cookies

We use the following types of cookies:

  • Essential cookies: Required for authentication and basic functionality. These cannot be disabled.
  • Functional cookies: Store your preferences (e.g., cookie consent choice). You can opt out of these.

We do not use advertising or tracking cookies. You can manage your cookie preferences through the cookie banner displayed on your first visit.

7. Data Retention

We retain your personal data for as long as your account is active. If you delete your account, all personal data (profile, alerts, watchlist) is permanently deleted immediately. Anonymized, aggregated data (e.g., total user counts) may be retained for analytics.

8. Your Rights

Under GDPR and applicable privacy laws, you have the right to:

  • Access: Request a copy of your personal data (available via "Download My Data" in Account Settings)
  • Rectification: Correct inaccurate personal data
  • Erasure: Delete your account and all associated data (available via "Delete Account" in Account Settings)
  • Data portability: Export your data in a machine-readable format (JSON)
  • Objection: Object to processing based on legitimate interests
  • Withdraw consent: Withdraw previously given consent at any time

To exercise these rights, visit your Account Settings or contact us at the address below.

9. Data Security

We implement appropriate technical and organizational measures to protect your data, including encrypted connections (TLS), secure authentication, and access controls. However, no method of electronic transmission or storage is 100% secure.

10. International Transfers

Your data may be processed in the EU and/or the United States. Where data is transferred outside the EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or equivalent mechanisms.

11. Children's Privacy

The Service is not intended for users under the age of 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us for removal.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify registered users of material changes via email. The "Last updated" date at the top reflects the most recent revision.

13. Contact & Complaints

For privacy-related questions, data requests, or complaints, contact us at nas91dev@gmail.com.

If you are located in the EU and believe your privacy rights have been violated, you have the right to lodge a complaint with your local data protection authority.