Back to Sign In

Privacy Policy

We value your privacy and are committed to protecting your data.

Last updated: December 20, 2024
1. Introduction

This Privacy Policy explains how RevCogs ("we," "us," or "our") collects, uses, and protects your information when you use our web application ("the Service"). We are committed to protecting your privacy and being transparent about our data practices.

2. Information We Collect

1Discogs Data

  • Username and User ID
  • OAuth access tokens
  • Collection data (releases, folders)
  • Marketplace inventory

Note: We never store your Discogs password.

2Payment Info

  • Stripe customer ID
  • Subscription status
  • Payment history

Payments are handled entirely by Stripe.

3Usage Data

  • Browser & Device type
  • IP address (for security)
  • Pages visited
3. How We Use Your Information
  • Provide the Service and sync with Discogs
  • Process payments via Stripe
  • Generate pricing analysis (AI)
  • Improve features and fix bugs
  • Send service notifications
  • Prevent fraudulent use
4. Data Sharing & Third Parties

We share data only with necessary service providers:

DiscogsCollection & Inventory Sync
StripePayments
OpenAIPricing Intelligence (No PII)
CloudflareSecurity & Hosting

We do not sell, rent, or trade your personal information to third parties.

5. Security & Retention

Security Measures

  • Encryption in transit (HTTPS/TLS)
  • Encrypted data at rest
  • Secure OAuth token storage
  • Regular security audits

Data Retention

  • Collection data: Real-time sync (cached)
  • Account data: Deleted 30 days after closure
  • Payment records: 7 years (legal compliance)
6. Your Rights

You have full control over your data:

Access & Correction

View or correct your personal data at any time.

Revoke Access

Remove RevCogs from your Discogs apps settings instantly.

UK & EU Users (GDPR Rights)

If you are located in the United Kingdom or European Economic Area, you have additional rights under the UK GDPR and EU GDPR:

  • Right to ErasureRequest deletion of your personal data
  • Data PortabilityReceive your data in a portable format
  • Right to ObjectObject to processing based on legitimate interests
  • Restrict ProcessingRequest limitation of how we use your data
  • Withdraw ConsentWithdraw consent at any time where processing is based on consent
  • Lodge ComplaintFile a complaint with your local data protection authority

Legal basis for processing: We process your data based on (1) contractual necessity to provide the Service, (2) your consent for optional features, and (3) legitimate interests for security and fraud prevention.

To exercise any of these rights, contact us at hello@revcogs.com. We will respond within 30 days.

7. Cookies & Global Data

Cookies

We only use essential cookies for authentication. No ad tracking.

International Transfers

Your data may be transferred to and processed in the United States and other countries where our service providers operate. These countries may have different data protection laws than your country of residence.

For UK/EU users: We rely on Standard Contractual Clauses approved by the European Commission and UK ICO, where applicable, to ensure adequate protection for international transfers.

Children

Service is not intended for children under 13.

Privacy Questions?

Contact us at hello@revcogs.com

See also: Terms of Service