1. Information We Collect

Account Information

When you create an account, we collect your email address, display name, and optionally a username, avatar, and bio. If you sign in with a third-party provider (Google, GitHub), we receive your name, email, and profile picture from that provider.

Content You Publish

Any content you publish on your tiles (profiles, project descriptions, links, images) is stored by us and displayed publicly on the grid.

Payment Information

Payment processing is handled by Stripe. We do not store credit card numbers or bank account details. We store Stripe customer IDs and transaction metadata (amounts, dates, tile references).

Usage Data

We collect anonymous usage data including page views, grid interactions, and feature usage to improve the Service. This data is not linked to your identity.

Cookies

We use essential cookies for authentication and session management. We do not use advertising or third-party tracking cookies.

2. How We Use Your Information

To provide and maintain the Service
To display your published content on the grid
To process payments and marketplace transactions
To send transactional emails (purchase confirmations, account notifications)
To send optional weekly digest emails (you can opt out)
To enforce our Terms of Service and prevent abuse
To improve the Service through anonymous analytics

3. Information Sharing

We do not sell your personal information. We share information only in these cases:

Public content: Tile content, display names, and avatars are publicly visible on the grid.
Payment processing: Payment data is shared with Stripe to process transactions.
Legal requirements: We may disclose information if required by law, court order, or to protect our rights and safety.
Marketplace: When you buy or sell a tile, the other party can see your display name. Email addresses are never shared between buyers and sellers.

4. Data Storage & Security

Your data is stored securely using Supabase (PostgreSQL) with row-level security policies. All data is encrypted in transit (TLS) and at rest. We implement industry-standard security measures including rate limiting, input validation, and secure authentication.

5. Your Rights

You have the right to:

Access your personal data through your account settings
Correct inaccurate information in your profile
Delete your account and associated data
Export your data (contact us for a data export)
Opt out of non-essential emails via notification preferences

To exercise any of these rights, visit your account settings or contact us at tileverses@gmail.com.

6. Data Retention

Account data is retained while your account is active.
Upon account deletion, personal data is removed within 30 days.
Marketplace transaction records are retained for 7 years for tax/legal compliance.
Anonymous analytics data may be retained indefinitely.

7. Third-Party Services

We use the following third-party services:

Supabase – database and authentication
Stripe – payment processing and seller payouts
Vercel – hosting and edge computing
Resend – transactional emails

Each of these services has their own privacy policy governing how they handle data.

8. Children's Privacy

Tileverse is not intended for children under 13. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us.

9. International Users

If you are accessing the Service from outside Australia, your data may be transferred to and processed in Australia or other countries where our service providers operate. By using the Service, you consent to such transfers.

10. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of significant changes via email or in-app notification. Your continued use of the Service after changes constitutes acceptance of the updated policy.

11. Contact

For questions about this privacy policy, contact us at tileverses@gmail.com.

Privacy Policy