Privacy Policy

2.1. Data Collected

We collect only necessary information: at registration — email (and name/profile via Google OAuth); during use — IP address (security, fraud prevention, rate limits), social links to fulfill orders. Platform passwords are hashed (bcrypt); we never have plain-text access. We never ask for your social network passwords.

2.2. Google Authentication (OAuth)

By using Google sign-in, you authorize access to your email and public profile info (name, photo). This is used solely to create and secure your 13B00ST account. We do not request sensitive permissions (email content, contacts, calendars).

2.3. Sharing and Transfer

Public links you provide for orders are automatically sent to our suppliers via secure APIs. Your personal data (email, password, IP) is never sold, rented, or shared for commercial purposes.

2.4. Data Security

All communications are protected by HTTPS. Data is hosted on secure infrastructure (including Vercel and encrypted databases in transit).

2.5. Retention and Your Rights

Data is retained while your account is active. Under applicable regulations (including GDPR for EU users), you have rights of access, rectification, and erasure. To exercise these rights or request account deletion, contact: support@13boost.com.