Privacy Policy

Introduction

indigolistings LLC (“we”, “our” or “us”) is committed to safeguarding the privacy of our users (“Users” or “you”). This Privacy Policy explains how we collect, process, and protect your personal data in compliance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable laws.

Scope

This policy applies to all services provided by indigolistings LLC through our Platform and any related interactions with Users.

Consent

By using the Platform, you consent to the practices described here. The policy is always available during registration and at any time via the link on our site. If you disagree, please do not use our services.

Data Collection

Types of Personal Information Collected

We collect various types of personal information to ensure the functionality, security, and personalization of our platform. The data types include, but are not limited to:

Contact Information

We collect contact details to identify, communicate, and maintain connections with users. These details include:

  • Full legal name as provided during account registration or profile updates
  • Primary and secondary email addresses for verification, notifications, and customer support communications
  • Residential, shipping, and mailing addresses, including country, state, city, postal/ZIP codes, and apartment/unit numbers
  • Phone numbers, including mobile, home, and business lines (for communication and account security, e.g. 2FA)
  • Optional identifiers (e.g. social media handles), if linked for convenience or additional functionality

Account Details

Information related to account setup, management, and security, including:

  • Unique identifiers (username or account number)
  • Secure credentials (passwords, biometric authentication), encrypted and stored per industry standards
  • Security or recovery questions and answers (for account recovery)
  • Preferences and settings customized by you (e.g. notification preferences, privacy controls)

Payment Information

To support secure and accurate financial transactions, we collect:

  • Credit and debit card information (name, card number, expiration date, CVV/CVC), processed via secure gateways
  • Billing addresses associated with payment methods
  • Bank account details (account numbers, routing codes, bank names) for wire transfers, deposits, or withdrawals
  • Payment transaction records (unique identifiers, amounts, timestamps, receipts)
  • Details of refunds, chargebacks, disputes, and their resolutions

Profile Information

Optional data for personalization, such as:

  • Profile photos, avatars, or other visual identifiers
  • Biographical information, personal descriptions, or user status updates
  • Preferences related to products, services, or content
  • Public or private data shared in profiles, community forums, or listings
  • Responses to surveys, polls, and questionnaires

Transaction Data

To facilitate and track activities:

  • Descriptions of items or services bought, sold, exchanged, or offered
  • Dates, times, and monetary values of transactions
  • Correspondence related to transactions (e.g. buyer-seller messages, shipping updates)
  • Order statuses (processing, completed, canceled, or refunded)
  • Preferred payment methods and channels (e.g. digital wallets, cards)

Communications

Records and metadata of user or platform interactions:

  • Emails, messages, or chat logs with customer support or other users
  • Metadata (timestamps, IP addresses, user IDs)
  • Message content exchanged on the platform (monitored for compliance and safety)
  • Feedback, reviews, complaints, or inquiries submitted officially

Uploaded Content

Voluntarily uploaded data for functionality and promotional use, such as:

  • Images, videos, and descriptions (e.g. for real estate listings)
  • Content used for marketing or social media (with prior consent, where applicable)

Sources of Data Collection

  • Direct User Input: Through registration, profile updates, forms, surveys, or direct communication.
  • Automated Systems: Via cookies, tracking technologies, and automated logging during your interaction with the platform.
  • Third Party Sources:
  • Payment processors (for transaction validation and disputes)
  • Marketing partners (for promotions or analytics)
  • Publicly available databases and social media platforms (for profile enrichment)

Purposes for Data Collection

We process collected data to:

  • Deliver services, features, and functionalities of the platform
  • Facilitate secure payment processing and resolve financial queries
  • Offer personalized experiences by analyzing preferences and activity
  • Enhance platform security (detect fraud, monitor misuse, implement protection measures)
  • Comply with legal, regulatory, and tax obligations
  • Communicate updates, promotional materials, and service improvements
  • Conduct analytics to optimize performance, improve satisfaction, and introduce features

Data Usage

Purposes of Data Usage

Collected data is used to:

  • Transaction Facilitation and User Interactions: Process payments, authenticate users, deliver services, verify payment details, maintain records, support communication
  • Identity Verification and Account Security: Authenticate login, monitor for unusual activity, prevent unauthorized access or fraud
  • Personalized User Experience: Deliver custom recommendations, features, and content
  • Customer Support and Dispute Resolution: Address inquiries, resolve issues, mediate disputes
  • Marketing and Promotions: (With explicit consent) Send newsletters, offers, event notifications, and other marketing communications
  • Compliance with Legal and Regulatory Obligations: Meet obligations such as data protection, tax, and fraud prevention
  • Service Development and Innovation: Use anonymized/aggregated data for research, improvements, and developing new features
  • Enforcement of Terms and Policies: Ensure compliance with our Terms of Service, Privacy Policy, and other agreements

Data Sharing

Sharing of Personal Data

We share personal data securely and only with trusted entities for specific purposes, such as:

  • Service Providers: Third-party vendors (e.g. for payment processing, cloud hosting, data analytics, advertising, support, IT infrastructure, security), bound by confidentiality agreements
  • Business Partners: Collaborators, affiliates, joint ventures for co-branded services or campaigns
  • Legal Authorities: Government agencies or law enforcement as required by law, subpoenas, court orders, or other requests
  • Other Users: Limited profile information (name, location, transaction details) to facilitate transactions or collaborations, ensuring transparency and trust
  • Corporate Transactions: In events like mergers, acquisitions, or asset sales, personal data may be transferred to relevant parties under confidentiality and law

International Data Transfers

Compliance with International Data Protection Standards

When transferring personal data outside the European Economic Area (EEA), we implement safeguards to comply with data protection laws:

  • Standard Contractual Clauses (SCCs): Use EU-approved clauses for transfers
  • Binding Corporate Rules (BCRs): Apply uniform data protection standards within our group
  • Adequacy Decisions: Transfer to countries recognized as having adequate protection levels

Transparency and User Notifications:
We inform users about data transfers, provide access to safeguards on request, and offer relevant agreements outlining these measures.

User Rights

Comprehensive User Rights

Users may exercise the following rights, per applicable laws:

  • Right to Access: Request confirmation and details of data processing and categories collected
  • Right to Rectification: Request corrections to inaccuracies or incomplete data
  • Right to Erasure ("Right to Be Forgotten"): Request deletion of personal data no longer necessary, subject to obligations
  • Right to Restriction of Processing: Temporarily restrict data processing in certain scenarios (e.g. during disputes or corrections)
  • Right to Data Portability: Receive personal data in a structured, machine-readable format for transfer to another provider
  • Right to Object: Opt out of processing based on legitimate interests, including direct marketing
  • Right to Withdraw Consent: Revoke consent for specific processing at any time (without affecting prior lawful processing)
  • Right to Lodge a Complaint: File a formal grievance with a supervisory authority if rights are violated

Exercising Rights

Users can exercise these rights by contacting us by email at [Insert Email Address], providing sufficient information to authenticate the request.

Data Retention

Retention Policy Overview

Personal data is retained only as long as necessary to fulfill processing purposes, comply with laws, and meet business needs.

Retention Criteria

  • Data Sensitivity: Nature and classification of the data
  • Legal Requirements: Mandated durations for tax, accounting, regulatory laws
  • Business Interests: Needs such as dispute resolution, agreements enforcement, audits, fraud prevention
  • User Requests: Honoring requests for deletion/anonymization, where lawful

Data Security

Commitment to Data Security

We implement technical and organizational measures to protect against unauthorized access, disclosure, alteration, misuse, or destruction of personal data. Our protocols are aligned with industry standards and are reviewed to address new threats and best practices.

Security Measures Implemented

  • Encryption Protocols: All sensitive data, including payment details, is encrypted during storage and transmission (e.g. AES-256, TLS 1.2+)
  • Access Controls and Authentication: Access is limited to authorized personnel; 2FA is employed
  • Regular Security Audits: Internal and external audits, vulnerability assessments, penetration testing
  • Firewall and Monitoring Systems: To guard against unauthorized network access and suspicious activity
  • Employee Training and Awareness: Regular employee training on data protection and cybersecurity best practices
  • Incident Response Protocols: Plans maintained for breach detection, containment, and resolution

Cookies and Tracking

Overview

We use cookies, pixels, and similar technologies to enhance your experience, analyze behavior, and deliver personalized services, including advertising.

Types of Cookies Used

  • Essential Cookies: For core functionalities like authentication, session management, and navigation (disabling may impact usability)
  • Performance Cookies: Collect anonymized data on usage, page views, and errors to improve performance
  • Advertising Cookies: Track activity for targeted ads and measure campaign effectiveness (may be set by 3rd parties)

Cookie Preferences and Control

Users can manage cookie preferences via:

  • Browser Settings: Most browsers allow blocking or deleting cookies (see browser documentation)
  • Cookie Consent Tool: Our platform provides a tool for enabling/disabling non-essential cookies
  • Opt-Out Mechanisms: Opt out of advertising cookies via platforms like the Network Advertising Initiative (NAI) or Digital Advertising Alliance (DAA)

Policy Updates

Frequency and Reasons for Updates

This Privacy Policy may be updated periodically due to legal, technological, operational, or feedback-driven changes.

Notification of Changes

Significant or material changes will be communicated by:

  • Platform Notifications: A prominent notice on the homepage or login screen
  • Email Notifications: To users who have provided email addresses and opted to receive updates

Acceptance of Changes

Continued use of the Platform after updates signifies acknowledgment and acceptance of the revised policy. Users are encouraged to review the policy regularly.

Contact Information

How to Reach Us

For inquiries, concerns, or requests regarding this Privacy Policy or our data practices, contact us via:

Response Time:
We strive to respond within a reasonable timeframe, typically within 30 days, in accordance with applicable regulations.